$ rpki-client -vvf rpki.apnic.net/member_repository/A91C66B2/C4F15472201611F0A8D74314C4F9AE02/PzH7XY70fa043ZLqGonoiHFAOjE.mft File: PzH7XY70fa043ZLqGonoiHFAOjE.mft (raw, json) Hash identifier: 4Sr/svaACYpcO55n1yt8jVtOjvg2Z9zbU+J+ttW5Kns= Subject key identifier: 2A:08:47:6C:5F:0F:AC:36:B8:14:5E:DE:6F:58:94:7E:56:31:77:7F Authority key identifier: 3F:31:FB:5D:8E:F4:7D:AD:38:DD:92:EA:1A:89:E8:88:71:40:3A:31 Certificate issuer: /CN=A91C66B2/serialNumber=3F31FB5D8EF47DAD38DD92EA1A89E88871403A31 Certificate serial: A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PzH7XY70fa043ZLqGonoiHFAOjE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C66B2/C4F15472201611F0A8D74314C4F9AE02/PzH7XY70fa043ZLqGonoiHFAOjE.mft Manifest number: 9F Signing time: Sun 01 Mar 2026 08:35:30 +0000 Manifest this update: Sun 01 Mar 2026 08:35:29 +0000 Manifest next update: Sun 08 Mar 2026 08:35:29 +0000 Files and hashes: 1: PzH7XY70fa043ZLqGonoiHFAOjE.crl (hash: MugwWMnHBVj9BFFRHBtP+n6WCRskDIRx8oGQqqkghms=) 2: F8C50B08201711F0A5D51F16C4F9AE02.roa (hash: 0V0IRbzifSTjNSAVOPWTTktiswJ9KarZ5qkmJcePTMA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C66B2/C4F15472201611F0A8D74314C4F9AE02/PzH7XY70fa043ZLqGonoiHFAOjE.crl rsync://rpki.apnic.net/member_repository/A91C66B2/C4F15472201611F0A8D74314C4F9AE02/PzH7XY70fa043ZLqGonoiHFAOjE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PzH7XY70fa043ZLqGonoiHFAOjE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 08:35:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 161 (0xa1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C66B2, serialNumber=3F31FB5D8EF47DAD38DD92EA1A89E88871403A31 Validity Not Before: Mar 1 08:35:29 2026 GMT Not After : Mar 8 08:35:29 2026 GMT Subject: CN=69a3fa52-823a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:82:dd:f9:f5:d6:1c:74:e2:c7:f2:32:95:bb: 58:ce:35:8c:1c:65:02:23:6c:cc:9b:ef:97:68:37: 20:4a:05:84:06:6e:75:00:0b:07:51:5e:27:ec:2b: 06:ad:ae:1c:4f:c8:00:02:c8:c6:f6:31:3b:88:6d: fe:15:09:87:92:56:f6:dc:37:ec:2e:f6:68:3f:e8: ee:90:d6:32:a7:5c:ca:62:a3:46:de:8f:67:79:00: 1c:a2:b9:1d:4d:44:69:5e:f0:bc:6b:d3:17:c0:07: 83:6c:db:e5:0e:51:f2:52:3e:f4:57:d5:9c:7d:6b: 09:80:6c:ae:59:09:a8:9b:7d:a1:dc:18:85:8e:23: 26:9a:cc:a0:d4:b9:51:45:44:ef:a6:10:cb:bb:b2: 5e:03:47:25:95:a6:d0:87:7f:75:77:ee:b3:8d:9f: e6:1d:2a:a8:49:4d:5d:a0:f3:2c:eb:64:d8:21:a3: c8:00:7d:d8:0b:63:7f:2a:c0:6d:e9:ac:1a:f9:f1: d2:12:4d:65:7e:89:66:86:08:dc:10:fb:7c:f7:69: d2:9c:97:c9:b3:15:1a:57:fd:e3:81:39:12:6c:dd: aa:2b:9e:3e:aa:66:df:a4:47:a3:3a:55:c7:8a:b9: ac:ea:8b:cd:40:ac:7a:ef:9f:33:cc:fb:51:bd:78: e3:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:08:47:6C:5F:0F:AC:36:B8:14:5E:DE:6F:58:94:7E:56:31:77:7F X509v3 Authority Key Identifier: keyid:3F:31:FB:5D:8E:F4:7D:AD:38:DD:92:EA:1A:89:E8:88:71:40:3A:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C66B2/C4F15472201611F0A8D74314C4F9AE02/PzH7XY70fa043ZLqGonoiHFAOjE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PzH7XY70fa043ZLqGonoiHFAOjE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C66B2/C4F15472201611F0A8D74314C4F9AE02/PzH7XY70fa043ZLqGonoiHFAOjE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:47:ce:a0:09:ab:8c:ce:f5:64:ca:04:63:46:92:9e:72:ba: c3:b5:fa:53:cf:81:c8:d6:60:70:6a:88:27:0e:73:de:55:bf: 8b:b2:45:dd:99:ce:32:0f:93:d0:c2:a2:11:f5:fd:12:ee:39: 0a:98:ea:e0:f2:c9:47:4b:e5:97:4b:a7:1f:42:37:aa:78:2e: 8e:fa:6b:99:7f:2c:8f:a9:6a:32:c0:10:ff:1f:9a:cc:bc:4c: ce:5c:d5:31:53:fe:c8:c2:ea:9c:e7:49:80:97:9c:20:b8:a1: 05:67:9d:f8:ff:6d:31:29:80:46:c0:45:ee:25:a2:fd:3d:26: ae:c0:e2:1b:c5:18:19:e5:c1:77:72:37:98:35:57:9f:11:29: ff:a4:ad:3d:23:6f:10:0b:f9:cc:cb:ee:b8:e5:73:df:9e:2b: d1:21:5c:c6:b4:eb:05:b8:cb:22:9d:3a:b4:14:8b:d9:98:7d: 54:43:ca:0e:e4:6d:aa:69:73:56:8b:db:fe:fb:91:23:6b:56: 1d:47:82:a6:c8:bc:f2:8c:80:85:72:3c:a3:e8:c9:12:cf:7b: 4f:a7:e0:cf:65:f0:db:69:2a:d2:3c:55:73:99:ee:b2:54:5d: 01:3e:3b:0c:2c:22:7f:5c:ab:55:dc:35:e2:6a:a3:2c:41:e9: e9:07:ac:64 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAKEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzY2QjIxMTAvBgNVBAUTKDNGMzFGQjVEOEVGNDdEQUQzOEREOTJFQTFBODlFODg4 NzE0MDNBMzEwHhcNMjYwMzAxMDgzNTI5WhcNMjYwMzA4MDgzNTI5WjAYMRYwFAYD VQQDEw02OWEzZmE1Mi04MjNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmILd+fXWHHTix/IylbtYzjWMHGUCI2zMm++XaDcgSgWEBm51AAsHUV4n7CsG ra4cT8gAAsjG9jE7iG3+FQmHklb23DfsLvZoP+jukNYyp1zKYqNG3o9neQAcorkd TURpXvC8a9MXwAeDbNvlDlHyUj70V9WcfWsJgGyuWQmom32h3BiFjiMmmsyg1LlR RUTvphDLu7JeA0cllabQh391d+6zjZ/mHSqoSU1doPMs62TYIaPIAH3YC2N/KsBt 6awa+fHSEk1lfolmhgjcEPt892nSnJfJsxUaV/3jgTkSbN2qK54+qmbfpEejOlXH irms6ovNQKx6758zzPtRvXjjewIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCoIR2xf D6w2uBRe3m9YlH5WMXd/MB8GA1UdIwQYMBaAFD8x+12O9H2tON2S6hqJ6IhxQDox MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNjZCMi9DNEYxNTQ3MjIw MTYxMUYwQThENzQzMTRDNEY5QUUwMi9Qekg3WFk3MGZhMDQzWkxxR29ub2lIRkFP akUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1B6SDdYWTcwZmEwNDNaTHFHb25vaUhGQU9qRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NjZCMi9DNEYxNTQ3MjIwMTYxMUYwQThENzQzMTRDNEY5QUUwMi9Qekg3WFk3MGZh MDQzWkxxR29ub2lIRkFPakUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAR0fOoAmrjM71ZMoEY0aSnnK6w7X6U8+ByNZgcGqIJw5z3lW/i7JF3ZnOMg+T 0MKiEfX9Eu45Cpjq4PLJR0vll0unH0I3qngujvprmX8sj6lqMsAQ/x+azLxMzlzV MVP+yMLqnOdJgJecILihBWed+P9tMSmARsBF7iWi/T0mrsDiG8UYGeXBd3I3mDVX nxEp/6StPSNvEAv5zMvuuOVz354r0SFcxrTrBbjLIp06tBSL2Zh9VEPKDuRtqmlz Vovb/vuRI2tWHUeCpsi88oyAhXI8o+jJEs97T6fgz2Xw22kq0jxVc5nuslRdAT47 DCwif1yrVdw14mqjLEHp6QesZA== -----END CERTIFICATE-----Generated at Mon Mar 2 05:59:55 2026 by rpki-client