$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4B1A/5DD48AB689F211E69E5F6339C4F9AE02/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.mft File: zhFGgP9vTZvD8YgNYQ1q7urr8NQ.mft (raw, json) Hash identifier: JtuRVgFa1v+jNG8qqbvh1tr02RCFMSFBgncbXy4dxII= Subject key identifier: 13:70:BC:3D:4A:A4:F8:5D:FA:84:66:1B:C1:5B:D4:79:93:47:CF:A2 Authority key identifier: CE:11:46:80:FF:6F:4D:9B:C3:F1:88:0D:61:0D:6A:EE:EA:EB:F0:D4 Certificate issuer: /CN=A91A4B1A/serialNumber=CE114680FF6F4D9BC3F1880D610D6AEEEAEBF0D4 Certificate serial: 1ECE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4B1A/5DD48AB689F211E69E5F6339C4F9AE02/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.mft Manifest number: 1E9A Signing time: Mon 02 Mar 2026 16:07:14 +0000 Manifest this update: Mon 02 Mar 2026 16:07:13 +0000 Manifest next update: Mon 09 Mar 2026 16:07:13 +0000 Files and hashes: 1: zhFGgP9vTZvD8YgNYQ1q7urr8NQ.crl (hash: jiAeWjUY7a4WBUj8s20LPCswDZ4jeZ59dgUTMnr8I+0=) 2: 1DBC9D405DB411EEA017251AC4F9AE02.roa (hash: MORsfRo625k6Z6J+RgEowsAvarYUIEu/pPax0H0xX08=) 3: 4B52A44814DF11EEAB46A86DC4F9AE02.roa (hash: TptByVGgUQdWR0MavGH9OYmCsbH/nXydqU06KChwsXI=) 4: 4CE75372B9DE11EEBC5B0D21C4F9AE02.roa (hash: fuTljzKvBea7sJt2VNckungbhAnkDIYji3I6D462WJ8=) 5: 4999305414DF11EEAB46A86DC4F9AE02.roa (hash: SP9KLqagmi8apHAQ/A1PSM4jrXC2JUZTS6enHcX0VwU=) 6: 4A6679EC14DF11EEAB46A86DC4F9AE02.roa (hash: ZF+S9Eq6dimNzHWGXtdSSL8R6tb42i721A8ipARJHDg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4B1A/5DD48AB689F211E69E5F6339C4F9AE02/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.crl rsync://rpki.apnic.net/member_repository/A91A4B1A/5DD48AB689F211E69E5F6339C4F9AE02/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 16:03:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7886 (0x1ece) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4B1A, serialNumber=CE114680FF6F4D9BC3F1880D610D6AEEEAEBF0D4 Validity Not Before: Mar 2 16:07:13 2026 GMT Not After : Mar 9 16:07:13 2026 GMT Subject: CN=69a5b5b2-ec26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:27:2d:a6:8f:47:88:44:bb:e4:12:3b:c2:b9: e4:de:dd:1e:5d:ca:61:dc:2a:b8:6f:f9:7c:3e:3d: e6:d5:4c:0f:98:85:08:a8:63:91:cb:20:17:ee:e2: 46:7e:2b:81:0d:58:c3:34:02:8d:84:88:b3:47:a3: e4:f8:f0:6d:77:da:0a:78:d7:3f:e6:f6:f2:5f:41: c3:10:ff:8a:15:37:28:ff:4f:b1:f6:b3:28:58:b7: 0a:ca:7b:ee:bd:95:50:a8:c3:fb:5b:d8:09:25:29: fd:2c:ce:41:fd:22:1b:6f:c8:ac:74:bb:8e:01:10: 39:b3:40:5b:d2:86:78:3c:50:d8:07:d9:d9:72:e5: 90:a4:a0:d6:e1:69:36:8f:e1:89:c5:0f:57:65:72: db:6d:36:a5:1b:1d:ca:59:84:bf:cb:dc:1d:61:20: 43:38:ed:9c:af:f6:a6:c5:75:05:35:18:84:41:4a: 1a:bf:ab:b1:37:ee:24:84:a0:3a:fc:fe:fa:61:9f: 22:24:ef:81:72:e3:24:ed:f9:18:34:1c:14:55:ee: 75:a1:26:a5:fd:eb:66:8c:e2:78:86:42:2a:d1:27: 39:31:7e:1c:4a:73:a9:c4:c9:73:89:46:02:17:e3: 22:59:1b:9f:a0:ca:00:59:a1:1c:7d:7b:9b:3a:7f: 26:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:70:BC:3D:4A:A4:F8:5D:FA:84:66:1B:C1:5B:D4:79:93:47:CF:A2 X509v3 Authority Key Identifier: keyid:CE:11:46:80:FF:6F:4D:9B:C3:F1:88:0D:61:0D:6A:EE:EA:EB:F0:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4B1A/5DD48AB689F211E69E5F6339C4F9AE02/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4B1A/5DD48AB689F211E69E5F6339C4F9AE02/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:ce:d7:8f:1d:a2:83:17:40:e8:86:e8:4f:ad:8c:35:40:c2: d8:75:0c:45:d6:c3:b5:4e:32:60:82:58:ca:77:f1:b1:e5:59: 34:06:b1:88:83:93:03:c1:07:20:b4:e4:76:91:ed:1f:d8:69: 10:d4:51:5b:bf:28:59:2f:82:b1:5b:ab:47:66:14:85:cb:e1: 6c:38:07:d8:8c:e6:8f:78:c1:c1:4e:52:37:10:6c:89:34:71: 82:18:91:8f:92:10:e0:6c:3f:c4:2a:fc:ba:5d:dd:ec:92:21: 8a:1c:08:09:f0:bd:87:1b:4a:62:7d:a5:27:5f:49:48:ae:0e: 0e:47:86:fd:d9:56:36:69:a1:6e:47:a4:81:72:ff:34:5c:d1: 67:b8:5c:ec:83:32:41:74:bf:ed:ee:2b:f1:d3:da:27:30:23: a5:a6:50:ec:de:8b:d8:15:b0:c2:1f:73:a7:43:0e:82:e0:0f: 8c:75:e8:ab:b4:0a:ce:75:61:05:81:0e:0c:46:db:1d:93:1b: 3b:91:54:c3:d7:17:77:26:cf:20:bb:b5:18:ef:96:76:69:db: 30:ab:dc:7e:25:84:95:ba:0b:a0:03:8d:eb:4d:32:c8:ed:43: 1a:c2:5e:77:01:af:cc:6e:2d:41:7a:bf:a4:82:a4:a4:c4:4d: 22:2f:b7:b8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICHs4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRCMUExMTAvBgNVBAUTKENFMTE0NjgwRkY2RjREOUJDM0YxODgwRDYxMEQ2QUVF RUFFQkYwRDQwHhcNMjYwMzAyMTYwNzEzWhcNMjYwMzA5MTYwNzEzWjAYMRYwFAYD VQQDEw02OWE1YjViMi1lYzI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4ictpo9HiES75BI7wrnk3t0eXcph3Cq4b/l8Pj3m1UwPmIUIqGORyyAX7uJG fiuBDVjDNAKNhIizR6Pk+PBtd9oKeNc/5vbyX0HDEP+KFTco/0+x9rMoWLcKynvu vZVQqMP7W9gJJSn9LM5B/SIbb8isdLuOARA5s0Bb0oZ4PFDYB9nZcuWQpKDW4Wk2 j+GJxQ9XZXLbbTalGx3KWYS/y9wdYSBDOO2cr/amxXUFNRiEQUoav6uxN+4khKA6 /P76YZ8iJO+BcuMk7fkYNBwUVe51oSal/etmjOJ4hkIq0Sc5MX4cSnOpxMlziUYC F+MiWRufoMoAWaEcfXubOn8m4QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBNwvD1K pPhd+oRmG8Fb1HmTR8+iMB8GA1UdIwQYMBaAFM4RRoD/b02bw/GIDWENau7q6/DU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEIxQS81REQ0OEFCNjg5 RjIxMUU2OUU1RjYzMzlDNEY5QUUwMi96aEZHZ1A5dlRadkQ4WWdOWVExcTd1cnI4 TlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3poRkdnUDl2VFp2RDhZZ05ZUTFxN3VycjhOUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NEIxQS81REQ0OEFCNjg5RjIxMUU2OUU1RjYzMzlDNEY5QUUwMi96aEZHZ1A5dlRa dkQ4WWdOWVExcTd1cnI4TlEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAGc7Xjx2igxdA6IboT62MNUDC2HUMRdbDtU4yYIJYynfxseVZNAaxiIOTA8EH ILTkdpHtH9hpENRRW78oWS+CsVurR2YUhcvhbDgH2Izmj3jBwU5SNxBsiTRxghiR j5IQ4Gw/xCr8ul3d7JIhihwICfC9hxtKYn2lJ19JSK4ODkeG/dlWNmmhbkekgXL/ NFzRZ7hc7IMyQXS/7e4r8dPaJzAjpaZQ7N6L2BWwwh9zp0MOguAPjHXoq7QKznVh BYEODEbbHZMbO5FUw9cXdybPILu1GO+WdmnbMKvcfiWElboLoAON600yyO1DGsJe dwGvzG4tQXq/pIKkpMRNIi+3uA== -----END CERTIFICATE-----Generated at Mon Mar 2 21:56:14 2026 by rpki-client