$ rpki-client -vvf rpki.apnic.net/member_repository/A91DFA25/70F978F2E07511F0A5642F05396F56BC/zHDYc0KJ0wWlIzqZsJzXi4_WZks.mft File: zHDYc0KJ0wWlIzqZsJzXi4_WZks.mft (raw, json) Hash identifier: A56FFYLJ7fgDPF7S7+4xDxAjTJuR/EfaANEZ2UpWr3k= Subject key identifier: 82:91:22:17:B1:DB:65:E8:7C:E5:11:41:FF:24:A9:F2:75:92:7A:39 Authority key identifier: CC:70:D8:73:42:89:D3:05:A5:23:3A:99:B0:9C:D7:8B:8F:D6:66:4B Certificate issuer: /CN=A91DFA25/serialNumber=CC70D8734289D305A5233A99B09CD78B8FD6664B Certificate serial: 53 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zHDYc0KJ0wWlIzqZsJzXi4_WZks.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DFA25/70F978F2E07511F0A5642F05396F56BC/zHDYc0KJ0wWlIzqZsJzXi4_WZks.mft Manifest number: 50 Signing time: Wed 13 May 2026 08:27:53 +0000 Manifest this update: Wed 13 May 2026 08:27:52 +0000 Manifest next update: Wed 20 May 2026 08:27:52 +0000 Files and hashes: 1: zHDYc0KJ0wWlIzqZsJzXi4_WZks.crl (hash: q83bRmRA0V7YPkbQUJCWTAPByYYL+QvlcZBbxGhICcM=) 2: 9E283D22E07A11F0AD28F7913A6F56BC.roa (hash: zM/gqOyVFktPoDA/WeuwpVQb7+CuTjfIizkBCA5c5Lg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DFA25/70F978F2E07511F0A5642F05396F56BC/zHDYc0KJ0wWlIzqZsJzXi4_WZks.crl rsync://rpki.apnic.net/member_repository/A91DFA25/70F978F2E07511F0A5642F05396F56BC/zHDYc0KJ0wWlIzqZsJzXi4_WZks.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zHDYc0KJ0wWlIzqZsJzXi4_WZks.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 08:27:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 83 (0x53) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DFA25, serialNumber=CC70D8734289D305A5233A99B09CD78B8FD6664B Validity Not Before: May 13 08:27:52 2026 GMT Not After : May 20 08:27:52 2026 GMT Subject: CN=6a043609-880c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:3f:7a:c3:d3:1d:23:14:26:1f:64:22:26:ae: 16:5e:0f:56:e3:85:21:53:b9:1d:fc:f3:4f:c6:7e: 96:c3:ac:29:c3:5e:9c:34:6f:6d:98:d5:8e:3f:85: 2a:0a:77:db:dc:2c:79:0a:2a:0c:e4:a1:d4:1b:a8: 34:0d:ec:7c:ac:57:45:fa:95:f0:89:f0:8b:95:93: 31:64:18:54:37:15:ec:ed:c5:f2:75:a7:6f:10:ec: 82:1e:de:c5:0b:c9:8d:eb:8e:bf:aa:96:22:e1:61: fb:d4:15:53:cd:77:30:db:97:a9:f5:10:ef:38:8e: 5a:e3:e1:70:a1:b2:98:41:62:8b:c2:6b:8c:03:53: ed:df:07:5a:da:00:f2:be:c7:b2:0c:6e:67:2b:2e: 0d:b8:fe:b5:2d:15:fb:ac:5a:59:cb:90:dd:47:97: db:f6:32:8f:f0:3b:e9:ae:77:a3:11:3e:f2:59:80: 9a:c1:78:4f:00:27:af:4d:4d:31:8c:83:42:68:fd: 91:97:00:b9:72:24:ea:c3:78:b9:64:69:d7:39:eb: 62:ca:a6:9d:cf:3e:40:f5:42:3a:0e:ca:7e:ab:e4: ff:a0:93:05:85:07:57:73:67:1f:a9:68:e7:9e:5b: 88:9e:b0:91:2a:35:4c:62:24:a1:5b:56:0a:ad:f1: ab:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:91:22:17:B1:DB:65:E8:7C:E5:11:41:FF:24:A9:F2:75:92:7A:39 X509v3 Authority Key Identifier: keyid:CC:70:D8:73:42:89:D3:05:A5:23:3A:99:B0:9C:D7:8B:8F:D6:66:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DFA25/70F978F2E07511F0A5642F05396F56BC/zHDYc0KJ0wWlIzqZsJzXi4_WZks.