$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8F9B/F902E5305DBD11EF8A06ED40C4F9AE02/z7sDj9uDhlQgSWKYCtIhyUFdXP8.mft File: z7sDj9uDhlQgSWKYCtIhyUFdXP8.mft (raw, json) Hash identifier: PdxX98N5IkjigUN28fPmQ0/xvmRkXYBP1/RpxCh6bQA= Subject key identifier: 8A:72:D1:6F:45:FE:C7:11:B2:B1:0B:C9:87:CE:2F:D3:26:54:14:26 Authority key identifier: CF:BB:03:8F:DB:83:86:54:20:49:62:98:0A:D2:21:C9:41:5D:5C:FF Certificate issuer: /CN=A91F8F9B/serialNumber=CFBB038FDB838654204962980AD221C9415D5CFF Certificate serial: 0122 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z7sDj9uDhlQgSWKYCtIhyUFdXP8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8F9B/F902E5305DBD11EF8A06ED40C4F9AE02/z7sDj9uDhlQgSWKYCtIhyUFdXP8.mft Manifest number: 0120 Signing time: Sun 01 Mar 2026 06:44:49 +0000 Manifest this update: Sun 01 Mar 2026 06:44:49 +0000 Manifest next update: Sun 08 Mar 2026 06:44:49 +0000 Files and hashes: 1: z7sDj9uDhlQgSWKYCtIhyUFdXP8.crl (hash: 3m5soEFNx2Plf94Lp+L7vZdDYxXAsbtoENMbp1/XYJA=) 2: 7143C5B85DBF11EFB8714857C4F9AE02.roa (hash: nTbnCk4P5H9oOH4eL195jhnWczLlGOgjmjreKYWM0EU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8F9B/F902E5305DBD11EF8A06ED40C4F9AE02/z7sDj9uDhlQgSWKYCtIhyUFdXP8.crl rsync://rpki.apnic.net/member_repository/A91F8F9B/F902E5305DBD11EF8A06ED40C4F9AE02/z7sDj9uDhlQgSWKYCtIhyUFdXP8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z7sDj9uDhlQgSWKYCtIhyUFdXP8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 06:44:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 290 (0x122) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8F9B, serialNumber=CFBB038FDB838654204962980AD221C9415D5CFF Validity Not Before: Mar 1 06:44:49 2026 GMT Not After : Mar 8 06:44:49 2026 GMT Subject: CN=69a3e061-3ee6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:0c:5f:7a:4f:5d:72:62:f2:cb:25:f4:55:0e: c9:0d:e2:b3:3f:c5:55:95:5c:b7:b1:29:52:4a:e3: 19:f9:f7:8f:d7:88:f4:17:4b:9b:86:bc:01:4e:8e: b6:90:d9:e8:40:e5:6f:8f:88:25:77:27:4f:61:7f: 85:de:37:7d:49:00:bc:d1:db:f8:a3:40:cc:fa:2b: d4:18:c6:9b:18:72:8b:e1:e9:47:80:24:0c:64:a9: 8a:e1:cb:43:dc:30:68:4f:16:62:73:51:fd:67:8a: 2d:af:fc:83:7e:d8:59:b8:78:42:a7:e6:28:9f:db: c5:0e:7c:9e:99:95:e8:76:5a:8e:62:82:36:bb:29: fb:ba:ac:95:b2:4b:5f:21:ed:ba:af:a9:09:a8:77: d8:d6:de:e1:7f:36:3c:67:a2:03:81:88:3f:66:21: 81:c4:b2:24:9f:c0:93:ca:61:15:1f:1e:36:63:5a: a2:3b:30:a1:07:bb:89:fe:54:83:24:11:6e:1b:7a: f1:71:ec:0f:1c:0f:06:e8:a7:dc:7e:60:f9:0a:f1: 82:3c:63:e9:eb:03:d2:e0:fd:ed:df:42:b8:14:2e: 2d:5d:f7:a5:cb:63:c7:a4:71:86:01:84:1f:9e:26: d4:c3:26:10:a1:da:5b:03:9f:f2:18:55:e7:47:42: da:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:72:D1:6F:45:FE:C7:11:B2:B1:0B:C9:87:CE:2F:D3:26:54:14:26 X509v3 Authority Key Identifier: keyid:CF:BB:03:8F:DB:83:86:54:20:49:62:98:0A:D2:21:C9:41:5D:5C:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8F9B/F902E5305DBD11EF8A06ED40C4F9AE02/z7sDj9uDhlQgSWKYCtIhyUFdXP8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z7sDj9uDhlQgSWKYCtIhyUFdXP8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8F9B/F902E5305DBD11EF8A06ED40C4F9AE02/z7sDj9uDhlQgSWKYCtIhyUFdXP8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:24:f6:e1:c0:2c:ca:51:da:c8:c8:e8:12:f7:4d:75:d2:17: 53:aa:c8:e7:e5:93:53:b7:2b:77:9d:5f:3a:a2:ff:14:e3:84: a0:00:85:dd:04:18:12:99:51:84:3c:2b:3b:d5:40:18:f7:96: fd:9a:a7:3f:f5:5f:fb:b7:5f:6d:cf:17:dd:c3:e2:a9:04:a7: 33:cd:aa:be:22:fd:99:be:b9:ff:21:31:71:11:1b:cd:fb:91: 82:ba:da:ff:57:b4:05:80:08:78:b2:6e:00:82:ce:5e:a2:ad: ea:da:fa:1a:00:56:cb:ab:91:de:f6:a6:4c:9e:cd:f4:16:62: ab:cb:16:01:73:80:1c:87:d1:7c:15:11:ab:7a:75:a1:82:c5: 67:eb:12:96:34:42:d1:27:84:91:8f:17:ef:9d:83:98:5f:a5: 5c:a3:9a:0c:e0:e2:f7:f7:01:eb:87:25:01:cd:83:e7:fc:4d: 45:b7:2b:ef:e2:f2:e1:6c:4d:a4:93:ce:8c:de:78:aa:e6:8c: ce:d3:38:71:20:be:92:2f:da:55:76:d1:97:7f:4b:86:99:10: 6d:9f:0b:1d:89:1c:30:01:99:77:18:6a:b3:21:53:33:c7:18: de:a8:03:d3:43:21:0d:63:2f:20:c7:e7:63:bd:bb:79:da:8d: 96:11:b0:5e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICASIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjhGOUIxMTAvBgNVBAUTKENGQkIwMzhGREI4Mzg2NTQyMDQ5NjI5ODBBRDIyMUM5 NDE1RDVDRkYwHhcNMjYwMzAxMDY0NDQ5WhcNMjYwMzA4MDY0NDQ5WjAYMRYwFAYD VQQDEw02OWEzZTA2MS0zZWU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmQxfek9dcmLyyyX0VQ7JDeKzP8VVlVy3sSlSSuMZ+feP14j0F0ubhrwBTo62 kNnoQOVvj4gldydPYX+F3jd9SQC80dv4o0DM+ivUGMabGHKL4elHgCQMZKmK4ctD 3DBoTxZic1H9Z4otr/yDfthZuHhCp+Yon9vFDnyemZXodlqOYoI2uyn7uqyVsktf Ie26r6kJqHfY1t7hfzY8Z6IDgYg/ZiGBxLIkn8CTymEVHx42Y1qiOzChB7uJ/lSD JBFuG3rxcewPHA8G6KfcfmD5CvGCPGPp6wPS4P3t30K4FC4tXfely2PHpHGGAYQf nibUwyYQodpbA5/yGFXnR0LaIQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIpy0W9F /scRsrELyYfOL9MmVBQmMB8GA1UdIwQYMBaAFM+7A4/bg4ZUIElimArSIclBXVz/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOEY5Qi9GOTAyRTUzMDVE QkQxMUVGOEEwNkVENDBDNEY5QUUwMi96N3NEajl1RGhsUWdTV0tZQ3RJaHlVRmRY UDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3o3c0RqOXVEaGxRZ1NXS1lDdEloeVVGZFhQOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OEY5Qi9GOTAyRTUzMDVEQkQxMUVGOEEwNkVENDBDNEY5QUUwMi96N3NEajl1RGhs UWdTV0tZQ3RJaHlVRmRYUDgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAfyT24cAsylHayMjoEvdNddIXU6rI5+WTU7crd51fOqL/FOOEoACF3QQYEplR hDwrO9VAGPeW/ZqnP/Vf+7dfbc8X3cPiqQSnM82qviL9mb65/yExcREbzfuRgrra /1e0BYAIeLJuAILOXqKt6tr6GgBWy6uR3vamTJ7N9BZiq8sWAXOAHIfRfBURq3p1 oYLFZ+sSljRC0SeEkY8X752DmF+lXKOaDODi9/cB64clAc2D5/xNRbcr7+Ly4WxN pJPOjN54quaMztM4cSC+ki/aVXbRl39LhpkQbZ8LHYkcMAGZdxhqsyFTM8cY3qgD 00MhDWMvIMfnY727edqNlhGwXg== -----END CERTIFICATE-----Generated at Mon Mar 2 09:44:38 2026 by rpki-client