$ rpki-client -vvf rpki.apnic.net/member_repository/A91D462A/4CBD3F8450D511E79313AE12C4F9AE02/z3Ess4nuhNoZypgd5jD1Cf9EzUU.mft File: z3Ess4nuhNoZypgd5jD1Cf9EzUU.mft (raw, json) Hash identifier: DZkuKHlNlTmuG12s82mpKqHxtOaKSyp+smujCPIGz70= Subject key identifier: 1F:74:E5:4A:0D:5A:DC:44:8E:4E:30:0C:F4:63:A3:D7:54:D0:60:EF Authority key identifier: CF:71:2C:B3:89:EE:84:DA:19:CA:98:1D:E6:30:F5:09:FF:44:CD:45 Certificate issuer: /CN=A91D462A/serialNumber=CF712CB389EE84DA19CA981DE630F509FF44CD45 Certificate serial: 1AD4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3Ess4nuhNoZypgd5jD1Cf9EzUU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D462A/4CBD3F8450D511E79313AE12C4F9AE02/z3Ess4nuhNoZypgd5jD1Cf9EzUU.mft Manifest number: 1AB2 Signing time: Fri 06 Mar 2026 16:11:51 +0000 Manifest this update: Fri 06 Mar 2026 16:11:51 +0000 Manifest next update: Fri 13 Mar 2026 16:11:51 +0000 Files and hashes: 1: z3Ess4nuhNoZypgd5jD1Cf9EzUU.crl (hash: t3veyU7RHI4ZKlCfV6rCc/8SHi3pnTI3VoGIATEEbdo=) 2: F39D90EE561B11EFB51A9149C4F9AE02.roa (hash: Nh1Q+Dya7glLRU5/4sMU0gPbts/P00D+f3Yj7z1hNXY=) 3: 84559BB01D4611EDBB06705BC4F9AE02.roa (hash: ek0EmyZead5ZJJnD9KC5i+nnHS75fiqaYseVOZ4RMtQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D462A/4CBD3F8450D511E79313AE12C4F9AE02/z3Ess4nuhNoZypgd5jD1Cf9EzUU.crl rsync://rpki.apnic.net/member_repository/A91D462A/4CBD3F8450D511E79313AE12C4F9AE02/z3Ess4nuhNoZypgd5jD1Cf9EzUU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3Ess4nuhNoZypgd5jD1Cf9EzUU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 16:11:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6868 (0x1ad4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D462A, serialNumber=CF712CB389EE84DA19CA981DE630F509FF44CD45 Validity Not Before: Mar 6 16:11:51 2026 GMT Not After : Mar 13 16:11:51 2026 GMT Subject: CN=69aafcc7-4026 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:5c:90:58:e9:82:43:fb:fe:73:b4:19:be:86: a0:74:d3:74:74:77:1a:47:d7:50:ef:c0:87:02:23: 93:e2:62:30:c7:4c:fe:10:c6:92:f4:06:61:83:e8: a2:bf:2e:ae:8c:df:f9:8a:d0:7e:5e:41:e2:7c:3e: 17:d0:0f:aa:99:64:cf:1d:b5:a8:0a:8e:a9:2b:31: 4d:7a:3e:b3:4d:5b:1a:95:04:c3:09:20:7e:41:ea: 4a:5b:37:54:13:a5:e2:4a:bc:71:a6:8a:9d:ac:b0: 6d:5b:bf:b2:17:5d:30:a4:7c:f7:e8:8a:1c:8a:3e: 44:39:25:a8:a4:2f:a0:45:72:b3:ae:74:ce:cd:db: 22:09:3f:4b:31:ab:85:ad:13:c3:fd:42:72:04:3b: 89:c2:f0:dc:58:ef:b3:18:7d:6e:33:5a:86:fe:fc: c2:0e:4b:64:95:a7:54:9b:14:22:09:c8:d7:10:aa: ad:51:e3:bc:0d:3f:64:a7:32:09:4a:90:d7:c4:61: a0:ed:9b:02:63:1f:f7:b8:5e:8e:3c:f8:49:dd:d5: 58:36:06:ac:6e:dd:73:8f:8a:ed:72:55:1d:aa:80: 4f:20:d9:ae:58:65:19:86:7c:a1:36:60:ce:6a:3e: ff:5f:41:7e:eb:85:d2:96:05:77:f2:a4:2b:52:4d: 47:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:74:E5:4A:0D:5A:DC:44:8E:4E:30:0C:F4:63:A3:D7:54:D0:60:EF X509v3 Authority Key Identifier: keyid:CF:71:2C:B3:89:EE:84:DA:19:CA:98:1D:E6:30:F5:09:FF:44:CD:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D462A/4CBD3F8450D511E79313AE12C4F9AE02/z3Ess4nuhNoZypgd5jD1Cf9EzUU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3Ess4nuhNoZypgd5jD1Cf9EzUU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D462A/4CBD3F8450D511E79313AE12C4F9AE02/z3Ess4nuhNoZypgd5jD1Cf9EzUU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d4:f4:56:39:22:ce:e0:20:d0:57:5e:99:e0:0b:fb:a4:30:cd: 0b:c4:b3:d0:bb:32:c8:24:49:20:24:c4:4b:2b:ca:e6:7a:a7: 9e:fa:23:bd:b6:dc:cf:28:b5:e1:25:b5:5f:99:34:3d:80:ff: 74:ad:56:24:b8:3b:37:52:bc:df:f3:cf:cb:86:cf:87:17:6b: a1:c4:f5:f3:e6:9f:43:d1:af:bb:66:fb:f3:7b:35:40:59:4d: b8:7f:c0:75:3a:b1:09:e7:3c:ea:c5:70:33:46:8f:b1:8b:b7: 2b:09:36:5d:e9:95:06:f7:01:15:42:1a:4c:b3:ab:72:f5:f8: 49:51:08:e4:81:bb:58:51:6b:42:18:df:0a:fb:ab:1a:a0:8a: 7c:23:1f:3e:b3:61:ee:4b:a5:02:26:f6:f8:75:30:94:76:38: b4:75:23:0d:f7:ed:de:2e:cd:d2:94:02:cf:95:9b:fd:26:80: 6b:42:fb:e1:c8:7c:56:7b:53:ee:ea:6e:09:30:1f:93:31:5b: ae:08:a4:3c:54:eb:eb:6c:56:56:a5:f7:27:c4:5d:a9:e9:6f: c6:89:9d:72:9d:eb:fe:fb:da:11:47:c3:17:cf:72:51:85:f4: 83:f0:49:45:ac:cb:b5:c8:84:0a:69:09:fd:fb:1b:3b:f6:0d: eb:c3:46:e6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICGtQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ2MkExMTAvBgNVBAUTKENGNzEyQ0IzODlFRTg0REExOUNBOTgxREU2MzBGNTA5 RkY0NENENDUwHhcNMjYwMzA2MTYxMTUxWhcNMjYwMzEzMTYxMTUxWjAYMRYwFAYD VQQDEw02OWFhZmNjNy00MDI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz1yQWOmCQ/v+c7QZvoagdNN0dHcaR9dQ78CHAiOT4mIwx0z+EMaS9AZhg+ii vy6ujN/5itB+XkHifD4X0A+qmWTPHbWoCo6pKzFNej6zTVsalQTDCSB+QepKWzdU E6XiSrxxpoqdrLBtW7+yF10wpHz36Iocij5EOSWopC+gRXKzrnTOzdsiCT9LMauF rRPD/UJyBDuJwvDcWO+zGH1uM1qG/vzCDktkladUmxQiCcjXEKqtUeO8DT9kpzIJ SpDXxGGg7ZsCYx/3uF6OPPhJ3dVYNgasbt1zj4rtclUdqoBPINmuWGUZhnyhNmDO aj7/X0F+64XSlgV38qQrUk1H9wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFB905UoN WtxEjk4wDPRjo9dU0GDvMB8GA1UdIwQYMBaAFM9xLLOJ7oTaGcqYHeYw9Qn/RM1F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDYyQS80Q0JEM0Y4NDUw RDUxMUU3OTMxM0FFMTJDNEY5QUUwMi96M0VzczRudWhOb1p5cGdkNWpEMUNmOUV6 VVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ozRXNzNG51aE5vWnlwZ2Q1akQxQ2Y5RXpVVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDYyQS80Q0JEM0Y4NDUwRDUxMUU3OTMxM0FFMTJDNEY5QUUwMi96M0VzczRudWhO b1p5cGdkNWpEMUNmOUV6VVUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEA1PRWOSLO4CDQV16Z4Av7pDDNC8Sz0LsyyCRJICTESyvK5nqnnvojvbbczyi1 4SW1X5k0PYD/dK1WJLg7N1K83/PPy4bPhxdrocT18+afQ9Gvu2b783s1QFlNuH/A dTqxCec86sVwM0aPsYu3Kwk2XemVBvcBFUIaTLOrcvX4SVEI5IG7WFFrQhjfCvur GqCKfCMfPrNh7kulAib2+HUwlHY4tHUjDfft3i7N0pQCz5Wb/SaAa0L74ch8VntT 7upuCTAfkzFbrgikPFTr62xWVqX3J8Rdqelvxomdcp3r/vvaEUfDF89yUYX0g/BJ RazLtciECmkJ/fsbO/YN68NG5g== -----END CERTIFICATE-----Generated at Sat Mar 7 12:45:17 2026 by rpki-client