$ rpki-client -vvf rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.mft File: 3zHPGFCQ4VSWXv_7xmS91yHYB18.mft (raw, json) Hash identifier: UfiTGiti4izSrUMx6YFGDsuoXq/p20Llg0vdYS6NRJI= Subject key identifier: DB:BA:10:85:AF:B4:79:8C:0D:54:86:57:5A:F6:66:F1:EA:86:F3:03 Authority key identifier: DF:31:CF:18:50:90:E1:54:96:5E:FF:FB:C6:64:BD:D7:21:D8:07:5F Certificate issuer: /CN=A9155ECF/serialNumber=DF31CF185090E154965EFFFBC664BDD721D8075F Certificate serial: DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3zHPGFCQ4VSWXv_7xmS91yHYB18.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.mft Manifest number: D0 Signing time: Mon 11 May 2026 07:02:22 +0000 Manifest this update: Mon 11 May 2026 07:02:21 +0000 Manifest next update: Mon 18 May 2026 07:02:21 +0000 Files and hashes: 1: 3zHPGFCQ4VSWXv_7xmS91yHYB18.crl (hash: LEPQ3mnGloo1+UL6uV2MrCi/PHrjZIGc2fl1ZtpZnAk=) 2: 7434E1F4967011F0A5651266C4F9AE02.roa (hash: yz2U9PDGW5yj6K3epzpiZUOJr61JO2DFHRCaKrcoOK0=) 3: E171E63C40C411F18CB5B1299F833773.roa (hash: i2ZccAq1lNP07Jor3GPaaFIpUbRcv9yFEkCtv+dXGz4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.crl rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3zHPGFCQ4VSWXv_7xmS91yHYB18.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 07:02:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 223 (0xdf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9155ECF, serialNumber=DF31CF185090E154965EFFFBC664BDD721D8075F Validity Not Before: May 11 07:02:21 2026 GMT Not After : May 18 07:02:21 2026 GMT Subject: CN=6a017efe-fedc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:cf:88:5e:7f:8f:86:53:17:d0:a3:80:74:00: c0:21:7b:d9:72:cc:13:ed:35:8b:fc:81:32:6e:bb: ab:b2:dd:cd:d8:3a:94:9e:ab:a8:d3:80:2e:a4:d9: 4e:d4:83:f4:d1:05:74:fb:06:51:d1:c8:ec:d3:66: 4e:49:59:d1:6c:fe:70:98:2a:aa:a1:9b:e9:23:60: f9:6f:33:0f:3e:c0:08:a8:80:e9:b4:cd:1d:55:d5: 49:cb:71:a9:f3:f1:01:77:1f:06:61:07:51:c9:ee: e5:39:cb:be:f6:8a:aa:b5:ad:4e:74:40:9d:13:c9: 74:d1:cc:a5:81:b6:3a:a1:41:49:36:98:e8:f4:6f: 1f:4b:e8:2f:9e:33:ca:50:d2:c1:e9:ae:67:8b:28: a8:b2:18:8c:7c:7a:08:67:72:68:40:b4:25:fd:12: d6:a8:91:a1:a4:25:c6:a5:32:c7:f4:dd:8e:18:a7: 67:07:43:f1:32:33:64:ee:a8:05:93:61:34:26:2d: 7e:37:5c:d6:2f:46:e7:77:d3:f3:c6:d6:e0:e7:a2: 8a:d8:2f:9c:e0:e2:22:44:30:30:ab:f5:08:2b:b2: 6a:12:8e:db:c4:c1:b3:6e:75:92:31:2a:41:3e:e9: 9e:20:3a:2e:76:80:23:58:d9:68:5f:64:0b:20:4e: 9b:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:BA:10:85:AF:B4:79:8C:0D:54:86:57:5A:F6:66:F1:EA:86:F3:03 X509v3 Authority Key Identifier: keyid:DF:31:CF:18:50:90:E1:54:96:5E:FF:FB:C6:64:BD:D7:21:D8:07:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3zHPGFCQ4VSWXv_7xmS91yHYB18.