$ rpki-client -vvf rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.mft File: 3zHPGFCQ4VSWXv_7xmS91yHYB18.mft (raw, json) Hash identifier: zKnQ5O1VR9mQuOZ5NqGcXoJdN7Lf5d/IObIsimw2+zE= Subject key identifier: 51:B4:95:DA:3D:A2:6E:FF:5B:26:5B:76:8D:C8:35:38:B1:9D:75:B7 Authority key identifier: DF:31:CF:18:50:90:E1:54:96:5E:FF:FB:C6:64:BD:D7:21:D8:07:5F Certificate issuer: /CN=A9155ECF/serialNumber=DF31CF185090E154965EFFFBC664BDD721D8075F Certificate serial: E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3zHPGFCQ4VSWXv_7xmS91yHYB18.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.mft Manifest number: D5 Signing time: Thu 21 May 2026 06:56:20 +0000 Manifest this update: Thu 21 May 2026 06:56:19 +0000 Manifest next update: Thu 28 May 2026 06:56:19 +0000 Files and hashes: 1: 3zHPGFCQ4VSWXv_7xmS91yHYB18.crl (hash: AY+DE60RL5/EuR9tbRRoOjinjebMeRBN2Xcdy6/99bE=) 2: E171E63C40C411F18CB5B1299F833773.roa (hash: i2ZccAq1lNP07Jor3GPaaFIpUbRcv9yFEkCtv+dXGz4=) 3: 7434E1F4967011F0A5651266C4F9AE02.roa (hash: yz2U9PDGW5yj6K3epzpiZUOJr61JO2DFHRCaKrcoOK0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.crl rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3zHPGFCQ4VSWXv_7xmS91yHYB18.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 06:56:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 228 (0xe4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9155ECF, serialNumber=DF31CF185090E154965EFFFBC664BDD721D8075F Validity Not Before: May 21 06:56:19 2026 GMT Not After : May 28 06:56:19 2026 GMT Subject: CN=6a0eac94-afba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:15:64:0e:98:0d:28:69:96:47:d8:49:6d:56: 3b:7f:13:70:98:dd:09:e7:47:46:99:5d:aa:9f:e4: 91:39:bb:cd:19:5c:25:11:fe:63:8f:02:b0:0a:62: 79:d0:c6:e3:b9:c7:2a:76:3a:29:7a:db:1d:21:2b: 01:2e:46:74:58:b4:04:39:ad:a6:c2:bb:19:b7:8d: 8d:3c:12:bf:f2:94:e7:0f:fb:2e:20:4a:3a:9e:b0: 36:63:a6:67:d5:e0:8e:e5:b6:1f:c8:46:f8:e3:88: 9b:9e:14:9e:b9:f6:49:b7:5a:f4:73:c6:61:37:32: 00:f2:2a:3e:9d:b8:41:b7:44:a4:ea:1c:b6:0f:f4: 13:31:87:a2:ce:42:21:e4:e5:16:0e:c8:81:9e:dd: a1:0a:09:88:39:0b:ce:c2:3a:8c:b4:a1:03:30:f6: ac:fe:2b:a1:fe:0f:05:44:65:7d:a0:8a:7e:98:10: 64:45:58:3b:ce:2a:98:a6:8d:cc:86:fe:8f:d7:cb: f4:ae:8b:de:db:ee:21:2a:67:6d:e9:69:4c:f4:3d: 28:01:00:f6:f1:c3:a1:50:80:63:72:ae:45:6d:43: ba:cf:33:ef:35:cd:05:9a:2d:eb:98:54:36:74:6e: 1c:b2:14:94:ca:df:8e:6c:64:7c:3f:48:12:f1:fb: eb:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:B4:95:DA:3D:A2:6E:FF:5B:26:5B:76:8D:C8:35:38:B1:9D:75:B7 X509v3 Authority Key Identifier: keyid:DF:31:CF:18:50:90:E1:54:96:5E:FF:FB:C6:64:BD:D7:21:D8:07:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3zHPGFCQ4VSWXv_7xmS91yHYB18.