$ rpki-client -vvf rpki.apnic.net/member_repository/A913B7B2/40665008416F11EAB5C7CA65C4F9AE02/CZJdtntKud9gBue9K8HY7cjMfhk.mft File: CZJdtntKud9gBue9K8HY7cjMfhk.mft (raw, json) Hash identifier: OtRlLnbm9LHsJZrPVlaUinK7ry5jbs4NSpbVc8BUtFE= Subject key identifier: 68:EE:E6:1D:DA:13:DB:E7:A6:4A:86:28:72:C5:22:59:55:F2:EF:2B Authority key identifier: 09:92:5D:B6:7B:4A:B9:DF:60:06:E7:BD:2B:C1:D8:ED:C8:CC:7E:19 Certificate issuer: /CN=A913B7B2/serialNumber=09925DB67B4AB9DF6006E7BD2BC1D8EDC8CC7E19 Certificate serial: 0BF3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZJdtntKud9gBue9K8HY7cjMfhk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B7B2/40665008416F11EAB5C7CA65C4F9AE02/CZJdtntKud9gBue9K8HY7cjMfhk.mft Manifest number: 0BCF Signing time: Wed 20 May 2026 18:58:37 +0000 Manifest this update: Wed 20 May 2026 18:58:37 +0000 Manifest next update: Wed 27 May 2026 18:58:37 +0000 Files and hashes: 1: CZJdtntKud9gBue9K8HY7cjMfhk.crl (hash: JZqN5ZYq4Sdfi3JvrdzUoCvx0K5oUAni75Gf4WxEC7w=) 2: 6932258C2F1C11EDA3E29B09C4F9AE02.roa (hash: 53LWwpRVZrDTw/6Ogh5Ek7qxm98TR8hKYo+nI3Iokbw=) 3: 44942606EA0A11F09D7A92E76F6F56BC.roa (hash: EeLJby/8EluYAUfNa1xVSHc8kon4tRGoZL1/tkyFn7k=) 4: C43C22501DEF11F1B60466D9163D8C67.roa (hash: xsIr4KFI9a9YHG0N66oMLWH8AurLcb1F9zQyd9fncF4=) 5: 450DDD84EA0A11F09D7A92E76F6F56BC.roa (hash: kJnM7EoAenCH3PCIlTPoGD0IpncArPRKG0ulKlcXT+o=) 6: 4580DDDEEA0A11F09D7A92E76F6F56BC.roa (hash: dP56HqiOS0iPtAVucNZ2wR/KoNuwl+rRD4b0wwXFjDs=) 7: CB926A64E58711F0B2CA0EBF446F56BC.roa (hash: 8Zv5MMAKEdi89aa0T4smQVaAo99bnl+ZMZOEdaQmF7Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B7B2/40665008416F11EAB5C7CA65C4F9AE02/CZJdtntKud9gBue9K8HY7cjMfhk.crl rsync://rpki.apnic.net/member_repository/A913B7B2/40665008416F11EAB5C7CA65C4F9AE02/CZJdtntKud9gBue9K8HY7cjMfhk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZJdtntKud9gBue9K8HY7cjMfhk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 18:58:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3059 (0xbf3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B7B2, serialNumber=09925DB67B4AB9DF6006E7BD2BC1D8EDC8CC7E19 Validity Not Before: May 20 18:58:37 2026 GMT Not After : May 27 18:58:37 2026 GMT Subject: CN=6a0e045d-804a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:ba:6b:df:73:16:f4:5e:a5:d2:5a:6b:fe:5f: 72:f0:90:da:a8:ce:80:47:08:24:4f:9d:a3:fe:a0: b5:97:6a:71:ae:da:29:98:0e:f0:38:69:92:8b:9b: 9f:81:d3:33:9f:91:07:cd:c9:cc:07:99:28:b7:2b: 0c:9d:bc:f6:f2:e3:c0:31:63:a9:8f:2a:2f:47:70: 33:db:bb:82:11:67:69:e9:b4:e1:5d:8d:9b:67:16: de:ba:cf:05:01:9f:fe:eb:1b:c4:56:ea:11:64:e8: 5b:3b:b3:e9:a4:97:2b:d1:43:26:21:e0:bf:5e:7f: 09:01:0f:73:d5:27:b1:c8:5f:6d:31:33:2d:3d:96: 68:88:16:bd:db:6a:6b:0a:06:59:e3:20:79:33:6e: 46:cd:07:21:84:a6:f6:5f:19:ce:00:94:07:82:c4: 50:79:3f:f9:ab:49:51:f6:f7:ce:85:6a:ba:c4:bc: f6:c8:35:f1:d2:0c:d5:9f:8b:ae:19:b0:1d:b2:66: b7:4f:58:bd:7f:25:33:a3:8f:48:ba:1b:4e:38:a7: 9f:68:c1:5c:db:0d:3e:3c:8a:c6:70:f5:77:04:6c: 5c:c5:c8:f3:72:2f:b3:a2:7a:3a:8e:58:88:c1:ec: 02:cc:5e:3d:9f:d3:c0:9e:74:c0:20:74:f1:d1:34: 11:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:EE:E6:1D:DA:13:DB:E7:A6:4A:86:28:72:C5:22:59:55:F2:EF:2B X509v3 Authority Key Identifier: keyid:09:92:5D:B6:7B:4A:B9:DF:60:06:E7:BD:2B:C1:D8:ED:C8:CC:7E:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B7B2/40665008416F11EAB5C7CA65C4F9AE02/CZJdtntKud9gBue9K8HY7cjMfhk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZJdtntKud9gBue9K8HY7cjMfhk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B7B2/40665008416F11EAB5C7CA65C4F9AE02/CZJdtntKud9gBue9K8HY7cjMfhk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bf:e8:70:d3:19:4c:b1:04:84:ca:fc:34:de:12:38:78:5a:42: 45:61:22:ab:3e:0b:6f:1a:97:f1:24:2e:2f:9c:fc:e3:7c:7e: 6f:12:69:2f:ae:ad:c0:d6:2d:3f:03:39:dd:f4:af:8e:41:33: 73:e7:7c:3f:4c:98:9e:30:1b:6f:00:66:8a:79:23:bb:36:89: 19:b4:96:a7:d5:ed:e3:7a:de:d4:75:c8:7c:58:00:13:d5:53: df:df:35:32:af:6d:79:2d:60:da:68:12:a0:fa:ef:23:35:5b: 2b:01:a0:2e:26:da:25:19:01:20:3a:9d:ed:83:ed:71:ef:ee: 3c:b4:c2:7d:36:ef:a4:44:3f:cb:35:a2:5f:55:67:f1:c3:03: 30:c4:6f:d5:74:31:9c:c9:5c:ea:83:15:31:53:60:75:8f:fb: a2:5e:a7:ff:56:3a:90:9e:25:8c:e3:a0:d6:3a:df:a9:17:82: a6:eb:82:a6:22:06:32:ff:27:4b:fb:d4:99:e2:2d:ec:41:95: 65:72:7b:53:a5:84:c7:45:61:79:bb:ab:6f:f1:8e:b6:ab:11: 28:4d:d9:24:e3:b1:62:63:e9:3e:34:65:9d:7d:ad:96:89:e0: 3a:48:74:0a:cd:5a:a7:a0:3d:71:da:86:d1:b8:d1:97:b4:57: da:63:45:8b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICC/MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0I3QjIxMTAvBgNVBAUTKDA5OTI1REI2N0I0QUI5REY2MDA2RTdCRDJCQzFEOEVE QzhDQzdFMTkwHhcNMjYwNTIwMTg1ODM3WhcNMjYwNTI3MTg1ODM3WjAYMRYwFAYD VQQDEw02YTBlMDQ1ZC04MDRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs7pr33MW9F6l0lpr/l9y8JDaqM6ARwgkT52j/qC1l2pxrtopmA7wOGmSi5uf gdMzn5EHzcnMB5kotysMnbz28uPAMWOpjyovR3Az27uCEWdp6bThXY2bZxbeus8F AZ/+6xvEVuoRZOhbO7PppJcr0UMmIeC/Xn8JAQ9z1SexyF9tMTMtPZZoiBa922pr CgZZ4yB5M25GzQchhKb2XxnOAJQHgsRQeT/5q0lR9vfOhWq6xLz2yDXx0gzVn4uu GbAdsma3T1i9fyUzo49IuhtOOKefaMFc2w0+PIrGcPV3BGxcxcjzci+zono6jliI wewCzF49n9PAnnTAIHTx0TQRSQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGju5h3a E9vnpkqGKHLFIllV8u8rMB8GA1UdIwQYMBaAFAmSXbZ7SrnfYAbnvSvB2O3IzH4Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQjdCMi80MDY2NTAwODQx NkYxMUVBQjVDN0NBNjVDNEY5QUUwMi9DWkpkdG50S3VkOWdCdWU5SzhIWTdjak1m aGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NaSmR0bnRLdWQ5Z0J1ZTlLOEhZN2NqTWZoay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QjdCMi80MDY2NTAwODQxNkYxMUVBQjVDN0NBNjVDNEY5QUUwMi9DWkpkdG50S3Vk OWdCdWU5SzhIWTdjak1maGsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAv+hw0xlMsQSEyvw03hI4eFpCRWEiqz4LbxqX8SQuL5z843x+bxJpL66twNYt PwM53fSvjkEzc+d8P0yYnjAbbwBminkjuzaJGbSWp9Xt43re1HXIfFgAE9VT3981 Mq9teS1g2mgSoPrvIzVbKwGgLibaJRkBIDqd7YPtce/uPLTCfTbvpEQ/yzWiX1Vn 8cMDMMRv1XQxnMlc6oMVMVNgdY/7ol6n/1Y6kJ4ljOOg1jrfqReCpuuCpiIGMv8n S/vUmeIt7EGVZXJ7U6WEx0Vheburb/GOtqsRKE3ZJOOxYmPpPjRlnX2tlongOkh0 Cs1ap6A9cdqG0bjRl7RX2mNFiw== -----END CERTIFICATE-----Generated at Thu May 21 09:36:44 2026 by rpki-client