$ rpki-client -vvf rpki.apnic.net/member_repository/A91408BE/A2C827EE410B11EAB6954A2CC4F9AE02/ZI5HI0RBcbar4W19wDDonAbwUNw.mft File: ZI5HI0RBcbar4W19wDDonAbwUNw.mft (raw, json) Hash identifier: hNl3UO/es5DawYmShXdF4hU7LHCbUtBOrroubAXHqBg= Subject key identifier: 8D:E7:55:11:9D:38:A3:39:DA:AF:BF:69:60:5E:52:9C:67:CA:73:67 Authority key identifier: 64:8E:47:23:44:41:71:B6:AB:E1:6D:7D:C0:30:E8:9C:06:F0:50:DC Certificate issuer: /CN=A91408BE/serialNumber=648E4723444171B6ABE16D7DC030E89C06F050DC Certificate serial: 0BDD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZI5HI0RBcbar4W19wDDonAbwUNw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91408BE/A2C827EE410B11EAB6954A2CC4F9AE02/ZI5HI0RBcbar4W19wDDonAbwUNw.mft Manifest number: 0BC8 Signing time: Wed 20 May 2026 18:58:05 +0000 Manifest this update: Wed 20 May 2026 18:58:04 +0000 Manifest next update: Wed 27 May 2026 18:58:04 +0000 Files and hashes: 1: ZI5HI0RBcbar4W19wDDonAbwUNw.crl (hash: wZuMzGKjetU066WVf+uQlJ+7JMgfsPjlANjPYjwJFL4=) 2: 5DCB0A0C410C11EA8A6C412DC4F9AE02.roa (hash: 4eqOlSLRPKjeL1TFzyh0NXLTAo0Vu3W9omx4TqqCWjg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91408BE/A2C827EE410B11EAB6954A2CC4F9AE02/ZI5HI0RBcbar4W19wDDonAbwUNw.crl rsync://rpki.apnic.net/member_repository/A91408BE/A2C827EE410B11EAB6954A2CC4F9AE02/ZI5HI0RBcbar4W19wDDonAbwUNw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZI5HI0RBcbar4W19wDDonAbwUNw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 18:58:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3037 (0xbdd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91408BE, serialNumber=648E4723444171B6ABE16D7DC030E89C06F050DC Validity Not Before: May 20 18:58:04 2026 GMT Not After : May 27 18:58:04 2026 GMT Subject: CN=6a0e043d-49f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:21:40:29:53:bc:0f:c7:26:cc:f2:82:29:0c: 4b:d1:17:f0:9b:74:c7:b8:5e:70:62:20:d7:8d:52: 41:71:81:48:04:1d:e7:f3:01:3a:7e:04:5a:ab:0e: 5a:d0:7c:2a:b6:e9:15:41:33:cb:05:e6:28:7f:34: 18:20:ce:22:d8:11:68:7b:d2:47:26:65:49:c3:1b: 34:7c:5e:a3:f9:fb:b2:c7:2c:40:08:a0:52:3b:81: f5:0e:a1:34:ab:22:c6:b5:f5:4e:fa:88:b3:f2:74: 7d:5a:a5:33:7a:5a:b4:8b:8c:e1:c4:c8:da:35:91: f3:03:ed:7f:39:92:67:e8:70:cb:68:41:29:03:7d: 47:c4:0d:59:29:8e:75:2e:6b:c4:02:ad:59:a1:0f: e0:fc:50:fa:4e:6c:ab:96:02:4d:47:72:11:54:47: 2b:5b:fa:a3:49:90:a3:d1:53:d0:ce:08:70:00:fd: 7d:b7:79:24:f1:c8:97:1e:69:a5:99:93:40:f8:f4: d1:f8:8a:ed:98:dc:bd:95:f6:f9:33:11:dd:c1:b3: c8:35:e4:71:63:99:9a:00:54:a6:26:88:9b:65:e8: 10:53:39:9d:78:91:7b:10:56:7f:8c:5e:dc:92:88: 51:9e:0b:27:51:5c:1b:1b:15:06:18:65:21:50:04: 6c:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:E7:55:11:9D:38:A3:39:DA:AF:BF:69:60:5E:52:9C:67:CA:73:67 X509v3 Authority Key Identifier: keyid:64:8E:47:23:44:41:71:B6:AB:E1:6D:7D:C0:30:E8:9C:06:F0:50:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91408BE/A2C827EE410B11EAB6954A2CC4F9AE02/ZI5HI0RBcbar4W19wDDonAbwUNw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZI5HI0RBcbar4W19wDDonAbwUNw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91408BE/A2C827EE410B11EAB6954A2CC4F9AE02/ZI5HI0RBcbar4W19wDDonAbwUNw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:25:d0:ac:a5:dd:e7:4f:03:13:42:9a:6e:8f:01:0e:d7:a8: 0c:db:e4:2f:69:d6:48:fc:37:7a:e8:25:e1:ec:f7:99:c6:14: 33:1f:dd:f9:1a:c3:20:7c:8b:bd:ae:46:49:84:81:a1:fc:ff: 7b:21:26:73:80:e8:90:15:44:4a:4a:5a:55:8a:34:ba:49:19: 2f:bb:69:0d:07:75:f9:b1:5e:d6:8b:3b:0a:bb:b6:3c:7f:c5: 50:b4:04:0d:3a:df:2c:42:28:0d:10:bd:33:82:36:bf:42:4c: 2b:dd:77:56:3c:52:ea:47:a4:0f:99:06:f2:42:99:5b:13:68: 1d:0b:5a:8f:4a:72:6f:a0:16:3b:b7:c7:df:44:d6:9d:5f:a1: 35:db:06:a8:ff:75:d4:41:9a:0c:8c:28:fc:75:02:2f:58:86: 49:5f:5f:23:93:c8:fe:c5:42:e1:a7:aa:30:9a:15:35:e6:5f: 8e:72:92:6b:ee:0c:d9:b6:39:b5:6b:c5:f9:e4:0f:16:57:c4: 08:c8:fb:24:8e:6f:2d:96:b9:3d:77:d8:0e:f6:74:42:02:16: dd:07:78:76:ce:a5:4e:8f:7d:ce:b2:31:f3:07:a3:9d:c5:8b: 28:1c:82:b3:9d:ff:91:a6:af:98:0c:f8:06:5c:96:23:df:23: 2f:5d:69:ba -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICC90wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDA4QkUxMTAvBgNVBAUTKDY0OEU0NzIzNDQ0MTcxQjZBQkUxNkQ3REMwMzBFODlD MDZGMDUwREMwHhcNMjYwNTIwMTg1ODA0WhcNMjYwNTI3MTg1ODA0WjAYMRYwFAYD VQQDEw02YTBlMDQzZC00OWY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyCFAKVO8D8cmzPKCKQxL0Rfwm3THuF5wYiDXjVJBcYFIBB3n8wE6fgRaqw5a 0HwqtukVQTPLBeYofzQYIM4i2BFoe9JHJmVJwxs0fF6j+fuyxyxACKBSO4H1DqE0 qyLGtfVO+oiz8nR9WqUzelq0i4zhxMjaNZHzA+1/OZJn6HDLaEEpA31HxA1ZKY51 LmvEAq1ZoQ/g/FD6TmyrlgJNR3IRVEcrW/qjSZCj0VPQzghwAP19t3kk8ciXHmml mZNA+PTR+IrtmNy9lfb5MxHdwbPINeRxY5maAFSmJoibZegQUzmdeJF7EFZ/jF7c kohRngsnUVwbGxUGGGUhUARsiwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFI3nVRGd OKM52q+/aWBeUpxnynNnMB8GA1UdIwQYMBaAFGSORyNEQXG2q+FtfcAw6JwG8FDc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MDhCRS9BMkM4MjdFRTQx MEIxMUVBQjY5NTRBMkNDNEY5QUUwMi9aSTVISTBSQmNiYXI0VzE5d0REb25BYndV TncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pJNUhJMFJCY2JhcjRXMTl3RERvbkFid1VOdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MDhCRS9BMkM4MjdFRTQxMEIxMUVBQjY5NTRBMkNDNEY5QUUwMi9aSTVISTBSQmNi YXI0VzE5d0REb25BYndVTncubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAMiXQrKXd508DE0Kabo8BDteoDNvkL2nWSPw3eugl4ez3mcYUMx/d+RrDIHyL va5GSYSBofz/eyEmc4DokBVESkpaVYo0ukkZL7tpDQd1+bFe1os7Cru2PH/FULQE DTrfLEIoDRC9M4I2v0JMK913VjxS6kekD5kG8kKZWxNoHQtaj0pyb6AWO7fH30TW nV+hNdsGqP911EGaDIwo/HUCL1iGSV9fI5PI/sVC4aeqMJoVNeZfjnKSa+4M2bY5 tWvF+eQPFlfECMj7JI5vLZa5PXfYDvZ0QgIW3Qd4ds6lTo99zrIx8wejncWLKByC s53/kaavmAz4BlyWI98jL11pug== -----END CERTIFICATE-----Generated at Thu May 21 10:19:44 2026 by rpki-client