$ rpki-client -vvf rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.mft File: zFkhdtiMQj-IWbUYtq0zT_92dAk.mft (raw, json) Hash identifier: ewAvn7x3iR/Uigk7uoCcfE0/aP1hkc0FeRfiQSWKNBM= Subject key identifier: 03:7F:85:2B:AC:4C:62:4E:35:DD:F3:F9:F1:19:81:94:A6:60:9E:6D Authority key identifier: CC:59:21:76:D8:8C:42:3F:88:59:B5:18:B6:AD:33:4F:FF:76:74:09 Certificate issuer: /CN=A91F67BB/serialNumber=CC592176D88C423F8859B518B6AD334FFF767409 Certificate serial: 11F7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zFkhdtiMQj-IWbUYtq0zT_92dAk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.mft Manifest number: 11BC Signing time: Sun 01 Mar 2026 23:55:08 +0000 Manifest this update: Sun 01 Mar 2026 23:55:05 +0000 Manifest next update: Sun 08 Mar 2026 23:55:05 +0000 Files and hashes: 1: zFkhdtiMQj-IWbUYtq0zT_92dAk.crl (hash: GhyVAzPTv0Yi/opMKFnbuykqjfnilNV4V125QZhTlwc=) 2: 5488F6EA0F1A11E9B3F2A713C4F9AE02.roa (hash: 6R3WrQlkwYdoSKIA9m9L9kSxThcr/NMUZ6ZAaENWcLk=) 3: 23A0D39C0F1D11E991F4271EC4F9AE02.roa (hash: tb6d2POyVxQvEjZTCt8zzCzL5T0dHc+hRl47vzKiwro=) 4: 53BDA2F60F1A11E9B3F2A713C4F9AE02.roa (hash: 8sR59Lp6fQc79JgAgqC1t1+yUKy4/xiWteMrpfGnLFs=) 5: 552292460F1A11E9B3F2A713C4F9AE02.roa (hash: 6bJMavZFRpkLHiVk166wivPVWZcYiFXj4dWo/IpNl7w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.crl rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zFkhdtiMQj-IWbUYtq0zT_92dAk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:55:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4599 (0x11f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F67BB, serialNumber=CC592176D88C423F8859B518B6AD334FFF767409 Validity Not Before: Mar 1 23:55:05 2026 GMT Not After : Mar 8 23:55:05 2026 GMT Subject: CN=69a4d1dc-bc78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:d5:f1:c4:98:f2:0f:e0:46:f1:1a:41:21:4f: b7:f7:50:73:77:c5:6b:77:cc:32:55:f2:30:37:c9: 4b:b9:5b:06:76:09:99:c8:b5:85:60:fd:5c:c9:f2: 1a:38:c4:c9:41:08:b2:6c:a9:e4:da:1d:6a:2f:5b: a0:66:bd:68:7a:d6:5b:b0:d3:a8:75:21:41:60:da: 12:1c:f1:0a:eb:96:38:86:11:6a:3e:a0:89:d9:d0: 51:f1:2b:c7:66:d4:40:46:03:47:e9:f0:9b:53:df: 2c:e3:a5:39:1e:86:b2:de:37:2a:f9:c6:00:cb:ea: 41:46:48:f8:af:58:03:29:d7:1e:8a:9e:d3:09:86: db:4d:19:9d:5e:1d:b9:c2:ab:ba:98:10:7a:bd:59: 9a:31:d6:db:19:88:53:25:e3:84:45:f4:f4:d0:29: a8:3d:82:f8:e8:4c:91:f9:8f:14:da:8b:5f:35:e2: 0f:bb:a5:bb:ee:41:ce:12:85:df:31:59:83:7d:93: 96:01:4a:76:06:af:ce:6e:2f:cb:d4:f9:f1:5b:53: 94:72:fc:55:64:d8:f6:77:89:dd:f5:06:91:a9:c9: 92:ce:27:09:7b:34:c8:d9:4e:c2:24:26:b5:47:df: c9:50:7b:65:b3:cf:13:71:3c:72:84:7e:be:ba:a5: c1:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:7F:85:2B:AC:4C:62:4E:35:DD:F3:F9:F1:19:81:94:A6:60:9E:6D