$ rpki-client -vvf rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.mft File: ZUCRhgKOxUzUW1g0_77K9LePGcI.mft (raw, json) Hash identifier: AMqPS6uzrSjpK4ASf52yEaBpWxiAP+djBbmAjakgVU0= Subject key identifier: 64:9B:2F:43:B0:1D:BE:29:42:B0:CD:85:9F:CF:C9:86:1C:46:BA:31 Authority key identifier: 65:40:91:86:02:8E:C5:4C:D4:5B:58:34:FF:BE:CA:F4:B7:8F:19:C2 Certificate issuer: /CN=A917BBF1/serialNumber=65409186028EC54CD45B5834FFBECAF4B78F19C2 Certificate serial: 0D10 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZUCRhgKOxUzUW1g0_77K9LePGcI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.mft Manifest number: 0CE8 Signing time: Sun 26 Apr 2026 18:17:48 +0000 Manifest this update: Sun 26 Apr 2026 18:17:48 +0000 Manifest next update: Sun 03 May 2026 18:17:48 +0000 Files and hashes: 1: ZUCRhgKOxUzUW1g0_77K9LePGcI.crl (hash: l2UhZ0PiJU6iWZ8bcXsudBg3sNwxV9Bc/AB/T6Kme3U=) 2: 3EED102CC53011F0ADCB012EC4F9AE02.roa (hash: LxKNHe3GpfHVZCaXnBap/M64zNmMtKYhFB34n7ePJpg=) 3: 1B54858065B711EE93D6ED6DC4F9AE02.roa (hash: RJJ5TtxisaxrsdKJrxokk1MUJk/sClMJ57OXkPbYyvk=) 4: FF4F13D4448711ECA80CFC34C4F9AE02.roa (hash: lDq/RoR1gtpy/cAfk0IFee9KhUVF1t6WS4LHb4U+atA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.crl rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZUCRhgKOxUzUW1g0_77K9LePGcI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 03 May 2026 18:17:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3344 (0xd10) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917BBF1, serialNumber=65409186028EC54CD45B5834FFBECAF4B78F19C2 Validity Not Before: Apr 26 18:17:48 2026 GMT Not After : May 3 18:17:48 2026 GMT Subject: CN=69ee56cc-bb1c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:cf:43:2c:2c:0b:c5:be:b1:20:f1:cf:61:03: 49:26:2c:6e:2b:32:11:af:1b:97:75:31:ae:f2:02: d0:cf:4e:dc:09:4e:2e:88:c8:27:6d:39:7a:72:da: f7:76:80:e9:32:da:27:e8:c6:67:cf:68:14:e8:bd: 93:eb:b0:71:44:a4:10:58:71:44:bb:b5:b5:b9:88: 98:61:ac:d8:43:2d:58:b0:43:ab:1b:68:00:ee:dc: 3a:57:5d:4d:ff:32:5a:c7:68:82:2e:1f:1e:39:3b: 04:3b:27:74:92:24:ae:4d:c2:8b:11:2d:ca:84:4a: fc:66:4b:dd:2c:f1:49:e8:9a:53:b3:3c:f2:2a:30: ab:6f:09:23:5d:70:07:22:0d:a5:4d:f0:ef:1b:ac: 4a:47:87:02:ce:ce:13:b9:84:04:51:93:82:c0:7b: 79:15:66:9d:aa:b1:51:a7:79:12:35:cd:bb:b4:f1: 92:c9:fe:a5:4e:e3:ef:ab:48:0f:8b:fb:3d:19:09: c6:16:f7:56:d1:70:76:c5:6d:01:8f:9a:df:66:21: 5f:45:e2:4c:6e:e1:02:aa:36:77:2f:83:95:9c:e2: fd:69:7e:57:df:cc:55:1f:43:0d:e9:0a:92:e9:6f: 2f:a9:a4:34:95:18:2c:fa:a4:fd:38:6a:43:41:9c: 59:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:9B:2F:43:B0:1D:BE:29:42:B0:CD:85:9F:CF:C9:86:1C:46:BA:31 X509v3 Authority