$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.mft File: ZKZlgWrv7XOzB1AH2lM3rH3sS4E.mft (raw, json) Hash identifier: E4PPdon1vB5SedWv2rfaRHVjY2V+hlKGeACwSm484F4= Subject key identifier: 0E:CF:89:A7:D1:D8:1E:76:34:7E:AE:92:D0:B0:30:5A:28:85:FB:97 Authority key identifier: 64:A6:65:81:6A:EF:ED:73:B3:07:50:07:DA:53:37:AC:7D:EC:4B:81 Certificate issuer: /CN=A91E6D5D/serialNumber=64A665816AEFED73B3075007DA5337AC7DEC4B81 Certificate serial: 1B7B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.mft Manifest number: A17B Signing time: Mon 02 Mar 2026 02:53:54 +0000 Manifest this update: Mon 02 Mar 2026 02:53:51 +0000 Manifest next update: Mon 09 Mar 2026 02:53:51 +0000 Files and hashes: 1: ZKZlgWrv7XOzB1AH2lM3rH3sS4E.crl (hash: hmoA4sGAQcuEs0+T7PLHRRBYvwGVNYxd/kRgEI3Gzww=) 2: 0B24875C7A4411EB804B7430C4F9AE02.roa (hash: osQkwEsqJzh/lJgX1bFEAnSjXXsbhPdC6B6G6iIzx8k=) 3: 20C6F2EC699D11EAA33EAE83C4F9AE02.roa (hash: pJMsFDa2IiscUlM6zrzKfc9Qr8s1FCM7+jFA2I77lGg=) 4: 1BF3A43C15BE11EF93ABFD7DC4F9AE02.roa (hash: 8tQmMu2ovFLLXUgOys2Ll3oQj84jqx+i81WP9ngVP5Y=) 5: 959AC422557911EBBD21EB2FC4F9AE02.roa (hash: 7D5czzXP+//E4+RhWIwHXv8l2H+/7gFJiEyQmF6T8lg=) 6: 4FF339D8F01D11EB8C4B505BC4F9AE02.roa (hash: SAu8SeifBHI2Yg+q3E52ilKEI2hUMKhgaDda7iU0waw=) 7: C89FD6DA557611EBA04C290BC4F9AE02.roa (hash: mWydfb3LjFkHvOgQ8AUkwmK5kNuLziloyL91HhtrlOQ=) 8: 3D68F8C29A4A11EA94706012C4F9AE02.roa (hash: M3JbVNWqPaa0MJB5ijlSnoeyDvUuuhEmsmhTjsqGYko=) 9: FC6A19D892D511EC8FBFF32AC4F9AE02.roa (hash: a35oot87/R1elnaG5CRh7EvhVyWIL49AoJbo2/zx3s0=) 10: 9907DC46D4BC11EF9BDDAF2EC4F9AE02.roa (hash: S4nPh4zTGC2QdGuAUvATaghlQaT7UNDUq/9SQDT9igE=) 11: 191363A69DD911EC99D91668C4F9AE02.roa (hash: PkqCDNqOzvSAwmBBvGeKvAqx6KBFKBuFLlJLqk6v1i0=) 12: ACC8833824DE11EDAEC0E529C4F9AE02.roa (hash: VvIC3+qoyWVc5/YarSMXpqG6dgPJwiuodUj66R2QE3E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.crl rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:53:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7035 (0x1b7b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6D5D, serialNumber=64A665816AEFED73B3075007DA5337AC7DEC4B81 Validity Not Before: Mar 2 02:53:51 2026 GMT Not After : Mar 9 02:53:51 2026 GMT Subject: CN=69a4fbc2-e762 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:c6:26:dc:12:9b:0e:c7:b0:00:57:31:66:13: f3:30:5b:c8:9e:23:14:1f:d4:cd:5e:c9:50:4b:08: b4:c8:12:58:44:08:86:af:ef:1f:32:44:01:e6:c0: f8:32:be:e8:ab:1b:9a:b0:38:57:e4:72:8d:4d:fd: a2:9c:85:9a:42:34:06:45:22:29:76:85:2d:35:a6: 35:39:1d:a9:89:e5:5d:fb:b7:aa:57:cc:e5:a4:3e: 18:6e:77:d7:52:7e:78:78:3e:33:9e:73:e7:51:49: ef:d4:6a:01:f6:69:7b:d8:4f:39:da:34:b4:5a:78: 43:46:5c:b5:48:ee:a7:34:a6:3f:22:35:c6:8e:34: 11:ee:c3:3f:9b:c7:59:0d:14:de:3b:13:7d:11:0e: c8:77:be:60:e9:4f:cd:68:34:c6:a8:73:59:89:94: 34:3a:0f:5f:9b:46:cc:81:9a:14:ca:14:23:80:9a: 3b:76:df:d5:4c:36:c3:a9:9a:bb:6a:48:f4:8f:24: c5:0c:a0:43:14:e1:75:ce:ba:f7:c5:0a:f6:a8:eb: b1:d8:c5:c7:92:0c:5a:41:22:c8:16:a3:e7:04:a9: c3:c9:6d:3d:7c:f5:14:40:90:17:90:0e:a9:bd:b1: bc:f2:d9:17:7d:6b:2e:03:31:5e:06:23:bd:2d:d6: f8:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:CF:89:A7:D1:D8:1E:76:34:7E:AE:92:D0:B0:30:5A:28:85:FB:97 X509v3 Authority Key Identifier: keyid:64:A6:65:81:6A:EF:ED:73:B3:07:50:07:DA:53:37:AC:7D:EC:4B:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:a9:ea:51:08:2f:96:5e:4f:b0:f3:e0:a7:8e:66:fa:d9:0c: 5d:4e:9d:1c:04:c7:cd:20:72:33:19:3f:14:6d:f9:81:f9:88: 2f:5e:be:66:9b:08:6b:96:57:1a:50:e4:58:07:89:ac:e7:20: 53:d6:47:e4:84:f3:e6:70:a7:e0:ae:74:57:8d:96:27:06:b8: 97:48:3b:43:d9:54:b0:3e:21:48:87:cc:9c:63:da:39:e0:cd: db:e6:40:ef:14:80:b9:5d:a9:0b:7b:35:75:dc:ff:46:c8:bc: a6:f1:7f:cd:52:40:79:32:9b:96:21:57:67:5f:07:ca:a1:60: ef:c6:4c:6b:8d:1a:d8:4d:57:cb:ea:1d:27:e4:12:8d:36:18: ab:2e:9f:26:53:cf:f9:6e:b1:99:77:f5:ae:62:50:1f:74:65: 02:d7:9b:59:37:a9:bb:0d:9d:48:91:bc:6c:28:f1:34:46:a9: fc:93:1c:8f:44:61:14:27:a7:55:8a:67:33:86:bc:a8:2e:f1: 2f:ae:f2:10:63:4b:38:05:59:e2:40:44:81:a9:6a:54:2a:f0: ec:68:33:05:73:56:88:9b:a7:e8:0a:e1:eb:fc:a3:4a:c4:7b: df:80:e8:df:d9:53:92:0f:50:61:4f:37:8e:2b:89:fa:64:8c: 70:41:e7:99 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICG3swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTZENUQxMTAvBgNVBAUTKDY0QTY2NTgxNkFFRkVENzNCMzA3NTAwN0RBNTMzN0FD N0RFQzRCODEwHhcNMjYwMzAyMDI1MzUxWhcNMjYwMzA5MDI1MzUxWjAYMRYwFAYD VQQDEw02OWE0ZmJjMi1lNzYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn8Ym3BKbDsewAFcxZhPzMFvIniMUH9TNXslQSwi0yBJYRAiGr+8fMkQB5sD4 Mr7oqxuasDhX5HKNTf2inIWaQjQGRSIpdoUtNaY1OR2pieVd+7eqV8zlpD4YbnfX Un54eD4znnPnUUnv1GoB9ml72E852jS0WnhDRly1SO6nNKY/IjXGjjQR7sM/m8dZ DRTeOxN9EQ7Id75g6U/NaDTGqHNZiZQ0Og9fm0bMgZoUyhQjgJo7dt/VTDbDqZq7 akj0jyTFDKBDFOF1zrr3xQr2qOux2MXHkgxaQSLIFqPnBKnDyW09fPUUQJAXkA6p vbG88tkXfWsuAzFeBiO9Ldb47QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFA7PiafR 2B52NH6uktCwMFoohfuXMB8GA1UdIwQYMBaAFGSmZYFq7+1zswdQB9pTN6x97EuB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNkQ1RC85RENCNjhFMDFE ODgxMUUyOTRCOTU1RTEwOEIwMkNEMi9aS1psZ1dydjdYT3pCMUFIMmxNM3JIM3NT NEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pLWmxnV3J2N1hPekIxQUgybE0zckgzc1M0RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NkQ1RC85RENCNjhFMDFEODgxMUUyOTRCOTU1RTEwOEIwMkNEMi9aS1psZ1dydjdY T3pCMUFIMmxNM3JIM3NTNEUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAs6nqUQgvll5PsPPgp45m+tkMXU6dHATHzSByMxk/FG35gfmIL16+ZpsIa5ZX GlDkWAeJrOcgU9ZH5ITz5nCn4K50V42WJwa4l0g7Q9lUsD4hSIfMnGPaOeDN2+ZA 7xSAuV2pC3s1ddz/Rsi8pvF/zVJAeTKbliFXZ18HyqFg78ZMa40a2E1Xy+odJ+QS jTYYqy6fJlPP+W6xmXf1rmJQH3RlAtebWTepuw2dSJG8bCjxNEap/JMcj0RhFCen VYpnM4a8qC7xL67yEGNLOAVZ4kBEgalqVCrw7GgzBXNWiJun6Arh6/yjSsR734Do 39lTkg9QYU83jiuJ+mSMcEHnmQ== -----END CERTIFICATE-----Generated at Mon Mar 2 12:24:34 2026 by rpki-client