$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9B3E/DAB1C3A68CFB11ED92E25B61C4F9AE02/zuNPo5_yhfcuIp2ihivBDkiPukE.mft File: zuNPo5_yhfcuIp2ihivBDkiPukE.mft (raw, json) Hash identifier: 5JGcbfvyPzbmYxdzqp8lcDJsrwL5/CsIHZ404h+G/wk= Subject key identifier: B3:C3:41:2D:3E:75:6B:B9:DA:CE:FC:BA:7B:27:D9:D4:0B:B7:EF:80 Authority key identifier: CE:E3:4F:A3:9F:F2:85:F7:2E:22:9D:A2:86:2B:C1:0E:48:8F:BA:41 Certificate issuer: /CN=A91A9B3E/serialNumber=CEE34FA39FF285F72E229DA2862BC10E488FBA41 Certificate serial: 025D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuNPo5_yhfcuIp2ihivBDkiPukE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9B3E/DAB1C3A68CFB11ED92E25B61C4F9AE02/zuNPo5_yhfcuIp2ihivBDkiPukE.mft Manifest number: 0251 Signing time: Mon 02 Mar 2026 01:11:32 +0000 Manifest this update: Mon 02 Mar 2026 01:11:30 +0000 Manifest next update: Mon 09 Mar 2026 01:11:30 +0000 Files and hashes: 1: zuNPo5_yhfcuIp2ihivBDkiPukE.crl (hash: 3XcSTc9diymGCOnAMoMsAXqQeXBKWxhRFhp5llJ1WHQ=) 2: 819F7A60CF8B11EDAE77B351C4F9AE02.roa (hash: bqrc3GnqSlvctr34CSmLH7pQRmgRC/6jwFegK+dWq/4=) 3: 1AB255C68CFF11EDB7BDD865C4F9AE02.roa (hash: HO3OH/8eL6+bCFfILAtxQnck6D05JchPl7X69tG4qW4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9B3E/DAB1C3A68CFB11ED92E25B61C4F9AE02/zuNPo5_yhfcuIp2ihivBDkiPukE.crl rsync://rpki.apnic.net/member_repository/A91A9B3E/DAB1C3A68CFB11ED92E25B61C4F9AE02/zuNPo5_yhfcuIp2ihivBDkiPukE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuNPo5_yhfcuIp2ihivBDkiPukE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:11:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 605 (0x25d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9B3E, serialNumber=CEE34FA39FF285F72E229DA2862BC10E488FBA41 Validity Not Before: Mar 2 01:11:30 2026 GMT Not After : Mar 9 01:11:30 2026 GMT Subject: CN=69a4e3c3-ff2b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:2b:55:b1:91:21:6d:ee:4e:cb:71:b9:1b:4b: fa:9b:23:44:a0:b3:61:14:70:fc:9a:a1:9a:bb:e7: 1f:24:ad:b4:bc:b2:85:45:3c:8e:f6:63:a5:18:54: b7:ab:fe:af:bd:3d:dd:bf:ab:2e:5a:05:30:32:84: 1a:99:93:a5:09:ed:52:2b:46:ea:7e:ad:2e:12:a2: a1:6b:75:56:78:08:33:4a:4e:d9:5f:37:1e:c4:fe: 05:98:1c:de:69:81:90:1d:1e:bc:54:b7:0b:96:f7: 53:cb:0e:d5:02:81:2e:cd:23:7b:03:63:13:f4:d4: f8:75:a7:cb:27:33:9d:bf:67:1a:b5:c7:f0:60:32: de:18:ee:59:4a:19:1b:83:aa:78:14:7a:97:fa:ed: e8:b8:bc:70:bc:b5:6c:c0:b3:c6:fc:bf:b0:cc:7a: d2:4d:8f:95:42:d5:44:ce:f4:e6:f5:f7:2b:f3:d7: 37:12:dc:3b:46:90:ef:78:53:3e:ea:e1:ac:0d:3c: 7b:1c:e8:30:19:f6:4c:a0:53:97:b4:84:c4:5f:1b: d2:65:c6:77:79:cc:9d:2a:02:6d:27:83:79:67:10: 4f:94:d1:34:b3:e1:55:f5:d1:7f:f6:3e:ae:22:22: 1c:be:14:34:c9:a2:f7:ed:02:60:6b:2b:81:47:18: 08:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:C3:41:2D:3E:75:6B:B9:DA:CE:FC:BA:7B:27:D9:D4:0B:B7:EF:80 X509v3 Authority Key Identifier: