$ rpki-client -vvf rpki.apnic.net/member_repository/A9128E00/8991EB9EE02011E982B37A3AC4F9AE02/z-PzHk8zetOBIBvzOgGmhfsBal4.mft File: z-PzHk8zetOBIBvzOgGmhfsBal4.mft (raw, json) Hash identifier: mnEuAJgfkN5U+c2bU9j69xcjkLAGvbXrIUR9a1Jpee4= Subject key identifier: 79:FD:58:04:64:89:24:EC:9B:11:80:02:7C:05:AA:3D:29:23:2B:C3 Authority key identifier: CF:E3:F3:1E:4F:33:7A:D3:81:20:1B:F3:3A:01:A6:85:FB:01:6A:5E Certificate issuer: /CN=A9128E00/serialNumber=CFE3F31E4F337AD381201BF33A01A685FB016A5E Certificate serial: 0DC6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z-PzHk8zetOBIBvzOgGmhfsBal4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128E00/8991EB9EE02011E982B37A3AC4F9AE02/z-PzHk8zetOBIBvzOgGmhfsBal4.mft Manifest number: 0DBC Signing time: Wed 20 May 2026 17:55:30 +0000 Manifest this update: Wed 20 May 2026 17:55:29 +0000 Manifest next update: Wed 27 May 2026 17:55:29 +0000 Files and hashes: 1: z-PzHk8zetOBIBvzOgGmhfsBal4.crl (hash: OP7yfouYgLgd6/9MB/gl7Hc5ZXMREOuXefQ62qmiACA=) 2: D23C5270E02111E9B4A3923FC4F9AE02.roa (hash: DgN4HYG0Ge4rNgYzbp7pU5juBkf2LCQihGrPJdM6ERY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128E00/8991EB9EE02011E982B37A3AC4F9AE02/z-PzHk8zetOBIBvzOgGmhfsBal4.crl rsync://rpki.apnic.net/member_repository/A9128E00/8991EB9EE02011E982B37A3AC4F9AE02/z-PzHk8zetOBIBvzOgGmhfsBal4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z-PzHk8zetOBIBvzOgGmhfsBal4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 17:55:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3526 (0xdc6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128E00, serialNumber=CFE3F31E4F337AD381201BF33A01A685FB016A5E Validity Not Before: May 20 17:55:29 2026 GMT Not After : May 27 17:55:29 2026 GMT Subject: CN=6a0df592-0dd5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:27:69:72:f6:01:a8:72:f1:1f:d5:51:73:60: b0:e4:a3:c6:97:4c:d9:6e:18:38:62:c0:c8:05:8e: 73:73:5e:f7:d1:12:2d:86:80:8d:57:49:50:74:16: 45:c6:fe:9c:19:b5:54:1c:9f:6c:78:19:58:e3:8b: b4:4c:4a:62:8e:70:e2:d0:c6:9e:d8:7b:6b:1c:5c: 2f:ab:4e:bf:1b:67:8b:1f:79:0d:0b:bc:7c:5a:41: 9e:c2:09:55:c1:42:6b:f3:ad:fb:7c:fc:f0:70:dd: 27:51:db:a8:57:a0:fc:ec:1b:97:d4:0c:b0:8f:c7: 36:ab:34:5e:93:63:17:a6:97:aa:71:56:a7:12:4c: db:ed:0d:86:0d:92:61:06:6a:39:74:89:7e:86:90: 4a:3e:b0:ed:45:c9:ea:41:c6:0e:50:c7:ee:5c:db: 13:cc:f0:de:2a:f5:38:2c:93:de:cd:15:08:01:a4: ae:d5:91:58:88:f0:7a:58:93:b2:0b:bb:f0:32:96: 13:3a:e8:fe:dd:d6:1a:1a:d5:71:f3:8d:89:9e:98: ed:8b:28:2c:c5:d9:d4:e0:93:1f:2d:fc:ba:99:df: 8c:c6:03:d2:6f:a2:eb:a0:1b:c2:0b:89:b3:c5:92: 02:cd:5e:55:9d:1b:d3:99:5d:0c:8a:08:d0:0c:62: 29:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:FD:58:04:64:89:24:EC:9B:11:80:02:7C:05:AA:3D:29:23:2B:C3 X509v3 Authority Key Identifier: