$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft File: zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft (raw, json) Hash identifier: u95CFfLjyCp5ohxiBjrNKGhO8YuzT9OdlyKdDjdXa4E= Subject key identifier: DE:70:2F:C3:89:B3:F5:42:2B:DB:98:40:EC:A9:F2:81:F7:24:5D:13 Authority key identifier: CC:85:09:D3:1F:B6:3A:8D:DD:6B:F2:D3:D8:4C:7B:C0:B2:BA:3F:C0 Certificate issuer: /CN=A91EBFB0/serialNumber=CC8509D31FB63A8DDD6BF2D3D84C7BC0B2BA3FC0 Certificate serial: 0D4D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft Manifest number: 0D3F Signing time: Tue 12 May 2026 18:05:43 +0000 Manifest this update: Tue 12 May 2026 18:05:43 +0000 Manifest next update: Tue 19 May 2026 18:05:43 +0000 Files and hashes: 1: zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.crl (hash: W8VA5sxG2ijeoQSwPBAjOYHTgn+D0n2cowXO4A9gzPM=) 2: F690CAECF87D11E9A746D05BC4F9AE02.roa (hash: OZ/ioEgGADPRLql8C0CzW0hllIVkp5mAts1YwLX06Vw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.crl rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 18:05:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3405 (0xd4d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBFB0, serialNumber=CC8509D31FB63A8DDD6BF2D3D84C7BC0B2BA3FC0 Validity Not Before: May 12 18:05:43 2026 GMT Not After : May 19 18:05:43 2026 GMT Subject: CN=6a036bf7-05b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:b2:e8:62:f6:f0:10:6a:d1:30:49:14:d3:06: f5:9a:03:0b:f9:78:4e:3d:83:29:77:4c:ac:db:40: 7a:bc:20:14:d5:dd:eb:8d:70:fd:3d:e6:d8:40:50: ea:18:e7:9e:74:1f:78:31:36:7a:8d:8e:55:8f:11: 8b:57:d8:46:89:06:d5:82:3d:e2:63:ee:02:51:92: 5d:f9:88:12:4c:62:07:07:f7:b2:0a:62:14:87:56: 90:c6:23:64:41:2d:35:84:d1:11:ef:bc:54:33:4c: b9:70:28:bc:10:a3:a1:67:df:dc:05:d2:6c:0f:a5: f2:4f:e0:93:3a:59:ca:7b:60:53:ac:5a:8c:7b:db: 8a:68:e0:62:fd:43:f9:5a:7e:aa:e1:17:cc:6f:ee: b8:78:9d:39:2d:dd:06:08:ee:ec:f0:5e:08:1e:2f: e6:09:33:1f:41:83:8d:ee:0a:58:b2:b8:0a:e7:e6: fa:53:87:bb:b1:fc:cd:ed:a5:e2:e1:48:a6:20:57: 3e:f4:81:e9:74:3d:60:84:5c:52:2e:90:4d:80:18: d9:39:43:79:e0:06:3f:22:61:ec:ab:2e:2f:d8:a6: 58:d3:10:da:38:be:9e:d4:3d:ca:d4:4a:0f:db:b4: 99:63:21:fd:55:27:d9:0d:b9:02:55:1c:5b:68:18: 66:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:70:2F:C3:89:B3:F5:42:2B:DB:98:40:EC:A9:F2:81:F7:24:5D:13 X509v3 Authority Key Identifier: keyid:CC:85:09:D3:1F:B6:3A:8D:DD:6B:F2:D3:D8:4C:7B:C0:B2:BA:3F:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:15:50:c9:ea:5b:8b:b7:f9:17:ea:db:08:01:72:a6:fc:2f: e2:52:4d:03:89:f0:5b:21:c9:cf:91:aa:4a:e3:93:b6:4a:24: 50:6c:6b:df:b6:64:36:64:e0:6e:7c:fd:2f:17:26:f6:70:ff: ec:70:82:1c:72:94:fc:eb:f8:f3:7a:f0:da:50:19:41:a0:1c: 63:91:fd:79:d3:e8:bb:08:e5:07:17:f0:1d:63:ac:82:3d:0f: c5:f6:3c:f2:f1:e7:e4:9d:6c:13:cb:88:fd:c3:a3:12:e1:6e: 43:24:50:e8:2b:68:79:b6:c2:33:a7:d8:63:f4:ad:d0:95:a6: a4:94:dc:d6:fe:38:6d:f6:5f:2e:41:d1:af:d4:e3:3e:52:15: 0d:83:df:e0:94:08:9e:40:58:ab:1b:be:e1:2c:26:7a:ed:4a: 0c:59:4a:9b:73:b2:bb:f0:93:57:64:cf:58:30:2c:3a:a8:aa: b8:92:a0:40:33:7e:70:45:63:db:eb:ce:18:4c:8a:f1:ec:19: d7:f8:13:07:85:b9:ad:a8:70:e8:94:96:3d:40:dd:2f:a3:7b: 3f:ac:d0:38:7f:aa:92:0c:1b:5b:01:7f:bd:14:9f:37:3f:36: 6d:44:7a:ec:43:8b:a8:53:99:bc:79:2f:bb:e7:30:b2:ba:cb: e6:a7:72:16 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDU0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJGQjAxMTAvBgNVBAUTKENDODUwOUQzMUZCNjNBOERERDZCRjJEM0Q4NEM3QkMw QjJCQTNGQzAwHhcNMjYwNTEyMTgwNTQzWhcNMjYwNTE5MTgwNTQzWjAYMRYwFAYD VQQDEw02YTAzNmJmNy0wNWIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq7LoYvbwEGrRMEkU0wb1mgML+XhOPYMpd0ys20B6vCAU1d3rjXD9PebYQFDq GOeedB94MTZ6jY5VjxGLV9hGiQbVgj3iY+4CUZJd+YgSTGIHB/eyCmIUh1aQxiNk QS01hNER77xUM0y5cCi8EKOhZ9/cBdJsD6XyT+CTOlnKe2BTrFqMe9uKaOBi/UP5 Wn6q4RfMb+64eJ05Ld0GCO7s8F4IHi/mCTMfQYON7gpYsrgK5+b6U4e7sfzN7aXi 4UimIFc+9IHpdD1ghFxSLpBNgBjZOUN54AY/ImHsqy4v2KZY0xDaOL6e1D3K1EoP 27SZYyH9VSfZDbkCVRxbaBhmswIDAQABo4ICczCCAm8wHQYDVR0OBBYEFN5wL8OJ s/VCK9uYQOyp8oH3JF0TMB8GA1UdIwQYMBaAFMyFCdMftjqN3Wvy09hMe8Cyuj/A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkZCMC9BM0FCNDNCMkY4 N0MxMUU5QUEyQ0YxNThDNEY5QUUwMi96SVVKMHgtMk9vM2RhX0xUMkV4N3dMSzZQ OEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pJVUoweC0yT28zZGFfTFQyRXg3d0xLNlA4QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkZCMC9BM0FCNDNCMkY4N0MxMUU5QUEyQ0YxNThDNEY5QUUwMi96SVVKMHgtMk9v M2RhX0xUMkV4N3dMSzZQOEEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAKRVQyepbi7f5F+rbCAFypvwv4lJNA4nwWyHJz5GqSuOTtkokUGxr37ZkNmTg bnz9Lxcm9nD/7HCCHHKU/Ov483rw2lAZQaAcY5H9edPouwjlBxfwHWOsgj0PxfY8 8vHn5J1sE8uI/cOjEuFuQyRQ6CtoebbCM6fYY/St0JWmpJTc1v44bfZfLkHRr9Tj PlIVDYPf4JQInkBYqxu+4Swmeu1KDFlKm3Oyu/CTV2TPWDAsOqiquJKgQDN+cEVj 2+vOGEyK8ewZ1/gTB4W5rahw6JSWPUDdL6N7P6zQOH+qkgwbWwF/vRSfNz82bUR6 7EOLqFOZvHkvu+cwsrrL5qdyFg== -----END CERTIFICATE-----Generated at Wed May 13 08:17:17 2026 by rpki-client