$ rpki-client -vvf rpki.apnic.net/member_repository/A91E89CD/3C0D4A16B05511EAA045B80EC4F9AE02/zlgHMAQJCIdOtirydgUp51w9XGg.mft File: zlgHMAQJCIdOtirydgUp51w9XGg.mft (raw, json) Hash identifier: bbUFOoItMRRFf0gPL8H8fPHYtiAV0Nxq1U2+ZZeEvuk= Subject key identifier: 05:3D:32:D2:8E:95:AA:7B:E1:F2:75:F9:E7:E1:A7:E9:00:1A:36:78 Authority key identifier: CE:58:07:30:04:09:08:87:4E:B6:2A:F2:76:05:29:E7:5C:3D:5C:68 Certificate issuer: /CN=A91E89CD/serialNumber=CE580730040908874EB62AF2760529E75C3D5C68 Certificate serial: 09A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zlgHMAQJCIdOtirydgUp51w9XGg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E89CD/3C0D4A16B05511EAA045B80EC4F9AE02/zlgHMAQJCIdOtirydgUp51w9XGg.mft Manifest number: 0991 Signing time: Tue 12 May 2026 20:04:40 +0000 Manifest this update: Tue 12 May 2026 20:04:40 +0000 Manifest next update: Tue 19 May 2026 20:04:40 +0000 Files and hashes: 1: zlgHMAQJCIdOtirydgUp51w9XGg.crl (hash: AwuXW2EnwO0rvb+bacvXd80/dbURRmERVZeb6Lhbh8o=) 2: D3ECF4B8E61D11EBB92C167BC4F9AE02.roa (hash: JpJW44EKjdDGS9i2UbNxoq47VGQn3OM7oBb7lk+F9fo=) 3: 8698CD28A42211EB91621734C4F9AE02.roa (hash: QYOZ1apbmHEgFA/KTyiwZS4fSNem6E5RLUuLMFBIYIM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E89CD/3C0D4A16B05511EAA045B80EC4F9AE02/zlgHMAQJCIdOtirydgUp51w9XGg.crl rsync://rpki.apnic.net/member_repository/A91E89CD/3C0D4A16B05511EAA045B80EC4F9AE02/zlgHMAQJCIdOtirydgUp51w9XGg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zlgHMAQJCIdOtirydgUp51w9XGg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 20:04:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2470 (0x9a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E89CD, serialNumber=CE580730040908874EB62AF2760529E75C3D5C68 Validity Not Before: May 12 20:04:40 2026 GMT Not After : May 19 20:04:40 2026 GMT Subject: CN=6a0387d8-893f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:20:59:89:2c:a4:b3:8d:9a:1e:d5:7c:c5:e3: 7e:8a:ba:7e:e6:96:5b:03:31:76:9a:dd:b9:4b:28: af:d1:27:b5:72:6a:90:06:9e:72:45:56:33:0f:c0: 9d:a0:9c:9a:6b:37:99:b8:0f:b9:1c:00:fd:c4:20: 1f:3a:79:9f:a5:c8:e7:85:1b:92:61:ed:56:f2:1f: 90:7d:75:9e:5f:e4:02:6d:47:68:57:fc:9f:b5:94: 7d:28:d2:35:0b:7d:4b:ed:8f:44:28:04:07:94:fd: f5:61:d4:3c:d3:5b:8d:63:cd:73:ec:54:5b:20:1b: c4:3c:7e:94:8e:07:1f:40:00:09:59:4c:2d:20:2f: be:a2:cc:ff:32:3b:cb:1c:46:dd:bc:bf:73:1a:2e: 81:08:bf:22:be:57:d7:2b:eb:7c:d1:2d:e1:f6:5e: 9e:c9:91:57:c9:f7:e8:84:22:4b:be:b5:e7:40:0f: 44:ab:b7:22:e4:a3:cd:75:34:52:2e:f9:3c:a7:99: 31:bb:02:bd:1a:f2:96:cb:62:d2:64:de:57:ba:4e: 96:53:5f:e9:fc:d6:ef:63:5c:95:6b:b9:f0:0d:96: fc:3d:bf:12:93:f2:8f:63:c3:a2:44:cf:5d:4a:d4: c4:e5:f4:df:51:b1:15:8a:ab:74:c4:14:dd:e3:01: 8c:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:3D:32:D2:8E:95:AA:7B:E1:F2:75:F9:E7:E1:A7:E9:00:1A:36:78 X509v3 Authority Key Identifier: keyid:CE:58:07:30:04:09:08:87:4E:B6:2A:F2:76:05:29:E7:5C:3D:5C:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E89CD/3C0D4A16B05511EAA045B80EC4F9AE02/zlgHMAQJCIdOtirydgUp51w9XGg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zlgHMAQJCIdOtirydgUp51w9XGg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E89CD/3C0D4A16B05511EAA045B80EC4F9AE02/zlgHMAQJCIdOtirydgUp51w9XGg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:d3:8e:23:e7:31:b1:46:b6:f3:bd:c8:e8:66:90:ce:57:b2: 53:ea:84:fc:c8:20:c6:8d:18:48:dd:40:d6:96:11:cd:b3:c4: 5e:7d:2e:8a:95:27:21:ee:88:cc:e3:53:50:7f:04:22:22:68: a5:90:4b:7e:9d:e7:8f:a0:19:2e:74:d6:41:21:cd:15:22:6d: 7e:5c:4f:d2:8e:04:43:25:54:71:4e:16:3a:84:ad:70:f8:f0: ae:99:86:d6:3f:0d:4f:ff:91:8c:71:ca:78:bf:f3:10:11:76: f1:45:d4:11:5e:99:1d:cc:34:52:0f:10:8b:70:93:1d:39:9a: 59:56:3d:fb:b1:f0:e8:77:ce:f9:5a:8c:10:5d:c8:28:78:30: b0:2d:11:9a:cc:14:20:61:8a:79:bf:56:46:33:b7:35:33:5f: 89:ee:65:72:ca:b9:43:69:56:f9:68:86:8d:a4:98:6c:7d:9c: 23:46:61:84:3e:3d:2c:43:6c:8e:dd:eb:80:8f:9e:8c:cf:cd: f1:f8:f9:f9:c9:e6:08:0c:35:72:d1:cb:2c:35:bf:8a:f3:e2: d2:8f:e5:f0:41:6c:d7:c8:93:bb:20:99:43:b6:13:9f:8f:75: 90:b2:73:f4:1d:0f:17:39:c7:48:77:f6:b5:87:f3:b4:3a:9a: cb:d7:55:e3 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCaYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTg5Q0QxMTAvBgNVBAUTKENFNTgwNzMwMDQwOTA4ODc0RUI2MkFGMjc2MDUyOUU3 NUMzRDVDNjgwHhcNMjYwNTEyMjAwNDQwWhcNMjYwNTE5MjAwNDQwWjAYMRYwFAYD VQQDEw02YTAzODdkOC04OTNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApCBZiSyks42aHtV8xeN+irp+5pZbAzF2mt25Syiv0Se1cmqQBp5yRVYzD8Cd oJyaazeZuA+5HAD9xCAfOnmfpcjnhRuSYe1W8h+QfXWeX+QCbUdoV/yftZR9KNI1 C31L7Y9EKAQHlP31YdQ801uNY81z7FRbIBvEPH6UjgcfQAAJWUwtIC++osz/MjvL HEbdvL9zGi6BCL8ivlfXK+t80S3h9l6eyZFXyffohCJLvrXnQA9Eq7ci5KPNdTRS Lvk8p5kxuwK9GvKWy2LSZN5Xuk6WU1/p/NbvY1yVa7nwDZb8Pb8Sk/KPY8OiRM9d StTE5fTfUbEViqt0xBTd4wGMfQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAU9MtKO lap74fJ1+efhp+kAGjZ4MB8GA1UdIwQYMBaAFM5YBzAECQiHTrYq8nYFKedcPVxo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODlDRC8zQzBENEExNkIw NTUxMUVBQTA0NUI4MEVDNEY5QUUwMi96bGdITUFRSkNJZE90aXJ5ZGdVcDUxdzlY R2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3psZ0hNQVFKQ0lkT3RpcnlkZ1VwNTF3OVhHZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF ODlDRC8zQzBENEExNkIwNTUxMUVBQTA0NUI4MEVDNEY5QUUwMi96bGdITUFRSkNJ ZE90aXJ5ZGdVcDUxdzlYR2cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEASdOOI+cxsUa2873I6GaQzleyU+qE/Mggxo0YSN1A1pYRzbPEXn0uipUnIe6I zONTUH8EIiJopZBLfp3nj6AZLnTWQSHNFSJtflxP0o4EQyVUcU4WOoStcPjwrpmG 1j8NT/+RjHHKeL/zEBF28UXUEV6ZHcw0Ug8Qi3CTHTmaWVY9+7Hw6HfO+VqMEF3I KHgwsC0RmswUIGGKeb9WRjO3NTNfie5lcsq5Q2lW+WiGjaSYbH2cI0ZhhD49LENs jt3rgI+ejM/N8fj5+cnmCAw1ctHLLDW/ivPi0o/l8EFs18iTuyCZQ7YTn491kLJz 9B0PFznHSHf2tYfztDqay9dV4w== -----END CERTIFICATE-----Generated at Wed May 13 09:10:29 2026 by rpki-client