$ rpki-client -vvf rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.mft File: ZUCRhgKOxUzUW1g0_77K9LePGcI.mft (raw, json) Hash identifier: tTsVveXxSJj3L12hryQwFj/qbzzB4xswMJMyZU5LUvk= Subject key identifier: 58:82:17:81:34:D7:96:3B:57:20:84:BA:B3:FA:61:03:1B:F0:B0:62 Authority key identifier: 65:40:91:86:02:8E:C5:4C:D4:5B:58:34:FF:BE:CA:F4:B7:8F:19:C2 Certificate issuer: /CN=A917BBF1/serialNumber=65409186028EC54CD45B5834FFBECAF4B78F19C2 Certificate serial: 0D18 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZUCRhgKOxUzUW1g0_77K9LePGcI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.mft Manifest number: 0CF0 Signing time: Tue 12 May 2026 18:25:11 +0000 Manifest this update: Tue 12 May 2026 18:25:10 +0000 Manifest next update: Tue 19 May 2026 18:25:10 +0000 Files and hashes: 1: ZUCRhgKOxUzUW1g0_77K9LePGcI.crl (hash: er1wxfBx9tntjWQrPtHMJTLQZemqPHtCjfeSJOT/RSk=) 2: 3EED102CC53011F0ADCB012EC4F9AE02.roa (hash: LxKNHe3GpfHVZCaXnBap/M64zNmMtKYhFB34n7ePJpg=) 3: FF4F13D4448711ECA80CFC34C4F9AE02.roa (hash: lDq/RoR1gtpy/cAfk0IFee9KhUVF1t6WS4LHb4U+atA=) 4: 1B54858065B711EE93D6ED6DC4F9AE02.roa (hash: RJJ5TtxisaxrsdKJrxokk1MUJk/sClMJ57OXkPbYyvk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.crl rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZUCRhgKOxUzUW1g0_77K9LePGcI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 18:25:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3352 (0xd18) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917BBF1, serialNumber=65409186028EC54CD45B5834FFBECAF4B78F19C2 Validity Not Before: May 12 18:25:10 2026 GMT Not After : May 19 18:25:10 2026 GMT Subject: CN=6a037087-b518 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:73:14:08:64:7d:13:42:27:fa:f5:c0:b0:a2: 48:2a:a5:a2:82:0f:28:7d:e5:01:b5:e0:19:07:45: 27:fa:25:49:41:51:f5:37:21:ea:c2:30:0a:04:0d: b6:2a:b5:37:2e:f1:3b:54:ca:b2:d2:5a:31:b7:84: e7:19:ab:53:b7:4f:b6:7c:e4:8b:4c:33:3e:15:ce: da:f6:66:af:62:76:03:96:65:bb:0e:a9:9e:3c:e7: 1e:b2:90:52:52:d8:6b:9b:a7:e6:2e:82:10:e5:fd: 1c:c3:5c:80:5c:2f:78:a4:4f:a8:4f:eb:40:60:b6: 95:0d:1b:f4:ed:0d:b0:83:1a:fd:c7:f6:4a:c0:92: 17:66:bd:0c:d5:41:d2:5d:cd:79:e6:21:1e:c7:09: c1:71:4f:a8:8d:bc:62:fa:15:8d:00:3e:9d:29:18: 8e:c6:f6:2e:b7:b7:00:c8:a7:e1:6d:ff:ac:7d:07: 48:04:67:d5:2f:17:34:16:94:52:52:92:53:9e:38: 16:9a:54:94:5b:98:c3:fb:6b:e9:13:ac:e1:b0:1d: 24:31:70:53:8c:2a:0c:9f:a4:38:34:0d:f3:ab:7f: a0:93:c1:51:5a:1a:8a:f2:0a:b4:5f:2e:01:1a:88: ad:48:c8:bf:17:da:77:de:ed:d8:7b:99:a5:32:f3: 92:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:82:17:81:34:D7:96:3B:57:20:84:BA:B3:FA:61:03:1B:F0:B0:62 X509v3 Authority Key