$ rpki-client -vvf rpki.apnic.net/member_repository/A91F916A/1D7AD0BA458D11E5B3957A79C4F9AE02/z3rG54U-SVgocAZDAHZYRlfgyVA.mft File: z3rG54U-SVgocAZDAHZYRlfgyVA.mft (raw, json) Hash identifier: KVdbodYFqu/dk468wActhhm7ljaJCn3gCgDkUDIltV4= Subject key identifier: 3D:D5:1E:07:28:45:A8:03:9F:7E:9B:7F:34:E5:9D:A1:90:26:C0:84 Authority key identifier: CF:7A:C6:E7:85:3E:49:58:28:70:06:43:00:76:58:46:57:E0:C9:50 Certificate issuer: /CN=A91F916A/serialNumber=CF7AC6E7853E4958287006430076584657E0C950 Certificate serial: 2560 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3rG54U-SVgocAZDAHZYRlfgyVA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F916A/1D7AD0BA458D11E5B3957A79C4F9AE02/z3rG54U-SVgocAZDAHZYRlfgyVA.mft Manifest number: 2540 Signing time: Tue 12 May 2026 15:45:35 +0000 Manifest this update: Tue 12 May 2026 15:45:35 +0000 Manifest next update: Tue 19 May 2026 15:45:35 +0000 Files and hashes: 1: z3rG54U-SVgocAZDAHZYRlfgyVA.crl (hash: Zy8C4MXSCoo6lYPq0YxBkWZVDVb6lOSeJ0XQU8OigKs=) 2: 93957C3A25B211ECB5356475C4F9AE02.roa (hash: zjvOB7IYcWX+u9sgyuLHr3NjWHNslBwt7oZG0S7MoWU=) 3: 54040CE414F111F08814732CC4F9AE02.roa (hash: 5R5PyJeyYhErp1HguNQ/WySNIlpzY/MFdVpl7sNAifM=) 4: 81C0C29CB0F311E5AB30F151C4F9AE02.roa (hash: 7bvxWWKxdudrEG3VLjxzRBWxm9dGLRepmUJeS7hFSrM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F916A/1D7AD0BA458D11E5B3957A79C4F9AE02/z3rG54U-SVgocAZDAHZYRlfgyVA.crl rsync://rpki.apnic.net/member_repository/A91F916A/1D7AD0BA458D11E5B3957A79C4F9AE02/z3rG54U-SVgocAZDAHZYRlfgyVA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3rG54U-SVgocAZDAHZYRlfgyVA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 15:45:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9568 (0x2560) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F916A, serialNumber=CF7AC6E7853E4958287006430076584657E0C950 Validity Not Before: May 12 15:45:35 2026 GMT Not After : May 19 15:45:35 2026 GMT Subject: CN=6a034b1f-bbc0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:c2:70:86:0c:e9:c9:ab:e5:e7:2e:fd:7b:86: a1:6a:cd:dc:94:69:85:23:04:c1:ca:ce:33:86:e8: a1:2b:98:92:cc:88:74:97:bb:d1:cf:68:23:82:de: 12:b2:b4:7d:70:57:c0:af:09:f8:ba:3e:08:81:99: 80:1a:d6:64:eb:b4:2c:42:e4:90:f6:b7:a3:50:0c: 6b:b0:95:87:01:a8:28:04:d4:84:f7:c5:f8:a2:ed: 3e:46:fe:aa:fb:3f:51:01:aa:fd:21:16:0b:7b:6e: 76:5c:d8:fd:ca:cf:51:1d:4e:5c:82:4c:1f:8e:1a: 4b:5c:29:f0:b4:49:85:9b:1c:77:4a:38:ba:28:58: a6:25:ad:93:cb:d1:77:f4:d4:75:44:c0:55:9f:04: 2e:5f:44:1a:67:4f:a4:36:be:6c:36:5b:66:9f:a2: f8:b4:d3:86:db:25:20:f3:e7:b9:58:2f:d0:77:96: bc:61:70:96:c7:de:79:bf:0b:53:92:34:ea:cf:eb: 76:b6:c2:0f:7d:ac:98:b2:a5:74:08:39:c3:91:7a: 91:e3:97:7d:73:32:d9:f9:95:44:26:4d:16:72:81: 58:e4:f9:3e:e1:26:8b:78:f6:36:32:79:db:13:22: d5:75:30:da:ff:08:d8:d2:7b:a4:f7:89:9a:46:37: 07:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:D5:1E:07:28:45:A8:03:9F:7E:9B:7F:34:E5:9D:A1:90:26:C0:84 