$ rpki-client -vvf rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.mft File: ZUCRhgKOxUzUW1g0_77K9LePGcI.mft (raw, json) Hash identifier: kOOWFfLXxs31yGrwR9y9ftB2E3cIdRR2lO6GFvLWZmc= Subject key identifier: FA:64:AD:29:34:CA:82:55:1D:BF:E2:48:9E:FC:BA:66:B4:71:DF:50 Authority key identifier: 65:40:91:86:02:8E:C5:4C:D4:5B:58:34:FF:BE:CA:F4:B7:8F:19:C2 Certificate issuer: /CN=A917BBF1/serialNumber=65409186028EC54CD45B5834FFBECAF4B78F19C2 Certificate serial: 0CF9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZUCRhgKOxUzUW1g0_77K9LePGcI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.mft Manifest number: 0CD1 Signing time: Thu 12 Mar 2026 18:11:46 +0000 Manifest this update: Thu 12 Mar 2026 18:11:45 +0000 Manifest next update: Thu 19 Mar 2026 18:11:45 +0000 Files and hashes: 1: ZUCRhgKOxUzUW1g0_77K9LePGcI.crl (hash: C/VnxdbkJuT5iy/NNKE7cTAX6xZkif5y040s9KWfWa0=) 2: 1B54858065B711EE93D6ED6DC4F9AE02.roa (hash: RJJ5TtxisaxrsdKJrxokk1MUJk/sClMJ57OXkPbYyvk=) 3: 3EED102CC53011F0ADCB012EC4F9AE02.roa (hash: LxKNHe3GpfHVZCaXnBap/M64zNmMtKYhFB34n7ePJpg=) 4: FF4F13D4448711ECA80CFC34C4F9AE02.roa (hash: lDq/RoR1gtpy/cAfk0IFee9KhUVF1t6WS4LHb4U+atA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.crl rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZUCRhgKOxUzUW1g0_77K9LePGcI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 18:11:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3321 (0xcf9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917BBF1, serialNumber=65409186028EC54CD45B5834FFBECAF4B78F19C2 Validity Not Before: Mar 12 18:11:45 2026 GMT Not After : Mar 19 18:11:45 2026 GMT Subject: CN=69b301e1-d812 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:f0:19:0e:9d:e9:44:a5:fe:08:c6:cb:a3:62: 7d:61:fe:ba:95:51:d3:d8:ae:91:fd:1a:26:19:18: 1f:c9:31:ef:a5:84:8a:c1:77:7b:cf:32:2c:a8:7a: 45:1c:b9:b6:1d:95:ec:82:fd:aa:b7:64:eb:4d:c0: 63:13:f3:f0:4d:ef:d1:57:2f:29:4a:e9:09:97:50: fb:44:2b:0c:98:5c:fb:d4:3b:f3:44:61:df:3e:15: 03:3d:aa:36:e8:41:03:95:6d:23:93:a9:a8:ce:1b: 97:79:7e:8e:6f:45:ec:b7:e4:d9:ec:8f:02:77:c9: 35:fc:c0:48:09:5b:6e:e7:79:97:0a:10:c9:23:05: 88:61:18:36:54:10:ab:83:8c:6f:4f:10:de:9e:1e: e1:2d:ac:7d:9c:09:ae:b8:46:2a:f7:42:ea:37:b4: cc:b4:38:e8:f6:f5:86:75:da:9a:ec:be:59:65:16: 70:98:68:d9:29:9d:a1:6a:e6:4b:f4:41:df:22:8f: 9e:a9:62:b0:2e:b8:c4:3a:76:d3:39:e5:30:3d:15: 7c:2c:a7:a3:46:25:71:8c:62:1b:1b:1f:1f:59:8b: f4:b7:d1:38:69:70:c9:c5:43:f2:79:29:4a:58:25: 9c:46:2a:9e:63:4f:e3:1f:31:83:5c:e4:5b:e8:9d: d2:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:64:AD:29:34:CA:82:55:1D:BF:E2:48:9E:FC:BA:66:B4:71:DF:50 X509v3 Authority Key