$ rpki-client -vvf rpki.apnic.net/member_repository/A91951DE/904F870A60B411F08ED7AE63C4F9AE02/ZH5crcsfv367iZpyGcOg8D0_ew0.mft File: ZH5crcsfv367iZpyGcOg8D0_ew0.mft (raw, json) Hash identifier: 1QkIM1ZyeAgX/Xw1B4X7eemuLWh8s1l46nKxqWLoltk= Subject key identifier: DC:1C:26:D9:78:8A:85:3B:27:F6:ED:C4:E4:C8:12:B1:14:1F:E1:47 Authority key identifier: 64:7E:5C:AD:CB:1F:BF:7E:BB:89:9A:72:19:C3:A0:F0:3D:3F:7B:0D Certificate issuer: /CN=A91951DE/serialNumber=647E5CADCB1FBF7EBB899A7219C3A0F03D3F7B0D Certificate serial: A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZH5crcsfv367iZpyGcOg8D0_ew0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91951DE/904F870A60B411F08ED7AE63C4F9AE02/ZH5crcsfv367iZpyGcOg8D0_ew0.mft Manifest number: 9E Signing time: Mon 11 May 2026 07:30:53 +0000 Manifest this update: Mon 11 May 2026 07:30:52 +0000 Manifest next update: Mon 18 May 2026 07:30:52 +0000 Files and hashes: 1: ZH5crcsfv367iZpyGcOg8D0_ew0.crl (hash: ZtqahGpscSUo8qYnL4WbdfZ4zPnjq0EhDRZLtQFxnQ0=) 2: 533DC25E60B511F0AB567568C4F9AE02.roa (hash: 3eyoBtxWZnVo9d8QTWGg5n0zVCETmWq673Im+Ia8NGk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91951DE/904F870A60B411F08ED7AE63C4F9AE02/ZH5crcsfv367iZpyGcOg8D0_ew0.crl rsync://rpki.apnic.net/member_repository/A91951DE/904F870A60B411F08ED7AE63C4F9AE02/ZH5crcsfv367iZpyGcOg8D0_ew0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZH5crcsfv367iZpyGcOg8D0_ew0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 07:30:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 166 (0xa6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91951DE, serialNumber=647E5CADCB1FBF7EBB899A7219C3A0F03D3F7B0D Validity Not Before: May 11 07:30:52 2026 GMT Not After : May 18 07:30:52 2026 GMT Subject: CN=6a0185ad-78e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:87:72:19:f9:21:86:28:ca:e0:64:14:aa:ca: dd:c4:0c:74:4a:de:8c:47:04:f6:5b:19:34:43:53: 66:8e:9e:fe:24:39:7b:c2:a7:d1:b3:44:9a:1e:41: da:9e:d1:04:cd:ad:b2:e1:69:f3:4e:7b:0f:9e:c6: 94:63:f7:ae:3a:d1:4b:8b:b9:63:64:c5:1e:e6:e2: 30:b5:ba:5c:7f:d4:63:98:60:62:56:74:f0:40:e1: 03:0a:2c:94:e6:05:86:81:70:bd:59:b1:1d:e5:10: fc:91:d5:f2:b7:98:d2:58:5b:81:3e:98:5a:fa:39: c7:70:e7:2e:48:13:75:c0:ab:dc:a0:ab:43:72:75: b0:69:fd:6b:43:8c:4c:ef:03:81:82:e9:d6:33:d9: 6f:18:18:e6:59:ae:6c:70:b7:58:ba:2f:20:49:2b: cd:3a:c2:81:b8:d5:fc:8b:4f:38:0b:f0:5f:d8:9c: 6e:8c:e9:e3:85:dc:a9:5f:f9:6c:fe:50:60:a8:c4: 50:b4:5a:41:70:d1:ad:ae:e6:93:6b:ca:d6:6a:8a: ff:c1:4a:86:aa:2d:c5:06:ae:6b:0d:e2:ef:b7:07: 61:fd:1b:e2:18:48:1f:bc:bf:9a:72:29:0a:38:c2: 5c:8f:9f:79:5b:16:fe:51:9f:90:dc:84:2b:ed:93: f2:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:1C:26:D9:78:8A:85:3B:27:F6:ED:C4:E4:C8:12:B1:14:1F:E1:47 X509v3 Authority Key Identifier: keyid:64:7E:5C:AD:CB:1F:BF:7E:BB:89:9A:72:19:C3:A0:F0:3D:3F:7B:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91951DE/904F870A60B411F08ED7AE63C4F9AE02/ZH5crcsfv367iZpyGcOg8D0_ew0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZH5crcsfv367iZpyGcOg8D0_ew0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91951DE/904F870A60B411F08ED7AE63C4F9AE02/ZH5crcsfv367iZpyGcOg8D0_ew0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:6f:d8:1a:f6:5c:2c:56:03:28:55:e1:80:ab:0c:d5:a6:3b: 5e:9f:62:40:d8:c9:d1:43:40:80:0e:ef:c6:80:e5:92:04:05: 5f:99:b1:0d:d4:e1:f1:14:9f:fd:5b:58:42:57:31:9e:09:e2: 69:62:70:e2:7f:4a:e7:32:09:71:4a:b7:e9:b2:92:6b:aa:50: 7a:e6:ea:ca:68:3b:57:71:b9:f3:8a:d9:61:04:09:97:a6:20: d1:46:48:a0:69:01:55:18:79:b5:72:5f:c0:32:b5:da:99:3f: fb:63:7a:77:b8:26:74:9a:ef:84:51:d5:42:4e:51:51:dc:22: b5:b8:2c:1f:11:70:fb:4a:78:b5:92:1c:65:32:a3:3a:db:df: 3b:d9:dc:4e:b7:ff:e8:5f:76:62:fb:40:a8:f1:b7:7b:92:ca: ce:fb:10:4f:ea:6b:2a:83:1d:46:c9:ba:2f:60:07:19:81:da: 09:c0:75:99:b3:f7:5f:ce:1c:fb:69:aa:c3:41:f0:03:b6:5e: f9:28:86:f8:97:f3:8a:e2:cd:11:58:17:a6:de:fd:65:0b:75: 3e:29:1c:85:b8:49:ce:e5:54:f4:de:af:9b:24:06:05:b3:49: 4b:ab:c9:3d:45:78:22:a9:1c:89:ab:7e:6f:88:77:bc:7f:2c: b7:e9:2f:b2 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAKYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTUxREUxMTAvBgNVBAUTKDY0N0U1Q0FEQ0IxRkJGN0VCQjg5OUE3MjE5QzNBMEYw M0QzRjdCMEQwHhcNMjYwNTExMDczMDUyWhcNMjYwNTE4MDczMDUyWjAYMRYwFAYD VQQDEw02YTAxODVhZC03OGU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv4dyGfkhhijK4GQUqsrdxAx0St6MRwT2Wxk0Q1Nmjp7+JDl7wqfRs0SaHkHa ntEEza2y4WnzTnsPnsaUY/euOtFLi7ljZMUe5uIwtbpcf9RjmGBiVnTwQOEDCiyU 5gWGgXC9WbEd5RD8kdXyt5jSWFuBPpha+jnHcOcuSBN1wKvcoKtDcnWwaf1rQ4xM 7wOBgunWM9lvGBjmWa5scLdYui8gSSvNOsKBuNX8i084C/Bf2JxujOnjhdypX/ls /lBgqMRQtFpBcNGtruaTa8rWaor/wUqGqi3FBq5rDeLvtwdh/RviGEgfvL+acikK OMJcj595Wxb+UZ+Q3IQr7ZPyuQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNwcJtl4 ioU7J/btxOTIErEUH+FHMB8GA1UdIwQYMBaAFGR+XK3LH79+u4machnDoPA9P3sN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NTFERS85MDRGODcwQTYw QjQxMUYwOEVEN0FFNjNDNEY5QUUwMi9aSDVjcmNzZnYzNjdpWnB5R2NPZzhEMF9l dzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pINWNyY3NmdjM2N2lacHlHY09nOEQwX2V3MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NTFERS85MDRGODcwQTYwQjQxMUYwOEVEN0FFNjNDNEY5QUUwMi9aSDVjcmNzZnYz NjdpWnB5R2NPZzhEMF9ldzAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAbG/YGvZcLFYDKFXhgKsM1aY7Xp9iQNjJ0UNAgA7vxoDlkgQFX5mxDdTh8RSf /VtYQlcxngniaWJw4n9K5zIJcUq36bKSa6pQeubqymg7V3G584rZYQQJl6Yg0UZI oGkBVRh5tXJfwDK12pk/+2N6d7gmdJrvhFHVQk5RUdwitbgsHxFw+0p4tZIcZTKj OtvfO9ncTrf/6F92YvtAqPG3e5LKzvsQT+prKoMdRsm6L2AHGYHaCcB1mbP3X84c +2mqw0HwA7Ze+SiG+JfziuLNEVgXpt79ZQt1PikchbhJzuVU9N6vmyQGBbNJS6vJ PUV4Iqkciat+b4h3vH8st+kvsg== -----END CERTIFICATE-----Generated at Wed May 13 04:28:37 2026 by rpki-client