$ rpki-client -vvf rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.mft File: zPWB9MM8pEQeGAfjlsXv51-oLdA.mft (raw, json) Hash identifier: 8zbwVxgsAFf4pA5KW1bAxG5i5dJpVKD+3+7MQJPc2/Q= Subject key identifier: F0:9D:47:40:4F:85:9A:4D:C6:AA:B2:AD:B7:C1:CB:9D:93:D0:E4:E1 Authority key identifier: CC:F5:81:F4:C3:3C:A4:44:1E:18:07:E3:96:C5:EF:E7:5F:A8:2D:D0 Certificate issuer: /CN=A9111A27/serialNumber=CCF581F4C33CA4441E1807E396C5EFE75FA82DD0 Certificate serial: 0AF7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zPWB9MM8pEQeGAfjlsXv51-oLdA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.mft Manifest number: 0AE8 Signing time: Wed 20 May 2026 19:25:59 +0000 Manifest this update: Wed 20 May 2026 19:25:58 +0000 Manifest next update: Wed 27 May 2026 19:25:58 +0000 Files and hashes: 1: zPWB9MM8pEQeGAfjlsXv51-oLdA.crl (hash: TAo0mU/gzMpyLFIiWLxgl1r/N4MWs8RxZTzCvUQXHks=) 2: 4A644958BA0311F084B11F0DC4F9AE02.roa (hash: jYg6q/W/0HVfh05DuMfHV7pRX1CgQotQsytTOYFkR4g=) 3: EECBCEBE6E3511EABDE26D73C4F9AE02.roa (hash: r1pD0Q+gqTEwuW8+FxM3DxEOTWIuAGXXddrFG01zuI0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.crl rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zPWB9MM8pEQeGAfjlsXv51-oLdA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 19:25:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2807 (0xaf7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9111A27, serialNumber=CCF581F4C33CA4441E1807E396C5EFE75FA82DD0 Validity Not Before: May 20 19:25:58 2026 GMT Not After : May 27 19:25:58 2026 GMT Subject: CN=6a0e0ac7-44c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:b7:d2:c0:47:42:83:a9:65:c5:65:9f:ed:40: e6:bf:dd:65:10:12:98:02:ca:ba:88:b5:b9:f1:9e: af:24:02:35:89:7c:65:54:78:d6:1d:2b:66:70:22: 89:dd:ff:63:f8:87:38:e0:db:21:e5:12:59:b1:7e: 02:19:b1:be:73:ad:a5:fd:fc:70:24:dc:6b:70:11: ac:e3:38:a6:7c:c6:4c:65:cf:4d:8b:11:01:71:19: 16:f3:4a:9f:5d:10:fc:7e:65:64:15:6b:fc:9a:b3: 92:f9:c0:65:5c:b4:f1:93:31:b5:44:12:7f:4f:2a: 2d:e7:a9:14:48:66:27:ff:1f:40:4b:49:53:0e:7b: 4f:08:eb:f9:99:3d:c9:9c:34:ce:ef:14:b9:9b:df: 7a:8a:75:58:c2:6a:ce:c1:10:7f:a2:6b:16:43:92: af:56:0f:ca:65:fe:ab:38:81:d5:c0:7a:43:17:f3: ef:d9:3f:ff:7b:c5:64:aa:6a:3c:73:d7:7f:1c:b4: 64:ec:c1:8a:f5:9c:b3:d8:93:a9:a9:67:5c:7d:36: ed:b9:dd:ba:e8:48:9b:76:09:55:6b:61:f8:6f:d8: f1:23:e4:29:06:4e:9a:57:08:b5:a1:a9:1c:3a:d4: 98:77:19:f9:0e:4b:07:58:55:f6:85:27:8a:77:bf: c3:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:9D:47:40:4F:85:9A:4D:C6:AA:B2:AD:B7:C1:CB:9D:93:D0:E4:E1 X509v3 Authority Key Identifier: keyid:CC:F5:81:F4:C3:3C:A4:44:1E:18:07:E3:96:C5:EF:E7:5F:A8:2D:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zPWB9MM8pEQeGAfjlsXv51-oLdA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:c6:02:ca:35:4b:14:11:36:57:71:9f:9b:17:70:00:02:70: cc:5d:28:44:c4:18:fe:cb:7a:ec:29:1a:0f:6e:48:b0:a3:20: 42:a0:3f:3c:26:76:60:9f:36:81:67:c2:d6:55:cd:11:9b:6b: bf:aa:c6:31:72:2c:95:00:13:ea:da:92:68:d0:c6:84:09:c7: 03:17:e3:34:54:42:12:20:1d:8d:cc:a1:39:33:06:ea:1e:f0: 41:63:ad:88:33:60:06:fa:f9:15:6a:03:61:5e:fa:ca:f2:6b: ec:36:ea:5c:fd:3a:33:76:81:4a:6e:a1:78:bf:eb:29:93:55: 4c:9f:d9:3d:1c:f2:d1:9a:96:87:23:f6:bd:8f:7e:ee:f9:a2: 7b:32:12:5a:3b:61:c2:57:a8:ab:46:dd:96:41:60:f1:bc:05: b3:17:ce:20:a8:e4:a6:76:23:6f:89:da:c7:87:a5:52:ef:71: 10:b4:63:fc:11:9e:d2:71:58:c9:17:b5:f2:25:e8:25:3d:7c: ff:91:5b:cc:45:97:37:86:1c:37:41:63:4f:46:e4:7e:f2:57: 8c:3d:5e:43:46:58:99:95:6d:17:32:0d:4e:63:27:62:b7:3b: 63:93:64:f8:03:32:66:b0:16:ad:03:80:00:7a:aa:2c:25:fa: 0b:f4:0d:fa -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCvcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTFBMjcxMTAvBgNVBAUTKENDRjU4MUY0QzMzQ0E0NDQxRTE4MDdFMzk2QzVFRkU3 NUZBODJERDAwHhcNMjYwNTIwMTkyNTU4WhcNMjYwNTI3MTkyNTU4WjAYMRYwFAYD VQQDEw02YTBlMGFjNy00NGM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6rfSwEdCg6llxWWf7UDmv91lEBKYAsq6iLW58Z6vJAI1iXxlVHjWHStmcCKJ 3f9j+Ic44Nsh5RJZsX4CGbG+c62l/fxwJNxrcBGs4zimfMZMZc9NixEBcRkW80qf XRD8fmVkFWv8mrOS+cBlXLTxkzG1RBJ/Tyot56kUSGYn/x9AS0lTDntPCOv5mT3J nDTO7xS5m996inVYwmrOwRB/omsWQ5KvVg/KZf6rOIHVwHpDF/Pv2T//e8Vkqmo8 c9d/HLRk7MGK9Zyz2JOpqWdcfTbtud266EibdglVa2H4b9jxI+QpBk6aVwi1oakc OtSYdxn5DksHWFX2hSeKd7/DXQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPCdR0BP hZpNxqqyrbfBy52T0OThMB8GA1UdIwQYMBaAFMz1gfTDPKREHhgH45bF7+dfqC3Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMUEyNy82NjI1MThCRTZF MzQxMUVBODQxRDQyNkVDNEY5QUUwMi96UFdCOU1NOHBFUWVHQWZqbHNYdjUxLW9M ZEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pQV0I5TU04cEVRZUdBZmpsc1h2NTEtb0xkQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MUEyNy82NjI1MThCRTZFMzQxMUVBODQxRDQyNkVDNEY5QUUwMi96UFdCOU1NOHBF UWVHQWZqbHNYdjUxLW9MZEEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAOMYCyjVLFBE2V3GfmxdwAAJwzF0oRMQY/st67CkaD25IsKMgQqA/PCZ2YJ82 gWfC1lXNEZtrv6rGMXIslQAT6tqSaNDGhAnHAxfjNFRCEiAdjcyhOTMG6h7wQWOt iDNgBvr5FWoDYV76yvJr7DbqXP06M3aBSm6heL/rKZNVTJ/ZPRzy0ZqWhyP2vY9+ 7vmiezISWjthwleoq0bdlkFg8bwFsxfOIKjkpnYjb4nax4elUu9xELRj/BGe0nFY yRe18iXoJT18/5FbzEWXN4YcN0FjT0bkfvJXjD1eQ0ZYmZVtFzINTmMnYrc7Y5Nk +AMyZrAWrQOAAHqqLCX6C/QN+g== -----END CERTIFICATE-----Generated at Thu May 21 12:36:45 2026 by rpki-client