$ rpki-client -vvf rpki.apnic.net/member_repository/A9157B07/D88544928FD511F0A61C9B2BC4F9AE02/zOnFYkus-dCYXj8tbjHmsthtgq4.mft File: zOnFYkus-dCYXj8tbjHmsthtgq4.mft (raw, json) Hash identifier: /dW7GCsgkbGymrFYDQtA6ZxYXz2kaGHClKGQfrU2vRc= Subject key identifier: E1:35:D9:4C:47:3B:40:A7:7C:F3:80:47:1D:0C:81:8F:68:9B:57:C4 Authority key identifier: CC:E9:C5:62:4B:AC:F9:D0:98:5E:3F:2D:6E:31:E6:B2:D8:6D:82:AE Certificate issuer: /CN=A9157B07/serialNumber=CCE9C5624BACF9D0985E3F2D6E31E6B2D86D82AE Certificate serial: 7E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zOnFYkus-dCYXj8tbjHmsthtgq4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157B07/D88544928FD511F0A61C9B2BC4F9AE02/zOnFYkus-dCYXj8tbjHmsthtgq4.mft Manifest number: 7C Signing time: Mon 11 May 2026 07:50:35 +0000 Manifest this update: Mon 11 May 2026 07:50:35 +0000 Manifest next update: Mon 18 May 2026 07:50:35 +0000 Files and hashes: 1: zOnFYkus-dCYXj8tbjHmsthtgq4.crl (hash: i0HHDCDv+djcaiDfi5pZ8M4Qgfrocd3ewu9OSAa4Ix0=) 2: 8CA88A568FD611F09FFCA92CC4F9AE02.roa (hash: TxrrC9wYr/I+aWhB4yIA14fUgs+AJHTP94jMCdYeTOE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157B07/D88544928FD511F0A61C9B2BC4F9AE02/zOnFYkus-dCYXj8tbjHmsthtgq4.crl rsync://rpki.apnic.net/member_repository/A9157B07/D88544928FD511F0A61C9B2BC4F9AE02/zOnFYkus-dCYXj8tbjHmsthtgq4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zOnFYkus-dCYXj8tbjHmsthtgq4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 07:50:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 126 (0x7e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157B07, serialNumber=CCE9C5624BACF9D0985E3F2D6E31E6B2D86D82AE Validity Not Before: May 11 07:50:35 2026 GMT Not After : May 18 07:50:35 2026 GMT Subject: CN=6a018a4b-c7c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:cb:3c:20:05:43:b8:30:ec:8c:c8:b4:7e:93: ed:12:b4:76:87:e3:1c:7c:41:55:2b:ec:9a:63:4d: a7:ff:4e:1c:ac:67:e0:c7:63:ec:8b:ef:5f:08:93: 7f:2c:49:57:ab:54:17:44:97:f6:52:ae:e7:e4:3b: 06:e2:9c:54:4f:6b:ef:54:2e:e1:57:44:04:ba:01: 1f:28:0f:e2:a8:88:97:0d:a7:09:2c:47:2c:a4:e1: ea:61:6b:28:01:e2:37:64:1d:52:39:99:a9:73:d7: 1e:e3:53:0a:ff:37:a3:b0:ff:16:ac:fb:d7:92:57: d0:6b:52:76:f7:1f:ee:51:b0:df:9a:c6:f7:92:bb: 75:93:ff:0f:87:ce:c8:b2:bd:6f:1c:52:cd:57:bb: 69:0b:02:c4:00:7d:dd:5c:df:cc:ce:26:ee:6e:2a: 84:8f:66:c8:e5:a4:74:17:98:6e:5a:21:42:24:a4: 04:1f:56:c6:b7:d1:32:74:5b:4a:04:fa:ef:04:79: 98:35:ff:c0:41:50:13:15:60:6b:f8:b8:ef:50:4a: 6f:f1:c3:67:1c:dd:e9:04:09:4b:29:79:01:09:16: 41:5a:25:e8:32:25:31:ad:34:57:61:87:bc:e6:65: 79:28:e0:f8:46:cd:79:19:02:74:08:01:ab:15:6b: 01:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:35:D9:4C:47:3B:40:A7:7C:F3:80:47:1D:0C:81:8F:68:9B:57:C4 X509v3 Authority Key Identifier: keyid:CC:E9:C5:62:4B:AC:F9:D0:98:5E:3F:2D:6E:31:E6:B2:D8:6D:82:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157B07/D88544928FD511F0A61C9B2BC4F9AE02/zOnFYkus-dCYXj8tbjHmsthtgq4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zOnFYkus-dCYXj8tbjHmsthtgq4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157B07/D88544928FD511F0A61C9B2BC4F9AE02/zOnFYkus-dCYXj8tbjHmsthtgq4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:5b:8e:b1:9b:44:58:d9:68:70:d0:08:3b:8a:66:72:69:34: 71:93:f5:cc:53:20:81:8d:f1:09:9c:e9:27:b6:df:9e:24:2a: e0:5b:26:9c:4f:2f:38:c0:3b:2c:9a:36:5b:ef:71:91:4a:f9: a8:ad:c9:61:b7:92:aa:d2:02:d3:33:e7:95:fb:65:d6:9c:4e: 88:68:a0:6a:c6:3a:69:17:eb:56:04:e9:7f:56:e4:1e:67:b8: 44:dd:8b:f0:0b:b6:9b:97:13:6b:ae:28:8e:12:75:aa:0f:62: 9b:35:8f:b5:35:98:aa:6c:7a:cb:79:5b:cb:62:f2:00:bf:c5: 33:2c:f9:bd:b2:72:33:51:de:26:7e:4d:76:e6:07:ce:80:5e: 35:a2:2e:73:e3:53:95:ff:2a:63:fe:74:43:85:74:14:d7:86: 7f:8a:1a:13:d0:fc:15:07:08:09:00:3d:4a:aa:90:e4:31:45: 5f:93:9f:0c:79:30:2d:b8:5d:db:75:d1:56:25:ad:cc:04:0c: 50:bc:64:8e:f6:85:73:49:d9:45:64:4c:d0:e8:e5:f3:68:8b: 93:59:39:f0:d0:82:8c:40:bc:74:f5:bc:81:43:dd:60:98:28: 0e:d2:8f:50:4c:0a:2e:48:73:ab:38:52:a6:0a:89:57:a7:9f: 72:65:f3:c3 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBfjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 N0IwNzExMC8GA1UEBRMoQ0NFOUM1NjI0QkFDRjlEMDk4NUUzRjJENkUzMUU2QjJE ODZEODJBRTAeFw0yNjA1MTEwNzUwMzVaFw0yNjA1MTgwNzUwMzVaMBgxFjAUBgNV BAMTDTZhMDE4YTRiLWM3YzAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCuyzwgBUO4MOyMyLR+k+0StHaH4xx8QVUr7JpjTaf/ThysZ+DHY+yL718Ik38s SVerVBdEl/ZSrufkOwbinFRPa+9ULuFXRAS6AR8oD+KoiJcNpwksRyyk4ephaygB 4jdkHVI5malz1x7jUwr/N6Ow/xas+9eSV9BrUnb3H+5RsN+axveSu3WT/w+Hzsiy vW8cUs1Xu2kLAsQAfd1c38zOJu5uKoSPZsjlpHQXmG5aIUIkpAQfVsa30TJ0W0oE +u8EeZg1/8BBUBMVYGv4uO9QSm/xw2cc3ekECUspeQEJFkFaJegyJTGtNFdhh7zm ZXko4PhGzXkZAnQIAasVawFlAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQU4TXZTEc7 QKd884BHHQyBj2ibV8QwHwYDVR0jBBgwFoAUzOnFYkus+dCYXj8tbjHmsthtgq4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU3QjA3L0Q4ODU0NDkyOEZE NTExRjBBNjFDOUIyQkM0RjlBRTAyL3pPbkZZa3VzLWRDWVhqOHRiakhtc3RodGdx NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvek9uRllrdXMtZENZWGo4dGJqSG1zdGh0Z3E0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU3 QjA3L0Q4ODU0NDkyOEZENTExRjBBNjFDOUIyQkM0RjlBRTAyL3pPbkZZa3VzLWRD WVhqOHRiakhtc3RodGdxNC5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQCCW46xm0RY2Whw0Ag7imZyaTRxk/XMUyCBjfEJnOkntt+eJCrgWyacTy84wDss mjZb73GRSvmorclht5Kq0gLTM+eV+2XWnE6IaKBqxjppF+tWBOl/VuQeZ7hE3Yvw C7ablxNrriiOEnWqD2KbNY+1NZiqbHrLeVvLYvIAv8UzLPm9snIzUd4mfk125gfO gF41oi5z41OV/ypj/nRDhXQU14Z/ihoT0PwVBwgJAD1KqpDkMUVfk58MeTAtuF3b ddFWJa3MBAxQvGSO9oVzSdlFZEzQ6OXzaIuTWTnw0IKMQLx09byBQ91gmCgO0o9Q TAouSHOrOFKmColXp59yZfPD -----END CERTIFICATE-----Generated at Wed May 13 07:43:34 2026 by rpki-client