$ rpki-client -vvf rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.mft File: z8CATaxP_3oipAThDphkpxHeGck.mft (raw, json) Hash identifier: 8KU9rjcAWxuCpz5m6WxVOs1jcxE7RXXbHQ/lBLJFEBc= Subject key identifier: B2:19:C8:B1:75:C5:39:C1:CC:B5:7D:FE:CE:2E:9A:2E:8D:AD:2B:9B Authority key identifier: CF:C0:80:4D:AC:4F:FF:7A:22:A4:04:E1:0E:98:64:A7:11:DE:19:C9 Certificate issuer: /CN=A91A12C4/serialNumber=CFC0804DAC4FFF7A22A404E10E9864A711DE19C9 Certificate serial: 0121 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z8CATaxP_3oipAThDphkpxHeGck.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.mft Manifest number: 0119 Signing time: Tue 03 Mar 2026 05:24:37 +0000 Manifest this update: Tue 03 Mar 2026 05:24:36 +0000 Manifest next update: Tue 10 Mar 2026 05:24:36 +0000 Files and hashes: 1: z8CATaxP_3oipAThDphkpxHeGck.crl (hash: 4cghTDaEGJQdjaZVrNcTUKpiv3aVYAJ0E13KJexWuDQ=) 2: BCA395126C1811EFAFBE6B0FC4F9AE02.roa (hash: YuQff5ZM6ktoeLhGQjtDQt4j9brqyCXl9qvUHGQ/W6c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.crl rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z8CATaxP_3oipAThDphkpxHeGck.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 05:24:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 289 (0x121) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A12C4, serialNumber=CFC0804DAC4FFF7A22A404E10E9864A711DE19C9 Validity Not Before: Mar 3 05:24:36 2026 GMT Not After : Mar 10 05:24:36 2026 GMT Subject: CN=69a67095-5473 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:0b:0c:ed:41:11:b0:84:db:cc:9a:95:01:6e: ca:2a:41:d2:d8:cc:8c:a5:35:60:1e:96:fd:b3:4c: 9a:cb:41:e9:cb:25:22:1c:da:1e:47:6f:d4:e4:04: 32:5f:31:71:3e:99:c9:d8:18:24:d1:4e:1d:88:ef: 10:68:e9:60:8b:21:a2:d5:d2:49:96:c1:da:f8:2d: f2:8a:4c:37:90:27:42:05:c0:fd:af:0c:a2:1b:a1: d6:78:f4:55:9d:21:42:1a:91:2d:18:cc:18:e9:fb: da:f4:76:15:3e:63:80:c7:5a:6d:fd:f3:21:d0:a9: 1c:74:da:94:49:d1:8f:5c:53:e4:bf:45:33:eb:ab: 76:83:a6:93:81:dc:c1:48:28:c8:6b:de:48:f6:7d: 39:d9:d1:3e:a6:95:c5:d7:eb:cb:23:50:4d:11:52: 72:a4:ca:35:b5:4a:00:f7:f4:ad:c0:36:5a:69:f8: 73:51:38:60:a9:d7:e0:dc:e7:f4:89:ec:0b:83:3e: 37:bf:6c:0f:cf:2c:1b:1e:26:81:d4:ec:58:d1:64: 0a:3b:52:bf:68:4c:41:d7:4a:23:56:4d:9e:53:3a: 78:de:38:3b:15:4e:71:b1:f7:2c:b5:62:49:89:43: ac:86:66:6b:8f:ca:da:01:83:45:b5:d9:fd:dc:b5: 5d:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:19:C8:B1:75:C5:39:C1:CC:B5:7D:FE:CE:2E:9A:2E:8D:AD:2B:9B X509v3 Authority Key Identifier: keyid:CF:C0:80:4D:AC:4F:FF:7A:22:A4:04:E1:0E:98:64:A7:11:DE:19:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z8CATaxP_3oipAThDphkpxHeGck.