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:3a:62:58:94:fb:3f:cb:dc:e3:06:8b:e9:3a:b3:3c:3c:49: 14:2e:44:00:fa:c6:bc:12:09:5d:6a:b0:6c:c9:09:c1:53:21: e8:86:2c:82:29:54:f9:d1:ff:63:96:4e:6c:85:81:cc:38:c6: 5d:d9:bc:b7:82:c2:8a:b0:ec:9d:18:21:6e:19:dd:13:35:05: ce:e5:cf:77:ba:f0:81:13:9d:81:58:e5:5c:a7:03:59:3b:90: 32:73:45:04:73:3c:b7:5b:18:e5:ce:63:02:a1:0d:06:56:e3: fb:24:43:3f:0b:7d:0e:13:c1:d3:61:a2:ae:2c:15:fe:c6:7b: 76:8e:e6:b3:2e:da:50:3d:70:39:6a:4a:51:4f:20:cc:dc:70: ef:4f:77:76:be:14:76:88:e6:17:59:bf:e0:be:fd:50:71:ec: f7:42:eb:7e:7e:c9:a9:2c:78:85:3e:4b:88:6f:1f:fb:68:fd: d4:14:46:18:1a:ce:e4:cf:10:80:19:55:34:05:7d:55:d5:87: 5a:33:32:2d:cc:af:79:f8:6b:cf:ab:5e:10:fe:d0:3b:f4:c3: 42:20:35:50:41:48:dc:3b:f8:5f:8e:23:b3:ee:59:dc:6e:0c: 46:75:da:5a:7d:ce:12:a7:9e:0e:02:2a:e1:26:25:26:1e:90: 77:51:14:fe -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAN8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTVFQ0YxMTAvBgNVBAUTKERGMzFDRjE4NTA5MEUxNTQ5NjVFRkZGQkM2NjRCREQ3 MjFEODA3NUYwHhcNMjYwNTExMDcwMjIxWhcNMjYwNTE4MDcwMjIxWjAYMRYwFAYD VQQDEw02YTAxN2VmZS1mZWRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAus+IXn+PhlMX0KOAdADAIXvZcswT7TWL/IEybrurst3N2DqUnquo04AupNlO 1IP00QV0+wZR0cjs02ZOSVnRbP5wmCqqoZvpI2D5bzMPPsAIqIDptM0dVdVJy3Gp 8/EBdx8GYQdRye7lOcu+9oqqta1OdECdE8l00cylgbY6oUFJNpjo9G8fS+gvnjPK UNLB6a5niyioshiMfHoIZ3JoQLQl/RLWqJGhpCXGpTLH9N2OGKdnB0PxMjNk7qgF k2E0Ji1+N1zWL0bnd9Pzxtbg56KK2C+c4OIiRDAwq/UIK7JqEo7bxMGzbnWSMSpB PumeIDoudoAjWNloX2QLIE6b2QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNu6EIWv tHmMDVSGV1r2ZvHqhvMDMB8GA1UdIwQYMBaAFN8xzxhQkOFUll7/+8Zkvdch2Adf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NUVDRi9FRjZCOTA1QzI1 RjUxMUYwOEJFRkRBNDlDNEY5QUUwMi8zekhQR0ZDUTRWU1dYdl83eG1TOTF5SFlC MTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzN6SFBHRkNRNFZTV1h2Xzd4bVM5MXlIWUIxOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NUVDRi9FRjZCOTA1QzI1RjUxMUYwOEJFRkRBNDlDNEY5QUUwMi8zekhQR0ZDUTRW U1dYdl83eG1TOTF5SFlCMTgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAJzpiWJT7P8vc4waL6TqzPDxJFC5EAPrGvBIJXWqwbMkJwVMh6IYsgilU+dH/ Y5ZObIWBzDjGXdm8t4LCirDsnRghbhndEzUFzuXPd7rwgROdgVjlXKcDWTuQMnNF BHM8t1sY5c5jAqENBlbj+yRDPwt9DhPB02GiriwV/sZ7do7msy7aUD1wOWpKUU8g zNxw7093dr4UdojmF1m/4L79UHHs90Lrfn7JqSx4hT5LiG8f+2j91BRGGBrO5M8Q gBlVNAV9VdWHWjMyLcyvefhrz6teEP7QO/TDQiA1UEFI3Dv4X44js+5Z3G4MRnXa Wn3OEqeeDgIq4SYlJh6Qd1EU/g== -----END CERTIFICATE-----Generated at Wed May 13 03:41:27 2026 by rpki-client