$ rpki-client -vvf rpki.apnic.net/member_repository/A91EFC94/A8CD016494DA11EF89086D21C4F9AE02/ZTy4p1ENubbBon2HfSEh5t9CGYI.mft File: ZTy4p1ENubbBon2HfSEh5t9CGYI.mft (raw, json) Hash identifier: 6fbBNe5LF+b3QDpgG/AjLzAWMuvnV8e9JirB+zZRjXg= Subject key identifier: 11:DC:B9:AF:0F:47:7D:3F:2D:B6:CA:52:50:59:0D:32:1C:81:43:42 Authority key identifier: 65:3C:B8:A7:51:0D:B9:B6:C1:A2:7D:87:7D:21:21:E6:DF:42:19:82 Certificate issuer: /CN=A91EFC94/serialNumber=653CB8A7510DB9B6C1A27D877D2121E6DF421982 Certificate serial: 0121 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ZTy4p1ENubbBon2HfSEh5t9CGYI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EFC94/A8CD016494DA11EF89086D21C4F9AE02/ZTy4p1ENubbBon2HfSEh5t9CGYI.mft Manifest number: 0111 Signing time: Sun 01 Mar 2026 07:16:28 +0000 Manifest this update: Sun 01 Mar 2026 07:16:28 +0000 Manifest next update: Sun 08 Mar 2026 07:16:28 +0000 Files and hashes: 1: ZTy4p1ENubbBon2HfSEh5t9CGYI.crl (hash: Gc73neY8tIDmcrM1F2s+1+2UJYc8p4JLRQQBqzgpzGQ=) 2: 6B7CC19C73B811F08DDFF784C4F9AE02.roa (hash: n+54z7fslNXJ7in5uQGFK69nm0/AotBzwzG1jXO7P88=) 3: 5462D9FECF7C11F099CF1F43C4F9AE02.roa (hash: 004AtrOuTefMPuXTTWiollgx+cVpx+/Sf/ZzYxXYME8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EFC94/A8CD016494DA11EF89086D21C4F9AE02/ZTy4p1ENubbBon2HfSEh5t9CGYI.crl rsync://rpki.apnic.net/member_repository/A91EFC94/A8CD016494DA11EF89086D21C4F9AE02/ZTy4p1ENubbBon2HfSEh5t9CGYI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ZTy4p1ENubbBon2HfSEh5t9CGYI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 07:16:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 289 (0x121) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EFC94, serialNumber=653CB8A7510DB9B6C1A27D877D2121E6DF421982 Validity Not Before: Mar 1 07:16:28 2026 GMT Not After : Mar 8 07:16:28 2026 GMT Subject: CN=69a3e7cc-d331 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:92:65:6e:0f:63:7d:15:9c:a6:e2:e4:83:49: 66:1b:ba:18:b0:8f:e3:61:a2:7f:8d:fe:c0:69:b7: 1e:02:8c:d4:c6:11:88:63:fe:18:8e:16:e0:b9:7e: 1f:2b:b7:23:a5:b6:87:1b:c3:e7:86:53:27:b4:44: 2a:3c:7f:e3:b2:7c:e3:a2:ff:9b:22:4c:6d:9b:dc: c4:39:cd:53:a3:0c:b1:1e:7b:da:94:29:ea:8b:2a: c4:d9:e5:71:10:41:84:2e:b9:c8:e7:54:a9:d0:54: 72:5d:06:c9:54:ce:f6:a0:c3:7a:e5:64:ca:be:d7: 9e:5f:c0:77:a7:17:d5:ef:dd:ea:4d:5b:8c:de:1c: 63:df:c1:d3:4c:00:41:67:8f:dc:20:7c:3f:4e:71: bb:a6:73:89:2b:ef:9f:a0:cd:77:e9:0e:32:d9:3d: 04:77:2c:d1:61:51:fb:67:65:70:6b:7b:a2:55:53: d8:c7:2f:a9:a7:82:78:60:4f:09:d4:cc:66:ef:f4: eb:57:1f:44:19:f5:c6:d6:88:78:14:ce:93:ef:3e: 4f:48:c5:7e:8e:c2:b9:c9:ad:42:c7:f3:9d:7f:c9: 64:de:28:96:7f:23:f4:c2:42:62:55:79:82:5f:ec: d5:c6:07:ad:d0:b0:32:0a:a9:2a:38:91:08:64:7c: 7d:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:DC:B9:AF:0F:47:7D:3F:2D:B6:CA:52:50:59:0D:32:1C:81:43:42 X509v3 Authority Key Identifier: keyid:65:3C:B8:A7:51:0D:B9:B6:C1:A2:7D:87:7D:21:21:E6:DF:42:19:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EFC94/A8CD016494DA11EF89086D21C4F9AE02/ZTy4p1ENubbBon2HfSEh5t9CGYI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ZTy4p1ENubbBon2HfSEh5t9CGYI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EFC94/A8CD016494DA11EF89086D21C4F9AE02/ZTy4p1ENubbBon2HfSEh5t9CGYI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:fd:d6:cf:64:4a:7a:dc:b0:d6:c8:e8:92:cd:63:d5:d3:c9: 16:6a:02:b1:81:45:3b:70:92:43:09:ce:8f:83:30:91:51:11: 0d:bc:09:c8:90:f6:ef:f9:fa:ce:a8:e5:c9:9c:f5:7c:f4:9d: e0:c4:72:04:db:e2:a0:7a:63:a3:c6:5b:4b:b2:6e:91:f7:81: d1:05:eb:bd:f1:9f:5c:4d:27:a0:ea:0e:25:06:67:2d:c7:b7: 7a:9e:9a:92:65:30:50:1e:14:a8:62:aa:15:af:02:e3:a2:de: f7:ad:f0:e4:00:db:1f:4c:09:1f:1c:7c:c8:e0:28:9f:f8:5f: d9:94:23:c5:02:7c:36:96:7f:0b:d9:5c:24:57:19:5d:21:9b: 82:80:b3:8e:fc:2a:d6:28:4e:14:2f:c9:e3:ab:33:26:f4:b0: b1:34:11:0e:30:e2:4a:f9:22:8c:7c:90:97:5b:ac:5f:8e:8c: 71:a5:7c:08:9d:b8:d7:8b:25:8a:48:72:89:d9:50:15:bb:65: 32:a9:aa:9e:8a:aa:eb:ad:f9:39:1e:ba:ff:c9:60:f5:25:fb: 99:cf:e1:a5:f3:e6:d2:87:ca:17:33:e3:23:07:26:20:e7:1f: 68:9f:21:b7:8b:76:1f:ba:eb:04:ea:56:f9:a9:ec:58:6c:7e: 42:a5:af:f7 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICASEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUZDOTQxMTAvBgNVBAUTKDY1M0NCOEE3NTEwREI5QjZDMUEyN0Q4NzdEMjEyMUU2 REY0MjE5ODIwHhcNMjYwMzAxMDcxNjI4WhcNMjYwMzA4MDcxNjI4WjAYMRYwFAYD VQQDEw02OWEzZTdjYy1kMzMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyJJlbg9jfRWcpuLkg0lmG7oYsI/jYaJ/jf7AabceAozUxhGIY/4YjhbguX4f K7cjpbaHG8PnhlMntEQqPH/jsnzjov+bIkxtm9zEOc1TowyxHnvalCnqiyrE2eVx EEGELrnI51Sp0FRyXQbJVM72oMN65WTKvteeX8B3pxfV793qTVuM3hxj38HTTABB Z4/cIHw/TnG7pnOJK++foM136Q4y2T0EdyzRYVH7Z2Vwa3uiVVPYxy+pp4J4YE8J 1Mxm7/TrVx9EGfXG1oh4FM6T7z5PSMV+jsK5ya1Cx/Odf8lk3iiWfyP0wkJiVXmC X+zVxget0LAyCqkqOJEIZHx9tQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBHcua8P R30/LbbKUlBZDTIcgUNCMB8GA1UdIwQYMBaAFGU8uKdRDbm2waJ9h30hIebfQhmC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRkM5NC9BOENEMDE2NDk0 REExMUVGODkwODZEMjFDNEY5QUUwMi9aVHk0cDFFTnViYkJvbjJIZlNFaDV0OUNH WUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1pUeTRwMUVOdWJiQm9uMkhmU0VoNXQ5Q0dZSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RkM5NC9BOENEMDE2NDk0REExMUVGODkwODZEMjFDNEY5QUUwMi9aVHk0cDFFTnVi YkJvbjJIZlNFaDV0OUNHWUkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAm/3Wz2RKetyw1sjoks1j1dPJFmoCsYFFO3CSQwnOj4MwkVERDbwJyJD27/n6 zqjlyZz1fPSd4MRyBNvioHpjo8ZbS7JukfeB0QXrvfGfXE0noOoOJQZnLce3ep6a kmUwUB4UqGKqFa8C46Le963w5ADbH0wJHxx8yOAon/hf2ZQjxQJ8NpZ/C9lcJFcZ XSGbgoCzjvwq1ihOFC/J46szJvSwsTQRDjDiSvkijHyQl1usX46McaV8CJ2414sl ikhyidlQFbtlMqmqnoqq6635OR66/8lg9SX7mc/hpfPm0ofKFzPjIwcmIOcfaJ8h t4t2H7rrBOpW+ansWGx+QqWv9w== -----END CERTIFICATE-----Generated at Mon Mar 2 04:05:36 2026 by rpki-client