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:0a:a2:55:a2:d5:b3:dd:67:f5:db:f7:db:4c:3a:04:96:19: c0:9d:cb:47:3c:8b:6b:69:26:b9:7b:5c:8f:36:34:bf:2d:39: 36:ce:25:c3:6a:48:f0:3c:fd:25:a0:9b:64:ff:c7:42:43:aa: 82:f4:8f:17:c1:f9:3c:48:f8:bd:63:62:95:70:43:3a:ea:28: f3:7a:a2:0a:b2:47:77:3c:71:1c:f1:44:8c:41:58:a0:e1:3e: 47:78:f7:7b:40:78:c9:d6:60:20:a4:6d:ff:96:38:f1:4a:a6: dc:59:c5:6b:95:77:af:09:18:a2:ca:e3:41:bb:0e:26:57:46: 05:0b:77:28:e3:1c:52:35:b2:ef:95:02:71:f5:36:82:4d:15: 4b:d2:d8:b1:0a:ad:84:79:81:8e:a8:8f:73:e5:e7:ff:42:98: e1:36:43:dd:6a:27:b6:22:6d:84:90:17:26:00:d4:1d:b1:c2: d9:8f:11:23:9d:46:81:5c:21:b7:c0:19:b8:fc:f0:a9:7e:c0: a2:1d:00:fd:91:e5:7c:1a:16:eb:3b:aa:26:41:b1:9f:90:7a: 31:9d:a2:74:7c:b5:6c:1e:3f:99:06:36:2b:7d:1b:bb:0a:ec: f1:11:d2:72:2c:b8:1a:06:aa:73:83:47:ce:4d:5f:80:61:b6: 54:7e:55:8e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICASEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTEyQzQxMTAvBgNVBAUTKENGQzA4MDREQUM0RkZGN0EyMkE0MDRFMTBFOTg2NEE3 MTFERTE5QzkwHhcNMjYwMzAzMDUyNDM2WhcNMjYwMzEwMDUyNDM2WjAYMRYwFAYD VQQDEw02OWE2NzA5NS01NDczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAugsM7UERsITbzJqVAW7KKkHS2MyMpTVgHpb9s0yay0HpyyUiHNoeR2/U5AQy XzFxPpnJ2Bgk0U4diO8QaOlgiyGi1dJJlsHa+C3yikw3kCdCBcD9rwyiG6HWePRV nSFCGpEtGMwY6fva9HYVPmOAx1pt/fMh0KkcdNqUSdGPXFPkv0Uz66t2g6aTgdzB SCjIa95I9n052dE+ppXF1+vLI1BNEVJypMo1tUoA9/StwDZaafhzUThgqdfg3Of0 iewLgz43v2wPzywbHiaB1OxY0WQKO1K/aExB10ojVk2eUzp43jg7FU5xsfcstWJJ iUOshmZrj8raAYNFtdn93LVdHQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLIZyLF1 xTnBzLV9/s4umi6NrSubMB8GA1UdIwQYMBaAFM/AgE2sT/96IqQE4Q6YZKcR3hnJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMTJDNC9GMzE5RURDMjZD MTcxMUVGQkRCRkQ1MEJDNEY5QUUwMi96OENBVGF4UF8zb2lwQVRoRHBoa3B4SGVH Y2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3o4Q0FUYXhQXzNvaXBBVGhEcGhrcHhIZUdjay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MTJDNC9GMzE5RURDMjZDMTcxMUVGQkRCRkQ1MEJDNEY5QUUwMi96OENBVGF4UF8z b2lwQVRoRHBoa3B4SGVHY2subWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAUQqiVaLVs91n9dv320w6BJYZwJ3LRzyLa2kmuXtcjzY0vy05Ns4lw2pI8Dz9 JaCbZP/HQkOqgvSPF8H5PEj4vWNilXBDOuoo83qiCrJHdzxxHPFEjEFYoOE+R3j3 e0B4ydZgIKRt/5Y48Uqm3FnFa5V3rwkYosrjQbsOJldGBQt3KOMcUjWy75UCcfU2 gk0VS9LYsQqthHmBjqiPc+Xn/0KY4TZD3WontiJthJAXJgDUHbHC2Y8RI51GgVwh t8AZuPzwqX7Aoh0A/ZHlfBoW6zuqJkGxn5B6MZ2idHy1bB4/mQY2K30buwrs8RHS ciy4Ggaqc4NHzk1fgGG2VH5Vjg== -----END CERTIFICATE-----Generated at Wed Mar 4 08:42:50 2026 by rpki-client