$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAE63/5E966394CA0911ED81B6F63CC4F9AE02/zHxfJ4CoDTxmayv2kVPyBIS-7nE.mft File: zHxfJ4CoDTxmayv2kVPyBIS-7nE.mft (raw, json) Hash identifier: I9XKyzqTBars9kZqcqNihHZLVPiY4zoOnBlPtsH2E3E= Subject key identifier: C2:4F:9D:00:99:FB:45:E9:E4:B2:3D:BC:29:F3:77:82:2D:D3:80:8E Authority key identifier: CC:7C:5F:27:80:A8:0D:3C:66:6B:2B:F6:91:53:F2:04:84:BE:EE:71 Certificate issuer: /CN=A91AAE63/serialNumber=CC7C5F2780A80D3C666B2BF69153F20484BEEE71 Certificate serial: 022B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zHxfJ4CoDTxmayv2kVPyBIS-7nE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAE63/5E966394CA0911ED81B6F63CC4F9AE02/zHxfJ4CoDTxmayv2kVPyBIS-7nE.mft Manifest number: 0227 Signing time: Mon 02 Mar 2026 00:50:49 +0000 Manifest this update: Mon 02 Mar 2026 00:50:48 +0000 Manifest next update: Mon 09 Mar 2026 00:50:48 +0000 Files and hashes: 1: zHxfJ4CoDTxmayv2kVPyBIS-7nE.crl (hash: ugzfsg+5xFijUR4Wzb6IxlGZMutkhpOVV715eTmoVvA=) 2: 5DCF3814CA0E11ED9251861DC4F9AE02.roa (hash: jvV2Z+fiyEhetDjklhcAMgGtL3vvbGgKgdynXMsgt90=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAE63/5E966394CA0911ED81B6F63CC4F9AE02/zHxfJ4CoDTxmayv2kVPyBIS-7nE.crl rsync://rpki.apnic.net/member_repository/A91AAE63/5E966394CA0911ED81B6F63CC4F9AE02/zHxfJ4CoDTxmayv2kVPyBIS-7nE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zHxfJ4CoDTxmayv2kVPyBIS-7nE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:50:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 555 (0x22b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAE63, serialNumber=CC7C5F2780A80D3C666B2BF69153F20484BEEE71 Validity Not Before: Mar 2 00:50:48 2026 GMT Not After : Mar 9 00:50:48 2026 GMT Subject: CN=69a4dee9-d3a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:69:c4:15:f5:56:e6:2e:bd:d7:38:35:74:15: ab:ac:a7:28:cc:54:59:56:4c:9f:0c:8f:08:5c:0d: a2:6d:ea:59:1c:66:f7:4b:3f:fc:45:56:57:a2:51: f0:2a:db:55:e1:67:42:1d:06:2d:08:fc:93:07:c8: 9e:15:a5:c9:47:ce:64:fb:b3:25:c8:be:4c:f7:27: 40:88:52:4a:7d:80:51:59:1e:0f:fd:ae:93:45:8d: 8a:a1:d8:55:b2:ba:69:d5:bc:78:fd:a9:a3:4f:8e: f3:91:d3:43:a3:38:17:b6:cc:e6:82:29:14:17:45: fa:42:5b:96:b5:bf:54:87:08:d0:0b:2d:d5:a8:aa: 09:a1:da:27:56:8b:da:cd:16:58:92:5a:2a:69:93: b5:74:98:4c:f2:70:3a:93:e3:5a:36:01:9e:91:c0: 43:ac:0f:22:88:ac:4a:8b:fe:e6:1d:5a:e1:39:a5: 01:89:53:47:08:bf:40:41:3d:a8:78:7a:1e:c5:74: d1:70:a5:22:32:3d:29:b3:76:06:ec:03:1c:7e:73: 3b:ea:2d:22:37:37:46:82:7b:52:0f:dd:2d:3d:37: d1:d0:b5:fe:eb:f5:09:88:f9:cf:d0:ab:41:f3:8a: 68:ee:35:21:9c:75:79:47:33:dc:31:39:1f:f1:ba: 69:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:4F:9D:00:99:FB:45:E9:E4:B2:3D:BC:29:F3:77:82:2D:D3:80:8E X509v3 Authority Key Identifier: keyid:CC:7C:5F:27:80:A8:0D:3C:66:6B:2B:F6:91:53:F2:04:84:BE:EE:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAE63/5E966394CA0911ED81B6F63CC4F9AE02/zHxfJ4CoDTxmayv2kVPyBIS-7nE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zHxfJ4CoDTxmayv2kVPyBIS-7nE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAE63/5E966394CA0911ED81B6F63CC4F9AE02/zHxfJ4CoDTxmayv2kVPyBIS-7nE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:47:ca:6f:14:f0:34:9d:81:ff:5a:08:cb:bb:d8:f4:ee:95: a2:10:1c:fb:a5:a9:d4:dc:c9:14:98:fa:0d:00:8b:c3:c9:d5: d1:27:95:f6:81:c1:96:c0:41:fe:50:f0:7d:29:5e:6c:4c:91: 49:c4:85:6c:37:46:ce:d1:5f:ca:2c:e7:9b:bf:81:d3:56:c9: 99:d5:7f:89:58:de:7a:86:d8:59:94:64:29:90:65:e1:82:7d: 03:c0:c0:7d:4e:fd:1a:f0:6d:f9:40:07:d6:44:da:03:aa:5a: 92:2a:a1:9e:7d:e0:d0:5f:cd:d1:89:1c:2c:fe:a0:c5:81:4a: e4:1d:8d:58:fc:fd:88:85:71:5c:91:c8:6a:47:b6:bd:9b:f9: 41:7c:ed:fc:e7:f8:78:55:04:78:6f:4e:50:fb:cf:ab:57:0e: 92:bd:17:45:ba:b4:cb:b3:52:bb:1f:4c:ca:79:e8:ea:90:ea: ba:9c:fb:22:2b:c4:ae:93:ce:84:fe:46:bc:ca:ba:7d:a3:69: 4d:cd:66:6f:e3:9d:6a:e1:6b:6b:9b:d8:66:d7:13:83:2b:e5: 76:d3:4e:03:4f:d8:06:3a:10:b5:4d:4b:61:34:ec:fe:31:83: 72:f6:b5:fd:0a:d2:b3:ad:94:05:23:93:a4:6d:60:25:19:26: 90:f3:b6:01 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAiswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFFNjMxMTAvBgNVBAUTKENDN0M1RjI3ODBBODBEM0M2NjZCMkJGNjkxNTNGMjA0 ODRCRUVFNzEwHhcNMjYwMzAyMDA1MDQ4WhcNMjYwMzA5MDA1MDQ4WjAYMRYwFAYD VQQDEw02OWE0ZGVlOS1kM2E1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAiWnEFfVW5i691zg1dBWrrKcozFRZVkyfDI8IXA2ibepZHGb3Sz/8RVZXolHw KttV4WdCHQYtCPyTB8ieFaXJR85k+7MlyL5M9ydAiFJKfYBRWR4P/a6TRY2KodhV srpp1bx4/amjT47zkdNDozgXtszmgikUF0X6QluWtb9UhwjQCy3VqKoJodonVova zRZYkloqaZO1dJhM8nA6k+NaNgGekcBDrA8iiKxKi/7mHVrhOaUBiVNHCL9AQT2o eHoexXTRcKUiMj0ps3YG7AMcfnM76i0iNzdGgntSD90tPTfR0LX+6/UJiPnP0KtB 84po7jUhnHV5RzPcMTkf8bppMwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMJPnQCZ +0Xp5LI9vCnzd4It04COMB8GA1UdIwQYMBaAFMx8XyeAqA08Zmsr9pFT8gSEvu5x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUU2My81RTk2NjM5NENB MDkxMUVEODFCNkY2M0NDNEY5QUUwMi96SHhmSjRDb0RUeG1heXYya1ZQeUJJUy03 bkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pIeGZKNENvRFR4bWF5djJrVlB5QklTLTduRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUU2My81RTk2NjM5NENBMDkxMUVEODFCNkY2M0NDNEY5QUUwMi96SHhmSjRDb0RU eG1heXYya1ZQeUJJUy03bkUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAKUfKbxTwNJ2B/1oIy7vY9O6VohAc+6Wp1NzJFJj6DQCLw8nV0SeV9oHBlsBB /lDwfSlebEyRScSFbDdGztFfyiznm7+B01bJmdV/iVjeeobYWZRkKZBl4YJ9A8DA fU79GvBt+UAH1kTaA6pakiqhnn3g0F/N0YkcLP6gxYFK5B2NWPz9iIVxXJHIake2 vZv5QXzt/Of4eFUEeG9OUPvPq1cOkr0XRbq0y7NSux9Mynno6pDqupz7IivErpPO hP5GvMq6faNpTc1mb+OdauFra5vYZtcTgyvldtNOA0/YBjoQtU1LYTTs/jGDcva1 /QrSs62UBSOTpG1gJRkmkPO2AQ== -----END CERTIFICATE-----Generated at Mon Mar 2 14:13:31 2026 by rpki-client