$ rpki-client -vvf rpki.apnic.net/member_repository/A912C8FA/4003F93054A311EEB75F4686C4F9AE02/AO-zr_90_WIfS42RFpt6HEOzlBc.mft File: AO-zr_90_WIfS42RFpt6HEOzlBc.mft (raw, json) Hash identifier: lQl3NMY3skX/SDXhKtduNbC6mzICHGRTVke+QdFoMU0= Subject key identifier: 57:FE:D2:15:84:83:BD:18:9C:11:69:7D:40:85:52:0C:06:AB:36:71 Authority key identifier: 00:EF:B3:AF:FF:74:FD:62:1F:4B:8D:91:16:9B:7A:1C:43:B3:94:17 Certificate issuer: /CN=A912C8FA/serialNumber=00EFB3AFFF74FD621F4B8D91169B7A1C43B39417 Certificate serial: 0209 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AO-zr_90_WIfS42RFpt6HEOzlBc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912C8FA/4003F93054A311EEB75F4686C4F9AE02/AO-zr_90_WIfS42RFpt6HEOzlBc.mft Manifest number: 01FE Signing time: Wed 13 May 2026 03:19:39 +0000 Manifest this update: Wed 13 May 2026 03:19:39 +0000 Manifest next update: Wed 20 May 2026 03:19:39 +0000 Files and hashes: 1: AO-zr_90_WIfS42RFpt6HEOzlBc.crl (hash: A1SowpSVovVevxIfUGe3cnMUamjlN1tIqdaYx9r11JI=) 2: A80498FABAAB11EEBA024655C4F9AE02.roa (hash: MYk/tsmYPGKMW1RbLDFAli+RCLkeKhKWOLY72aWyJCU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912C8FA/4003F93054A311EEB75F4686C4F9AE02/AO-zr_90_WIfS42RFpt6HEOzlBc.crl rsync://rpki.apnic.net/member_repository/A912C8FA/4003F93054A311EEB75F4686C4F9AE02/AO-zr_90_WIfS42RFpt6HEOzlBc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AO-zr_90_WIfS42RFpt6HEOzlBc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 03:19:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 521 (0x209) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912C8FA, serialNumber=00EFB3AFFF74FD621F4B8D91169B7A1C43B39417 Validity Not Before: May 13 03:19:39 2026 GMT Not After : May 20 03:19:39 2026 GMT Subject: CN=6a03edcb-b8d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:cf:bb:53:e7:49:48:f3:27:31:63:b3:2b:ec: 64:6d:ed:60:f9:56:3c:09:ef:eb:6d:9d:ca:0d:f8: e6:3c:2d:20:b1:5b:70:c5:0c:4e:a2:85:1e:b3:b7: ff:fa:69:8b:51:de:73:16:fb:4d:48:df:25:82:ea: 1f:71:c9:55:8b:d1:26:62:4b:c2:a6:ec:4d:f6:3c: 35:14:a6:58:05:c6:2d:b6:e3:fa:92:6b:cd:51:88: 98:a5:42:f9:3a:23:ec:97:71:8c:88:d3:49:1c:ed: 02:96:3e:fc:a9:64:8f:83:43:aa:1d:62:3a:be:b4: c6:20:f8:0e:e3:33:22:af:15:dc:2d:1d:02:b8:60: b5:4d:13:a3:41:ea:d6:a0:06:35:fa:34:64:57:c8: 8c:43:3a:95:70:b7:d5:19:c5:cd:2d:b0:2f:5d:e3: 61:dd:8b:7a:51:10:57:dc:fe:70:70:56:17:0c:34: 2b:20:45:8f:42:c9:85:3f:c1:7d:bc:95:af:ad:f4: d4:75:c6:69:d9:0b:20:93:0c:1d:0f:53:46:98:cf: 20:36:12:eb:48:18:b2:a6:cb:8c:cd:86:de:ac:f1: 54:cb:6a:42:a1:74:10:97:40:39:0b:1d:61:39:cf: 2b:bf:2c:80:b8:93:7e:a2:fb:84:80:45:bf:90:98: 51:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:FE:D2:15:84:83:BD:18:9C:11:69:7D:40:85:52:0C:06:AB:36:71 X509v3 Authority Key Identifier: keyid:00:EF:B3:AF:FF:74:FD:62:1F:4B:8D:91:16:9B:7A:1C:43:B3:94:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912C8FA/4003F93054A311EEB75F4686C4F9AE02/AO-zr_90_WIfS42RFpt6HEOzlBc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AO-zr_90_WIfS42RFpt6HEOzlBc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912C8FA/4003F93054A311EEB75F4686C4F9AE02/AO-zr_90_WIfS42RFpt6HEOzlBc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:fa:ec:6d:09:31:34:2f:15:5b:c5:0e:07:ee:e3:07:8b:7d: c1:99:9e:2f:b5:51:7a:a2:ec:10:c8:ed:ac:93:50:18:4b:90: 6f:59:62:89:dd:70:30:ca:0f:3e:61:62:03:9a:8d:51:a5:53: 21:55:96:8a:7e:64:61:54:3c:b6:77:00:20:1b:4f:30:c4:50: b7:50:7d:4e:41:a3:39:ae:f6:a4:40:f0:24:1c:3f:a5:0d:1f: 20:75:b2:6c:0c:3a:20:05:1a:df:df:49:8e:1b:bd:ae:f3:11: 62:e0:dd:ae:28:0c:2e:f6:6e:be:66:9c:aa:40:8c:4c:d3:7f: fc:d7:eb:0f:32:a9:b4:77:be:3f:fe:42:3c:23:00:a7:46:2f: ae:0f:4b:1d:c1:66:22:b1:5b:c2:ab:34:00:79:6b:b5:74:9e: 98:d5:a3:b8:14:24:93:00:84:ce:c4:e7:10:3e:60:16:08:67: 26:66:3a:09:28:98:29:27:54:47:33:4c:7d:3f:82:ee:b0:ab: fc:3f:07:30:24:73:8d:e7:0a:e8:6a:cd:55:2c:8b:d3:f0:05: c3:ee:c2:ad:6b:05:d6:fa:fe:ea:35:d4:c6:fa:99:10:ee:9a: aa:d8:20:03:9b:93:c1:54:65:ba:1e:70:ae:05:47:65:cf:f4: e4:13:4d:18 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAgkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkM4RkExMTAvBgNVBAUTKDAwRUZCM0FGRkY3NEZENjIxRjRCOEQ5MTE2OUI3QTFD NDNCMzk0MTcwHhcNMjYwNTEzMDMxOTM5WhcNMjYwNTIwMDMxOTM5WjAYMRYwFAYD VQQDEw02YTAzZWRjYi1iOGQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwc+7U+dJSPMnMWOzK+xkbe1g+VY8Ce/rbZ3KDfjmPC0gsVtwxQxOooUes7f/ +mmLUd5zFvtNSN8lguofcclVi9EmYkvCpuxN9jw1FKZYBcYttuP6kmvNUYiYpUL5 OiPsl3GMiNNJHO0Clj78qWSPg0OqHWI6vrTGIPgO4zMirxXcLR0CuGC1TROjQerW oAY1+jRkV8iMQzqVcLfVGcXNLbAvXeNh3Yt6URBX3P5wcFYXDDQrIEWPQsmFP8F9 vJWvrfTUdcZp2QsgkwwdD1NGmM8gNhLrSBiypsuMzYberPFUy2pCoXQQl0A5Cx1h Oc8rvyyAuJN+ovuEgEW/kJhRgwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFf+0hWE g70YnBFpfUCFUgwGqzZxMB8GA1UdIwQYMBaAFADvs6//dP1iH0uNkRabehxDs5QX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQzhGQS80MDAzRjkzMDU0 QTMxMUVFQjc1RjQ2ODZDNEY5QUUwMi9BTy16cl85MF9XSWZTNDJSRnB0NkhFT3ps QmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FPLXpyXzkwX1dJZlM0MlJGcHQ2SEVPemxCYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QzhGQS80MDAzRjkzMDU0QTMxMUVFQjc1RjQ2ODZDNEY5QUUwMi9BTy16cl85MF9X SWZTNDJSRnB0NkhFT3psQmMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAoPrsbQkxNC8VW8UOB+7jB4t9wZmeL7VReqLsEMjtrJNQGEuQb1liid1wMMoP PmFiA5qNUaVTIVWWin5kYVQ8tncAIBtPMMRQt1B9TkGjOa72pEDwJBw/pQ0fIHWy bAw6IAUa399Jjhu9rvMRYuDdrigMLvZuvmacqkCMTNN//NfrDzKptHe+P/5CPCMA p0Yvrg9LHcFmIrFbwqs0AHlrtXSemNWjuBQkkwCEzsTnED5gFghnJmY6CSiYKSdU RzNMfT+C7rCr/D8HMCRzjecK6GrNVSyL0/AFw+7CrWsF1vr+6jXUxvqZEO6aqtgg A5uTwVRluh5wrgVHZc/05BNNGA== -----END CERTIFICATE-----Generated at Wed May 13 12:08:47 2026 by rpki-client