$ rpki-client -vvf rpki.apnic.net/member_repository/A91594AE/3D8B8C4852B511EAA4A9D20EC4F9AE02/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.mft File: zaR-Ch7rUl87Wg-vsvoNuzY7-k0.mft (raw, json) Hash identifier: pahtEHsa+RY+fR9e9JGyQ2fzditLpCfyAFiMekdEqkM= Subject key identifier: 04:02:5F:15:90:BF:A9:5D:44:40:36:D1:46:CB:AB:6E:8A:58:3B:C3 Authority key identifier: CD:A4:7E:0A:1E:EB:52:5F:3B:5A:0F:AF:B2:FA:0D:BB:36:3B:FA:4D Certificate issuer: /CN=A91594AE/serialNumber=CDA47E0A1EEB525F3B5A0FAFB2FA0DBB363BFA4D Certificate serial: 0B74 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91594AE/3D8B8C4852B511EAA4A9D20EC4F9AE02/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.mft Manifest number: 0B6A Signing time: Tue 12 May 2026 19:13:35 +0000 Manifest this update: Tue 12 May 2026 19:13:35 +0000 Manifest next update: Tue 19 May 2026 19:13:35 +0000 Files and hashes: 1: zaR-Ch7rUl87Wg-vsvoNuzY7-k0.crl (hash: VDfExODOPlcoTxbqiHfGHGjnK2cTdJoz/QGOQZqMyjk=) 2: 38CAF4EC52B911EAACE8041BC4F9AE02.roa (hash: ujeUTP56Z66beEqAmdIwzEcYV4pQg/db+qJ48FDN5s0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91594AE/3D8B8C4852B511EAA4A9D20EC4F9AE02/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.crl rsync://rpki.apnic.net/member_repository/A91594AE/3D8B8C4852B511EAA4A9D20EC4F9AE02/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 19:13:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2932 (0xb74) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91594AE, serialNumber=CDA47E0A1EEB525F3B5A0FAFB2FA0DBB363BFA4D Validity Not Before: May 12 19:13:35 2026 GMT Not After : May 19 19:13:35 2026 GMT Subject: CN=6a037bdf-c50f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:d3:16:0b:d8:0e:53:51:33:4a:f3:ec:cf:2b: 80:b7:41:f5:de:45:a3:10:bb:b2:71:54:05:b2:93: ec:c4:60:93:f1:bb:91:42:cb:b9:81:b5:f0:4e:12: 1d:c3:10:7b:07:c5:97:a0:e7:0d:8a:b6:2e:e9:5e: 2b:75:6a:87:db:99:14:d5:be:fe:fe:73:a4:c1:fb: bc:2a:9e:80:c6:1a:87:3a:42:7b:c5:ad:cc:ef:0e: 5f:f9:94:e6:2c:17:c3:ae:c4:89:92:5b:68:95:74: ab:49:33:9b:a5:3d:53:11:3e:28:16:38:f7:f2:87: df:4e:a2:6b:1a:24:f4:a5:db:3f:c2:23:de:59:7f: b8:96:10:03:29:3b:f8:71:43:af:cc:5d:2e:22:ca: c1:30:22:21:50:63:21:ee:df:0a:af:75:ab:ed:af: ca:73:0e:17:2a:09:07:1b:77:44:1e:7e:6f:fc:b9: 79:05:a9:06:0f:85:cf:fb:a7:63:74:64:11:6a:01: a6:3c:b4:55:0c:a0:b7:b1:97:b4:b1:18:3d:51:6a: fd:1b:d9:f8:dc:9c:72:0b:eb:4e:ee:50:65:c3:d5: 11:91:a3:10:d6:75:fe:6d:e5:de:70:83:70:62:68: 23:a1:43:a6:e9:f3:d8:14:a2:01:c9:3e:a9:d8:5b: aa:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:02:5F:15:90:BF:A9:5D:44:40:36:D1:46:CB:AB:6E:8A:58:3B:C3 X509v3 Authority Key Identifier: