$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.mft File: ZKZlgWrv7XOzB1AH2lM3rH3sS4E.mft (raw, json) Hash identifier: ZQXJ46jr7JpKtj8jhlMjATQk7C40nlYV2hNB3VtP9sA= Subject key identifier: 3A:95:07:4F:BE:12:41:8C:84:C9:C7:7F:1D:04:01:CD:5F:5C:D6:D2 Authority key identifier: 64:A6:65:81:6A:EF:ED:73:B3:07:50:07:DA:53:37:AC:7D:EC:4B:81 Certificate issuer: /CN=A91E6D5D/serialNumber=64A665816AEFED73B3075007DA5337AC7DEC4B81 Certificate serial: 1B81 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.mft Manifest number: A193 Signing time: Thu 12 Mar 2026 14:29:41 +0000 Manifest this update: Thu 12 Mar 2026 14:29:40 +0000 Manifest next update: Thu 19 Mar 2026 14:29:40 +0000 Files and hashes: 1: ZKZlgWrv7XOzB1AH2lM3rH3sS4E.crl (hash: f5bUfsVfHzkPwjCvZG2NC6Ivysh3fguawog4CLn+IbQ=) 2: ACC8833824DE11EDAEC0E529C4F9AE02.roa (hash: VvIC3+qoyWVc5/YarSMXpqG6dgPJwiuodUj66R2QE3E=) 3: 4FF339D8F01D11EB8C4B505BC4F9AE02.roa (hash: SAu8SeifBHI2Yg+q3E52ilKEI2hUMKhgaDda7iU0waw=) 4: 3D68F8C29A4A11EA94706012C4F9AE02.roa (hash: M3JbVNWqPaa0MJB5ijlSnoeyDvUuuhEmsmhTjsqGYko=) 5: C89FD6DA557611EBA04C290BC4F9AE02.roa (hash: mWydfb3LjFkHvOgQ8AUkwmK5kNuLziloyL91HhtrlOQ=) 6: 959AC422557911EBBD21EB2FC4F9AE02.roa (hash: 7D5czzXP+//E4+RhWIwHXv8l2H+/7gFJiEyQmF6T8lg=) 7: FC6A19D892D511EC8FBFF32AC4F9AE02.roa (hash: a35oot87/R1elnaG5CRh7EvhVyWIL49AoJbo2/zx3s0=) 8: 20C6F2EC699D11EAA33EAE83C4F9AE02.roa (hash: pJMsFDa2IiscUlM6zrzKfc9Qr8s1FCM7+jFA2I77lGg=) 9: 9907DC46D4BC11EF9BDDAF2EC4F9AE02.roa (hash: S4nPh4zTGC2QdGuAUvATaghlQaT7UNDUq/9SQDT9igE=) 10: 0B24875C7A4411EB804B7430C4F9AE02.roa (hash: osQkwEsqJzh/lJgX1bFEAnSjXXsbhPdC6B6G6iIzx8k=) 11: 191363A69DD911EC99D91668C4F9AE02.roa (hash: PkqCDNqOzvSAwmBBvGeKvAqx6KBFKBuFLlJLqk6v1i0=) 12: 1BF3A43C15BE11EF93ABFD7DC4F9AE02.roa (hash: 8tQmMu2ovFLLXUgOys2Ll3oQj84jqx+i81WP9ngVP5Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.crl rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 14:29:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7041 (0x1b81) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6D5D, serialNumber=64A665816AEFED73B3075007DA5337AC7DEC4B81 Validity Not Before: Mar 12 14:29:40 2026 GMT Not After : Mar 19 14:29:40 2026 GMT Subject: CN=69b2cdd4-4a4a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:59:09:bf:3e:e3:c4:97:4e:17:07:1b:f4:07: 4e:71:69:ab:c4:ef:72:cb:bc:04:38:f2:06:2e:7e: 63:4f:39:9d:12:28:7f:15:f0:46:b8:53:51:14:ef: 4f:11:8b:e4:4e:0f:e7:d9:71:8c:04:9b:7f:03:ef: c3:3e:46:c8:d5:d1:72:4e:58:72:48:04:31:92:90: e5:14:a2:17:0c:0a:fd:ce:c6:1c:de:ef:b4:02:2c: 9d:19:dd:c1:3f:84:31:31:25:97:47:31:5a:86:85: c2:4b:0c:01:48:c6:27:df:76:43:20:38:a9:f7:a6: ed:0e:ac:17:dc:b9:9f:65:21:ec:4d:78:18:41:ba: ab:67:56:2a:67:08:ce:02:e9:4c:0f:bd:ff:a1:7b: 05:02:b3:a0:4b:53:8f:b4:82:bd:cc:df:fb:5a:5a: d9:3f:08:68:05:fd:d8:57:b4:03:a3:28:36:87:36: 89:85:90:65:04:40:ca:2d:4f:51:25:05:13:c5:ea: 