X509v3 Authority Key Identifier: keyid:CF:7A:C6:E7:85:3E:49:58:28:70:06:43:00:76:58:46:57:E0:C9:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F916A/1D7AD0BA458D11E5B3957A79C4F9AE02/z3rG54U-SVgocAZDAHZYRlfgyVA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3rG54U-SVgocAZDAHZYRlfgyVA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F916A/1D7AD0BA458D11E5B3957A79C4F9AE02/z3rG54U-SVgocAZDAHZYRlfgyVA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:f0:80:ad:f9:14:a2:20:91:fa:de:12:a7:82:ed:95:52:14: c2:e2:6d:a2:21:a4:43:f3:b6:ac:2f:c7:fc:a8:81:b1:3e:e5: 78:f6:14:cb:c3:62:63:66:9e:8f:93:f6:b4:8f:26:95:fe:1e: 0a:89:6d:ff:c1:af:de:0b:56:15:d3:e7:d0:82:59:f3:3d:c2: 11:f4:a2:6d:be:f8:52:f7:f0:ce:33:bb:e7:ba:43:8a:8b:58: 76:a7:0c:74:f9:e1:bc:d0:b7:3a:9e:b4:1d:8d:54:19:31:85: 36:94:6b:6d:2f:f3:d0:5b:3e:27:80:07:16:25:b3:d7:a4:24: 28:03:bf:0d:ba:dd:e2:3a:80:a8:0d:29:b6:76:82:f1:65:d7: 04:bd:1a:9d:ca:10:0e:ef:dd:dd:a0:7b:da:28:67:4e:94:e7: 85:18:c2:88:1f:56:7f:64:6a:3e:74:78:7d:49:5d:23:42:81: 6e:45:04:44:35:27:66:03:23:97:88:2a:92:c2:08:a3:6b:36: 24:f3:69:61:6f:a7:34:3f:af:00:98:cc:4d:7f:3a:19:3d:c4: 8c:5f:a3:d2:a2:dc:50:ff:75:7d:61:04:90:60:8f:63:f5:24: 36:81:86:b1:f5:4c:b7:ec:46:7a:c1:fe:6a:80:b4:93:00:17: 01:fb:45:87 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICJWAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjkxNkExMTAvBgNVBAUTKENGN0FDNkU3ODUzRTQ5NTgyODcwMDY0MzAwNzY1ODQ2 NTdFMEM5NTAwHhcNMjYwNTEyMTU0NTM1WhcNMjYwNTE5MTU0NTM1WjAYMRYwFAYD VQQDEw02YTAzNGIxZi1iYmMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtsJwhgzpyavl5y79e4ahas3clGmFIwTBys4zhuihK5iSzIh0l7vRz2gjgt4S srR9cFfArwn4uj4IgZmAGtZk67QsQuSQ9rejUAxrsJWHAagoBNSE98X4ou0+Rv6q +z9RAar9IRYLe252XNj9ys9RHU5cgkwfjhpLXCnwtEmFmxx3Sji6KFimJa2Ty9F3 9NR1RMBVnwQuX0QaZ0+kNr5sNltmn6L4tNOG2yUg8+e5WC/Qd5a8YXCWx955vwtT kjTqz+t2tsIPfayYsqV0CDnDkXqR45d9czLZ+ZVEJk0WcoFY5Pk+4SaLePY2Mnnb EyLVdTDa/wjY0nuk94maRjcH5wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFD3VHgco RagDn36bfzTlnaGQJsCEMB8GA1UdIwQYMBaAFM96xueFPklYKHAGQwB2WEZX4MlQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOTE2QS8xRDdBRDBCQTQ1 OEQxMUU1QjM5NTdBNzlDNEY5QUUwMi96M3JHNTRVLVNWZ29jQVpEQUhaWVJsZmd5 VkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ozckc1NFUtU1Znb2NBWkRBSFpZUmxmZ3lWQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OTE2QS8xRDdBRDBCQTQ1OEQxMUU1QjM5NTdBNzlDNEY5QUUwMi96M3JHNTRVLVNW Z29jQVpEQUhaWVJsZmd5VkEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAp/CArfkUoiCR+t4Sp4LtlVIUwuJtoiGkQ/O2rC/H/KiBsT7lePYUy8NiY2ae j5P2tI8mlf4eColt/8Gv3gtWFdPn0IJZ8z3CEfSibb74UvfwzjO757pDiotYdqcM dPnhvNC3Op60HY1UGTGFNpRrbS/z0Fs+J4AHFiWz16QkKAO/Dbrd4jqAqA0ptnaC 8WXXBL0ancoQDu/d3aB72ihnTpTnhRjCiB9Wf2RqPnR4fUldI0KBbkUERDUnZgMj l4gqksIIo2s2JPNpYW+nND+vAJjMTX86GT3EjF+j0qLcUP91fWEEkGCPY/UkNoGG sfVMt+xGesH+aoC0kwAXAftFhw== -----END CERTIFICATE-----Generated at Wed May 13 12:15:22 2026 by rpki-client