keyid:CE:E3:4F:A3:9F:F2:85:F7:2E:22:9D:A2:86:2B:C1:0E:48:8F:BA:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9B3E/DAB1C3A68CFB11ED92E25B61C4F9AE02/zuNPo5_yhfcuIp2ihivBDkiPukE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuNPo5_yhfcuIp2ihivBDkiPukE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9B3E/DAB1C3A68CFB11ED92E25B61C4F9AE02/zuNPo5_yhfcuIp2ihivBDkiPukE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:b3:76:89:b3:da:7a:1f:16:aa:26:ca:f4:6f:96:f7:9c:99: 54:ce:67:02:5f:91:e1:a7:97:49:60:80:7f:1a:de:aa:b4:a8: 54:4f:2f:5b:e3:c6:2c:e8:4c:98:42:22:e7:67:93:06:08:59: e6:ae:dd:ce:9c:77:97:17:46:47:26:af:8a:d3:8d:22:cd:ec: e3:2c:9b:35:ee:90:bf:ff:c4:5d:94:01:f9:ac:57:b4:43:d8: fc:ad:f3:0d:58:4a:5a:d3:66:0d:eb:86:72:42:1c:36:89:b8: 6e:d0:89:bc:50:da:66:b8:93:f1:c6:7b:c2:40:00:ed:00:dd: 87:12:bf:ed:af:18:fb:ca:0f:c4:7c:9a:77:be:16:19:f8:b6: 84:20:1a:87:93:b0:81:c9:0b:da:c5:db:0c:4e:fe:dd:6b:d9: 70:c6:66:67:76:46:d6:0e:07:c7:e2:4c:8d:e1:3d:8f:f1:0c: 0c:74:99:c9:fe:9d:ff:3c:12:a5:71:e4:d3:47:ed:7d:23:0e: 30:bd:28:ad:92:3c:b4:9b:db:6a:4b:36:08:84:12:20:74:66: 87:f9:e7:6b:3e:ae:47:26:2f:34:b1:73:6d:1d:f2:03:d5:2a: f6:96:78:00:26:8f:73:7a:8f:9c:a8:8d:77:8b:73:dc:27:8b: 92:a4:88:3f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAl0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTlCM0UxMTAvBgNVBAUTKENFRTM0RkEzOUZGMjg1RjcyRTIyOURBMjg2MkJDMTBF NDg4RkJBNDEwHhcNMjYwMzAyMDExMTMwWhcNMjYwMzA5MDExMTMwWjAYMRYwFAYD VQQDEw02OWE0ZTNjMy1mZjJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsCtVsZEhbe5Oy3G5G0v6myNEoLNhFHD8mqGau+cfJK20vLKFRTyO9mOlGFS3 q/6vvT3dv6suWgUwMoQamZOlCe1SK0bqfq0uEqKha3VWeAgzSk7ZXzcexP4FmBze aYGQHR68VLcLlvdTyw7VAoEuzSN7A2MT9NT4dafLJzOdv2catcfwYDLeGO5ZShkb g6p4FHqX+u3ouLxwvLVswLPG/L+wzHrSTY+VQtVEzvTm9fcr89c3Etw7RpDveFM+ 6uGsDTx7HOgwGfZMoFOXtITEXxvSZcZ3ecydKgJtJ4N5ZxBPlNE0s+FV9dF/9j6u IiIcvhQ0yaL37QJgayuBRxgI1wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLPDQS0+ dWu52s78unsn2dQLt++AMB8GA1UdIwQYMBaAFM7jT6Of8oX3LiKdooYrwQ5Ij7pB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOUIzRS9EQUIxQzNBNjhD RkIxMUVEOTJFMjVCNjFDNEY5QUUwMi96dU5QbzVfeWhmY3VJcDJpaGl2QkRraVB1 a0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3p1TlBvNV95aGZjdUlwMmloaXZCRGtpUHVrRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OUIzRS9EQUIxQzNBNjhDRkIxMUVEOTJFMjVCNjFDNEY5QUUwMi96dU5QbzVfeWhm Y3VJcDJpaGl2QkRraVB1a0UubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAWrN2ibPaeh8WqibK9G+W95yZVM5nAl+R4aeXSWCAfxreqrSoVE8vW+PGLOhM mEIi52eTBghZ5q7dzpx3lxdGRyavitONIs3s4yybNe6Qv//EXZQB+axXtEPY/K3z DVhKWtNmDeuGckIcNom4btCJvFDaZriT8cZ7wkAA7QDdhxK/7a8Y+8oPxHyad74W Gfi2hCAah5OwgckL2sXbDE7+3WvZcMZmZ3ZG1g4Hx+JMjeE9j/EMDHSZyf6d/zwS pXHk00ftfSMOML0orZI8tJvbaks2CIQSIHRmh/nnaz6uRyYvNLFzbR3yA9Uq9pZ4 ACaPc3qPnKiNd4tz3CeLkqSIPw== -----END CERTIFICATE-----Generated at Mon Mar 2 07:40:17 2026 by rpki-client