X509v3 Authority Key Identifier: keyid:CC:59:21:76:D8:8C:42:3F:88:59:B5:18:B6:AD:33:4F:FF:76:74:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zFkhdtiMQj-IWbUYtq0zT_92dAk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:17:6f:f8:d4:87:ad:55:ce:ca:b6:37:2e:7f:08:64:29:21: c0:a1:02:80:c5:10:9f:3d:7b:ce:45:a1:33:a3:04:05:e2:29: e8:87:70:4a:f7:1d:11:f0:ae:cf:29:1d:26:ae:1c:ac:2f:61: be:40:39:84:dd:76:01:08:90:8d:14:6a:1f:94:ec:77:f8:a8: f0:02:78:b1:4a:34:87:61:58:a9:9f:1c:9e:15:f8:29:79:fb: 0f:d8:ac:80:bb:d8:70:bd:8b:25:7e:2c:96:0c:4c:23:68:4b: 1d:e2:9a:67:46:01:cf:1d:a5:24:9b:ab:7d:e2:3e:5e:47:f2: 5f:2d:fa:17:ec:79:8d:1a:00:32:1f:76:9c:c2:8e:2b:27:aa: f3:fe:27:cc:c0:ee:89:b4:4c:1c:9a:71:a8:b3:55:36:53:28: 74:bf:fb:de:4b:25:60:a6:0c:ee:41:44:4b:4d:63:f9:a7:5b: f9:c5:ac:65:7b:37:27:4e:7f:33:94:38:4c:95:c4:34:ff:d9: b0:76:89:30:aa:44:75:d0:25:cc:e3:01:59:73:c5:60:18:d3: 7f:72:92:b8:76:03:a6:08:49:12:a6:cf:94:55:d9:6a:50:3b: c7:9d:66:0a:ea:b0:f6:58:d2:3b:c9:aa:ef:7f:82:08:ad:5b: 5c:a1:2d:f7 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICEfcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjY3QkIxMTAvBgNVBAUTKENDNTkyMTc2RDg4QzQyM0Y4ODU5QjUxOEI2QUQzMzRG RkY3Njc0MDkwHhcNMjYwMzAxMjM1NTA1WhcNMjYwMzA4MjM1NTA1WjAYMRYwFAYD VQQDEw02OWE0ZDFkYy1iYzc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq9XxxJjyD+BG8RpBIU+391Bzd8Vrd8wyVfIwN8lLuVsGdgmZyLWFYP1cyfIa OMTJQQiybKnk2h1qL1ugZr1oetZbsNOodSFBYNoSHPEK65Y4hhFqPqCJ2dBR8SvH ZtRARgNH6fCbU98s46U5Hoay3jcq+cYAy+pBRkj4r1gDKdceip7TCYbbTRmdXh25 wqu6mBB6vVmaMdbbGYhTJeOERfT00CmoPYL46EyR+Y8U2otfNeIPu6W77kHOEoXf MVmDfZOWAUp2Bq/Obi/L1PnxW1OUcvxVZNj2d4nd9QaRqcmSzicJezTI2U7CJCa1 R9/JUHtls88TcTxyhH6+uqXBUQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAN/hSus TGJONd3z+fEZgZSmYJ5tMB8GA1UdIwQYMBaAFMxZIXbYjEI/iFm1GLatM0//dnQJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjdCQi9CREZCRjE4NjBF M0UxMUU5ODM2RjQwMTRDNEY5QUUwMi96RmtoZHRpTVFqLUlXYlVZdHEwelRfOTJk QWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3pGa2hkdGlNUWotSVdiVVl0cTB6VF85MmRBay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NjdCQi9CREZCRjE4NjBFM0UxMUU5ODM2RjQwMTRDNEY5QUUwMi96RmtoZHRpTVFq LUlXYlVZdHEwelRfOTJkQWsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAShdv+NSHrVXOyrY3Ln8IZCkhwKECgMUQnz17zkWhM6MEBeIp6IdwSvcdEfCu zykdJq4crC9hvkA5hN12AQiQjRRqH5Tsd/io8AJ4sUo0h2FYqZ8cnhX4KXn7D9is gLvYcL2LJX4slgxMI2hLHeKaZ0YBzx2lJJurfeI+XkfyXy36F+x5jRoAMh92nMKO Kyeq8/4nzMDuibRMHJpxqLNVNlModL/73kslYKYM7kFES01j+adb+cWsZXs3J05/ M5Q4TJXENP/ZsHaJMKpEddAlzOMBWXPFYBjTf3KSuHYDpghJEqbPlFXZalA7x51m Cuqw9ljSO8mq73+CCK1bXKEt9w== -----END CERTIFICATE-----Generated at Mon Mar 2 07:34:04 2026 by rpki-client