$ rpki-client -vvf rpki.apnic.net/member_repository/A916523A/E75B878C4CDD11F0BFA08F80C4F9AE02/zES2e9GPRfbhN63kcxM1pVGmYSc.mft File: zES2e9GPRfbhN63kcxM1pVGmYSc.mft (raw, json) Hash identifier: 4kzKCpC/dB184gaWJjjtAiLLxfrUJYjTYjTQ5jfzGHQ= Subject key identifier: 26:31:A6:F1:6E:E6:54:03:4A:F7:BB:E6:2D:38:FA:F4:87:6C:34:CD Authority key identifier: CC:44:B6:7B:D1:8F:45:F6:E1:37:AD:E4:73:13:35:A5:51:A6:61:27 Certificate issuer: /CN=A916523A/serialNumber=CC44B67BD18F45F6E137ADE4731335A551A66127 Certificate serial: AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zES2e9GPRfbhN63kcxM1pVGmYSc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916523A/E75B878C4CDD11F0BFA08F80C4F9AE02/zES2e9GPRfbhN63kcxM1pVGmYSc.mft Manifest number: AD Signing time: Thu 21 May 2026 07:14:26 +0000 Manifest this update: Thu 21 May 2026 07:14:26 +0000 Manifest next update: Thu 28 May 2026 07:14:26 +0000 Files and hashes: 1: zES2e9GPRfbhN63kcxM1pVGmYSc.crl (hash: +VhO13c39pFghGJ7MpHbDAjcTT+rK2NB04SSEnZv8vg=) 2: 469F3FE44CDF11F08D2EFF16C4F9AE02.roa (hash: daCSAN1/L7FpC1GH73B6zID6rVi/iS9JfJ6E1UGDmuc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916523A/E75B878C4CDD11F0BFA08F80C4F9AE02/zES2e9GPRfbhN63kcxM1pVGmYSc.crl rsync://rpki.apnic.net/member_repository/A916523A/E75B878C4CDD11F0BFA08F80C4F9AE02/zES2e9GPRfbhN63kcxM1pVGmYSc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zES2e9GPRfbhN63kcxM1pVGmYSc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 07:14:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 175 (0xaf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916523A, serialNumber=CC44B67BD18F45F6E137ADE4731335A551A66127 Validity Not Before: May 21 07:14:26 2026 GMT Not After : May 28 07:14:26 2026 GMT Subject: CN=6a0eb0d2-3d6a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:b5:7e:fb:91:8a:bd:d7:8d:cf:25:b0:76:78: d0:a2:ae:7e:56:15:ed:d2:91:09:09:63:a0:29:69: 2d:49:54:1f:dd:cc:6e:80:1a:b6:06:a1:c4:8f:7f: a6:44:7d:81:18:18:88:a6:5d:8a:43:2d:1d:9e:27: 5e:19:76:6d:a1:32:4b:cf:67:14:bf:04:48:52:ba: da:c2:d3:ce:9b:ca:d1:1e:eb:5d:c0:09:06:cb:c2: a6:7c:6b:49:76:b6:1c:45:b0:8a:de:2b:2e:ac:e8: ce:5e:f4:7b:76:47:11:64:ac:7f:33:20:71:b5:d5: c0:66:e9:76:d0:88:3d:4c:d9:8e:37:7c:c1:10:a7: f5:19:14:bb:82:ea:5f:95:44:f9:fb:a4:86:c8:6c: 0a:c8:9a:37:b2:8b:93:91:45:73:26:6c:3c:82:35: 36:4b:a4:6e:eb:0a:cf:24:90:53:7d:a0:de:c1:90: 0c:f6:b8:9b:14:e8:7b:d9:e0:25:57:2b:9e:34:ac: 48:dc:18:f4:9f:1c:19:26:9b:18:ef:97:38:4c:f0: b8:3e:1e:6e:02:cf:73:13:f1:05:48:c7:a9:2d:ea: d3:f5:c1:22:79:63:1a:03:a0:54:d9:45:c7:ce:cf: 9b:51:2c:32:d6:4c:a4:21:8d:92:0f:7e:dc:70:99: a7:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:31:A6:F1:6E:E6:54:03:4A:F7:BB:E6:2D:38:FA:F4:87:6C:34:CD X509v3 Authority Key Identifier: keyid:CC:44:B6:7B:D1:8F:45:F6:E1:37:AD:E4:73:13:35:A5:51:A6:61:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916523A/E75B878C4CDD11F0BFA08F80C4F9AE02/zES2e9GPRfbhN63kcxM1pVGmYSc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zES2e9GPRfbhN63kcxM1pVGmYSc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916523A/E75B878C4CDD11F0BFA08F80C4F9AE02/zES2e9GPRfbhN63kcxM1pVGmYSc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:23:f9:95:86:92:69:69:fd:6d:a4:fd:5b:6a:83:d2:fa:f6: 0a:56:86:d0:d3:69:5b:0d:df:7f:e7:ff:78:51:1f:dd:80:94: 06:e1:61:73:74:d3:9d:9f:55:e4:b9:59:26:af:9f:cc:5d:6f: 48:7e:c0:00:90:22:12:37:a0:31:cf:5f:8e:a9:c7:ad:3e:92: 99:f3:75:c2:da:b8:cb:62:8f:de:c3:06:3d:96:23:82:18:49: 20:e3:90:6f:80:d2:ab:69:3b:ae:c7:a0:c1:23:3a:f3:2f:2d: 7e:8d:09:e7:98:4e:65:51:ae:f9:56:e8:f0:0e:60:59:9c:92: 76:bb:3b:a5:ae:61:d7:4f:fd:49:9a:2b:60:1a:ff:98:08:c6: a0:c3:70:d9:d7:23:03:97:12:72:89:36:8f:c3:66:4c:18:35: f8:c3:02:ff:d4:be:36:58:dd:6c:c1:63:8c:d8:86:9f:df:69: a5:33:1e:83:f3:c6:ec:83:f1:d0:46:48:46:5c:e2:60:e9:7c: 25:44:11:09:89:94:06:3e:92:59:98:8b:49:72:23:f4:0e:f9: 1c:f2:45:fd:61:aa:40:f3:27:a2:bd:be:c9:ce:fb:6e:d9:31: d9:00:ac:93:c6:3d:7c:84:83:a9:37:bd:3f:0d:d3:52:df:9c: 9a:9a:2a:6d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAK8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjUyM0ExMTAvBgNVBAUTKENDNDRCNjdCRDE4RjQ1RjZFMTM3QURFNDczMTMzNUE1 NTFBNjYxMjcwHhcNMjYwNTIxMDcxNDI2WhcNMjYwNTI4MDcxNDI2WjAYMRYwFAYD VQQDEw02YTBlYjBkMi0zZDZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxbV++5GKvdeNzyWwdnjQoq5+VhXt0pEJCWOgKWktSVQf3cxugBq2BqHEj3+m RH2BGBiIpl2KQy0dnideGXZtoTJLz2cUvwRIUrrawtPOm8rRHutdwAkGy8KmfGtJ drYcRbCK3isurOjOXvR7dkcRZKx/MyBxtdXAZul20Ig9TNmON3zBEKf1GRS7gupf lUT5+6SGyGwKyJo3souTkUVzJmw8gjU2S6Ru6wrPJJBTfaDewZAM9ribFOh72eAl VyueNKxI3Bj0nxwZJpsY75c4TPC4Ph5uAs9zE/EFSMepLerT9cEieWMaA6BU2UXH zs+bUSwy1kykIY2SD37ccJmnuwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCYxpvFu 5lQDSve75i04+vSHbDTNMB8GA1UdIwQYMBaAFMxEtnvRj0X24Tet5HMTNaVRpmEn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTIzQS9FNzVCODc4QzRD REQxMUYwQkZBMDhGODBDNEY5QUUwMi96RVMyZTlHUFJmYmhONjNrY3hNMXBWR21Z U2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pFUzJlOUdQUmZiaE42M2tjeE0xcFZHbVlTYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTIzQS9FNzVCODc4QzRDREQxMUYwQkZBMDhGODBDNEY5QUUwMi96RVMyZTlHUFJm YmhONjNrY3hNMXBWR21ZU2MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAOCP5lYaSaWn9baT9W2qD0vr2ClaG0NNpWw3ff+f/eFEf3YCUBuFhc3TTnZ9V 5LlZJq+fzF1vSH7AAJAiEjegMc9fjqnHrT6SmfN1wtq4y2KP3sMGPZYjghhJIOOQ b4DSq2k7rsegwSM68y8tfo0J55hOZVGu+Vbo8A5gWZySdrs7pa5h10/9SZorYBr/ mAjGoMNw2dcjA5cScok2j8NmTBg1+MMC/9S+NljdbMFjjNiGn99ppTMeg/PG7IPx 0EZIRlziYOl8JUQRCYmUBj6SWZiLSXIj9A75HPJF/WGqQPMnor2+yc77btkx2QCs k8Y9fISDqTe9Pw3TUt+cmpoqbQ== -----END CERTIFICATE-----Generated at Thu May 21 09:36:16 2026 by rpki-client