81:e8:33:31:a9:77:4d:57:3c:44:27:51:17:7f:1d: b4:ef:3d:5b:4d:80:08:bf:c9:aa:e4:58:f7:01:eb: 08:74:ee:e8:7a:4a:ed:0b:b9:c4:f8:ec:f8:cd:81: 9c:83:96:13:c3:85:89:fa:8d:8a:3c:c6:b9:47:7b: 16:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:95:07:4F:BE:12:41:8C:84:C9:C7:7F:1D:04:01:CD:5F:5C:D6:D2 X509v3 Authority Key Identifier: keyid:64:A6:65:81:6A:EF:ED:73:B3:07:50:07:DA:53:37:AC:7D:EC:4B:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:88:56:3a:45:b7:5f:2f:f9:9f:fc:a6:d4:0f:5a:d7:0d:9a: 7e:04:8a:56:e5:0a:cf:50:0a:b9:3d:97:ea:f3:1b:7d:ac:81: 25:03:96:77:f7:d0:d9:37:ef:e1:2e:fe:12:31:37:3f:67:89: a8:19:84:b5:6d:ce:99:e2:2d:80:a4:4b:95:15:ad:da:1b:86: 64:97:ad:45:3e:50:af:ff:ba:1e:1a:0d:18:d1:b2:db:18:3f: 74:6a:ae:43:60:be:a6:12:73:a7:db:f2:4a:c9:42:ca:b4:de: 51:f0:d4:1e:b3:83:99:af:1a:be:9c:be:60:7b:22:59:77:43: 9a:09:69:b6:d9:65:1d:86:1b:49:fe:56:1d:bd:24:70:d9:9b: ae:2d:84:fc:e8:b1:2a:c5:e4:b7:93:3f:a1:5d:53:e9:5a:ae: 18:75:d1:c6:7b:6c:89:8b:cc:c8:2b:2e:b6:ef:54:5d:a4:88: 54:e2:ef:5e:ab:17:ac:4a:79:eb:63:ab:a8:d7:05:bb:3d:f4: 11:c9:02:c4:a6:c9:74:4d:68:56:10:0e:a8:08:55:48:8a:22: 58:98:b0:9f:5d:f4:5d:86:ab:be:10:e0:92:e4:66:4b:42:5a: 65:4f:37:84:ac:11:43:9c:6a:77:44:59:6f:f5:20:0d:a7:a8: d6:fd:13:86 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICG4EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTZENUQxMTAvBgNVBAUTKDY0QTY2NTgxNkFFRkVENzNCMzA3NTAwN0RBNTMzN0FD N0RFQzRCODEwHhcNMjYwMzEyMTQyOTQwWhcNMjYwMzE5MTQyOTQwWjAYMRYwFAYD VQQDEw02OWIyY2RkNC00YTRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv1kJvz7jxJdOFwcb9AdOcWmrxO9yy7wEOPIGLn5jTzmdEih/FfBGuFNRFO9P EYvkTg/n2XGMBJt/A+/DPkbI1dFyTlhySAQxkpDlFKIXDAr9zsYc3u+0AiydGd3B P4QxMSWXRzFahoXCSwwBSMYn33ZDIDip96btDqwX3LmfZSHsTXgYQbqrZ1YqZwjO AulMD73/oXsFArOgS1OPtIK9zN/7WlrZPwhoBf3YV7QDoyg2hzaJhZBlBEDKLU9R JQUTxeqB6DMxqXdNVzxEJ1EXfx207z1bTYAIv8mq5Fj3AesIdO7oekrtC7nE+Oz4 zYGcg5YTw4WJ+o2KPMa5R3sWEwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDqVB0++ EkGMhMnHfx0EAc1fXNbSMB8GA1UdIwQYMBaAFGSmZYFq7+1zswdQB9pTN6x97EuB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNkQ1RC85RENCNjhFMDFE ODgxMUUyOTRCOTU1RTEwOEIwMkNEMi9aS1psZ1dydjdYT3pCMUFIMmxNM3JIM3NT NEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pLWmxnV3J2N1hPekIxQUgybE0zckgzc1M0RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NkQ1RC85RENCNjhFMDFEODgxMUUyOTRCOTU1RTEwOEIwMkNEMi9aS1psZ1dydjdY T3pCMUFIMmxNM3JIM3NTNEUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAeohWOkW3Xy/5n/ym1A9a1w2afgSKVuUKz1AKuT2X6vMbfayBJQOWd/fQ2Tfv 4S7+EjE3P2eJqBmEtW3OmeItgKRLlRWt2huGZJetRT5Qr/+6HhoNGNGy2xg/dGqu Q2C+phJzp9vySslCyrTeUfDUHrODma8avpy+YHsiWXdDmglpttllHYYbSf5WHb0k cNmbri2E/OixKsXkt5M/oV1T6VquGHXRxntsiYvMyCsutu9UXaSIVOLvXqsXrEp5 62OrqNcFuz30EckCxKbJdE1oVhAOqAhVSIoiWJiwn130XYarvhDgkuRmS0JaZU83 hKwRQ5xqd0RZb/UgDaeo1v0Thg== -----END CERTIFICATE-----Generated at Fri Mar 13 01:30:23 2026 by rpki-client