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zHDYc0KJ0wWlIzqZsJzXi4_WZks.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DFA25/70F978F2E07511F0A5642F05396F56BC/zHDYc0KJ0wWlIzqZsJzXi4_WZks.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:bd:3c:4d:02:42:7c:ba:fc:19:00:76:e1:ae:ae:86:10:25: f6:84:78:db:56:6d:f9:58:b9:62:c2:79:ab:9a:7a:32:a6:ae: a3:63:be:51:45:37:10:57:b3:b8:98:bb:6b:69:10:1c:25:b8: 2d:0f:3f:2a:bf:5f:77:ba:24:92:8a:3c:c4:7a:5c:f1:e8:fe: ff:8e:b5:51:f6:f6:17:d9:56:5b:62:b0:b9:2c:87:04:36:e4: e1:a7:7f:8f:2e:15:c6:d3:21:4c:b1:35:7c:08:1c:81:03:17: 9c:0b:4d:73:2f:88:63:95:2e:58:0b:de:fe:8b:d9:c0:d0:b7: b1:e9:b4:ae:1f:eb:13:a8:6c:b6:09:cf:3c:3c:b6:aa:5d:c7: 6e:89:c3:55:ed:57:14:08:c8:0c:02:74:6e:a8:ad:ed:b0:e3: 20:88:1d:5b:f3:81:09:29:37:97:c5:5d:d7:24:4f:4e:16:63: 64:af:bb:a2:f2:50:e9:9e:e0:52:b3:fa:9b:bf:c0:31:c6:6c: 50:be:77:f9:e7:42:b2:0c:90:29:78:61:6c:4e:4c:d2:30:3e: 21:af:50:d7:c1:a6:81:1e:f5:17:a9:d6:e8:bb:23:93:16:df: 5d:2b:35:c6:5d:f2:25:c0:fd:4d:5a:79:0b:1f:08:2d:40:5c: a2:f0:1d:5b -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBUzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE RkEyNTExMC8GA1UEBRMoQ0M3MEQ4NzM0Mjg5RDMwNUE1MjMzQTk5QjA5Q0Q3OEI4 RkQ2NjY0QjAeFw0yNjA1MTMwODI3NTJaFw0yNjA1MjAwODI3NTJaMBgxFjAUBgNV BAMTDTZhMDQzNjA5LTg4MGMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDgP3rD0x0jFCYfZCImrhZeD1bjhSFTuR3880/GfpbDrCnDXpw0b22Y1Y4/hSoK d9vcLHkKKgzkodQbqDQN7HysV0X6lfCJ8IuVkzFkGFQ3FeztxfJ1p28Q7IIe3sUL yY3rjr+qliLhYfvUFVPNdzDbl6n1EO84jlrj4XChsphBYovCa4wDU+3fB1raAPK+ x7IMbmcrLg24/rUtFfusWlnLkN1Hl9v2Mo/wO+mud6MRPvJZgJrBeE8AJ69NTTGM g0Jo/ZGXALlyJOrDeLlkadc562LKpp3PPkD1QjoOyn6r5P+gkwWFB1dzZx+paOee W4iesJEqNUxiJKFbVgqt8atZAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUgpEiF7Hb Zeh85RFB/ySp8nWSejkwHwYDVR0jBBgwFoAUzHDYc0KJ0wWlIzqZsJzXi4/WZksw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURGQTI1LzcwRjk3OEYyRTA3 NTExRjBBNTY0MkYwNTM5NkY1NkJDL3pIRFljMEtKMHdXbEl6cVpzSnpYaTRfV1pr cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvekhEWWMwS0owd1dsSXpxWnNKelhpNF9XWmtzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURG QTI1LzcwRjk3OEYyRTA3NTExRjBBNTY0MkYwNTM5NkY1NkJDL3pIRFljMEtKMHdX bEl6cVpzSnpYaTRfV1prcy5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQB/vTxNAkJ8uvwZAHbhrq6GECX2hHjbVm35WLliwnmrmnoypq6jY75RRTcQV7O4 mLtraRAcJbgtDz8qv193uiSSijzEelzx6P7/jrVR9vYX2VZbYrC5LIcENuThp3+P LhXG0yFMsTV8CByBAxecC01zL4hjlS5YC97+i9nA0Lex6bSuH+sTqGy2Cc88PLaq XcduicNV7VcUCMgMAnRuqK3tsOMgiB1b84EJKTeXxV3XJE9OFmNkr7ui8lDpnuBS s/qbv8AxxmxQvnf550KyDJApeGFsTkzSMD4hr1DXwaaBHvUXqdbouyOTFt9dKzXG XfIlwP1NWnkLHwgtQFyi8B1b -----END CERTIFICATE-----Generated at Wed May 13 13:38:01 2026 by rpki-client