$ rpki-client -vvf rpki.apnic.net/member_repository/A9151932/521C8E5C720711EF9DC8BA21C4F9AE02/ZeF3DniFUQoYzpDYqt2e3n1bNVM.mft File: ZeF3DniFUQoYzpDYqt2e3n1bNVM.mft (raw, json) Hash identifier: YtKkOk3UHljYVs4SiKPrp5fvU4YIN11j5uQUPRcXykc= Subject key identifier: 4C:B7:F1:D2:A9:F7:7B:A8:DC:2C:08:59:5B:CE:69:9C:6D:44:6C:2C Authority key identifier: 65:E1:77:0E:78:85:51:0A:18:CE:90:D8:AA:DD:9E:DE:7D:5B:35:53 Certificate issuer: /CN=A9151932/serialNumber=65E1770E7885510A18CE90D8AADD9EDE7D5B3553 Certificate serial: 015F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZeF3DniFUQoYzpDYqt2e3n1bNVM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9151932/521C8E5C720711EF9DC8BA21C4F9AE02/ZeF3DniFUQoYzpDYqt2e3n1bNVM.mft Manifest number: 0152 Signing time: Wed 13 May 2026 05:31:11 +0000 Manifest this update: Wed 13 May 2026 05:31:10 +0000 Manifest next update: Wed 20 May 2026 05:31:10 +0000 Files and hashes: 1: ZeF3DniFUQoYzpDYqt2e3n1bNVM.crl (hash: UgT3wqRiphDc70JXMx+herEDSBzQFlsGXuRU/TRKXFA=) 2: 747C668ECCD911EF9B52C877C4F9AE02.roa (hash: 6UIx7UGJ9VYUN/t3RJGwJzqK/FjOLybUBY/WX4mX9U0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9151932/521C8E5C720711EF9DC8BA21C4F9AE02/ZeF3DniFUQoYzpDYqt2e3n1bNVM.crl rsync://rpki.apnic.net/member_repository/A9151932/521C8E5C720711EF9DC8BA21C4F9AE02/ZeF3DniFUQoYzpDYqt2e3n1bNVM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZeF3DniFUQoYzpDYqt2e3n1bNVM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 05:31:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 351 (0x15f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9151932, serialNumber=65E1770E7885510A18CE90D8AADD9EDE7D5B3553 Validity Not Before: May 13 05:31:10 2026 GMT Not After : May 20 05:31:10 2026 GMT Subject: CN=6a040c9f-8d50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:71:2b:99:25:4f:0a:ad:b5:e4:08:7b:7f:b4: ff:91:e0:dd:d7:c9:f0:55:a4:3c:14:8e:ec:0b:55: 3e:b0:f6:6e:3f:0b:59:57:05:95:9a:70:08:96:f6: 2e:5c:09:f0:a3:b2:94:a7:fa:54:70:59:0f:f5:0c: d2:44:22:6a:e9:0f:36:18:88:3b:36:31:a3:f2:27: cc:2e:10:0d:0b:63:17:7f:b3:50:5b:a7:4f:a8:77: e2:6d:df:ca:75:a1:e8:51:64:ac:05:ac:11:81:9d: 04:d6:08:30:60:d0:56:e6:06:0e:8d:d4:88:b6:ad: 34:49:d0:c2:45:6b:32:d0:55:30:db:2b:fd:a0:0d: b1:77:c8:c1:5e:5b:74:32:04:37:19:c2:c2:ef:9e: 3f:35:81:53:08:8a:46:d7:04:d6:bc:10:ad:b8:db: 92:18:de:5a:61:cd:b0:49:ee:5c:b3:cb:37:55:5c: b2:42:14:64:e8:0a:1d:74:0b:d0:21:31:56:ee:34: 96:c1:6d:1d:72:e1:78:05:c6:a0:08:1e:99:7f:77: 57:3e:96:9e:14:4c:b5:b9:d6:72:59:ac:c6:c8:2e: ba:2d:dd:ee:a2:97:6e:9a:82:35:ed:2b:5e:52:ba: b0:a1:a1:2d:a1:51:79:d5:16:08:f7:69:e3:c0:be: ca:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:B7:F1:D2:A9:F7:7B:A8:DC:2C:08:59:5B:CE:69:9C:6D:44:6C:2C X509v3 Authority Key Identifier: keyid:65:E1:77:0E:78:85:51:0A:18:CE:90:D8:AA:DD:9E:DE:7D:5B:35:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9151932/521C8E5C720711EF9DC8BA21C4F9AE02/ZeF3DniFUQoYzpDYqt2e3n1bNVM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZeF3DniFUQoYzpDYqt2e3n1bNVM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9151932/521C8E5C720711EF9DC8BA21C4F9AE02/ZeF3DniFUQoYzpDYqt2e3n1bNVM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:2c:a0:99:e9:40:61:20:ee:3f:9a:c0:48:ce:46:60:9a:2e: a3:f9:41:e9:4f:34:09:99:71:62:2f:17:dd:c4:9c:b0:23:ff: 44:8e:33:6a:d4:85:10:38:75:78:bb:4f:4e:4b:f4:f7:73:e0: 5e:f1:da:64:f2:86:85:7c:6b:5b:d3:e9:8c:dd:8d:3d:5e:5b: ff:be:d9:c4:cf:1f:90:30:4f:ca:e4:db:d1:95:c6:c3:88:c8: 27:a6:21:4c:f3:76:cf:2e:7f:ae:ec:8a:d6:6d:65:2b:b3:d9: 1a:4d:11:ff:41:c5:38:ec:82:b7:6a:37:d3:b6:b4:1b:52:44: 42:64:3e:e2:4b:43:32:6a:f0:33:61:85:e7:9a:96:00:f0:06: 33:2b:9a:d4:42:c2:85:66:0e:0f:dd:a8:78:ab:be:6b:16:01: 06:b2:23:47:de:c9:22:72:24:1a:41:aa:bc:3e:b8:e7:bb:c5: f9:d1:a5:50:63:e7:a4:8a:6d:51:d4:5d:76:7a:0f:5d:bd:8f: 24:d4:36:c6:e0:f1:97:e8:c1:10:3d:89:13:28:35:7c:2f:4b: 18:7e:25:9a:e2:29:98:da:9f:4a:58:30:78:3a:ae:10:01:24: c5:fe:73:b2:8e:5d:a7:48:2b:f5:e5:d6:93:47:f1:16:d6:b7: be:38:69:21 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAV8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE5MzIxMTAvBgNVBAUTKDY1RTE3NzBFNzg4NTUxMEExOENFOTBEOEFBREQ5RURF N0Q1QjM1NTMwHhcNMjYwNTEzMDUzMTEwWhcNMjYwNTIwMDUzMTEwWjAYMRYwFAYD VQQDEw02YTA0MGM5Zi04ZDUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsHErmSVPCq215Ah7f7T/keDd18nwVaQ8FI7sC1U+sPZuPwtZVwWVmnAIlvYu XAnwo7KUp/pUcFkP9QzSRCJq6Q82GIg7NjGj8ifMLhANC2MXf7NQW6dPqHfibd/K daHoUWSsBawRgZ0E1ggwYNBW5gYOjdSItq00SdDCRWsy0FUw2yv9oA2xd8jBXlt0 MgQ3GcLC754/NYFTCIpG1wTWvBCtuNuSGN5aYc2wSe5cs8s3VVyyQhRk6AoddAvQ ITFW7jSWwW0dcuF4BcagCB6Zf3dXPpaeFEy1udZyWazGyC66Ld3uopdumoI17Ste UrqwoaEtoVF51RYI92njwL7KeQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEy38dKp 93uo3CwIWVvOaZxtRGwsMB8GA1UdIwQYMBaAFGXhdw54hVEKGM6Q2Krdnt59WzVT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTkzMi81MjFDOEU1Qzcy MDcxMUVGOURDOEJBMjFDNEY5QUUwMi9aZUYzRG5pRlVRb1l6cERZcXQyZTNuMWJO Vk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1plRjNEbmlGVVFvWXpwRFlxdDJlM24xYk5WTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MTkzMi81MjFDOEU1QzcyMDcxMUVGOURDOEJBMjFDNEY5QUUwMi9aZUYzRG5pRlVR b1l6cERZcXQyZTNuMWJOVk0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAEiygmelAYSDuP5rASM5GYJouo/lB6U80CZlxYi8X3cScsCP/RI4zatSFEDh1 eLtPTkv093PgXvHaZPKGhXxrW9PpjN2NPV5b/77ZxM8fkDBPyuTb0ZXGw4jIJ6Yh TPN2zy5/ruyK1m1lK7PZGk0R/0HFOOyCt2o307a0G1JEQmQ+4ktDMmrwM2GF55qW APAGMyua1ELChWYOD92oeKu+axYBBrIjR97JInIkGkGqvD6457vF+dGlUGPnpIpt UdRddnoPXb2PJNQ2xuDxl+jBED2JEyg1fC9LGH4lmuIpmNqfSlgweDquEAEkxf5z so5dp0gr9eXWk0fxFta3vjhpIQ== -----END CERTIFICATE-----Generated at Wed May 13 09:56:25 2026 by rpki-client