$ rpki-client -vvf rpki.apnic.net/member_repository/A91C66B2/C4F15472201611F0A8D74314C4F9AE02/PzH7XY70fa043ZLqGonoiHFAOjE.mft File: PzH7XY70fa043ZLqGonoiHFAOjE.mft (raw, json) Hash identifier: 53OTvzB7Z58QT8OYss1Lq3uXa+UrA6T7UNNcaKefS60= Subject key identifier: 61:75:74:6F:FE:87:AA:05:89:3C:D6:30:A1:40:02:03:6D:E8:FF:26 Authority key identifier: 3F:31:FB:5D:8E:F4:7D:AD:38:DD:92:EA:1A:89:E8:88:71:40:3A:31 Certificate issuer: /CN=A91C66B2/serialNumber=3F31FB5D8EF47DAD38DD92EA1A89E88871403A31 Certificate serial: C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PzH7XY70fa043ZLqGonoiHFAOjE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C66B2/C4F15472201611F0A8D74314C4F9AE02/PzH7XY70fa043ZLqGonoiHFAOjE.mft Manifest number: C3 Signing time: Mon 11 May 2026 07:00:15 +0000 Manifest this update: Mon 11 May 2026 07:00:15 +0000 Manifest next update: Mon 18 May 2026 07:00:15 +0000 Files and hashes: 1: PzH7XY70fa043ZLqGonoiHFAOjE.crl (hash: LFAF/LNULpPRJ8hIcq2r2h1ScKdqIVv5fmfd/VZXQ+0=) 2: F8C50B08201711F0A5D51F16C4F9AE02.roa (hash: 0V0IRbzifSTjNSAVOPWTTktiswJ9KarZ5qkmJcePTMA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C66B2/C4F15472201611F0A8D74314C4F9AE02/PzH7XY70fa043ZLqGonoiHFAOjE.crl rsync://rpki.apnic.net/member_repository/A91C66B2/C4F15472201611F0A8D74314C4F9AE02/PzH7XY70fa043ZLqGonoiHFAOjE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PzH7XY70fa043ZLqGonoiHFAOjE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 07:00:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 197 (0xc5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C66B2, serialNumber=3F31FB5D8EF47DAD38DD92EA1A89E88871403A31 Validity Not Before: May 11 07:00:15 2026 GMT Not After : May 18 07:00:15 2026 GMT Subject: CN=6a017e7f-736e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:5d:c2:23:3d:3e:b4:c1:0e:7d:9f:c9:5e:fe: b2:b8:8b:48:95:47:43:08:69:90:07:6b:fa:ff:ad: 31:c6:5d:85:ca:de:c2:9b:26:68:e5:f8:dc:8e:ec: 27:3c:95:24:0d:34:78:b0:89:ee:f7:23:71:3c:60: 3a:3a:95:d1:de:12:67:fe:3b:d4:90:ee:78:3d:6c: 7f:b7:13:c8:0a:8e:d2:19:26:03:7a:f7:3e:52:20: d6:4d:a3:47:2b:3b:f2:c1:14:a2:90:7f:5b:53:e9: c3:93:6b:12:e2:f0:1d:66:d7:0c:a0:5c:cc:8e:55: 71:30:a1:42:b0:20:da:48:75:4c:8c:d2:91:ee:49: d9:8d:b0:1a:5f:b9:6b:d6:55:62:8c:90:c4:4d:3d: d5:5a:f2:2a:83:2f:9a:c4:4a:f9:34:71:a7:73:45: eb:b8:66:c3:3d:bb:b1:fe:cb:8c:35:31:ae:00:40: e8:2c:ca:5f:d1:a2:1a:9c:36:fa:8b:90:cd:c4:0b: 3a:dc:97:1f:f3:7b:82:1b:42:56:19:65:12:b7:4b: d9:b5:b1:3c:02:40:b1:b7:b1:47:f3:4c:e3:da:be: 96:e6:2c:eb:43:5d:95:cb:93:fe:cf:91:c8:ea:9f: 41:f4:b1:71:22:17:b2:a4:79:cc:ae:3a:46:1b:d8: c4:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:75:74:6F:FE:87:AA:05:89:3C:D6:30:A1:40:02:03:6D:E8:FF:26 X509v3 Authority Key Identifier: keyid:3F:31:FB:5D:8E:F4:7D:AD:38:DD:92:EA:1A:89:E8:88:71:40:3A:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C66B2/C4F15472201611F0A8D74314C4F9AE02/PzH7XY70fa043ZLqGonoiHFAOjE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PzH7XY70fa043ZLqGonoiHFAOjE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C66B2/C4F15472201611F0A8D74314C4F9AE02/PzH7XY70fa043ZLqGonoiHFAOjE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:ee:84:e0:07:65:96:d0:a6:76:9d:6c:11:cf:07:9b:6a:99: e2:2e:6c:f4:2e:31:0b:d1:22:6c:2b:d3:94:ac:da:6d:21:1e: 8e:57:b3:1f:31:a1:75:7d:4b:5b:c1:ae:38:a2:51:46:e8:28: 4f:e4:04:ac:1f:55:cc:1e:73:98:c1:96:58:aa:73:00:61:25: 7e:d4:1e:d6:3e:47:c3:37:a7:e2:d6:e7:d0:3e:61:0d:c6:96: 78:a7:61:23:02:10:c6:bc:03:61:1e:49:d9:ad:4f:94:af:69: ee:51:74:c3:8d:94:49:59:81:9a:1e:4f:9c:21:84:a5:b6:1a: c7:51:10:6e:8e:7f:fa:31:63:39:9f:55:93:2c:4c:09:c0:6c: 8b:1b:4e:d5:4f:84:c5:8c:b7:8d:cf:67:97:ee:1b:ac:ca:42: 18:b0:23:ab:0d:55:39:2e:7c:c9:0e:57:96:2c:b9:93:6e:0e: 15:14:3f:e3:79:29:b1:78:fa:da:05:a8:b7:af:ea:92:2b:7f: 81:a8:db:95:4b:3d:09:f2:1d:33:41:d7:a4:19:82:c7:60:dc: 01:e2:0b:f2:63:ca:9f:df:76:35:3a:3e:c0:06:81:c3:00:c8: 9b:53:d9:60:2b:5c:82:d8:e2:34:1b:7d:66:b8:2f:89:b4:58: 7e:5b:8b:64 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAMUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzY2QjIxMTAvBgNVBAUTKDNGMzFGQjVEOEVGNDdEQUQzOEREOTJFQTFBODlFODg4 NzE0MDNBMzEwHhcNMjYwNTExMDcwMDE1WhcNMjYwNTE4MDcwMDE1WjAYMRYwFAYD VQQDEw02YTAxN2U3Zi03MzZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAml3CIz0+tMEOfZ/JXv6yuItIlUdDCGmQB2v6/60xxl2Fyt7CmyZo5fjcjuwn PJUkDTR4sInu9yNxPGA6OpXR3hJn/jvUkO54PWx/txPICo7SGSYDevc+UiDWTaNH KzvywRSikH9bU+nDk2sS4vAdZtcMoFzMjlVxMKFCsCDaSHVMjNKR7knZjbAaX7lr 1lVijJDETT3VWvIqgy+axEr5NHGnc0XruGbDPbux/suMNTGuAEDoLMpf0aIanDb6 i5DNxAs63Jcf83uCG0JWGWUSt0vZtbE8AkCxt7FH80zj2r6W5izrQ12Vy5P+z5HI 6p9B9LFxIheypHnMrjpGG9jEwQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGF1dG/+ h6oFiTzWMKFAAgNt6P8mMB8GA1UdIwQYMBaAFD8x+12O9H2tON2S6hqJ6IhxQDox MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNjZCMi9DNEYxNTQ3MjIw MTYxMUYwQThENzQzMTRDNEY5QUUwMi9Qekg3WFk3MGZhMDQzWkxxR29ub2lIRkFP akUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1B6SDdYWTcwZmEwNDNaTHFHb25vaUhGQU9qRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NjZCMi9DNEYxNTQ3MjIwMTYxMUYwQThENzQzMTRDNEY5QUUwMi9Qekg3WFk3MGZh MDQzWkxxR29ub2lIRkFPakUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAFu6E4AdlltCmdp1sEc8Hm2qZ4i5s9C4xC9EibCvTlKzabSEejlezHzGhdX1L W8GuOKJRRugoT+QErB9VzB5zmMGWWKpzAGElftQe1j5Hwzen4tbn0D5hDcaWeKdh IwIQxrwDYR5J2a1PlK9p7lF0w42USVmBmh5PnCGEpbYax1EQbo5/+jFjOZ9VkyxM CcBsixtO1U+ExYy3jc9nl+4brMpCGLAjqw1VOS58yQ5Xliy5k24OFRQ/43kpsXj6 2gWot6/qkit/gajblUs9CfIdM0HXpBmCx2DcAeIL8mPKn992NTo+wAaBwwDIm1PZ YCtcgtjiNBt9ZrgvibRYfluLZA== -----END CERTIFICATE-----Generated at Wed May 13 04:40:08 2026 by rpki-client