keyid:CF:E3:F3:1E:4F:33:7A:D3:81:20:1B:F3:3A:01:A6:85:FB:01:6A:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128E00/8991EB9EE02011E982B37A3AC4F9AE02/z-PzHk8zetOBIBvzOgGmhfsBal4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z-PzHk8zetOBIBvzOgGmhfsBal4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128E00/8991EB9EE02011E982B37A3AC4F9AE02/z-PzHk8zetOBIBvzOgGmhfsBal4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:50:92:b8:46:28:8e:6e:1f:fa:3e:70:87:60:75:71:86:54: 8b:1a:78:a9:36:a0:6e:99:b3:bb:7a:3a:c8:ed:ce:c6:8b:21: 5f:b9:0e:0b:04:24:b0:16:5d:1a:1e:9b:65:cb:0f:c7:c4:86: f8:bf:ac:c4:95:22:a2:df:04:44:d3:76:76:c5:3e:e8:d7:c1: 52:d9:cf:59:e5:8f:74:02:03:44:8d:74:60:ed:01:a2:1e:1e: 8f:41:fd:82:ef:c4:30:39:00:d9:a8:61:bc:c9:b2:84:e8:fe: 1e:11:d0:bf:58:c2:e1:1e:89:8f:96:78:84:2e:50:54:65:48: 8f:c7:c4:8f:63:f5:24:57:b0:88:8c:41:ff:78:11:75:78:26: fc:2a:fc:5e:88:f1:9f:db:66:5a:9f:38:b9:cd:bc:76:1a:91: 20:73:52:64:0a:f2:61:dc:42:97:49:d2:a5:5f:9f:c8:40:b9: 82:fa:e5:0a:ea:10:2a:22:d1:30:b3:f2:67:b1:fd:5c:c2:82: 1f:e8:64:80:59:be:56:b7:57:08:36:2e:a5:3f:f5:06:60:ca: 8a:6d:5f:e1:96:91:13:c3:23:17:89:0b:7c:78:53:86:10:b4: d9:22:25:5e:42:cd:ab:5a:8c:36:7d:92:51:6a:56:e0:d1:92: ff:ca:1e:92 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDcYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjhFMDAxMTAvBgNVBAUTKENGRTNGMzFFNEYzMzdBRDM4MTIwMUJGMzNBMDFBNjg1 RkIwMTZBNUUwHhcNMjYwNTIwMTc1NTI5WhcNMjYwNTI3MTc1NTI5WjAYMRYwFAYD VQQDEw02YTBkZjU5Mi0wZGQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0idpcvYBqHLxH9VRc2Cw5KPGl0zZbhg4YsDIBY5zc1730RIthoCNV0lQdBZF xv6cGbVUHJ9seBlY44u0TEpijnDi0Mae2HtrHFwvq06/G2eLH3kNC7x8WkGewglV wUJr8637fPzwcN0nUduoV6D87BuX1Aywj8c2qzRek2MXppeqcVanEkzb7Q2GDZJh Bmo5dIl+hpBKPrDtRcnqQcYOUMfuXNsTzPDeKvU4LJPezRUIAaSu1ZFYiPB6WJOy C7vwMpYTOuj+3dYaGtVx842JnpjtiygsxdnU4JMfLfy6md+MxgPSb6LroBvCC4mz xZICzV5VnRvTmV0MigjQDGIpswIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHn9WARk iSTsmxGAAnwFqj0pIyvDMB8GA1UdIwQYMBaAFM/j8x5PM3rTgSAb8zoBpoX7AWpe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOEUwMC84OTkxRUI5RUUw MjAxMUU5ODJCMzdBM0FDNEY5QUUwMi96LVB6SGs4emV0T0JJQnZ6T2dHbWhmc0Jh bDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3otUHpIazh6ZXRPQklCdnpPZ0dtaGZzQmFsNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OEUwMC84OTkxRUI5RUUwMjAxMUU5ODJCMzdBM0FDNEY5QUUwMi96LVB6SGs4emV0 T0JJQnZ6T2dHbWhmc0JhbDQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAMlCSuEYojm4f+j5wh2B1cYZUixp4qTagbpmzu3o6yO3OxoshX7kOCwQksBZd Gh6bZcsPx8SG+L+sxJUiot8ERNN2dsU+6NfBUtnPWeWPdAIDRI10YO0Boh4ej0H9 gu/EMDkA2ahhvMmyhOj+HhHQv1jC4R6Jj5Z4hC5QVGVIj8fEj2P1JFewiIxB/3gR dXgm/Cr8Xojxn9tmWp84uc28dhqRIHNSZAryYdxCl0nSpV+fyEC5gvrlCuoQKiLR MLPyZ7H9XMKCH+hkgFm+VrdXCDYupT/1BmDKim1f4ZaRE8MjF4kLfHhThhC02SIl XkLNq1qMNn2SUWpW4NGS/8oekg== -----END CERTIFICATE-----Generated at Thu May 21 11:15:31 2026 by rpki-client