$ rpki-client -vvf rpki.apnic.net/member_repository/A911DD04/C3D5FDC6B9BB11EEAA32295EC4F9AE02/RzRkhHFZuxUvv-HbtaGwFUaCLxc.mft File: RzRkhHFZuxUvv-HbtaGwFUaCLxc.mft (raw, json) Hash identifier: rjVe4uA1cMG9WzkTutWIfNrs+3YKHiih4KcMCoGsbMI= Subject key identifier: 21:56:A5:A4:7D:03:A4:C3:A1:84:E6:4D:CC:A8:5C:36:9C:99:7B:72 Authority key identifier: 47:34:64:84:71:59:BB:15:2F:BF:E1:DB:B5:A1:B0:15:46:82:2F:17 Certificate issuer: /CN=A911DD04/serialNumber=473464847159BB152FBFE1DBB5A1B01546822F17 Certificate serial: 01BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RzRkhHFZuxUvv-HbtaGwFUaCLxc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911DD04/C3D5FDC6B9BB11EEAA32295EC4F9AE02/RzRkhHFZuxUvv-HbtaGwFUaCLxc.mft Manifest number: 01B7 Signing time: Thu 21 May 2026 04:00:11 +0000 Manifest this update: Thu 21 May 2026 04:00:11 +0000 Manifest next update: Thu 28 May 2026 04:00:11 +0000 Files and hashes: 1: RzRkhHFZuxUvv-HbtaGwFUaCLxc.crl (hash: fZmSR/7lTeIBpDBnsbcVRwVoeefVLoRlC3eVggmNifo=) 2: 939790AAB9BD11EEA19BE74DC4F9AE02.roa (hash: 4Xxfcn9vWAxmFmsir9WaEVwPirqEsxparkquZplonJM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911DD04/C3D5FDC6B9BB11EEAA32295EC4F9AE02/RzRkhHFZuxUvv-HbtaGwFUaCLxc.crl rsync://rpki.apnic.net/member_repository/A911DD04/C3D5FDC6B9BB11EEAA32295EC4F9AE02/RzRkhHFZuxUvv-HbtaGwFUaCLxc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RzRkhHFZuxUvv-HbtaGwFUaCLxc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 04:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 444 (0x1bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911DD04, serialNumber=473464847159BB152FBFE1DBB5A1B01546822F17 Validity Not Before: May 21 04:00:11 2026 GMT Not After : May 28 04:00:11 2026 GMT Subject: CN=6a0e834b-4679 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:5c:aa:28:37:c1:12:cb:99:bd:5f:be:98:0f: 78:15:0f:24:56:e4:3c:63:01:ac:32:74:03:c7:fb: 39:5f:c4:c2:b9:c0:6f:a9:89:6e:e4:49:55:a2:3c: 25:7a:e2:25:9f:23:ef:9d:cd:07:64:64:08:2a:b8: b3:c2:0d:2b:8d:f1:0f:0e:9e:03:9a:94:fd:ec:ef: e5:94:c0:4a:57:d8:bb:b0:2e:fc:0a:10:88:38:09: 88:c6:79:c8:05:13:66:88:45:75:c8:89:a5:d8:0c: 5a:ce:8d:72:a4:21:f5:53:84:0d:5d:54:16:a4:f0: 91:90:90:8b:8f:33:2e:20:05:6f:4c:2a:ac:16:d7: 90:cd:bd:f9:1e:15:a6:43:c6:c6:f3:f6:2c:64:72: e9:18:5e:d1:52:2c:f4:dd:e8:f0:eb:e6:c0:72:66: a6:b8:79:ad:f2:17:4b:d6:75:9c:6d:70:18:76:2a: 2c:00:bd:7f:fe:64:cd:d0:b9:e4:67:f4:11:5a:08: 7c:f9:ca:4a:42:bf:82:a9:50:47:9e:86:d5:a6:2c: 6a:59:41:65:17:ad:54:fd:df:e6:cd:50:43:2a:b9: c4:c7:ad:39:fa:b8:5b:af:3c:f2:f8:70:1f:1d:36: 7d:39:82:b2:e3:7d:18:77:12:6c:b5:8a:e9:cd:10: 86:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:56:A5:A4:7D:03:A4:C3:A1:84:E6:4D:CC:A8:5C:36:9C:99:7B:72 X509v3 Authority Key Identifier: keyid:47:34:64:84:71:59:BB:15:2F:BF:E1:DB:B5:A1:B0:15:46:82:2F:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911DD04/C3D5FDC6B9BB11EEAA32295EC4F9AE02/RzRkhHFZuxUvv-HbtaGwFUaCLxc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RzRkhHFZuxUvv-HbtaGwFUaCLxc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911DD04/C3D5FDC6B9BB11EEAA32295EC4F9AE02/RzRkhHFZuxUvv-HbtaGwFUaCLxc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:4c:fd:9f:26:ed:31:21:36:d6:27:ab:97:69:1a:3a:c9:c3: 29:56:3b:f7:67:62:6b:fb:58:44:71:0a:72:95:21:6b:ca:e3: 1a:3c:df:40:1f:53:d4:8c:87:95:f3:62:29:f9:86:41:02:e4: 9a:31:bf:fb:06:97:f5:01:1f:d0:2f:df:1d:ea:0b:94:c5:8b: e0:9a:b8:ec:7e:1c:76:e8:59:e3:99:22:bc:a5:ed:f1:b1:27: 17:1c:c1:c8:64:31:74:26:a3:07:39:d9:e5:a3:d6:9a:79:fb: 9a:c8:ce:f4:41:bf:57:9c:ad:d5:97:73:cf:0b:9e:ff:11:cb: b4:78:90:7f:b1:ec:9c:12:e8:d9:88:e8:8a:c4:f5:8f:32:6b: f4:13:60:af:dc:9b:21:30:1d:b0:6b:db:f5:09:70:70:ac:69: b3:8d:de:4d:3d:9e:31:41:d7:3d:98:ba:54:2e:a9:db:05:6d: 5f:fd:ad:79:d9:57:9e:36:e5:0e:76:d5:e7:81:86:ce:a5:5b: 9e:c4:b6:18:1b:23:3a:2a:48:a9:26:9d:71:ef:47:4f:a8:0b: f7:d4:a1:9a:7a:89:fe:6e:57:5c:40:a5:5b:ab:6c:75:b8:48: 49:15:c0:4b:15:75:fe:3a:86:ac:de:95:ff:2e:14:9c:fa:af: 4d:42:c4:0f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAbwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUREMDQxMTAvBgNVBAUTKDQ3MzQ2NDg0NzE1OUJCMTUyRkJGRTFEQkI1QTFCMDE1 NDY4MjJGMTcwHhcNMjYwNTIxMDQwMDExWhcNMjYwNTI4MDQwMDExWjAYMRYwFAYD VQQDEw02YTBlODM0Yi00Njc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0FyqKDfBEsuZvV++mA94FQ8kVuQ8YwGsMnQDx/s5X8TCucBvqYlu5ElVojwl euIlnyPvnc0HZGQIKrizwg0rjfEPDp4DmpT97O/llMBKV9i7sC78ChCIOAmIxnnI BRNmiEV1yIml2Axazo1ypCH1U4QNXVQWpPCRkJCLjzMuIAVvTCqsFteQzb35HhWm Q8bG8/YsZHLpGF7RUiz03ejw6+bAcmamuHmt8hdL1nWcbXAYdiosAL1//mTN0Lnk Z/QRWgh8+cpKQr+CqVBHnobVpixqWUFlF61U/d/mzVBDKrnEx605+rhbrzzy+HAf HTZ9OYKy430YdxJstYrpzRCGKwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCFWpaR9 A6TDoYTmTcyoXDacmXtyMB8GA1UdIwQYMBaAFEc0ZIRxWbsVL7/h27WhsBVGgi8X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExREQwNC9DM0Q1RkRDNkI5 QkIxMUVFQUEzMjI5NUVDNEY5QUUwMi9SelJraEhGWnV4VXZ2LUhidGFHd0ZVYUNM eGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1J6UmtoSEZadXhVdnYtSGJ0YUd3RlVhQ0x4Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx REQwNC9DM0Q1RkRDNkI5QkIxMUVFQUEzMjI5NUVDNEY5QUUwMi9SelJraEhGWnV4 VXZ2LUhidGFHd0ZVYUNMeGMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAQUz9nybtMSE21ierl2kaOsnDKVY792dia/tYRHEKcpUha8rjGjzfQB9T1IyH lfNiKfmGQQLkmjG/+waX9QEf0C/fHeoLlMWL4Jq47H4cduhZ45kivKXt8bEnFxzB yGQxdCajBznZ5aPWmnn7msjO9EG/V5yt1Zdzzwue/xHLtHiQf7HsnBLo2YjoisT1 jzJr9BNgr9ybITAdsGvb9QlwcKxps43eTT2eMUHXPZi6VC6p2wVtX/2tedlXnjbl DnbV54GGzqVbnsS2GBsjOipIqSadce9HT6gL99ShmnqJ/m5XXEClW6tsdbhISRXA SxV1/jqGrN6V/y4UnPqvTULEDw== -----END CERTIFICATE-----Generated at Thu May 21 10:15:59 2026 by rpki-client