$ rpki-client -vvf rpki.apnic.net/member_repository/A91F479C/32BF850E98E411EC937D615CC4F9AE02/MZdALMHUBvlwfS4iBDY7wNE8Apk.mft File: MZdALMHUBvlwfS4iBDY7wNE8Apk.mft (raw, json) Hash identifier: 8f+fmdP/sFNNSBbQja2ZH9tsgBLBihXmuHEBvOL0G9M= Subject key identifier: 07:C4:6F:C8:7B:2A:AF:83:B7:DD:39:48:DD:58:91:15:60:97:28:9D Authority key identifier: 31:97:40:2C:C1:D4:06:F9:70:7D:2E:22:04:36:3B:C0:D1:3C:02:99 Certificate issuer: /CN=A91F479C/serialNumber=3197402CC1D406F9707D2E2204363BC0D13C0299 Certificate serial: 0430 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MZdALMHUBvlwfS4iBDY7wNE8Apk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F479C/32BF850E98E411EC937D615CC4F9AE02/MZdALMHUBvlwfS4iBDY7wNE8Apk.mft Manifest number: 042C Signing time: Sun 01 Mar 2026 01:05:19 +0000 Manifest this update: Sun 01 Mar 2026 01:05:18 +0000 Manifest next update: Sun 08 Mar 2026 01:05:18 +0000 Files and hashes: 1: MZdALMHUBvlwfS4iBDY7wNE8Apk.crl (hash: ktCmjWjMoFk88LygW7X7EzPnlHxVjwcQv0uh/M0xDBI=) 2: 751D2C1A98E611EC849D155FC4F9AE02.roa (hash: CkImo8IsUmsaya0jHXM103+CNWFzYVltZI4TafvBrlE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F479C/32BF850E98E411EC937D615CC4F9AE02/MZdALMHUBvlwfS4iBDY7wNE8Apk.crl rsync://rpki.apnic.net/member_repository/A91F479C/32BF850E98E411EC937D615CC4F9AE02/MZdALMHUBvlwfS4iBDY7wNE8Apk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MZdALMHUBvlwfS4iBDY7wNE8Apk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 01:05:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1072 (0x430) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F479C, serialNumber=3197402CC1D406F9707D2E2204363BC0D13C0299 Validity Not Before: Mar 1 01:05:18 2026 GMT Not After : Mar 8 01:05:18 2026 GMT Subject: CN=69a390cf-0010 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:0a:5e:a5:4e:1c:b5:ab:25:bd:22:52:21:1d: a5:49:a7:d3:14:33:61:13:aa:96:07:f4:71:f5:c2: 24:16:b6:9a:cb:f8:a2:67:0c:4a:97:c3:a4:8c:f8: 58:54:2c:8c:b0:6d:57:c3:37:93:1c:b4:24:cc:37: 3e:17:cb:c1:13:e1:4d:0e:8f:ef:51:8e:7b:b4:6a: 95:ba:a8:9a:53:fa:da:a7:a7:b8:94:60:15:34:e4: 2c:f7:b7:48:25:66:cd:37:c8:a6:cf:88:75:fb:e7: 1e:86:18:bd:c7:62:5b:13:be:e6:4a:5f:dd:fe:67: 24:59:f4:a0:ea:bf:3e:10:42:c3:a2:1a:91:e2:a9: e7:44:7b:cf:c5:f4:f0:e2:91:ee:3e:b1:55:f5:77: 2e:a0:a6:81:e3:d8:a0:2f:28:48:d8:9b:cb:4b:16: e1:39:96:b8:6a:55:01:15:b5:dd:e5:c2:b6:45:fb: f6:e7:5e:73:91:7f:3f:66:30:1f:78:4e:f1:0f:2a: 74:84:cf:ce:76:cc:4a:82:9c:28:40:00:02:43:2f: d1:a9:71:15:74:80:14:a8:65:f5:b4:28:2e:b2:66: 3c:f8:ea:04:76:2c:4b:e6:1f:da:b1:81:c8:15:19: 90:ac:36:e9:6c:de:1c:d8:e3:df:56:54:4c:75:3e: ba:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:C4:6F:C8:7B:2A:AF:83:B7:DD:39:48:DD:58:91:15:60:97:28:9D X509v3 Authority Key Identifier: keyid:31:97:40:2C:C1:D4:06:F9:70:7D:2E:22:04:36:3B:C0:D1:3C:02:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F479C/32BF850E98E411EC937D615CC4F9AE02/MZdALMHUBvlwfS4iBDY7wNE8Apk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MZdALMHUBvlwfS4iBDY7wNE8Apk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F479C/32BF850E98E411EC937D615CC4F9AE02/MZdALMHUBvlwfS4iBDY7wNE8Apk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:16:c9:77:4d:4a:58:37:e8:be:2a:2f:1d:51:62:a2:f4:ad: e7:fe:8e:6d:2e:8a:58:26:e2:d0:29:53:5d:5e:9b:c4:57:50: 74:0f:ec:9d:0e:dd:d8:a1:86:62:39:8a:94:85:64:14:d7:1d: 96:77:1c:5f:b6:42:ce:96:f4:db:64:f7:3e:23:ba:d6:40:54: 42:93:28:fd:fe:68:09:00:12:ba:7d:9e:cb:0e:b3:07:73:be: bc:11:aa:62:59:fd:0d:0f:a5:bc:1d:94:4f:72:bb:59:85:92: 31:20:f4:4c:53:76:32:54:12:ec:26:da:8c:96:65:b8:96:19: f2:84:cc:08:33:47:37:42:11:d7:ee:68:f2:30:b1:f8:99:6d: 65:7e:e3:e2:b1:a0:bc:80:27:02:83:fc:ff:68:e5:aa:22:a8: a8:46:9b:56:97:a5:3a:08:5f:b3:eb:17:2c:42:2f:fa:af:5b: f6:91:5c:63:10:4b:0a:e5:3e:fa:50:cb:d5:a9:ea:74:36:85: c9:5a:f8:68:24:5f:a2:57:ac:7d:af:22:ed:50:00:65:29:2e: be:b1:50:e2:a1:df:62:1e:ea:ef:d4:17:66:83:5d:70:09:3d: 94:98:aa:2f:49:9d:15:4b:4e:3d:59:f8:a9:41:b8:fe:6c:98: e9:c8:89:5b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBDAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjQ3OUMxMTAvBgNVBAUTKDMxOTc0MDJDQzFENDA2Rjk3MDdEMkUyMjA0MzYzQkMw RDEzQzAyOTkwHhcNMjYwMzAxMDEwNTE4WhcNMjYwMzA4MDEwNTE4WjAYMRYwFAYD VQQDDA02OWEzOTBjZi0wMDEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtgpepU4ctaslvSJSIR2lSafTFDNhE6qWB/Rx9cIkFraay/iiZwxKl8OkjPhY VCyMsG1XwzeTHLQkzDc+F8vBE+FNDo/vUY57tGqVuqiaU/rap6e4lGAVNOQs97dI JWbNN8imz4h1++cehhi9x2JbE77mSl/d/mckWfSg6r8+EELDohqR4qnnRHvPxfTw 4pHuPrFV9XcuoKaB49igLyhI2JvLSxbhOZa4alUBFbXd5cK2Rfv2515zkX8/ZjAf eE7xDyp0hM/OdsxKgpwoQAACQy/RqXEVdIAUqGX1tCgusmY8+OoEdixL5h/asYHI FRmQrDbpbN4c2OPfVlRMdT66hQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAfEb8h7 Kq+Dt905SN1YkRVglyidMB8GA1UdIwQYMBaAFDGXQCzB1Ab5cH0uIgQ2O8DRPAKZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNDc5Qy8zMkJGODUwRTk4 RTQxMUVDOTM3RDYxNUNDNEY5QUUwMi9NWmRBTE1IVUJ2bHdmUzRpQkRZN3dORThB cGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01aZEFMTUhVQnZsd2ZTNGlCRFk3d05FOEFway5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NDc5Qy8zMkJGODUwRTk4RTQxMUVDOTM3RDYxNUNDNEY5QUUwMi9NWmRBTE1IVUJ2 bHdmUzRpQkRZN3dORThBcGsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAghbJd01KWDfoviovHVFiovSt5/6ObS6KWCbi0ClTXV6bxFdQdA/snQ7d2KGG YjmKlIVkFNcdlnccX7ZCzpb022T3PiO61kBUQpMo/f5oCQASun2eyw6zB3O+vBGq Yln9DQ+lvB2UT3K7WYWSMSD0TFN2MlQS7CbajJZluJYZ8oTMCDNHN0IR1+5o8jCx +JltZX7j4rGgvIAnAoP8/2jlqiKoqEabVpelOghfs+sXLEIv+q9b9pFcYxBLCuU+ +lDL1anqdDaFyVr4aCRfolesfa8i7VAAZSkuvrFQ4qHfYh7q79QXZoNdcAk9lJiq L0mdFUtOPVn4qUG4/myY6ciJWw== -----END CERTIFICATE-----Generated at Sun Mar 1 20:28:46 2026 by rpki-client