Identifier: keyid:65:40:91:86:02:8E:C5:4C:D4:5B:58:34:FF:BE:CA:F4:B7:8F:19:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZUCRhgKOxUzUW1g0_77K9LePGcI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:96:84:62:01:00:cb:71:29:29:8b:39:49:ee:7f:e8:26:b4: 88:be:7d:5e:e2:2d:0c:32:b6:90:64:8b:4c:ad:f5:29:4c:58: e0:7c:c1:f6:67:1c:41:12:f4:b9:c2:cf:61:9a:52:37:fb:e1: 9c:5d:e6:c4:8d:56:58:bd:fc:41:94:ac:d1:24:01:42:fe:40: b9:dd:d2:d4:fa:38:4c:d4:02:e8:0e:bb:cc:07:5a:f8:69:49: d2:d1:f0:24:f4:fc:7d:37:ea:80:29:2a:96:cc:2f:54:a9:3e: d7:19:97:97:80:a3:22:c8:90:ad:48:18:15:44:f6:17:aa:de: 62:20:2a:d2:6e:c1:ec:74:cd:78:d7:9f:cc:cf:4e:10:b6:6c: 30:6b:82:47:d4:59:63:86:0d:b1:60:de:c5:f0:62:11:00:7f: 07:e4:e5:a4:fb:3e:29:f8:8d:ad:22:18:a2:e7:ed:08:f1:e1: b4:56:78:55:af:1d:6c:92:29:51:49:af:49:26:7a:02:24:4c: cc:86:f9:ec:54:92:b4:99:23:d3:20:00:30:f6:da:c4:52:ab: e1:a0:ce:3c:30:96:a8:5d:1b:c3:80:f7:fc:bc:64:a5:f9:9f: 2d:68:01:92:59:be:5a:49:8b:38:d1:5a:81:a3:a1:a0:77:91: 1c:92:6a:e1 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDPkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0JCRjExMTAvBgNVBAUTKDY1NDA5MTg2MDI4RUM1NENENDVCNTgzNEZGQkVDQUY0 Qjc4RjE5QzIwHhcNMjYwMzEyMTgxMTQ1WhcNMjYwMzE5MTgxMTQ1WjAYMRYwFAYD VQQDEw02OWIzMDFlMS1kODEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxPAZDp3pRKX+CMbLo2J9Yf66lVHT2K6R/RomGRgfyTHvpYSKwXd7zzIsqHpF HLm2HZXsgv2qt2TrTcBjE/PwTe/RVy8pSukJl1D7RCsMmFz71DvzRGHfPhUDPao2 6EEDlW0jk6mozhuXeX6Ob0Xst+TZ7I8Cd8k1/MBICVtu53mXChDJIwWIYRg2VBCr g4xvTxDenh7hLax9nAmuuEYq90LqN7TMtDjo9vWGddqa7L5ZZRZwmGjZKZ2hauZL 9EHfIo+eqWKwLrjEOnbTOeUwPRV8LKejRiVxjGIbGx8fWYv0t9E4aXDJxUPyeSlK WCWcRiqeY0/jHzGDXORb6J3S2wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPpkrSk0 yoJVHb/iSJ78uma0cd9QMB8GA1UdIwQYMBaAFGVAkYYCjsVM1FtYNP++yvS3jxnC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QkJGMS8yNDVEQzVDQTBB RjcxMUVBQTg1QTVEMUFDNEY5QUUwMi9aVUNSaGdLT3hVelVXMWcwXzc3SzlMZVBH Y0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pVQ1JoZ0tPeFV6VVcxZzBfNzdLOUxlUEdjSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QkJGMS8yNDVEQzVDQTBBRjcxMUVBQTg1QTVEMUFDNEY5QUUwMi9aVUNSaGdLT3hV elVXMWcwXzc3SzlMZVBHY0kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAnpaEYgEAy3EpKYs5Se5/6Ca0iL59XuItDDK2kGSLTK31KUxY4HzB9mccQRL0 ucLPYZpSN/vhnF3mxI1WWL38QZSs0SQBQv5Aud3S1Po4TNQC6A67zAda+GlJ0tHw JPT8fTfqgCkqlswvVKk+1xmXl4CjIsiQrUgYFUT2F6reYiAq0m7B7HTNeNefzM9O ELZsMGuCR9RZY4YNsWDexfBiEQB/B+TlpPs+KfiNrSIYouftCPHhtFZ4Va8dbJIp UUmvSSZ6AiRMzIb57FSStJkj0yAAMPbaxFKr4aDOPDCWqF0bw4D3/LxkpfmfLWgB klm+WkmLONFagaOhoHeRHJJq4Q== -----END CERTIFICATE-----Generated at Fri Mar 13 20:52:55 2026 by rpki-client