$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.mft File: ZKZlgWrv7XOzB1AH2lM3rH3sS4E.mft (raw, json) Hash identifier: g2+WrpUvZD4KRM1EwRiUvLLxItCSVXRBUhRK3P6Ysuc= Subject key identifier: 08:CD:44:37:FC:16:8C:4D:EB:C7:3F:6B:FF:57:B7:2A:8B:AD:B8:40 Authority key identifier: 64:A6:65:81:6A:EF:ED:73:B3:07:50:07:DA:53:37:AC:7D:EC:4B:81 Certificate issuer: /CN=A91E6D5D/serialNumber=64A665816AEFED73B3075007DA5337AC7DEC4B81 Certificate serial: 1BAD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.mft Manifest number: A214 Signing time: Tue 12 May 2026 14:30:55 +0000 Manifest this update: Tue 12 May 2026 14:30:54 +0000 Manifest next update: Tue 19 May 2026 14:30:54 +0000 Files and hashes: 1: ZKZlgWrv7XOzB1AH2lM3rH3sS4E.crl (hash: aBhC3IVMFp8wUjYJUvAWpxqM+k2oiMpVLBjEC50jfMM=) 2: FC6A19D892D511EC8FBFF32AC4F9AE02.roa (hash: OXGvG47egb4PF/onwPC9e0QERfLfAY+ZqPCLmsNj8TE=) 3: 3D68F8C29A4A11EA94706012C4F9AE02.roa (hash: gxt7j0/qgDHDY4eOy9nTFq4yiN1wN4Azb/F6N/jLPQo=) 4: ACC8833824DE11EDAEC0E529C4F9AE02.roa (hash: H0mHu5foM/0Hr0y7LJoGoqxfCYM8HtP6k45eEW8ACTA=) 5: C89FD6DA557611EBA04C290BC4F9AE02.roa (hash: IDu51NoCXLX0fGSXN0JfKGuNOGTw6RNrNximD3D412U=) 6: 0B24875C7A4411EB804B7430C4F9AE02.roa (hash: +Z0l5rtFf9gejJdRbzGI1Tev7wUao9HHsXdVWsy9gIw=) 7: 191363A69DD911EC99D91668C4F9AE02.roa (hash: 9ywt3YgdGMPifjHDU8GOY5yDR3rcKL5WS/6sXlZSwSk=) 8: 1BF3A43C15BE11EF93ABFD7DC4F9AE02.roa (hash: lhNS+ojnip3W9c6D2+vK5Jj0fFUXb3jMTgYthGAVWGE=) 9: 20C6F2EC699D11EAA33EAE83C4F9AE02.roa (hash: noBHpHcIG4F8PCP16+JaDrGG+bfZLo/xyhvvRrrAwbc=) 10: 4FF339D8F01D11EB8C4B505BC4F9AE02.roa (hash: kzmw6JQnHsEPxWEaFvMAvmSNfBwkvf6++ngi0TT5BK0=) 11: 9907DC46D4BC11EF9BDDAF2EC4F9AE02.roa (hash: DNaQzWtObT5DaBf5rMkdrtx4HMZbyrfOB84Oiv/VTA0=) 12: 959AC422557911EBBD21EB2FC4F9AE02.roa (hash: YKfVc/1kWhtiSN/JgbbvpApeCbmTeJDdHpPmRnKp0f8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.crl rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 14:30:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7085 (0x1bad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6D5D, serialNumber=64A665816AEFED73B3075007DA5337AC7DEC4B81 Validity Not Before: May 12 14:30:54 2026 GMT Not After : May 19 14:30:54 2026 GMT Subject: CN=6a03399f-a275 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:99:df:91:ad:bd:7c:56:ac:0a:13:75:e0:a1: be:e3:4a:37:27:32:b2:05:61:10:f6:c4:d7:b2:c9: 51:d9:36:d9:ed:ad:91:ac:69:69:6d:00:ba:33:58: 74:6f:56:97:5e:12:92:48:8d:5d:d1:2a:29:5d:8c: 16:68:cc:da:30:bd:f8:43:bc:74:c8:82:88:90:6a: 1e:59:25:c5:0b:0c:51:38:da:2e:8a:40:68:a2:7c: d4:9c:f7:8b:ba:ce:49:81:ea:3a:80:66:83:1b:51: cf:8c:10:9b:de:cc:23:db:42:fc:70:71:26:d2:07: c6:52:c7:c5:d7:8e:95:01:03:c7:c7:a7:b1:90:39: 5e:3f:32:9d:ec:4d:f4:03:cb:c9:35:57:bc:4e:79: 12:2b:dd:cd:f2:bd:07:81:ab:36:94:87:7f:e4:c8: b6:67:28:c6:3c:ca:3c:80:f5:82:d4:46:f4:aa:be: 51:ca:cd:9e:97:90:4d:2e:9a:4a:d2:5a:b3:c0:ea: 