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:6d:ab:41:2d:b1:a6:a8:4c:81:d8:2e:fd:d8:53:30:92:c1: 71:83:c8:ae:ff:d7:97:c1:9b:b2:24:94:2c:27:76:19:08:3a: 08:e9:3a:ac:0f:b9:78:7f:44:04:19:58:5a:b8:ba:e8:ef:70: 2b:38:ac:89:ec:55:c2:fe:e9:ff:9b:eb:63:a8:b3:50:38:7e: 74:6c:9a:da:4a:16:d1:ab:a1:81:e1:06:ed:38:f7:3c:51:f2: d6:ec:ed:f6:18:00:ab:8c:69:40:3c:91:0e:73:cf:c6:6a:97: 72:e9:a4:b5:15:c9:b2:c5:a3:78:f2:7e:2f:0c:f5:cf:0b:27: bf:64:3e:bb:4e:ff:17:9a:ee:7d:d6:a7:f7:a1:42:31:fd:84: 3b:c3:b2:eb:bf:82:4c:36:a8:5e:13:28:81:2a:ae:e7:da:c9: 80:42:81:97:c8:3c:55:55:d1:fe:d8:27:1c:3b:6c:34:58:0e: f3:8d:01:0a:60:7c:76:9e:14:45:55:12:cc:52:77:01:37:5b: 2b:3e:26:6c:d2:e7:79:76:a5:ae:78:74:c7:4f:8d:bc:97:a6: d8:21:ad:9b:b8:10:ee:2a:71:30:41:df:c3:ae:02:18:a3:fd: 0f:91:15:6e:78:b0:02:c8:50:74:29:6a:6f:3a:5b:b9:b1:4f: df:cb:03:b7 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAOQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTVFQ0YxMTAvBgNVBAUTKERGMzFDRjE4NTA5MEUxNTQ5NjVFRkZGQkM2NjRCREQ3 MjFEODA3NUYwHhcNMjYwNTIxMDY1NjE5WhcNMjYwNTI4MDY1NjE5WjAYMRYwFAYD VQQDEw02YTBlYWM5NC1hZmJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAohVkDpgNKGmWR9hJbVY7fxNwmN0J50dGmV2qn+SRObvNGVwlEf5jjwKwCmJ5 0MbjuccqdjopetsdISsBLkZ0WLQEOa2mwrsZt42NPBK/8pTnD/suIEo6nrA2Y6Zn 1eCO5bYfyEb444ibnhSeufZJt1r0c8ZhNzIA8io+nbhBt0Sk6hy2D/QTMYeizkIh 5OUWDsiBnt2hCgmIOQvOwjqMtKEDMPas/iuh/g8FRGV9oIp+mBBkRVg7ziqYpo3M hv6P18v0rove2+4hKmdt6WlM9D0oAQD28cOhUIBjcq5FbUO6zzPvNc0Fmi3rmFQ2 dG4cshSUyt+ObGR8P0gS8fvryQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFG0ldo9 om7/WyZbdo3INTixnXW3MB8GA1UdIwQYMBaAFN8xzxhQkOFUll7/+8Zkvdch2Adf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NUVDRi9FRjZCOTA1QzI1 RjUxMUYwOEJFRkRBNDlDNEY5QUUwMi8zekhQR0ZDUTRWU1dYdl83eG1TOTF5SFlC MTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzN6SFBHRkNRNFZTV1h2Xzd4bVM5MXlIWUIxOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NUVDRi9FRjZCOTA1QzI1RjUxMUYwOEJFRkRBNDlDNEY5QUUwMi8zekhQR0ZDUTRW U1dYdl83eG1TOTF5SFlCMTgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAQW2rQS2xpqhMgdgu/dhTMJLBcYPIrv/Xl8GbsiSULCd2GQg6COk6rA+5eH9E BBlYWri66O9wKzisiexVwv7p/5vrY6izUDh+dGya2koW0auhgeEG7Tj3PFHy1uzt 9hgAq4xpQDyRDnPPxmqXcumktRXJssWjePJ+Lwz1zwsnv2Q+u07/F5rufdan96FC Mf2EO8Oy67+CTDaoXhMogSqu59rJgEKBl8g8VVXR/tgnHDtsNFgO840BCmB8dp4U RVUSzFJ3ATdbKz4mbNLneXalrnh0x0+NvJem2CGtm7gQ7ipxMEHfw64CGKP9D5EV bniwAshQdClqbzpbubFP38sDtw== -----END CERTIFICATE-----Generated at Thu May 21 09:35:35 2026 by rpki-client