$ rpki-client -vvf rpki.apnic.net/member_repository/A9157B07/D88544928FD511F0A61C9B2BC4F9AE02/zOnFYkus-dCYXj8tbjHmsthtgq4.mft File: zOnFYkus-dCYXj8tbjHmsthtgq4.mft (raw, json) Hash identifier: s3jcpgN9taBx/KJpcZwFGdN/H3uwKBPALhdfV6RV0os= Subject key identifier: 77:85:20:D8:02:42:8D:A6:D0:64:2E:D1:D2:51:43:7B:1B:9A:27:2B Authority key identifier: CC:E9:C5:62:4B:AC:F9:D0:98:5E:3F:2D:6E:31:E6:B2:D8:6D:82:AE Certificate issuer: /CN=A9157B07/serialNumber=CCE9C5624BACF9D0985E3F2D6E31E6B2D86D82AE Certificate serial: 93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zOnFYkus-dCYXj8tbjHmsthtgq4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157B07/D88544928FD511F0A61C9B2BC4F9AE02/zOnFYkus-dCYXj8tbjHmsthtgq4.mft Manifest number: 91 Signing time: Tue 23 Jun 2026 07:40:44 +0000 Manifest this update: Tue 23 Jun 2026 07:40:44 +0000 Manifest next update: Tue 30 Jun 2026 07:40:44 +0000 Files and hashes: 1: zOnFYkus-dCYXj8tbjHmsthtgq4.crl (hash: BeEfJnDi2iZNcLa3tTFd4cPCmh00K3/sguwFyUpLF8o=) 2: 8CA88A568FD611F09FFCA92CC4F9AE02.roa (hash: TxrrC9wYr/I+aWhB4yIA14fUgs+AJHTP94jMCdYeTOE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157B07/D88544928FD511F0A61C9B2BC4F9AE02/zOnFYkus-dCYXj8tbjHmsthtgq4.crl rsync://rpki.apnic.net/member_repository/A9157B07/D88544928FD511F0A61C9B2BC4F9AE02/zOnFYkus-dCYXj8tbjHmsthtgq4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zOnFYkus-dCYXj8tbjHmsthtgq4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Jun 2026 07:40:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 147 (0x93) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157B07, serialNumber=CCE9C5624BACF9D0985E3F2D6E31E6B2D86D82AE Validity Not Before: Jun 23 07:40:44 2026 GMT Not After : Jun 30 07:40:44 2026 GMT Subject: CN=6a3a387c-56cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:d2:54:ad:b8:86:c7:97:c5:b1:a7:60:73:d0: 96:17:5f:c3:c1:4f:bc:23:ca:43:d3:ee:23:4a:95: 76:86:35:86:fd:88:a1:c3:aa:c9:52:d2:04:17:97: e7:17:69:22:10:81:81:f0:b9:8f:b7:2d:10:e7:6b: 14:de:23:53:40:e5:5c:f3:91:c0:27:22:44:03:ce: 9f:1b:3f:7b:d0:0b:68:04:88:22:55:49:09:61:e6: be:ae:8d:70:b6:12:8f:0e:be:36:bf:ae:1f:fd:7a: 75:ad:f0:d6:b8:a0:4c:27:49:89:34:0c:4a:21:4b: a2:c4:6d:68:18:3c:ec:21:a6:9a:8f:f1:bd:7d:17: ce:6f:ce:e4:48:68:05:71:57:1b:4b:9d:42:44:75: ae:9b:50:fd:c1:27:f8:44:66:c9:75:df:0b:45:28: 13:e3:97:34:2d:1a:12:52:44:ef:90:ed:7a:ab:7b: 7c:5d:2f:29:b6:cb:8d:38:71:76:a0:87:5b:13:f3: 6f:c7:49:6f:11:a4:69:df:92:ee:df:b7:d8:69:32: 52:b5:4e:33:83:97:fa:06:5e:f5:fa:1f:9f:72:11: e5:9d:4e:1d:b2:07:af:16:20:4c:0e:1f:96:8a:08: 64:e0:3b:36:a1:c7:28:6e:d7:81:1f:1e:37:b6:58: 6d:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:85:20:D8:02:42:8D:A6:D0:64:2E:D1:D2:51:43:7B:1B:9A:27:2B X509v3 Authority Key Identifier: keyid:CC:E9:C5:62:4B:AC:F9:D0:98:5E:3F:2D:6E:31:E6:B2:D8:6D:82:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157B07/D88544928FD511F0A61C9B2BC4F9AE02/zOnFYkus-dCYXj8tbjHmsthtgq4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zOnFYkus-dCYXj8tbjHmsthtgq4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157B07/D88544928FD511F0A61C9B2BC4F9AE02/zOnFYkus-dCYXj8tbjHmsthtgq4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:6c:ea:7b:e1:5a:33:2f:0c:2a:41:e0:64:61:dc:99:d3:0b: bb:0f:fb:77:13:89:c2:30:0f:7a:c9:e3:bc:b3:d3:3b:36:91: 84:8d:43:61:d1:2e:bc:3b:bf:4c:db:49:28:62:0e:ed:32:ea: af:ed:4d:5a:65:00:e9:c1:10:af:24:fe:e3:a1:a4:ee:8e:bf: 44:db:02:c6:12:28:5e:4a:bc:44:09:7e:8c:b4:46:19:ad:b6: d9:58:d9:74:3f:f1:db:cf:46:c3:06:f4:07:27:08:de:1f:12: dc:91:e3:83:49:fb:15:52:b1:0a:68:c6:78:6a:f1:5f:b2:82: a3:b8:13:7c:f5:a6:be:ed:a1:a4:a3:d4:36:49:5c:c6:f7:4b: d3:aa:f3:0f:9d:07:4d:9e:f1:d5:7d:20:ed:93:05:9f:f6:ea: 9e:a1:70:3d:67:45:2b:3a:2f:45:89:c6:13:1c:92:fc:bb:e3: 6c:d3:0c:8f:d8:a3:ac:c3:b2:8b:7a:3e:20:5b:1a:fc:53:37: ba:70:28:e8:00:49:37:ab:bf:5a:f5:4f:83:1e:6b:d8:4f:84: 9c:e6:59:8c:55:bd:9e:9b:d0:40:e5:dd:be:e2:0e:e3:5c:f3: c1:be:b6:5f:a9:95:27:bc:91:51:fc:2f:36:22:8a:59:c7:63: 7b:94:eb:94 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAJMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdCMDcxMTAvBgNVBAUTKENDRTlDNTYyNEJBQ0Y5RDA5ODVFM0YyRDZFMzFFNkIy RDg2RDgyQUUwHhcNMjYwNjIzMDc0MDQ0WhcNMjYwNjMwMDc0MDQ0WjAYMRYwFAYD VQQDEw02YTNhMzg3Yy01NmNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA29JUrbiGx5fFsadgc9CWF1/DwU+8I8pD0+4jSpV2hjWG/Yihw6rJUtIEF5fn F2kiEIGB8LmPty0Q52sU3iNTQOVc85HAJyJEA86fGz970AtoBIgiVUkJYea+ro1w thKPDr42v64f/Xp1rfDWuKBMJ0mJNAxKIUuixG1oGDzsIaaaj/G9fRfOb87kSGgF cVcbS51CRHWum1D9wSf4RGbJdd8LRSgT45c0LRoSUkTvkO16q3t8XS8ptsuNOHF2 oIdbE/Nvx0lvEaRp35Lu37fYaTJStU4zg5f6Bl71+h+fchHlnU4dsgevFiBMDh+W ighk4Ds2occobteBHx43tlht4wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHeFINgC Qo2m0GQu0dJRQ3sbmicrMB8GA1UdIwQYMBaAFMzpxWJLrPnQmF4/LW4x5rLYbYKu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0IwNy9EODg1NDQ5MjhG RDUxMUYwQTYxQzlCMkJDNEY5QUUwMi96T25GWWt1cy1kQ1lYajh0YmpIbXN0aHRn cTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pPbkZZa3VzLWRDWVhqOHRiakhtc3RodGdxNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0IwNy9EODg1NDQ5MjhGRDUxMUYwQTYxQzlCMkJDNEY5QUUwMi96T25GWWt1cy1k Q1lYajh0YmpIbXN0aHRncTQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAOmzqe+FaMy8MKkHgZGHcmdMLuw/7dxOJwjAPesnjvLPTOzaRhI1DYdEuvDu/ TNtJKGIO7TLqr+1NWmUA6cEQryT+46Gk7o6/RNsCxhIoXkq8RAl+jLRGGa222VjZ dD/x289Gwwb0BycI3h8S3JHjg0n7FVKxCmjGeGrxX7KCo7gTfPWmvu2hpKPUNklc xvdL06rzD50HTZ7x1X0g7ZMFn/bqnqFwPWdFKzovRYnGExyS/LvjbNMMj9ijrMOy i3o+IFsa/FM3unAo6ABJN6u/WvVPgx5r2E+EnOZZjFW9npvQQOXdvuIO41zzwb62 X6mVJ7yRUfwvNiKKWcdje5TrlA== -----END CERTIFICATE-----Generated at Wed Jun 24 11:25:33 2026 by rpki-client