Key Identifier: keyid:65:40:91:86:02:8E:C5:4C:D4:5B:58:34:FF:BE:CA:F4:B7:8F:19:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZUCRhgKOxUzUW1g0_77K9LePGcI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:12:bf:88:f1:64:b4:d0:08:e3:ba:a6:ca:8a:44:34:7e:9e: 75:8c:ea:02:0d:ff:e1:9f:be:9f:2a:48:a2:f8:f5:4a:84:2d: 89:34:00:e2:de:a4:4f:c0:c8:07:02:15:84:9f:43:be:a3:f1: 32:2b:1a:01:0f:62:4c:8a:60:37:39:c3:4a:a2:da:a7:0e:5d: ce:0b:4b:0e:82:5e:fd:b9:de:1c:f2:ca:2e:b7:bc:4c:e8:b5: b6:bf:36:f1:ff:bb:68:cb:fa:ba:17:1d:9c:b6:c5:11:07:b0: 84:9b:8a:ca:24:1a:bd:d4:f8:7e:4e:14:a2:28:b2:ca:ab:a2: 60:ad:19:36:61:71:99:9b:63:c5:c2:1c:10:4f:4d:aa:ef:ea: 21:3c:c0:27:97:83:b5:f0:52:6f:59:8a:d4:f4:d0:6d:ea:a8: 1b:fe:be:89:a2:c6:e6:97:90:ef:2b:84:63:c8:a5:e5:1f:9d: 8c:6e:bb:2a:3d:67:f7:72:44:26:54:a8:55:1c:ed:b7:98:14: 3c:44:fa:b8:a7:6a:97:50:2f:f3:f6:e9:2d:f7:b0:05:9e:f9: 46:19:a4:55:49:cb:53:91:fd:b8:ff:27:f9:27:7b:fa:e2:d6: 09:49:7a:14:13:49:74:38:0f:01:0d:f8:90:e4:69:92:67:b0: 70:48:0b:9a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDRAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0JCRjExMTAvBgNVBAUTKDY1NDA5MTg2MDI4RUM1NENENDVCNTgzNEZGQkVDQUY0 Qjc4RjE5QzIwHhcNMjYwNDI2MTgxNzQ4WhcNMjYwNTAzMTgxNzQ4WjAYMRYwFAYD VQQDEw02OWVlNTZjYy1iYjFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv89DLCwLxb6xIPHPYQNJJixuKzIRrxuXdTGu8gLQz07cCU4uiMgnbTl6ctr3 doDpMton6MZnz2gU6L2T67BxRKQQWHFEu7W1uYiYYazYQy1YsEOrG2gA7tw6V11N /zJax2iCLh8eOTsEOyd0kiSuTcKLES3KhEr8ZkvdLPFJ6JpTszzyKjCrbwkjXXAH Ig2lTfDvG6xKR4cCzs4TuYQEUZOCwHt5FWadqrFRp3kSNc27tPGSyf6lTuPvq0gP i/s9GQnGFvdW0XB2xW0Bj5rfZiFfReJMbuECqjZ3L4OVnOL9aX5X38xVH0MN6QqS 6W8vqaQ0lRgs+qT9OGpDQZxZAQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGSbL0Ow Hb4pQrDNhZ/PyYYcRroxMB8GA1UdIwQYMBaAFGVAkYYCjsVM1FtYNP++yvS3jxnC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QkJGMS8yNDVEQzVDQTBB RjcxMUVBQTg1QTVEMUFDNEY5QUUwMi9aVUNSaGdLT3hVelVXMWcwXzc3SzlMZVBH Y0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pVQ1JoZ0tPeFV6VVcxZzBfNzdLOUxlUEdjSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QkJGMS8yNDVEQzVDQTBBRjcxMUVBQTg1QTVEMUFDNEY5QUUwMi9aVUNSaGdLT3hV elVXMWcwXzc3SzlMZVBHY0kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAZhK/iPFktNAI47qmyopENH6edYzqAg3/4Z++nypIovj1SoQtiTQA4t6kT8DI BwIVhJ9DvqPxMisaAQ9iTIpgNznDSqLapw5dzgtLDoJe/bneHPLKLre8TOi1tr82 8f+7aMv6uhcdnLbFEQewhJuKyiQavdT4fk4UoiiyyquiYK0ZNmFxmZtjxcIcEE9N qu/qITzAJ5eDtfBSb1mK1PTQbeqoG/6+iaLG5peQ7yuEY8il5R+djG67Kj1n93JE JlSoVRztt5gUPET6uKdql1Av8/bpLfewBZ75RhmkVUnLU5H9uP8n+Sd7+uLWCUl6 FBNJdDgPAQ34kORpkmewcEgLmg== -----END CERTIFICATE-----Generated at Tue Apr 28 12:46:16 2026 by rpki-client