$ rpki-client -vvf rpki.apnic.net/member_repository/A912519D/B8280664C75A11EB81E99E19C4F9AE02/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.mft File: ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.mft (raw, json) Hash identifier: JEXuShx0yyATAzuGX4IJXoQRTKoqzKyUGUGn0VpGkyo= Subject key identifier: B5:96:E4:0A:FD:4E:42:F9:D7:2B:05:9A:1B:C4:DD:18:81:C5:C6:E1 Authority key identifier: 66:B9:D8:4F:43:36:A8:9D:84:D1:E0:2E:82:0A:79:68:6E:1E:52:C4 Certificate issuer: /CN=A912519D/serialNumber=66B9D84F4336A89D84D1E02E820A79686E1E52C4 Certificate serial: 0670 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912519D/B8280664C75A11EB81E99E19C4F9AE02/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.mft Manifest number: 0669 Signing time: Tue 12 May 2026 22:41:40 +0000 Manifest this update: Tue 12 May 2026 22:41:40 +0000 Manifest next update: Tue 19 May 2026 22:41:40 +0000 Files and hashes: 1: ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.crl (hash: aC6/hQJUzIQ+jTQW40Xp3+ulkHEnIrb2faxTnt9yADc=) 2: 10581DEAC75D11EBB00EBD1AC4F9AE02.roa (hash: 5sKr5Je6hbpFf2Q5JDk7nrFaAZ90rKYQRnu0lj3etl0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912519D/B8280664C75A11EB81E99E19C4F9AE02/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.crl rsync://rpki.apnic.net/member_repository/A912519D/B8280664C75A11EB81E99E19C4F9AE02/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 22:41:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1648 (0x670) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912519D, serialNumber=66B9D84F4336A89D84D1E02E820A79686E1E52C4 Validity Not Before: May 12 22:41:40 2026 GMT Not After : May 19 22:41:40 2026 GMT Subject: CN=6a03aca4-cc1f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:85:b8:f5:30:43:09:df:e6:31:2f:c1:b4:04: ab:c8:5e:98:9d:63:fb:f4:0c:7d:b5:30:2d:b9:44: 52:0d:9d:cd:af:c6:b3:9b:69:46:47:ca:9a:e2:09: a9:95:0d:99:92:a8:a1:90:bf:84:ad:42:5c:d0:3e: d1:2c:ac:5f:15:a4:2b:e7:f2:75:7b:9e:90:72:49: ce:24:ee:fa:53:3d:d6:0e:28:a0:71:a9:9b:da:4a: 7b:7b:a0:e3:9c:ee:7a:82:77:6d:a4:dd:0f:e2:d9: 60:b8:b8:da:59:4c:d6:94:6e:55:3b:48:09:77:2f: cc:a4:4e:65:04:1f:7d:78:d5:98:ce:9e:d3:68:71: 53:0c:66:bf:f1:ee:3f:aa:a7:24:c5:64:af:2b:bd: 12:14:96:33:b0:2c:1a:3a:33:c7:e0:21:bc:36:9b: 54:77:3d:b2:30:ea:64:21:85:8e:c5:7b:28:55:38: b7:d3:83:bd:72:b9:84:58:52:a0:66:d5:2b:05:40: 50:f9:89:51:35:61:4f:46:ed:4e:c1:95:66:26:6e: f3:68:b7:9b:19:58:d9:58:17:d2:b6:6d:26:4d:09: 02:f7:75:ec:06:b7:08:3b:68:8e:10:6d:b9:88:8c: 81:1f:4f:4f:78:07:c9:d3:3c:5f:aa:7e:17:c2:77: 55:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:96:E4:0A:FD:4E:42:F9:D7:2B:05:9A:1B:C4:DD:18:81:C5:C6:E1 X509v3 Authority Key Identifier: keyid:66:B9:D8:4F:43:36:A8:9D:84:D1:E0:2E:82:0A:79:68:6E:1E:52:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912519D/B8280664C75A11EB81E99E19C4F9AE02/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912519D/B8280664C75A11EB81E99E19C4F9AE02/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:23:a8:67:ce:c8:d6:64:e8:63:8f:e7:c0:a0:41:35:6b:71: 17:ba:c8:f9:90:61:6a:9d:87:d0:c5:e9:bb:87:ea:7a:95:23: 87:e8:0c:c3:19:e9:68:94:4c:f3:30:94:94:f1:be:d6:44:b4: 88:4b:87:67:91:05:6e:01:c3:5c:0b:61:4c:af:3a:6c:6d:ae: 1a:07:9e:33:c5:4b:8f:da:1f:1f:8d:63:60:ad:07:52:28:9c: bb:e5:12:78:57:86:a5:6f:ad:4e:32:c6:b8:3c:66:7c:ce:52: b4:dc:4b:88:b9:83:6e:f4:25:a4:95:2d:a7:77:7e:4d:ad:5e: 7e:c6:91:35:bc:ea:cf:c8:60:28:c9:14:64:e3:a9:22:ab:19: 32:ce:0b:0d:52:14:93:97:89:ad:8a:b2:86:ea:b8:37:f7:a5: 0a:b8:03:eb:94:54:0e:9d:6e:40:9f:61:60:3b:5b:dc:14:9b: 0b:ca:f7:1a:36:ea:3a:69:ca:ca:da:b8:59:67:93:cc:17:a5: b2:c7:c3:7b:0f:24:04:bd:ed:23:4d:32:62:31:06:7f:42:ed: 9b:0a:3a:c9:bf:ed:b2:a1:03:77:a6:17:78:d2:cf:a2:82:d1: 4b:d7:fe:e5:13:9a:86:79:f0:b5:d1:ea:02:c0:fb:be:57:e3: ef:1f:a2:98 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBnAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjUxOUQxMTAvBgNVBAUTKDY2QjlEODRGNDMzNkE4OUQ4NEQxRTAyRTgyMEE3OTY4 NkUxRTUyQzQwHhcNMjYwNTEyMjI0MTQwWhcNMjYwNTE5MjI0MTQwWjAYMRYwFAYD VQQDEw02YTAzYWNhNC1jYzFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArIW49TBDCd/mMS/BtASryF6YnWP79Ax9tTAtuURSDZ3Nr8azm2lGR8qa4gmp lQ2ZkqihkL+ErUJc0D7RLKxfFaQr5/J1e56QcknOJO76Uz3WDiigcamb2kp7e6Dj nO56gndtpN0P4tlguLjaWUzWlG5VO0gJdy/MpE5lBB99eNWYzp7TaHFTDGa/8e4/ qqckxWSvK70SFJYzsCwaOjPH4CG8NptUdz2yMOpkIYWOxXsoVTi304O9crmEWFKg ZtUrBUBQ+YlRNWFPRu1OwZVmJm7zaLebGVjZWBfStm0mTQkC93XsBrcIO2iOEG25 iIyBH09PeAfJ0zxfqn4XwndVmQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLWW5Ar9 TkL51ysFmhvE3RiBxcbhMB8GA1UdIwQYMBaAFGa52E9DNqidhNHgLoIKeWhuHlLE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNTE5RC9CODI4MDY2NEM3 NUExMUVCODFFOTlFMTlDNEY5QUUwMi9acm5ZVDBNMnFKMkUwZUF1Z2dwNWFHNGVV c1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pybllUME0ycUoyRTBlQXVnZ3A1YUc0ZVVzUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NTE5RC9CODI4MDY2NEM3NUExMUVCODFFOTlFMTlDNEY5QUUwMi9acm5ZVDBNMnFK MkUwZUF1Z2dwNWFHNGVVc1EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAiCOoZ87I1mToY4/nwKBBNWtxF7rI+ZBhap2H0MXpu4fqepUjh+gMwxnpaJRM 8zCUlPG+1kS0iEuHZ5EFbgHDXAthTK86bG2uGgeeM8VLj9ofH41jYK0HUiicu+US eFeGpW+tTjLGuDxmfM5StNxLiLmDbvQlpJUtp3d+Ta1efsaRNbzqz8hgKMkUZOOp IqsZMs4LDVIUk5eJrYqyhuq4N/elCrgD65RUDp1uQJ9hYDtb3BSbC8r3GjbqOmnK ytq4WWeTzBelssfDew8kBL3tI00yYjEGf0Ltmwo6yb/tsqEDd6YXeNLPooLRS9f+ 5ROahnnwtdHqAsD7vlfj7x+imA== -----END CERTIFICATE-----Generated at Wed May 13 16:13:09 2026 by rpki-client