$ rpki-client -vvf rpki.apnic.net/member_repository/A912E87E/8428B9E6A1CF11EF878E6061C4F9AE02/z3nGX0tVAQ-yXObEW4yRnbCToy0.mft File: z3nGX0tVAQ-yXObEW4yRnbCToy0.mft (raw, json) Hash identifier: Od/G6AlyIo9sjjq29VYHMdQVjmm6KRk1HDelnlaK/n4= Subject key identifier: 56:CA:05:21:E1:6A:FC:A4:C0:E8:CE:8A:BF:7F:C4:BF:CD:E3:74:F8 Authority key identifier: CF:79:C6:5F:4B:55:01:0F:B2:5C:E6:C4:5B:8C:91:9D:B0:93:A3:2D Certificate issuer: /CN=A912E87E/serialNumber=CF79C65F4B55010FB25CE6C45B8C919DB093A32D Certificate serial: 0130 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3nGX0tVAQ-yXObEW4yRnbCToy0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912E87E/8428B9E6A1CF11EF878E6061C4F9AE02/z3nGX0tVAQ-yXObEW4yRnbCToy0.mft Manifest number: 0123 Signing time: Thu 21 May 2026 05:52:11 +0000 Manifest this update: Thu 21 May 2026 05:52:11 +0000 Manifest next update: Thu 28 May 2026 05:52:11 +0000 Files and hashes: 1: z3nGX0tVAQ-yXObEW4yRnbCToy0.crl (hash: 3e/LLQGowZ2H8w06iqJufqJ3qRpHeG/mptz5cpDpcFk=) 2: A48892E4DE4A11EFACE66748C4F9AE02.roa (hash: 6I64utdnK0TaFg9y+W+RqybL90K1jeQS5liIOPne5so=) 3: F2DF64BAD28511F0A20E5C80C4F9AE02.roa (hash: XjB5jPSTt3eJTKS4dRa9T7cx4SalbQsD8ABjmrgjNZA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912E87E/8428B9E6A1CF11EF878E6061C4F9AE02/z3nGX0tVAQ-yXObEW4yRnbCToy0.crl rsync://rpki.apnic.net/member_repository/A912E87E/8428B9E6A1CF11EF878E6061C4F9AE02/z3nGX0tVAQ-yXObEW4yRnbCToy0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3nGX0tVAQ-yXObEW4yRnbCToy0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 05:52:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 304 (0x130) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912E87E, serialNumber=CF79C65F4B55010FB25CE6C45B8C919DB093A32D Validity Not Before: May 21 05:52:11 2026 GMT Not After : May 28 05:52:11 2026 GMT Subject: CN=6a0e9d8b-4fbc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:49:31:12:d3:0b:c7:55:80:bc:2d:db:5a:ca: 4f:9f:37:fc:a2:f0:6f:65:91:e6:68:fd:85:17:3d: c9:af:e4:47:29:a1:3b:60:03:b4:7b:77:2c:07:3a: 22:ad:c3:06:75:52:36:53:a3:c2:53:0a:ce:f4:9c: 26:60:0e:04:c9:26:cd:30:0e:2d:f8:50:a7:8b:da: 3b:52:98:16:f8:e9:dd:d7:0d:42:1c:a9:1f:79:df: cc:83:0f:04:a5:45:76:64:8b:0b:5c:9d:8e:a6:81: 4b:a1:cb:05:57:f7:3b:a9:84:7f:21:50:bb:2d:c5: 49:6c:3e:5b:0f:94:2e:84:78:08:f5:e1:82:f4:e9: 9e:df:b3:8c:37:83:fb:95:51:ba:0e:8e:ad:06:6a: 98:21:90:71:ee:fc:17:d6:cd:c8:c7:aa:01:a2:59: d7:4b:29:36:a4:a8:da:03:da:25:be:06:6e:e7:85: c1:a6:24:bd:f5:29:8e:15:10:bc:6f:e4:f0:fc:98: d9:33:bf:64:5f:fb:a5:cc:9c:4e:65:ff:bf:6e:56: 0e:eb:c3:44:9c:23:bb:fc:d4:ff:3d:16:81:8e:bb: b6:81:6d:4d:62:7f:73:7d:ca:b3:c4:0c:2f:b4:17: 02:37:12:91:7d:88:ab:73:08:27:23:79:ba:0c:26: fd:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:CA:05:21:E1:6A:FC:A4:C0:E8:CE:8A:BF:7F:C4:BF:CD:E3:74:F8 X509v3 Authority Key Identifier: keyid:CF:79:C6:5F:4B:55:01:0F:B2:5C:E6:C4:5B:8C:91:9D:B0:93:A3:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912E87E/8428B9E6A1CF11EF878E6061C4F9AE02/z3nGX0tVAQ-yXObEW4yRnbCToy0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3nGX0tVAQ-yXObEW4yRnbCToy0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912E87E/8428B9E6A1CF11EF878E6061C4F9AE02/z3nGX0tVAQ-yXObEW4yRnbCToy0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:b0:29:71:eb:f0:14:66:db:35:a3:28:cf:85:c5:d1:5e:18: d1:66:5b:76:d3:50:cf:5d:43:86:35:0f:bc:09:88:16:e3:0f: b6:83:fd:ae:57:40:23:85:3c:25:03:5f:e2:f0:df:b9:5a:b1: b9:4f:3d:c3:19:74:57:25:32:1b:1c:2b:83:41:bd:f7:72:1c: 52:44:73:67:ea:18:d5:12:e7:dd:6c:47:db:d0:f5:12:11:f6: 94:7a:d8:e4:c1:a2:3c:e1:3d:bf:09:c7:83:00:c2:a2:3e:d8: 62:1f:50:e2:13:54:44:ed:22:78:59:bf:4e:c7:73:b2:3e:17: 40:03:a9:12:8c:00:53:58:ba:e5:69:8a:3d:3f:5d:17:19:62: 68:bf:df:0c:2e:41:bb:2b:a0:7e:fa:d0:7f:56:54:4d:9d:e8: 10:ab:65:77:8b:7c:e6:05:c5:d8:fe:2d:23:45:5e:33:fa:54: 4a:98:d5:55:93:e2:1e:5c:d5:b7:56:4e:77:40:46:50:96:32: 8e:09:08:0a:ac:18:74:6d:28:d7:41:9c:6c:4a:88:90:26:9e: 72:e3:1c:0b:37:8d:24:35:ad:2a:39:b7:e4:01:7b:74:f5:4e: c2:d1:7b:95:85:91:26:a4:80:da:f7:d3:8f:d6:e2:40:be:41: e0:25:d1:bf -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICATAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkU4N0UxMTAvBgNVBAUTKENGNzlDNjVGNEI1NTAxMEZCMjVDRTZDNDVCOEM5MTlE QjA5M0EzMkQwHhcNMjYwNTIxMDU1MjExWhcNMjYwNTI4MDU1MjExWjAYMRYwFAYD VQQDEw02YTBlOWQ4Yi00ZmJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1EkxEtMLx1WAvC3bWspPnzf8ovBvZZHmaP2FFz3Jr+RHKaE7YAO0e3csBzoi rcMGdVI2U6PCUwrO9JwmYA4EySbNMA4t+FCni9o7UpgW+Ond1w1CHKkfed/Mgw8E pUV2ZIsLXJ2OpoFLocsFV/c7qYR/IVC7LcVJbD5bD5QuhHgI9eGC9Ome37OMN4P7 lVG6Do6tBmqYIZBx7vwX1s3Ix6oBolnXSyk2pKjaA9olvgZu54XBpiS99SmOFRC8 b+Tw/JjZM79kX/ulzJxOZf+/blYO68NEnCO7/NT/PRaBjru2gW1NYn9zfcqzxAwv tBcCNxKRfYircwgnI3m6DCb9xQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFbKBSHh avykwOjOir9/xL/N43T4MB8GA1UdIwQYMBaAFM95xl9LVQEPslzmxFuMkZ2wk6Mt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRTg3RS84NDI4QjlFNkEx Q0YxMUVGODc4RTYwNjFDNEY5QUUwMi96M25HWDB0VkFRLXlYT2JFVzR5Um5iQ1Rv eTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ozbkdYMHRWQVEteVhPYkVXNHlSbmJDVG95MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RTg3RS84NDI4QjlFNkExQ0YxMUVGODc4RTYwNjFDNEY5QUUwMi96M25HWDB0VkFR LXlYT2JFVzR5Um5iQ1RveTAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAPLApcevwFGbbNaMoz4XF0V4Y0WZbdtNQz11DhjUPvAmIFuMPtoP9rldAI4U8 JQNf4vDfuVqxuU89wxl0VyUyGxwrg0G993IcUkRzZ+oY1RLn3WxH29D1EhH2lHrY 5MGiPOE9vwnHgwDCoj7YYh9Q4hNURO0ieFm/Tsdzsj4XQAOpEowAU1i65WmKPT9d FxliaL/fDC5BuyugfvrQf1ZUTZ3oEKtld4t85gXF2P4tI0VeM/pUSpjVVZPiHlzV t1ZOd0BGUJYyjgkICqwYdG0o10GcbEqIkCaecuMcCzeNJDWtKjm35AF7dPVOwtF7 lYWRJqSA2vfTj9biQL5B4CXRvw== -----END CERTIFICATE-----Generated at Fri May 22 12:07:55 2026 by rpki-client