8f:e8:b3:3f:bf:9f:9e:01:e0:70:25:8f:b5:1c:b6: db:6e:a2:b0:cd:2f:e4:29:d1:e1:a7:8b:73:82:ca: 92:cf:ce:77:bc:f6:4b:58:ba:f9:5f:c7:08:73:4e: f1:f3:9d:3a:be:4b:85:0d:5f:65:0e:91:0b:8b:78: aa:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:CD:44:37:FC:16:8C:4D:EB:C7:3F:6B:FF:57:B7:2A:8B:AD:B8:40 X509v3 Authority Key Identifier: keyid:64:A6:65:81:6A:EF:ED:73:B3:07:50:07:DA:53:37:AC:7D:EC:4B:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:9a:22:8e:77:2d:00:74:82:3f:c8:d4:84:98:43:8e:48:0a: 38:5a:ce:d2:b2:0b:a5:29:0b:f9:6e:8a:d9:c2:1f:42:ad:41: c2:b4:a6:bb:a3:5c:b9:ef:8e:7f:d4:98:8b:4d:48:c7:12:2b: a0:89:c3:cf:36:9f:fd:ed:09:83:fc:63:22:65:27:80:64:53: fe:bb:d9:09:40:6e:5b:f7:3a:3a:2a:67:3a:67:2f:c1:49:c9: 6a:cf:6d:e7:1a:68:95:32:cf:f8:a8:d6:68:c4:a7:69:33:36: 97:c8:d7:f1:a1:d7:66:7f:e2:aa:98:7b:88:71:5a:cc:df:8a: 84:e9:88:e8:12:57:d2:d5:64:a5:f0:a3:37:2a:ec:c6:d0:56: ac:54:0d:7d:2d:98:5e:7a:8b:a0:84:02:96:9f:7f:0d:7d:ef: d9:46:92:dc:f1:df:2d:cf:35:62:01:9b:d7:34:f1:92:e8:5b: 29:ff:72:63:c4:7f:34:52:28:ae:74:0b:5c:a2:e9:f4:11:83: 5c:09:ca:aa:06:b8:00:b5:c5:fa:fc:1f:39:b8:34:bd:ed:94: 82:4c:c9:85:db:ad:7d:9a:bf:bf:bc:df:be:ba:fc:28:0f:4b: 00:c7:1b:61:a3:b5:0b:00:78:f2:73:2f:2f:e1:33:f9:f7:da: 5e:39:60:9b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICG60wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTZENUQxMTAvBgNVBAUTKDY0QTY2NTgxNkFFRkVENzNCMzA3NTAwN0RBNTMzN0FD N0RFQzRCODEwHhcNMjYwNTEyMTQzMDU0WhcNMjYwNTE5MTQzMDU0WjAYMRYwFAYD VQQDEw02YTAzMzk5Zi1hMjc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtZnfka29fFasChN14KG+40o3JzKyBWEQ9sTXsslR2TbZ7a2RrGlpbQC6M1h0 b1aXXhKSSI1d0SopXYwWaMzaML34Q7x0yIKIkGoeWSXFCwxRONouikBoonzUnPeL us5Jgeo6gGaDG1HPjBCb3swj20L8cHEm0gfGUsfF146VAQPHx6exkDlePzKd7E30 A8vJNVe8TnkSK93N8r0Hgas2lId/5Mi2ZyjGPMo8gPWC1Eb0qr5Rys2el5BNLppK 0lqzwOqP6LM/v5+eAeBwJY+1HLbbbqKwzS/kKdHhp4tzgsqSz853vPZLWLr5X8cI c07x8506vkuFDV9lDpELi3iqpQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAjNRDf8 FoxN68c/a/9XtyqLrbhAMB8GA1UdIwQYMBaAFGSmZYFq7+1zswdQB9pTN6x97EuB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNkQ1RC85RENCNjhFMDFE ODgxMUUyOTRCOTU1RTEwOEIwMkNEMi9aS1psZ1dydjdYT3pCMUFIMmxNM3JIM3NT NEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pLWmxnV3J2N1hPekIxQUgybE0zckgzc1M0RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NkQ1RC85RENCNjhFMDFEODgxMUUyOTRCOTU1RTEwOEIwMkNEMi9aS1psZ1dydjdY T3pCMUFIMmxNM3JIM3NTNEUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAd5oijnctAHSCP8jUhJhDjkgKOFrO0rILpSkL+W6K2cIfQq1BwrSmu6Ncue+O f9SYi01IxxIroInDzzaf/e0Jg/xjImUngGRT/rvZCUBuW/c6OipnOmcvwUnJas9t 5xpolTLP+KjWaMSnaTM2l8jX8aHXZn/iqph7iHFazN+KhOmI6BJX0tVkpfCjNyrs xtBWrFQNfS2YXnqLoIQClp9/DX3v2UaS3PHfLc81YgGb1zTxkuhbKf9yY8R/NFIo rnQLXKLp9BGDXAnKqga4ALXF+vwfObg0ve2UgkzJhdutfZq/v7zfvrr8KA9LAMcb YaO1CwB48nMvL+Ez+ffaXjlgmw== -----END CERTIFICATE-----Generated at Wed May 13 12:50:19 2026 by rpki-client