$ rpki-client -vvf rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.mft File: z8CATaxP_3oipAThDphkpxHeGck.mft (raw, json) Hash identifier: TPoaRIZW0iktDZyI8P9hATa/4Lr2/G8RvudaiWNxukg= Subject key identifier: 04:9B:42:DA:A6:DC:0F:B0:D5:B1:CF:8D:A3:32:07:DD:DC:F3:D2:25 Authority key identifier: CF:C0:80:4D:AC:4F:FF:7A:22:A4:04:E1:0E:98:64:A7:11:DE:19:C9 Certificate issuer: /CN=A91A12C4/serialNumber=CFC0804DAC4FFF7A22A404E10E9864A711DE19C9 Certificate serial: 0144 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z8CATaxP_3oipAThDphkpxHeGck.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.mft Manifest number: 013C Signing time: Mon 11 May 2026 05:28:48 +0000 Manifest this update: Mon 11 May 2026 05:28:47 +0000 Manifest next update: Mon 18 May 2026 05:28:47 +0000 Files and hashes: 1: z8CATaxP_3oipAThDphkpxHeGck.crl (hash: QFNBgpdgJnioizuv5BuK0bk5FDuxq8e4c+EDavRXzP4=) 2: BCA395126C1811EFAFBE6B0FC4F9AE02.roa (hash: YuQff5ZM6ktoeLhGQjtDQt4j9brqyCXl9qvUHGQ/W6c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.crl rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z8CATaxP_3oipAThDphkpxHeGck.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 05:28:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 324 (0x144) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A12C4, serialNumber=CFC0804DAC4FFF7A22A404E10E9864A711DE19C9 Validity Not Before: May 11 05:28:47 2026 GMT Not After : May 18 05:28:47 2026 GMT Subject: CN=6a01690f-e206 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:be:4f:03:7c:0f:1b:57:2a:6d:3d:ae:eb:96: d4:9e:f2:76:f7:f3:9c:f6:04:c9:ea:47:28:d9:35: 75:48:6f:b6:14:c0:a8:e6:21:64:a5:42:09:bf:b9: a6:16:99:3a:cd:36:d8:3d:9d:14:58:fc:c5:b1:4c: f2:aa:e2:a5:4a:a0:f3:f0:57:f4:9e:74:e0:c4:3d: a8:ea:2b:cd:97:ec:e5:0c:6b:61:f8:64:0b:78:b7: 0a:d8:8f:75:b8:5c:49:38:84:63:dd:1e:76:ba:93: cb:57:08:1d:fa:61:84:94:30:cd:b3:0c:b5:b1:6b: c7:ee:97:f6:9e:24:21:e4:6e:34:bb:a6:59:62:48: b0:d7:3f:61:75:50:aa:aa:8e:9b:f8:0f:64:1d:fc: 25:19:b1:cf:9f:1f:0d:96:55:24:81:3e:4b:96:45: a3:5f:f7:db:e9:9f:77:7c:e1:5e:77:5f:9f:fb:5b: e7:0b:67:7d:a6:68:ac:5f:4d:30:10:d7:d9:59:e3: 8f:e4:2e:eb:13:7d:68:6d:fd:a6:a3:49:1d:34:c6: f5:2a:fe:96:69:48:32:1d:e4:f9:7f:ba:53:76:15: b3:6a:6b:21:c6:61:30:8c:fe:91:33:44:53:57:35: f2:fb:e6:81:ca:a0:e6:e1:c8:27:40:0b:f6:54:55: 92:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:9B:42:DA:A6:DC:0F:B0:D5:B1:CF:8D:A3:32:07:DD:DC:F3:D2:25 X509v3 Authority Key Identifier: keyid:CF:C0:80:4D:AC:4F:FF:7A:22:A4:04:E1:0E:98:64:A7:11:DE:19:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z8CATaxP_3oipAThDphkpxHeGck.