$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4D9B/F5BAA3D8C80011EA87D44A78C4F9AE02/z4nWqxHn1Hqhe0MJxypytxy6R64.mft File: z4nWqxHn1Hqhe0MJxypytxy6R64.mft (raw, json) Hash identifier: yf8a3FwPiItL6AQnEL8UOeWnolgkr4o1lKH+AsrcMv8= Subject key identifier: E8:F4:67:88:8A:43:AC:FA:75:D3:16:C3:9C:FF:C4:50:8C:10:AB:21 Authority key identifier: CF:89:D6:AB:11:E7:D4:7A:A1:7B:43:09:C7:2A:72:B7:1C:BA:47:AE Certificate issuer: /CN=A91E4D9B/serialNumber=CF89D6AB11E7D47AA17B4309C72A72B71CBA47AE Certificate serial: 08FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z4nWqxHn1Hqhe0MJxypytxy6R64.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4D9B/F5BAA3D8C80011EA87D44A78C4F9AE02/z4nWqxHn1Hqhe0MJxypytxy6R64.mft Manifest number: 08F1 Signing time: Mon 02 Mar 2026 01:46:16 +0000 Manifest this update: Mon 02 Mar 2026 01:46:14 +0000 Manifest next update: Mon 09 Mar 2026 01:46:14 +0000 Files and hashes: 1: z4nWqxHn1Hqhe0MJxypytxy6R64.crl (hash: U4GE9UBryVOpw7ssjM5LKWUoOxZ/0uIh/lp4BKf6Q4M=) 2: CCF7B8AA22B811ECAD21FB20C4F9AE02.roa (hash: fbNgVaH91F2eFS+HbujhsXeCcZKoS980Yjgt5GelWLU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4D9B/F5BAA3D8C80011EA87D44A78C4F9AE02/z4nWqxHn1Hqhe0MJxypytxy6R64.crl rsync://rpki.apnic.net/member_repository/A91E4D9B/F5BAA3D8C80011EA87D44A78C4F9AE02/z4nWqxHn1Hqhe0MJxypytxy6R64.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z4nWqxHn1Hqhe0MJxypytxy6R64.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:46:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2302 (0x8fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4D9B, serialNumber=CF89D6AB11E7D47AA17B4309C72A72B71CBA47AE Validity Not Before: Mar 2 01:46:14 2026 GMT Not After : Mar 9 01:46:14 2026 GMT Subject: CN=69a4ebe8-d556 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:17:da:4e:cb:2a:ab:3c:f7:ea:dd:9d:d2:2f: fd:05:5a:fc:d3:d3:52:70:a6:23:b7:f8:37:08:0a: c0:a9:7f:bc:49:60:b7:42:22:e6:8a:bc:42:e1:e6: 72:c5:6b:53:67:34:4b:63:21:f5:29:bf:49:51:3d: 31:e6:32:53:5e:b7:da:f4:24:cb:d4:b3:5c:ca:02: ab:c2:e2:c7:38:12:01:29:76:5a:4e:d9:44:15:08: 2e:58:78:b7:ca:63:0d:96:b6:c4:f8:b0:f0:f2:f4: 02:7f:77:1d:bd:2f:9c:6f:5f:c9:34:3c:fa:88:b4: 66:65:c3:3a:cc:73:d7:7d:73:89:17:2d:00:27:d0: 3e:30:49:bb:c4:d2:4a:9b:4a:f4:0a:51:05:d2:7d: 5c:e5:2d:9a:f4:ab:d4:02:2c:f0:b9:15:7c:51:0c: eb:ba:81:33:0e:01:c5:49:52:50:a8:7c:35:de:e5: a8:b3:55:83:e3:5b:b5:f8:d6:19:da:51:0f:1a:8d: d7:42:09:2b:1f:6e:96:3a:89:49:35:dd:04:a9:19: 56:55:4d:33:6b:b2:4a:09:ef:77:a9:79:9f:a4:47: 18:e6:e1:26:1f:8f:a2:e1:e1:23:29:32:65:0a:4c: d8:a8:08:f5:3b:42:37:98:bb:ad:80:26:b2:83:9a: a0:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:F4:67:88:8A:43:AC:FA:75:D3:16:C3:9C:FF:C4:50:8C:10:AB:21 X509v3 Authority Key Identifier: keyid:CF:89:D6:AB:11:E7:D4:7A:A1:7B:43:09:C7:2A:72:B7:1C:BA:47:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4D9B/F5BAA3D8C80011EA87D44A78C4F9AE02/z4nWqxHn1Hqhe0MJxypytxy6R64.