$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED8E0/EE2D5326B94711EA8A649E76C4F9AE02/zFQZyKeLzVOtFxxbdKQHHZU5UEk.mft File: zFQZyKeLzVOtFxxbdKQHHZU5UEk.mft (raw, json) Hash identifier: bnM8SVQGXCTLOiHgMbbRsnPBfhjfPOIPc+0laTGTK3g= Subject key identifier: AB:70:08:49:7D:CC:F8:46:45:81:18:DA:68:7B:D6:60:28:8E:27:8A Authority key identifier: CC:54:19:C8:A7:8B:CD:53:AD:17:1C:5B:74:A4:07:1D:95:39:50:49 Certificate issuer: /CN=A91ED8E0/serialNumber=CC5419C8A78BCD53AD171C5B74A4071D95395049 Certificate serial: 0983 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zFQZyKeLzVOtFxxbdKQHHZU5UEk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ED8E0/EE2D5326B94711EA8A649E76C4F9AE02/zFQZyKeLzVOtFxxbdKQHHZU5UEk.mft Manifest number: 0969 Signing time: Tue 12 May 2026 20:09:45 +0000 Manifest this update: Tue 12 May 2026 20:09:44 +0000 Manifest next update: Tue 19 May 2026 20:09:44 +0000 Files and hashes: 1: zFQZyKeLzVOtFxxbdKQHHZU5UEk.crl (hash: Y9oX9Of9RqDbWcQQzuO9XJXCKFDN9g/fjk68RjnxyiQ=) 2: 2BEC62FA5DA011EF8E541175C4F9AE02.roa (hash: PDPdfJs3Sp/L4O6BvH4/f/PfyDghykuDm6tMTYKRkIk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ED8E0/EE2D5326B94711EA8A649E76C4F9AE02/zFQZyKeLzVOtFxxbdKQHHZU5UEk.crl rsync://rpki.apnic.net/member_repository/A91ED8E0/EE2D5326B94711EA8A649E76C4F9AE02/zFQZyKeLzVOtFxxbdKQHHZU5UEk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zFQZyKeLzVOtFxxbdKQHHZU5UEk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 20:09:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2435 (0x983) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ED8E0, serialNumber=CC5419C8A78BCD53AD171C5B74A4071D95395049 Validity Not Before: May 12 20:09:44 2026 GMT Not After : May 19 20:09:44 2026 GMT Subject: CN=6a038909-b6c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:21:7c:96:9f:45:3b:31:4d:35:43:4d:41:61: e0:70:bb:fd:6e:79:66:64:90:c6:0d:85:69:d7:df: b1:54:ab:df:d4:40:b9:22:08:b6:b1:d7:e0:d6:47: db:71:93:af:f8:99:e7:a7:ab:68:06:31:23:f4:8b: 75:d9:ef:58:a2:17:03:be:93:0a:fe:04:7b:22:4f: 26:5d:6e:17:0d:aa:47:dc:10:9a:78:b7:17:6e:89: eb:b6:07:5c:e0:b5:99:45:4c:a8:7f:12:ae:5a:b5: b7:73:ba:10:7d:1c:ca:84:f3:b3:18:96:bc:71:3f: ce:a2:fc:19:e9:82:36:1e:e2:60:4e:4a:03:3e:08: 3a:8a:d8:6b:2e:81:65:56:4c:1a:0e:9d:3d:b6:66: e7:58:4e:75:15:eb:44:5a:a6:f5:c4:9a:33:f8:76: 77:cb:2e:94:f1:65:95:34:44:26:9a:bc:a0:f3:42: ed:e0:95:e4:d9:fb:99:66:4c:c4:7c:c7:88:79:14: a7:a5:59:bc:6c:25:98:90:08:47:58:41:66:00:41: 7b:d3:c5:2f:5b:d5:0c:7b:fe:11:d7:de:51:4e:f3: 2a:5a:99:f1:3a:fa:ab:24:50:cd:ae:9f:a7:44:98: 6c:bd:2c:c5:01:ce:60:19:c7:ed:47:44:6e:86:5c: 25:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:70:08:49:7D:CC:F8:46:45:81:18:DA:68:7B:D6:60:28:8E:27:8A X509v3 Authority Key Identifier: keyid:CC:54:19:C8:A7:8B:CD:53:AD:17:1C:5B:74:A4:07:1D:95:39:50:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ED8E0/EE2D5326B94711EA8A649E76C4F9AE02/zFQZyKeLzVOtFxxbdKQHHZU5UEk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zFQZyKeLzVOtFxxbdKQHHZU5UEk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED8E0/EE2D5326B94711EA8A649E76C4F9AE02/zFQZyKeLzVOtFxxbdKQHHZU5UEk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:8d:b1:e4:28:da:9b:33:c5:0c:32:bf:30:53:37:f6:e9:58: a1:0f:98:ac:ef:a0:35:82:f9:83:1d:59:0b:b5:70:e3:fd:ea: 0f:11:b3:9c:76:e7:31:57:82:32:b2:e9:b4:12:61:c2:95:81: 6c:f1:3d:5f:d8:ba:db:f8:95:dd:fb:b3:86:a8:80:11:4b:3d: 64:a5:97:ab:a6:6d:52:a6:c0:75:14:5f:a6:66:42:95:84:5e: 60:47:55:cb:23:79:82:a6:af:e8:26:8a:51:3d:0b:83:7c:8c: 86:b9:e5:66:35:63:45:a5:b2:c0:b8:ee:65:64:68:36:04:d3: d2:fc:0d:19:ab:f6:ec:02:bd:b8:d0:07:2d:8c:0a:68:f8:62: 16:d6:91:93:39:fc:4f:16:00:d6:36:47:05:57:fb:1a:47:5e: d1:72:84:9d:58:e8:18:8f:0c:7b:b6:2f:1c:aa:2a:10:20:75: 72:0c:b8:fc:56:65:fa:da:2b:fd:ed:4d:35:fc:1f:ea:a9:1a: 7f:dd:5a:d7:d6:8d:99:28:e5:cf:0c:dc:f0:3a:69:f1:be:c0: aa:7d:ad:39:d8:16:e1:a8:76:48:69:c0:85:4a:14:2b:ff:5a: eb:50:9b:0d:67:b1:3d:39:83:b1:c7:97:d2:9c:76:67:d3:e4: 23:3c:53:68 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCYMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUQ4RTAxMTAvBgNVBAUTKENDNTQxOUM4QTc4QkNENTNBRDE3MUM1Qjc0QTQwNzFE OTUzOTUwNDkwHhcNMjYwNTEyMjAwOTQ0WhcNMjYwNTE5MjAwOTQ0WjAYMRYwFAYD VQQDEw02YTAzODkwOS1iNmMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjyF8lp9FOzFNNUNNQWHgcLv9bnlmZJDGDYVp19+xVKvf1EC5Igi2sdfg1kfb cZOv+Jnnp6toBjEj9It12e9YohcDvpMK/gR7Ik8mXW4XDapH3BCaeLcXbonrtgdc 4LWZRUyofxKuWrW3c7oQfRzKhPOzGJa8cT/OovwZ6YI2HuJgTkoDPgg6ithrLoFl VkwaDp09tmbnWE51FetEWqb1xJoz+HZ3yy6U8WWVNEQmmryg80Lt4JXk2fuZZkzE fMeIeRSnpVm8bCWYkAhHWEFmAEF708UvW9UMe/4R195RTvMqWpnxOvqrJFDNrp+n RJhsvSzFAc5gGcftR0RuhlwlWQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKtwCEl9 zPhGRYEY2mh71mAojieKMB8GA1UdIwQYMBaAFMxUGcini81TrRccW3SkBx2VOVBJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRDhFMC9FRTJENTMyNkI5 NDcxMUVBOEE2NDlFNzZDNEY5QUUwMi96RlFaeUtlTHpWT3RGeHhiZEtRSEhaVTVV RWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pGUVp5S2VMelZPdEZ4eGJkS1FISFpVNVVFay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RDhFMC9FRTJENTMyNkI5NDcxMUVBOEE2NDlFNzZDNEY5QUUwMi96RlFaeUtlTHpW T3RGeHhiZEtRSEhaVTVVRWsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAFo2x5CjamzPFDDK/MFM39ulYoQ+YrO+gNYL5gx1ZC7Vw4/3qDxGznHbnMVeC MrLptBJhwpWBbPE9X9i62/iV3fuzhqiAEUs9ZKWXq6ZtUqbAdRRfpmZClYReYEdV yyN5gqav6CaKUT0Lg3yMhrnlZjVjRaWywLjuZWRoNgTT0vwNGav27AK9uNAHLYwK aPhiFtaRkzn8TxYA1jZHBVf7Gkde0XKEnVjoGI8Me7YvHKoqECB1cgy4/FZl+tor /e1NNfwf6qkaf91a19aNmSjlzwzc8Dpp8b7Aqn2tOdgW4ah2SGnAhUoUK/9a61Cb DWexPTmDsceX0px2Z9PkIzxTaA== -----END CERTIFICATE-----Generated at Wed May 13 15:31:47 2026 by rpki-client