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:df:e6:9d:e9:5c:f8:b4:24:e5:92:56:8e:d0:78:89:c8:58: ea:fd:f8:79:bd:f6:6c:49:af:74:a4:a8:c5:f7:c0:71:83:67: 9b:c2:e8:e6:06:47:17:8a:02:0a:65:82:0b:8f:6b:6a:33:9f: 1d:34:41:a0:6a:85:e7:98:3e:60:49:31:7c:88:e4:af:08:15: e0:66:22:d6:82:27:fa:f4:33:97:ee:db:a0:4d:78:fe:34:56: 90:60:8c:4a:82:86:8a:a4:40:c4:78:7f:4a:7c:62:a6:72:be: 80:d2:a8:57:fd:9b:2a:91:9b:8e:79:88:6e:bb:01:e5:ab:7b: 45:b4:10:ef:26:6d:53:fc:e9:9b:62:f4:79:3a:bb:10:1a:e3: dd:30:84:9f:9b:ac:6a:26:95:5d:5c:59:5f:ec:7f:a5:e4:cd: 49:e8:33:47:2d:01:a7:40:c4:6a:88:87:91:cd:c1:84:dc:be: 3f:35:bd:70:34:bb:e1:e5:6e:8d:fe:e6:ef:01:64:58:21:f6: 66:72:6d:50:6b:88:97:4f:98:58:5a:80:c1:96:50:b1:e1:c4: f9:dd:b1:f8:3c:62:e6:18:bd:57:e1:d8:16:e0:d0:cb:12:93: 41:a9:0e:44:df:79:c2:49:33:d7:40:54:e7:2d:08:89:c8:90: a3:33:65:79 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAUQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTEyQzQxMTAvBgNVBAUTKENGQzA4MDREQUM0RkZGN0EyMkE0MDRFMTBFOTg2NEE3 MTFERTE5QzkwHhcNMjYwNTExMDUyODQ3WhcNMjYwNTE4MDUyODQ3WjAYMRYwFAYD VQQDEw02YTAxNjkwZi1lMjA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx75PA3wPG1cqbT2u65bUnvJ29/Oc9gTJ6kco2TV1SG+2FMCo5iFkpUIJv7mm Fpk6zTbYPZ0UWPzFsUzyquKlSqDz8Ff0nnTgxD2o6ivNl+zlDGth+GQLeLcK2I91 uFxJOIRj3R52upPLVwgd+mGElDDNswy1sWvH7pf2niQh5G40u6ZZYkiw1z9hdVCq qo6b+A9kHfwlGbHPnx8NllUkgT5LlkWjX/fb6Z93fOFed1+f+1vnC2d9pmisX00w ENfZWeOP5C7rE31obf2mo0kdNMb1Kv6WaUgyHeT5f7pTdhWzamshxmEwjP6RM0RT VzXy++aByqDm4cgnQAv2VFWSLQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFASbQtqm 3A+w1bHPjaMyB93c89IlMB8GA1UdIwQYMBaAFM/AgE2sT/96IqQE4Q6YZKcR3hnJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMTJDNC9GMzE5RURDMjZD MTcxMUVGQkRCRkQ1MEJDNEY5QUUwMi96OENBVGF4UF8zb2lwQVRoRHBoa3B4SGVH Y2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3o4Q0FUYXhQXzNvaXBBVGhEcGhrcHhIZUdjay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MTJDNC9GMzE5RURDMjZDMTcxMUVGQkRCRkQ1MEJDNEY5QUUwMi96OENBVGF4UF8z b2lwQVRoRHBoa3B4SGVHY2subWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAQN/mnelc+LQk5ZJWjtB4ichY6v34eb32bEmvdKSoxffAcYNnm8Lo5gZHF4oC CmWCC49rajOfHTRBoGqF55g+YEkxfIjkrwgV4GYi1oIn+vQzl+7boE14/jRWkGCM SoKGiqRAxHh/SnxipnK+gNKoV/2bKpGbjnmIbrsB5at7RbQQ7yZtU/zpm2L0eTq7 EBrj3TCEn5usaiaVXVxZX+x/peTNSegzRy0Bp0DEaoiHkc3BhNy+PzW9cDS74eVu jf7m7wFkWCH2ZnJtUGuIl0+YWFqAwZZQseHE+d2x+Dxi5hi9V+HYFuDQyxKTQakO RN95wkkz10BU5y0IiciQozNleQ== -----END CERTIFICATE-----Generated at Wed May 13 05:04:49 2026 by rpki-client