$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE978/5DB555AAB8DA11EEBC4BEC2DC4F9AE02/RZTy7BffVsPQZUDzZtKvEYsxfx4.mft File: RZTy7BffVsPQZUDzZtKvEYsxfx4.mft (raw, json) Hash identifier: yJkfOgVVTnpUQ+vMqgSXZKqoe2dh4fVMENBQUgoCvzM= Subject key identifier: D7:A5:00:FD:82:C1:88:BA:3B:04:A7:FA:EA:F8:E5:84:E5:CC:BF:B4 Authority key identifier: 45:94:F2:EC:17:DF:56:C3:D0:65:40:F3:66:D2:AF:11:8B:31:7F:1E Certificate issuer: /CN=A91CE978/serialNumber=4594F2EC17DF56C3D06540F366D2AF118B317F1E Certificate serial: 01BF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RZTy7BffVsPQZUDzZtKvEYsxfx4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE978/5DB555AAB8DA11EEBC4BEC2DC4F9AE02/RZTy7BffVsPQZUDzZtKvEYsxfx4.mft Manifest number: 01BA Signing time: Tue 12 May 2026 15:13:21 +0000 Manifest this update: Tue 12 May 2026 15:13:21 +0000 Manifest next update: Tue 19 May 2026 15:13:21 +0000 Files and hashes: 1: RZTy7BffVsPQZUDzZtKvEYsxfx4.crl (hash: TxRgEh8vqS2MIq2jvtmnjJ3IUTVDQwhcX1+fIl9mZMI=) 2: 30EAE110B9AD11EE83063243C4F9AE02.roa (hash: QreKN0Rd5UfNyWwEd5SMYjaTfZ6J0wKhOlda79WX3co=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE978/5DB555AAB8DA11EEBC4BEC2DC4F9AE02/RZTy7BffVsPQZUDzZtKvEYsxfx4.crl rsync://rpki.apnic.net/member_repository/A91CE978/5DB555AAB8DA11EEBC4BEC2DC4F9AE02/RZTy7BffVsPQZUDzZtKvEYsxfx4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RZTy7BffVsPQZUDzZtKvEYsxfx4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 14:50:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 447 (0x1bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE978, serialNumber=4594F2EC17DF56C3D06540F366D2AF118B317F1E Validity Not Before: May 12 15:13:21 2026 GMT Not After : May 19 15:13:21 2026 GMT Subject: CN=6a034391-6d21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:5f:82:5f:db:e0:ab:cc:2c:47:03:3d:d7:07: 68:44:1a:a3:23:a6:67:88:65:55:e4:9e:15:00:89: ad:fb:55:18:13:23:f6:c7:55:ef:9a:9f:ff:57:c9: ca:3a:60:6d:24:67:74:e5:ff:e1:30:df:5a:4b:0d: 72:26:06:91:3b:0c:73:de:fb:78:7f:25:05:cd:ec: 5b:97:7b:b2:1c:4e:e4:c1:af:9f:34:bf:a4:64:ae: 44:63:5e:3f:af:c4:f2:c9:23:01:0b:cc:42:64:d5: 95:31:39:24:de:db:31:21:87:d0:f3:01:f7:29:48: 1b:45:09:f5:0e:89:b6:0e:02:fb:67:0c:0b:29:79: e6:95:51:4e:9d:ab:b6:60:b8:49:73:52:cf:01:97: ba:e8:48:4b:ce:b8:f5:ea:45:a3:0b:54:12:04:62: ca:ba:c4:d9:13:ae:15:7d:0e:0b:99:71:73:cc:da: c5:11:30:02:7d:5c:0a:24:a4:64:d8:90:73:ea:9d: ef:1c:70:8f:13:77:a4:68:40:26:6d:4d:5d:cc:0c: fd:23:86:3a:f2:ae:75:fa:74:32:e8:ad:74:4d:1a: 23:c7:8d:d1:04:81:f9:fa:8e:e3:bf:72:2a:dd:1d: 31:73:16:f9:cf:1a:29:27:a4:13:87:78:17:00:b7: f2:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:A5:00:FD:82:C1:88:BA:3B:04:A7:FA:EA:F8:E5:84:E5:CC:BF:B4 X509v3 Authority Key Identifier: keyid:45:94:F2:EC:17:DF:56:C3:D0:65:40:F3:66:D2:AF:11:8B:31:7F:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE978/5DB555AAB8DA11EEBC4BEC2DC4F9AE02/RZTy7BffVsPQZUDzZtKvEYsxfx4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RZTy7BffVsPQZUDzZtKvEYsxfx4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE978/5DB555AAB8DA11EEBC4BEC2DC4F9AE02/RZTy7BffVsPQZUDzZtKvEYsxfx4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:98:7c:fe:cf:7e:17:83:6a:8d:2e:eb:45:d7:7e:01:72:d7: 56:23:11:4d:e8:16:5e:ab:6b:f9:ce:b0:0e:34:5c:85:37:13: f4:49:d9:d7:33:c4:1f:ee:01:2e:bb:dc:b3:75:17:d7:e6:72: 1c:ee:32:15:60:64:78:83:ca:86:00:71:84:8e:07:c3:4b:ae: 82:0a:44:c3:fe:38:a0:f6:01:40:f0:b8:20:30:b6:3f:64:d2: e3:a7:41:d3:05:0c:55:67:23:17:8e:a0:58:63:5a:1e:33:db: 53:0a:53:59:66:bf:80:d9:f9:03:31:92:7b:c2:42:b7:b1:bf: e2:f6:55:31:cc:7c:39:00:af:b1:c4:6d:1e:fc:28:97:fe:6a: c1:06:00:19:4f:2a:4f:b6:7a:1d:f0:ab:8a:7c:2d:52:1f:37: b4:c2:97:71:15:99:17:ab:da:49:b2:22:dc:d8:b8:b1:c7:22: 2a:1a:68:d3:45:fb:5f:a4:b1:91:7e:18:f4:05:01:f6:a8:09: 73:99:c5:22:19:33:b0:a2:0e:20:05:10:73:48:72:8d:d6:fd: b9:6c:b0:81:7c:22:ac:9e:f4:70:1c:67:a4:30:57:a0:21:d0: cf:4d:36:8b:4a:c9:37:04:30:dd:25:d7:a5:1b:c9:ea:bb:f9: 9e:31:22:2c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAb8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U5NzgxMTAvBgNVBAUTKDQ1OTRGMkVDMTdERjU2QzNEMDY1NDBGMzY2RDJBRjEx OEIzMTdGMUUwHhcNMjYwNTEyMTUxMzIxWhcNMjYwNTE5MTUxMzIxWjAYMRYwFAYD VQQDEw02YTAzNDM5MS02ZDIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApF+CX9vgq8wsRwM91wdoRBqjI6ZniGVV5J4VAImt+1UYEyP2x1Xvmp//V8nK OmBtJGd05f/hMN9aSw1yJgaROwxz3vt4fyUFzexbl3uyHE7kwa+fNL+kZK5EY14/ r8TyySMBC8xCZNWVMTkk3tsxIYfQ8wH3KUgbRQn1Dom2DgL7ZwwLKXnmlVFOnau2 YLhJc1LPAZe66EhLzrj16kWjC1QSBGLKusTZE64VfQ4LmXFzzNrFETACfVwKJKRk 2JBz6p3vHHCPE3ekaEAmbU1dzAz9I4Y68q51+nQy6K10TRojx43RBIH5+o7jv3Iq 3R0xcxb5zxopJ6QTh3gXALfyswIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNelAP2C wYi6OwSn+ur45YTlzL+0MB8GA1UdIwQYMBaAFEWU8uwX31bD0GVA82bSrxGLMX8e MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTk3OC81REI1NTVBQUI4 REExMUVFQkM0QkVDMkRDNEY5QUUwMi9SWlR5N0JmZlZzUFFaVUR6WnRLdkVZc3hm eDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1JaVHk3QmZmVnNQUVpVRHpadEt2RVlzeGZ4NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTk3OC81REI1NTVBQUI4REExMUVFQkM0QkVDMkRDNEY5QUUwMi9SWlR5N0JmZlZz UFFaVUR6WnRLdkVZc3hmeDQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAEZh8/s9+F4NqjS7rRdd+AXLXViMRTegWXqtr+c6wDjRchTcT9EnZ1zPEH+4B Lrvcs3UX1+ZyHO4yFWBkeIPKhgBxhI4Hw0uuggpEw/44oPYBQPC4IDC2P2TS46dB 0wUMVWcjF46gWGNaHjPbUwpTWWa/gNn5AzGSe8JCt7G/4vZVMcx8OQCvscRtHvwo l/5qwQYAGU8qT7Z6HfCrinwtUh83tMKXcRWZF6vaSbIi3Ni4scciKhpo00X7X6Sx kX4Y9AUB9qgJc5nFIhkzsKIOIAUQc0hyjdb9uWywgXwirJ70cBxnpDBXoCHQz002 i0rJNwQw3SXXpRvJ6rv5njEiLA== -----END CERTIFICATE-----Generated at Wed May 13 02:44:37 2026 by rpki-client