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z4nWqxHn1Hqhe0MJxypytxy6R64.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4D9B/F5BAA3D8C80011EA87D44A78C4F9AE02/z4nWqxHn1Hqhe0MJxypytxy6R64.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:9a:f7:0a:a7:85:ab:23:34:38:09:e1:0b:f6:b0:b5:80:36: 40:06:46:3e:39:03:15:27:79:79:f2:4a:b1:5e:5e:9e:e8:b3: 37:00:ab:5e:0a:10:e2:ac:40:ad:46:66:42:7c:9f:77:70:0d: a8:54:c9:ef:dd:3d:c1:14:0b:4e:de:8d:bc:60:40:e5:4d:7f: 0f:b7:c9:39:4a:1e:21:54:80:35:a0:92:76:8a:45:d1:49:01: 58:d0:bb:55:7c:0b:3b:b4:6a:f6:77:1c:39:ee:82:25:c5:d2: fa:1e:a1:74:02:e7:b4:4d:4c:0b:3e:c8:f6:68:cf:e0:40:3c: a3:53:3a:30:df:34:65:a2:24:86:8b:e1:42:e4:13:e0:03:56: 7d:09:ce:15:ce:87:c5:75:65:d2:b9:1b:09:04:bb:cf:f3:a7: 5d:d3:e4:6a:54:47:53:ed:5e:8d:a8:4a:ea:42:74:7f:90:a2: f4:d8:2b:68:e1:ce:3d:23:ab:66:02:c2:40:5e:71:6c:67:9b: 61:c2:17:d2:33:01:b1:94:72:20:70:9b:68:0f:8b:2e:92:33: d9:1e:c8:6f:d0:05:81:9a:8b:44:c5:98:db:e7:69:ac:88:d3: 03:8b:09:33:07:43:da:a8:7f:ef:d8:d2:2f:2f:a9:e5:37:14: 37:99:1f:b1 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCP4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTREOUIxMTAvBgNVBAUTKENGODlENkFCMTFFN0Q0N0FBMTdCNDMwOUM3MkE3MkI3 MUNCQTQ3QUUwHhcNMjYwMzAyMDE0NjE0WhcNMjYwMzA5MDE0NjE0WjAYMRYwFAYD VQQDEw02OWE0ZWJlOC1kNTU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApxfaTssqqzz36t2d0i/9BVr809NScKYjt/g3CArAqX+8SWC3QiLmirxC4eZy xWtTZzRLYyH1Kb9JUT0x5jJTXrfa9CTL1LNcygKrwuLHOBIBKXZaTtlEFQguWHi3 ymMNlrbE+LDw8vQCf3cdvS+cb1/JNDz6iLRmZcM6zHPXfXOJFy0AJ9A+MEm7xNJK m0r0ClEF0n1c5S2a9KvUAizwuRV8UQzruoEzDgHFSVJQqHw13uWos1WD41u1+NYZ 2lEPGo3XQgkrH26WOolJNd0EqRlWVU0za7JKCe93qXmfpEcY5uEmH4+i4eEjKTJl CkzYqAj1O0I3mLutgCayg5qg1QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOj0Z4iK Q6z6ddMWw5z/xFCMEKshMB8GA1UdIwQYMBaAFM+J1qsR59R6oXtDCccqcrccukeu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEQ5Qi9GNUJBQTNEOEM4 MDAxMUVBODdENDRBNzhDNEY5QUUwMi96NG5XcXhIbjFIcWhlME1KeHlweXR4eTZS NjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3o0bldxeEhuMUhxaGUwTUp4eXB5dHh5NlI2NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NEQ5Qi9GNUJBQTNEOEM4MDAxMUVBODdENDRBNzhDNEY5QUUwMi96NG5XcXhIbjFI cWhlME1KeHlweXR4eTZSNjQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAsZr3CqeFqyM0OAnhC/awtYA2QAZGPjkDFSd5efJKsV5enuizNwCrXgoQ4qxA rUZmQnyfd3ANqFTJ7909wRQLTt6NvGBA5U1/D7fJOUoeIVSANaCSdopF0UkBWNC7 VXwLO7Rq9nccOe6CJcXS+h6hdALntE1MCz7I9mjP4EA8o1M6MN80ZaIkhovhQuQT 4ANWfQnOFc6HxXVl0rkbCQS7z/OnXdPkalRHU+1ejahK6kJ0f5Ci9NgraOHOPSOr ZgLCQF5xbGebYcIX0jMBsZRyIHCbaA+LLpIz2R7Ib9AFgZqLRMWY2+dprIjTA4sJ MwdD2qh/79jSLy+p5TcUN5kfsQ== -----END CERTIFICATE-----Generated at Mon Mar 2 20:58:06 2026 by rpki-client