$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4B1A/5DD48AB689F211E69E5F6339C4F9AE02/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.mft File: zhFGgP9vTZvD8YgNYQ1q7urr8NQ.mft (raw, json) Hash identifier: sMOSQZvDfCC3o53e/kwYJDtb2POCDvJLzTDrFhptLEo= Subject key identifier: BB:44:9B:A8:3B:5D:4C:8C:96:3B:4B:29:6C:42:F2:1B:D7:0D:F1:EE Authority key identifier: CE:11:46:80:FF:6F:4D:9B:C3:F1:88:0D:61:0D:6A:EE:EA:EB:F0:D4 Certificate issuer: /CN=A91A4B1A/serialNumber=CE114680FF6F4D9BC3F1880D610D6AEEEAEBF0D4 Certificate serial: 1EDC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4B1A/5DD48AB689F211E69E5F6339C4F9AE02/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.mft Manifest number: 1EA8 Signing time: Mon 30 Mar 2026 16:03:18 +0000 Manifest this update: Mon 30 Mar 2026 16:03:18 +0000 Manifest next update: Mon 06 Apr 2026 16:03:18 +0000 Files and hashes: 1: zhFGgP9vTZvD8YgNYQ1q7urr8NQ.crl (hash: mDkXqGufWAqA7/MWeShY7IeV+YDsnfHp3J0xxMNaLBw=) 2: 1DBC9D405DB411EEA017251AC4F9AE02.roa (hash: MORsfRo625k6Z6J+RgEowsAvarYUIEu/pPax0H0xX08=) 3: 4A6679EC14DF11EEAB46A86DC4F9AE02.roa (hash: ZF+S9Eq6dimNzHWGXtdSSL8R6tb42i721A8ipARJHDg=) 4: 4B52A44814DF11EEAB46A86DC4F9AE02.roa (hash: TptByVGgUQdWR0MavGH9OYmCsbH/nXydqU06KChwsXI=) 5: 4999305414DF11EEAB46A86DC4F9AE02.roa (hash: SP9KLqagmi8apHAQ/A1PSM4jrXC2JUZTS6enHcX0VwU=) 6: 4CE75372B9DE11EEBC5B0D21C4F9AE02.roa (hash: fuTljzKvBea7sJt2VNckungbhAnkDIYji3I6D462WJ8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4B1A/5DD48AB689F211E69E5F6339C4F9AE02/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.crl rsync://rpki.apnic.net/member_repository/A91A4B1A/5DD48AB689F211E69E5F6339C4F9AE02/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 Apr 2026 23:18:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7900 (0x1edc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4B1A, serialNumber=CE114680FF6F4D9BC3F1880D610D6AEEEAEBF0D4 Validity Not Before: Mar 30 16:03:18 2026 GMT Not After : Apr 6 16:03:18 2026 GMT Subject: CN=69ca9ec6-5e5f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:b0:23:5f:5c:d4:bf:a4:ce:bf:86:bb:c2:e8: d6:02:84:fa:92:a4:d8:6c:6a:9b:a0:e1:8b:2b:79: 56:e3:46:e8:e5:1c:23:95:11:f1:47:41:e8:31:29: c1:0f:64:23:17:b2:23:66:6a:41:da:e5:31:cc:3f: 61:f2:7a:aa:d2:22:16:27:98:bc:e9:f2:4e:8d:16: c9:9e:c5:bb:24:1b:07:18:cd:23:3b:a3:8d:37:a3: 3e:c1:2d:a1:70:b3:69:6d:25:12:8c:89:14:7f:0f: 1b:47:03:cc:9a:40:ec:a9:f7:0f:6d:e9:27:e2:bc: af:94:ca:1d:21:61:63:f0:c5:88:80:3f:3d:bc:15: fb:2c:c6:67:36:83:68:88:cb:3d:76:34:07:ad:66: cb:40:c9:bf:b6:69:f0:46:1c:13:41:88:9b:43:94: 04:22:70:24:53:50:f3:f0:38:9c:20:1e:e9:de:77: 00:20:c0:6f:f6:83:0f:58:08:e4:96:2e:5e:fe:96: ea:84:0b:59:0a:68:e0:fb:e9:9d:0a:17:80:b5:da: 63:a0:69:72:9e:98:8f:4d:80:c7:ca:57:d3:e8:56: c0:b1:ca:31:56:bf:42:82:b3:c4:3d:d6:9c:48:0b: b3:f0:bc:b1:a2:1c:7a:ad:00:93:40:de:f6:2c:18: 23:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:44:9B:A8:3B:5D:4C:8C:96:3B:4B:29:6C:42:F2:1B:D7:0D:F1:EE X509v3 Authority Key Identifier: keyid:CE:11:46:80:FF:6F:4D:9B:C3:F1:88:0D:61:0D:6A:EE:EA:EB:F0:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4B1A/5DD48AB689F211E69E5F6339C4F9AE02/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4B1A/5DD48AB689F211E69E5F6339C4F9AE02/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:ab:8b:5d:b2:b3:7a:e8:f5:81:4f:fa:e9:5b:4e:dd:f0:81: 37:d6:b2:79:e6:85:3f:80:a3:79:96:bc:cb:51:4a:6e:3a:9b: 8a:58:f6:a7:4c:35:50:ec:f7:fb:78:41:a7:e3:8b:1b:bb:de: f1:24:14:1d:07:53:35:8c:8d:08:8e:8e:8c:0c:22:7a:15:3b: 92:9a:a9:e7:37:26:13:8b:36:77:77:14:70:da:6f:34:19:41: 5e:90:cb:7f:38:c4:d0:44:44:61:94:a4:f1:55:66:5b:78:0c: 2f:36:39:0b:95:e3:72:c9:3f:81:46:55:fb:32:de:1e:31:d6: 02:45:ad:e3:c2:22:88:bd:94:76:f7:f4:75:ab:f4:1e:5f:11: 35:bf:a4:4c:c9:11:95:13:57:c2:86:a8:e2:35:ec:bf:7b:59: 9d:c7:2b:7a:6f:39:44:86:a1:3b:c3:ef:cc:fb:77:7e:4c:ca: d1:38:b2:31:c8:4c:67:61:7e:cd:6c:98:d0:09:59:ff:d9:4c: 5d:72:a0:5c:c4:0f:fd:41:c2:52:66:17:84:10:89:c5:09:f0: 0e:4b:25:ca:28:29:ee:69:76:ec:3d:bc:ec:31:70:c6:63:6d: 8f:ae:10:7e:6d:48:10:22:44:99:97:2a:2a:37:43:e7:46:6b: 83:62:7c:7c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICHtwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRCMUExMTAvBgNVBAUTKENFMTE0NjgwRkY2RjREOUJDM0YxODgwRDYxMEQ2QUVF RUFFQkYwRDQwHhcNMjYwMzMwMTYwMzE4WhcNMjYwNDA2MTYwMzE4WjAYMRYwFAYD VQQDEw02OWNhOWVjNi01ZTVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA47AjX1zUv6TOv4a7wujWAoT6kqTYbGqboOGLK3lW40bo5RwjlRHxR0HoMSnB D2QjF7IjZmpB2uUxzD9h8nqq0iIWJ5i86fJOjRbJnsW7JBsHGM0jO6ONN6M+wS2h cLNpbSUSjIkUfw8bRwPMmkDsqfcPbekn4ryvlModIWFj8MWIgD89vBX7LMZnNoNo iMs9djQHrWbLQMm/tmnwRhwTQYibQ5QEInAkU1Dz8DicIB7p3ncAIMBv9oMPWAjk li5e/pbqhAtZCmjg++mdCheAtdpjoGlynpiPTYDHylfT6FbAscoxVr9CgrPEPdac SAuz8Lyxohx6rQCTQN72LBgjoQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLtEm6g7 XUyMljtLKWxC8hvXDfHuMB8GA1UdIwQYMBaAFM4RRoD/b02bw/GIDWENau7q6/DU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEIxQS81REQ0OEFCNjg5 RjIxMUU2OUU1RjYzMzlDNEY5QUUwMi96aEZHZ1A5dlRadkQ4WWdOWVExcTd1cnI4 TlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3poRkdnUDl2VFp2RDhZZ05ZUTFxN3VycjhOUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NEIxQS81REQ0OEFCNjg5RjIxMUU2OUU1RjYzMzlDNEY5QUUwMi96aEZHZ1A5dlRa dkQ4WWdOWVExcTd1cnI4TlEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAHquLXbKzeuj1gU/66VtO3fCBN9ayeeaFP4CjeZa8y1FKbjqbilj2p0w1UOz3 +3hBp+OLG7ve8SQUHQdTNYyNCI6OjAwiehU7kpqp5zcmE4s2d3cUcNpvNBlBXpDL fzjE0EREYZSk8VVmW3gMLzY5C5Xjcsk/gUZV+zLeHjHWAkWt48IiiL2Udvf0dav0 Hl8RNb+kTMkRlRNXwoao4jXsv3tZnccrem85RIahO8PvzPt3fkzK0TiyMchMZ2F+ zWyY0AlZ/9lMXXKgXMQP/UHCUmYXhBCJxQnwDkslyigp7ml27D287DFwxmNtj64Q fm1IECJEmZcqKjdD50Zrg2J8fA== -----END CERTIFICATE-----Generated at Tue Mar 31 04:32:24 2026 by rpki-client