Identifier: keyid:65:40:91:86:02:8E:C5:4C:D4:5B:58:34:FF:BE:CA:F4:B7:8F:19:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZUCRhgKOxUzUW1g0_77K9LePGcI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:e0:ee:df:61:7c:2b:14:5a:a6:21:ce:0a:3d:9b:41:e4:aa: ff:47:40:08:27:66:19:ef:71:61:cb:6c:1a:c9:87:d6:c2:d2: 95:56:76:1e:1a:4a:5a:3c:c8:03:2d:7e:f8:c5:d7:d6:ad:9e: 17:10:45:84:92:b0:60:a3:c4:12:63:a2:3e:9c:e5:ff:c0:d8: 3e:3a:ba:a0:ce:40:b2:ff:c5:af:db:6b:63:96:bb:1a:42:ae: 43:d1:1e:7f:97:d2:94:85:d0:77:1d:16:93:d3:50:ed:b5:cf: c9:8a:8a:ce:ec:01:c3:e5:29:84:88:97:68:87:26:c9:2d:3f: 72:54:71:f5:ad:a8:bd:ad:b1:70:fc:44:3d:10:15:66:73:de: 5b:a0:75:2c:26:24:2a:3d:87:2d:7d:fb:88:a8:de:6f:dd:0d: 0d:8d:36:67:d9:45:f0:79:d5:91:77:27:8d:e6:ba:a6:17:3c: 1a:47:57:24:e2:a5:8e:a7:36:1e:41:54:74:99:b6:27:2f:a9: 8d:4f:68:8c:4f:3b:e4:af:fe:34:c6:04:2d:2c:c5:ef:c0:4b: b2:5c:47:39:87:42:cb:a3:96:9e:09:09:79:4d:5c:c2:42:c8: d6:ec:87:c3:20:81:b8:dd:2d:2b:50:bc:e5:35:64:22:9b:9a: 3b:6c:59:35 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDRgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0JCRjExMTAvBgNVBAUTKDY1NDA5MTg2MDI4RUM1NENENDVCNTgzNEZGQkVDQUY0 Qjc4RjE5QzIwHhcNMjYwNTEyMTgyNTEwWhcNMjYwNTE5MTgyNTEwWjAYMRYwFAYD VQQDEw02YTAzNzA4Ny1iNTE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr3MUCGR9E0In+vXAsKJIKqWigg8ofeUBteAZB0Un+iVJQVH1NyHqwjAKBA22 KrU3LvE7VMqy0loxt4TnGatTt0+2fOSLTDM+Fc7a9mavYnYDlmW7DqmePOcespBS Uthrm6fmLoIQ5f0cw1yAXC94pE+oT+tAYLaVDRv07Q2wgxr9x/ZKwJIXZr0M1UHS Xc155iEexwnBcU+ojbxi+hWNAD6dKRiOxvYut7cAyKfhbf+sfQdIBGfVLxc0FpRS UpJTnjgWmlSUW5jD+2vpE6zhsB0kMXBTjCoMn6Q4NA3zq3+gk8FRWhqK8gq0Xy4B GoitSMi/F9p33u3Ye5mlMvOSNwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFiCF4E0 15Y7VyCEurP6YQMb8LBiMB8GA1UdIwQYMBaAFGVAkYYCjsVM1FtYNP++yvS3jxnC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QkJGMS8yNDVEQzVDQTBB RjcxMUVBQTg1QTVEMUFDNEY5QUUwMi9aVUNSaGdLT3hVelVXMWcwXzc3SzlMZVBH Y0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pVQ1JoZ0tPeFV6VVcxZzBfNzdLOUxlUEdjSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QkJGMS8yNDVEQzVDQTBBRjcxMUVBQTg1QTVEMUFDNEY5QUUwMi9aVUNSaGdLT3hV elVXMWcwXzc3SzlMZVBHY0kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAY+Du32F8KxRapiHOCj2bQeSq/0dACCdmGe9xYctsGsmH1sLSlVZ2HhpKWjzI Ay1++MXX1q2eFxBFhJKwYKPEEmOiPpzl/8DYPjq6oM5Asv/Fr9trY5a7GkKuQ9Ee f5fSlIXQdx0Wk9NQ7bXPyYqKzuwBw+UphIiXaIcmyS0/clRx9a2ova2xcPxEPRAV ZnPeW6B1LCYkKj2HLX37iKjeb90NDY02Z9lF8HnVkXcnjea6phc8GkdXJOKljqc2 HkFUdJm2Jy+pjU9ojE875K/+NMYELSzF78BLslxHOYdCy6OWngkJeU1cwkLI1uyH wyCBuN0tK1C85TVkIpuaO2xZNQ== -----END CERTIFICATE-----Generated at Wed May 13 19:07:33 2026 by rpki-client