$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8F9B/F902E5305DBD11EF8A06ED40C4F9AE02/z7sDj9uDhlQgSWKYCtIhyUFdXP8.mft File: z7sDj9uDhlQgSWKYCtIhyUFdXP8.mft (raw, json) Hash identifier: +nj3KgH7LjSEva7JCndVdNHQzP+Sjxjnvkf8DozdeHU= Subject key identifier: 53:0B:89:D1:9D:F4:5A:5D:E1:42:B5:62:91:CB:C7:D6:15:97:5C:C0 Authority key identifier: CF:BB:03:8F:DB:83:86:54:20:49:62:98:0A:D2:21:C9:41:5D:5C:FF Certificate issuer: /CN=A91F8F9B/serialNumber=CFBB038FDB838654204962980AD221C9415D5CFF Certificate serial: 014E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z7sDj9uDhlQgSWKYCtIhyUFdXP8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8F9B/F902E5305DBD11EF8A06ED40C4F9AE02/z7sDj9uDhlQgSWKYCtIhyUFdXP8.mft Manifest number: 0146 Signing time: Mon 11 May 2026 05:20:01 +0000 Manifest this update: Mon 11 May 2026 05:20:00 +0000 Manifest next update: Mon 18 May 2026 05:20:00 +0000 Files and hashes: 1: z7sDj9uDhlQgSWKYCtIhyUFdXP8.crl (hash: hDdFoKlhHUTXe7MzGL8R6OJTlltxt9CkX4yFtiGrgnc=) 2: 7143C5B85DBF11EFB8714857C4F9AE02.roa (hash: HnPe7oTE/NJwLfNgQpYdaZfEzbuO3TebzvAvQ+UM9po=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8F9B/F902E5305DBD11EF8A06ED40C4F9AE02/z7sDj9uDhlQgSWKYCtIhyUFdXP8.crl rsync://rpki.apnic.net/member_repository/A91F8F9B/F902E5305DBD11EF8A06ED40C4F9AE02/z7sDj9uDhlQgSWKYCtIhyUFdXP8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z7sDj9uDhlQgSWKYCtIhyUFdXP8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 05:19:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 334 (0x14e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8F9B, serialNumber=CFBB038FDB838654204962980AD221C9415D5CFF Validity Not Before: May 11 05:20:00 2026 GMT Not After : May 18 05:20:00 2026 GMT Subject: CN=6a016700-ec98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:b3:0f:15:45:b7:02:ac:18:b2:5a:48:46:10: 37:10:0f:57:44:11:a3:06:13:f6:05:ca:f0:bb:01: 8a:9a:dd:aa:6e:87:f8:b2:7e:cd:a1:90:07:47:0f: 82:ec:c1:47:d7:2c:50:85:d2:77:85:9d:7c:af:f6: de:42:06:5d:c5:2b:54:54:f5:4f:71:8a:48:ab:85: 2f:b7:27:83:1b:b2:b7:83:ac:52:18:d3:56:5c:4e: 6f:00:5f:6f:6f:c5:5c:ac:20:a5:9e:56:16:15:45: c7:af:1c:07:42:8b:d8:b5:66:a6:1a:39:2f:35:ef: aa:25:c9:30:00:56:a8:4c:2b:c5:87:b7:a3:cd:57: 08:4c:fc:88:89:e2:d9:ae:03:c6:d3:7a:bc:e6:4b: af:f6:55:43:2b:08:ce:f9:4f:20:88:53:34:13:a6: b1:6c:9f:f9:e7:f2:c3:12:1a:c8:59:12:43:53:6e: ec:26:ba:4e:3d:6a:3b:cd:f1:d7:80:d3:aa:ae:f2: 7b:45:fe:45:7c:e8:66:be:e8:38:de:e0:35:a4:63: eb:e9:22:7b:1c:ef:61:e3:aa:46:c6:91:f4:93:94: a7:9d:ab:00:26:c3:25:79:a9:07:78:05:1f:bc:10: 9a:7a:59:ad:aa:1a:a1:b1:8a:a7:b4:6f:e1:77:4d: 1b:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:0B:89:D1:9D:F4:5A:5D:E1:42:B5:62:91:CB:C7:D6:15:97:5C:C0 X509v3 Authority Key Identifier: keyid:CF:BB:03:8F:DB:83:86:54:20:49:62:98:0A:D2:21:C9:41:5D:5C:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8F9B/F902E5305DBD11EF8A06ED40C4F9AE02/z7sDj9uDhlQgSWKYCtIhyUFdXP8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z7sDj9uDhlQgSWKYCtIhyUFdXP8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8F9B/F902E5305DBD11EF8A06ED40C4F9AE02/z7sDj9uDhlQgSWKYCtIhyUFdXP8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:e4:e8:df:74:3f:1c:6c:ea:3c:7f:4d:1f:62:c4:34:7a:ff: ae:45:9a:3a:84:c9:c9:dd:44:55:ef:d6:10:0f:ce:21:02:7f: 85:85:28:2c:4a:b3:22:94:b8:c6:8e:e6:53:9e:30:05:5e:69: 59:74:04:d2:2e:9e:41:c1:3e:55:cb:41:62:d4:5a:f9:52:09: ad:bd:c5:a2:48:b2:51:74:ec:c9:cc:dd:1a:5e:a8:d0:90:4f: 0b:f6:15:88:a2:9d:08:36:d2:a3:ad:ea:aa:d6:e5:e8:de:22: 74:a4:6b:84:1f:68:0e:8a:f5:d6:d7:7a:59:16:4e:96:84:4f: 71:91:75:bf:77:ab:69:db:31:63:5f:4f:36:24:ae:74:58:fc: c9:93:3e:71:a6:d6:60:5d:61:5e:2d:cb:62:49:95:17:40:39: 61:1e:68:37:14:77:b3:94:ce:3d:72:7d:15:23:09:4e:65:65: 1d:d6:6d:3f:77:2e:4a:13:dc:8f:a6:78:a2:c6:69:82:c4:d4: 3c:c7:8d:ef:98:d0:db:2a:f9:46:6c:19:a6:90:81:43:d7:a1: a2:ce:ec:99:3b:bc:a4:4b:88:40:32:91:e2:5f:09:96:da:34: 96:aa:ba:c4:04:66:0f:34:c7:77:1e:6b:a5:20:57:5f:df:00: 73:95:01:45 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAU4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjhGOUIxMTAvBgNVBAUTKENGQkIwMzhGREI4Mzg2NTQyMDQ5NjI5ODBBRDIyMUM5 NDE1RDVDRkYwHhcNMjYwNTExMDUyMDAwWhcNMjYwNTE4MDUyMDAwWjAYMRYwFAYD VQQDEw02YTAxNjcwMC1lYzk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxrMPFUW3AqwYslpIRhA3EA9XRBGjBhP2BcrwuwGKmt2qbof4sn7NoZAHRw+C 7MFH1yxQhdJ3hZ18r/beQgZdxStUVPVPcYpIq4UvtyeDG7K3g6xSGNNWXE5vAF9v b8VcrCClnlYWFUXHrxwHQovYtWamGjkvNe+qJckwAFaoTCvFh7ejzVcITPyIieLZ rgPG03q85kuv9lVDKwjO+U8giFM0E6axbJ/55/LDEhrIWRJDU27sJrpOPWo7zfHX gNOqrvJ7Rf5FfOhmvug43uA1pGPr6SJ7HO9h46pGxpH0k5SnnasAJsMleakHeAUf vBCaelmtqhqhsYqntG/hd00bdQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFMLidGd 9Fpd4UK1YpHLx9YVl1zAMB8GA1UdIwQYMBaAFM+7A4/bg4ZUIElimArSIclBXVz/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOEY5Qi9GOTAyRTUzMDVE QkQxMUVGOEEwNkVENDBDNEY5QUUwMi96N3NEajl1RGhsUWdTV0tZQ3RJaHlVRmRY UDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3o3c0RqOXVEaGxRZ1NXS1lDdEloeVVGZFhQOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OEY5Qi9GOTAyRTUzMDVEQkQxMUVGOEEwNkVENDBDNEY5QUUwMi96N3NEajl1RGhs UWdTV0tZQ3RJaHlVRmRYUDgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAs+To33Q/HGzqPH9NH2LENHr/rkWaOoTJyd1EVe/WEA/OIQJ/hYUoLEqzIpS4 xo7mU54wBV5pWXQE0i6eQcE+VctBYtRa+VIJrb3FokiyUXTsyczdGl6o0JBPC/YV iKKdCDbSo63qqtbl6N4idKRrhB9oDor11td6WRZOloRPcZF1v3eradsxY19PNiSu dFj8yZM+cabWYF1hXi3LYkmVF0A5YR5oNxR3s5TOPXJ9FSMJTmVlHdZtP3cuShPc j6Z4osZpgsTUPMeN75jQ2yr5RmwZppCBQ9ehos7smTu8pEuIQDKR4l8Jlto0lqq6 xARmDzTHdx5rpSBXX98Ac5UBRQ== -----END CERTIFICATE-----Generated at Wed May 13 05:02:04 2026 by rpki-client