$ rpki-client -vvf rpki.apnic.net/member_repository/A91DDD23/EA750BEC910C11EFA540FC0FC4F9AE02/ZoRT_1aRgf4a6qBjfkgndCARLGQ.mft File: ZoRT_1aRgf4a6qBjfkgndCARLGQ.mft (raw, json) Hash identifier: RYk22rubXrZd9hDRaaz9vRcjlOCgwIWbdDr2z6Gu4yY= Subject key identifier: 1A:3C:D7:A1:09:7C:A8:CC:D1:9E:A5:54:95:46:3E:46:BF:70:4B:16 Authority key identifier: 66:84:53:FF:56:91:81:FE:1A:EA:A0:63:7E:48:27:74:20:11:2C:64 Certificate issuer: /CN=A91DDD23/serialNumber=668453FF569181FE1AEAA0637E48277420112C64 Certificate serial: 011A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZoRT_1aRgf4a6qBjfkgndCARLGQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DDD23/EA750BEC910C11EFA540FC0FC4F9AE02/ZoRT_1aRgf4a6qBjfkgndCARLGQ.mft Manifest number: 0114 Signing time: Sun 05 Apr 2026 05:20:18 +0000 Manifest this update: Sun 05 Apr 2026 05:20:17 +0000 Manifest next update: Sun 12 Apr 2026 05:20:17 +0000 Files and hashes: 1: ZoRT_1aRgf4a6qBjfkgndCARLGQ.crl (hash: 08dnUwK+BzDj7m1OQSsfHCtmslkJMYkipq/etFmaXNg=) 2: 65F3496E910D11EF95FE5C28C4F9AE02.roa (hash: nW43K60KK0EIrSI+ECEkmAnBWOAIbX7kD/S3C7JYmRE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DDD23/EA750BEC910C11EFA540FC0FC4F9AE02/ZoRT_1aRgf4a6qBjfkgndCARLGQ.crl rsync://rpki.apnic.net/member_repository/A91DDD23/EA750BEC910C11EFA540FC0FC4F9AE02/ZoRT_1aRgf4a6qBjfkgndCARLGQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZoRT_1aRgf4a6qBjfkgndCARLGQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 05:20:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 282 (0x11a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DDD23, serialNumber=668453FF569181FE1AEAA0637E48277420112C64 Validity Not Before: Apr 5 05:20:17 2026 GMT Not After : Apr 12 05:20:17 2026 GMT Subject: CN=69d1f112-afe8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:25:c4:46:41:22:b5:f8:31:f6:df:6b:56:af: cc:e8:6e:ec:e6:d2:a1:64:96:03:eb:84:ae:4c:1e: 53:4a:e7:b1:7b:8c:50:5e:c5:44:b2:b4:d2:47:27: f9:f6:42:33:54:e0:47:b8:1b:0d:18:5b:62:32:90: 0d:6e:da:53:d3:7f:f7:6f:04:84:96:7b:85:d0:65: c8:b8:98:f8:d3:4e:65:72:f8:8e:89:83:79:08:e5: 49:8a:2a:39:2a:22:90:ae:21:56:f8:1f:44:b5:6e: c4:90:21:28:1b:b3:16:22:46:b5:93:12:f9:53:04: e3:40:58:d8:fc:f0:75:45:bd:60:af:e0:4e:07:7e: 44:78:57:28:4b:db:63:57:39:19:8a:d6:96:06:52: 28:e7:56:76:9f:92:88:16:6d:a7:ab:a7:f8:f1:f4: 2f:89:1e:db:ac:c1:f5:94:e4:c6:a9:00:3b:a8:2a: 97:24:53:58:c1:8f:bc:7e:75:05:2d:ae:37:4e:4f: 80:10:d7:c0:c3:06:dc:96:8a:60:49:f4:1a:0c:e1: 26:58:a5:db:0f:5b:a7:1a:1d:e8:0d:ef:01:bf:fb: 1c:a1:ea:26:1f:c5:69:ca:30:f6:c0:13:58:13:42: 5a:aa:0b:af:a8:1f:f6:08:5f:b9:3d:85:61:f3:1c: c8:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:3C:D7:A1:09:7C:A8:CC:D1:9E:A5:54:95:46:3E:46:BF:70:4B:16 X509v3 Authority Key Identifier: keyid:66:84:53:FF:56:91:81:FE:1A:EA:A0:63:7E:48:27:74:20:11:2C:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DDD23/EA750BEC910C11EFA540FC0FC4F9AE02/ZoRT_1aRgf4a6qBjfkgndCARLGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZoRT_1aRgf4a6qBjfkgndCARLGQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DDD23/EA750BEC910C11EFA540FC0FC4F9AE02/ZoRT_1aRgf4a6qBjfkgndCARLGQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:01:25:d1:5c:76:7c:9f:a2:a4:56:df:d6:a6:09:8d:d5:04: 53:d5:ff:29:83:ee:51:0a:3e:f6:e7:53:18:2f:d0:78:85:0f: 8f:00:92:0d:87:bd:56:d1:39:c4:36:dc:6d:9a:b6:22:46:e2: d0:02:00:40:b3:1f:e5:e4:0c:44:8b:2b:eb:5d:37:05:fb:22: 6e:a0:9a:44:81:dc:bf:67:0e:db:4d:bf:90:eb:96:98:ac:76: 03:59:6c:d5:ea:7e:4e:13:b6:ce:45:0e:60:18:a2:93:d2:5d: ab:e7:04:a1:9d:20:f9:fc:e2:2b:d8:8b:17:35:e9:9e:0d:25: d6:b1:c5:70:fc:84:f0:9d:f9:ae:49:17:c3:d6:42:2f:3a:e8: 17:c7:40:ac:75:51:37:d2:10:a9:82:77:10:2a:cf:62:4f:cf: f4:e7:50:f1:ce:48:5e:63:ef:53:55:a3:b4:18:eb:a4:0e:6c: 50:3b:90:0d:b0:9a:66:5b:b6:85:d8:9f:d9:25:f6:05:5f:10: e3:db:77:2c:ae:e1:40:4b:98:97:d4:75:82:96:1b:01:02:6a: 66:fa:3f:fe:62:51:52:e9:7d:8c:45:ff:92:db:3d:11:d1:ed: cd:aa:03:5a:b8:90:c7:55:45:e8:0f:4b:15:84:f5:45:43:17: 6b:b0:9e:a8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICARowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REREMjMxMTAvBgNVBAUTKDY2ODQ1M0ZGNTY5MTgxRkUxQUVBQTA2MzdFNDgyNzc0 MjAxMTJDNjQwHhcNMjYwNDA1MDUyMDE3WhcNMjYwNDEyMDUyMDE3WjAYMRYwFAYD VQQDEw02OWQxZjExMi1hZmU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtCXERkEitfgx9t9rVq/M6G7s5tKhZJYD64SuTB5TSuexe4xQXsVEsrTSRyf5 9kIzVOBHuBsNGFtiMpANbtpT03/3bwSElnuF0GXIuJj4005lcviOiYN5COVJiio5 KiKQriFW+B9EtW7EkCEoG7MWIka1kxL5UwTjQFjY/PB1Rb1gr+BOB35EeFcoS9tj VzkZitaWBlIo51Z2n5KIFm2nq6f48fQviR7brMH1lOTGqQA7qCqXJFNYwY+8fnUF La43Tk+AENfAwwbclopgSfQaDOEmWKXbD1unGh3oDe8Bv/scoeomH8VpyjD2wBNY E0JaqguvqB/2CF+5PYVh8xzIdQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBo816EJ fKjM0Z6lVJVGPka/cEsWMB8GA1UdIwQYMBaAFGaEU/9WkYH+GuqgY35IJ3QgESxk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEREQyMy9FQTc1MEJFQzkx MEMxMUVGQTU0MEZDMEZDNEY5QUUwMi9ab1JUXzFhUmdmNGE2cUJqZmtnbmRDQVJM R1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pvUlRfMWFSZ2Y0YTZxQmpma2duZENBUkxHUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE REQyMy9FQTc1MEJFQzkxMEMxMUVGQTU0MEZDMEZDNEY5QUUwMi9ab1JUXzFhUmdm NGE2cUJqZmtnbmRDQVJMR1EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAfwEl0Vx2fJ+ipFbf1qYJjdUEU9X/KYPuUQo+9udTGC/QeIUPjwCSDYe9VtE5 xDbcbZq2Ikbi0AIAQLMf5eQMRIsr6103BfsibqCaRIHcv2cO202/kOuWmKx2A1ls 1ep+ThO2zkUOYBiik9Jdq+cEoZ0g+fziK9iLFzXpng0l1rHFcPyE8J35rkkXw9ZC LzroF8dArHVRN9IQqYJ3ECrPYk/P9OdQ8c5IXmPvU1WjtBjrpA5sUDuQDbCaZlu2 hdif2SX2BV8Q49t3LK7hQEuYl9R1gpYbAQJqZvo//mJRUul9jEX/kts9EdHtzaoD WriQx1VF6A9LFYT1RUMXa7CeqA== -----END CERTIFICATE-----Generated at Sun Apr 5 19:44:06 2026 by rpki-client