keyid:CD:A4:7E:0A:1E:EB:52:5F:3B:5A:0F:AF:B2:FA:0D:BB:36:3B:FA:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91594AE/3D8B8C4852B511EAA4A9D20EC4F9AE02/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91594AE/3D8B8C4852B511EAA4A9D20EC4F9AE02/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:cc:5c:5b:bf:e3:1c:02:e9:18:40:bf:1e:ac:f7:a2:4b:40: 69:4c:ab:7e:ea:a7:26:fb:68:6d:2c:50:5e:05:a8:b9:60:85: 71:78:8a:2d:66:57:f3:76:d2:da:13:3f:4b:2d:6f:df:be:15: 95:fe:f0:8b:d1:ea:67:2f:62:9d:13:4e:14:fd:7b:5b:b3:ba: 16:df:b4:6b:80:a8:66:9c:8b:b4:5a:18:7a:5e:59:a2:bd:94: ce:c0:78:0b:4a:0b:79:2b:e5:fa:84:83:e2:2f:07:3c:2d:34: 9f:5c:91:7c:96:e5:1a:37:44:81:dc:80:35:00:7d:59:66:01: 5d:81:39:36:96:56:0f:3a:9a:28:9a:b6:97:83:93:8b:07:fd: a3:38:f0:61:cb:33:41:84:7e:0b:58:20:e1:97:2b:69:3b:77: 4a:87:05:23:91:ec:e0:ff:6b:c1:0d:78:bd:ea:bc:31:81:48: 2d:b6:f7:e4:23:42:9f:8c:92:fb:27:a0:13:12:1a:66:58:8c: 47:16:e3:b3:e8:7c:8e:c2:b1:d5:9e:e6:82:3f:cc:c6:f2:cc: d6:44:8e:5a:af:91:4b:5b:00:56:bd:cc:24:9a:2b:76:dc:a5: a2:2d:a6:c9:7f:25:5c:3b:85:ae:aa:cd:5a:63:b3:36:86:c5: e8:ec:fb:41 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICC3QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTk0QUUxMTAvBgNVBAUTKENEQTQ3RTBBMUVFQjUyNUYzQjVBMEZBRkIyRkEwREJC MzYzQkZBNEQwHhcNMjYwNTEyMTkxMzM1WhcNMjYwNTE5MTkxMzM1WjAYMRYwFAYD VQQDEw02YTAzN2JkZi1jNTBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAntMWC9gOU1EzSvPszyuAt0H13kWjELuycVQFspPsxGCT8buRQsu5gbXwThId wxB7B8WXoOcNirYu6V4rdWqH25kU1b7+/nOkwfu8Kp6AxhqHOkJ7xa3M7w5f+ZTm LBfDrsSJkltolXSrSTObpT1TET4oFjj38offTqJrGiT0pds/wiPeWX+4lhADKTv4 cUOvzF0uIsrBMCIhUGMh7t8Kr3Wr7a/Kcw4XKgkHG3dEHn5v/Ll5BakGD4XP+6dj dGQRagGmPLRVDKC3sZe0sRg9UWr9G9n43JxyC+tO7lBlw9URkaMQ1nX+beXecINw YmgjoUOm6fPYFKIByT6p2FuqeQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAQCXxWQ v6ldREA20UbLq26KWDvDMB8GA1UdIwQYMBaAFM2kfgoe61JfO1oPr7L6Dbs2O/pN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OTRBRS8zRDhCOEM0ODUy QjUxMUVBQTRBOUQyMEVDNEY5QUUwMi96YVItQ2g3clVsODdXZy12c3ZvTnV6WTct azAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3phUi1DaDdyVWw4N1dnLXZzdm9OdXpZNy1rMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OTRBRS8zRDhCOEM0ODUyQjUxMUVBQTRBOUQyMEVDNEY5QUUwMi96YVItQ2g3clVs ODdXZy12c3ZvTnV6WTctazAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAmsxcW7/jHALpGEC/Hqz3oktAaUyrfuqnJvtobSxQXgWouWCFcXiKLWZX83bS 2hM/Sy1v374Vlf7wi9HqZy9inRNOFP17W7O6Ft+0a4CoZpyLtFoYel5Zor2UzsB4 C0oLeSvl+oSD4i8HPC00n1yRfJblGjdEgdyANQB9WWYBXYE5NpZWDzqaKJq2l4OT iwf9ozjwYcszQYR+C1gg4ZcraTt3SocFI5Hs4P9rwQ14veq8MYFILbb35CNCn4yS +yegExIaZliMRxbjs+h8jsKx1Z7mgj/MxvLM1kSOWq+RS1sAVr3MJJordtyloi2m yX8lXDuFrqrNWmOzNobF6Oz7QQ== -----END CERTIFICATE-----Generated at Wed May 13 09:02:30 2026 by rpki-client