$ rpki-client -vvf rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.mft File: zWXmdAuufrM71eU4ye5t6LM1RDE.mft (raw, json) Hash identifier: sA0LBXIqtEAQnVhOfsKq6mlTNPZsd/9tDUs53dumFpE= Subject key identifier: 3A:6E:84:85:35:2E:02:9F:BC:C3:0A:76:C5:24:42:33:96:AE:87:26 Authority key identifier: CD:65:E6:74:0B:AE:7E:B3:3B:D5:E5:38:C9:EE:6D:E8:B3:35:44:31 Certificate issuer: /CN=A916FA49/serialNumber=CD65E6740BAE7EB33BD5E538C9EE6DE8B3354431 Certificate serial: 01EE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zWXmdAuufrM71eU4ye5t6LM1RDE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.mft Manifest number: 01E5 Signing time: Tue 02 Jun 2026 16:46:05 +0000 Manifest this update: Tue 02 Jun 2026 16:46:05 +0000 Manifest next update: Tue 09 Jun 2026 16:46:05 +0000 Files and hashes: 1: zWXmdAuufrM71eU4ye5t6LM1RDE.crl (hash: +90tRsYWzNbH7NL4Jm746RzHLzBX5oP9BlVs6msRR/A=) 2: 74F996F62F2511EF8D78DC62C4F9AE02.roa (hash: sPimiMMVQ8HhWMH3h4YYvgrI9mvp3guGNNGoHKdWxG8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.crl rsync://rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zWXmdAuufrM71eU4ye5t6LM1RDE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Jun 2026 15:18:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 494 (0x1ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916FA49, serialNumber=CD65E6740BAE7EB33BD5E538C9EE6DE8B3354431 Validity Not Before: Jun 2 16:46:05 2026 GMT Not After : Jun 9 16:46:05 2026 GMT Subject: CN=6a1f08cd-c551 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:dd:55:64:aa:0a:dd:8c:9e:43:e8:a5:86:52: e6:ee:a5:2e:8f:4f:a2:ba:aa:7b:55:d3:74:a7:e3: f6:45:ae:9e:69:1e:e7:bc:c5:37:3a:50:e9:73:74: 88:11:b0:51:d3:61:99:db:ca:46:03:e7:f9:d7:3b: 50:23:ae:60:c7:61:26:1e:17:e9:09:64:a0:9f:e3: 5f:da:32:7e:cd:9f:5f:5a:68:90:a9:ac:e6:ff:32: 01:95:b3:30:50:c0:68:b5:cc:5c:84:91:4f:e0:2b: 5a:c7:c0:ba:60:f6:0d:da:44:04:a2:d5:71:3b:f7: 2e:0b:87:0c:5d:47:a6:ab:42:29:aa:56:1e:1c:ef: ac:32:5f:32:d2:2f:ff:ec:8a:70:7e:12:ab:0c:04: 65:c7:b6:84:5c:e9:3c:19:6b:08:b5:c5:fb:c0:41: 5c:15:da:49:01:e7:86:36:9a:0b:ee:1b:ec:31:36: c3:f1:d5:9c:4a:7f:c9:38:4f:51:4b:99:b1:b4:12: 73:9a:ab:2a:88:6d:d9:a2:79:7b:48:84:ec:c0:dc: 01:92:21:e8:6b:c6:e0:ed:21:c4:16:4d:fa:cd:fe: a9:cc:4d:42:ce:a4:b3:92:12:98:6a:76:72:dc:10: b0:d5:5e:6f:52:0f:95:89:4f:0e:da:65:3a:03:32: c1:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:6E:84:85:35:2E:02:9F:BC:C3:0A:76:C5:24:42:33:96:AE:87:26 X509v3 Authority Key Identifier: keyid:CD:65:E6:74:0B:AE:7E:B3:3B:D5:E5:38:C9:EE:6D:E8:B3:35:44:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zWXmdAuufrM71eU4ye5t6LM1RDE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:bf:a3:b1:76:47:92:35:11:ef:de:99:4c:85:63:ee:68:5d: 29:40:a7:cc:0d:4b:30:63:5a:59:67:d3:e7:13:ee:45:aa:47: a1:ed:87:3d:92:bd:b6:6d:99:1b:52:5d:4b:e6:11:8d:38:ab: 78:26:b0:75:ae:5d:a7:ac:0a:e2:2d:06:b4:7f:c3:ce:f2:5f: 49:b8:7c:76:26:2f:ef:ee:85:c5:e4:a2:8b:48:b5:c2:63:e1: 36:5b:5f:e7:6b:4e:5e:ab:1d:51:e3:79:8d:d2:80:9f:e2:5e: 36:a6:5b:58:13:ab:98:5f:c1:88:99:7b:3c:22:00:7d:4a:49: b4:c6:0f:df:7b:ec:31:de:72:9d:85:19:81:52:f0:86:28:43: db:b7:43:68:98:4a:78:9d:d8:0d:24:5e:9b:5a:29:32:d4:22: d0:1c:02:2b:da:9f:a7:1a:13:57:87:e7:ca:14:5b:7f:4f:d6: e8:cd:af:ea:2e:60:f5:70:c5:83:0e:d1:9a:17:6a:dc:7d:18: aa:ab:01:ba:28:31:69:11:7e:a1:b8:32:fb:4b:23:f8:4d:82: 38:89:a5:a0:7d:f4:83:bd:52:d5:88:a1:7f:35:99:1d:1c:38: 6a:c8:3b:a0:d8:67:db:79:6a:51:f2:90:b8:35:e0:5c:6e:58: 7f:c1:8b:00 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAe4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkZBNDkxMTAvBgNVBAUTKENENjVFNjc0MEJBRTdFQjMzQkQ1RTUzOEM5RUU2REU4 QjMzNTQ0MzEwHhcNMjYwNjAyMTY0NjA1WhcNMjYwNjA5MTY0NjA1WjAYMRYwFAYD VQQDEw02YTFmMDhjZC1jNTUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp91VZKoK3YyeQ+ilhlLm7qUuj0+iuqp7VdN0p+P2Ra6eaR7nvMU3OlDpc3SI EbBR02GZ28pGA+f51ztQI65gx2EmHhfpCWSgn+Nf2jJ+zZ9fWmiQqazm/zIBlbMw UMBotcxchJFP4Ctax8C6YPYN2kQEotVxO/cuC4cMXUemq0IpqlYeHO+sMl8y0i// 7IpwfhKrDARlx7aEXOk8GWsItcX7wEFcFdpJAeeGNpoL7hvsMTbD8dWcSn/JOE9R S5mxtBJzmqsqiG3Zonl7SITswNwBkiHoa8bg7SHEFk36zf6pzE1CzqSzkhKYanZy 3BCw1V5vUg+ViU8O2mU6AzLBlwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDpuhIU1 LgKfvMMKdsUkQjOWrocmMB8GA1UdIwQYMBaAFM1l5nQLrn6zO9XlOMnubeizNUQx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RkE0OS9BNEMwQ0E5Njkw MDkxMUVFOUU1NEEwMzNDNEY5QUUwMi96V1htZEF1dWZyTTcxZVU0eWU1dDZMTTFS REUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3pXWG1kQXV1ZnJNNzFlVTR5ZTV0NkxNMVJERS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RkE0OS9BNEMwQ0E5NjkwMDkxMUVFOUU1NEEwMzNDNEY5QUUwMi96V1htZEF1dWZy TTcxZVU0eWU1dDZMTTFSREUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAE7+jsXZHkjUR796ZTIVj7mhdKUCnzA1LMGNaWWfT5xPuRapHoe2HPZK9tm2Z G1JdS+YRjTireCawda5dp6wK4i0GtH/DzvJfSbh8diYv7+6FxeSii0i1wmPhNltf 52tOXqsdUeN5jdKAn+JeNqZbWBOrmF/BiJl7PCIAfUpJtMYP33vsMd5ynYUZgVLw hihD27dDaJhKeJ3YDSRem1opMtQi0BwCK9qfpxoTV4fnyhRbf0/W6M2v6i5g9XDF gw7Rmhdq3H0YqqsBuigxaRF+obgy+0sj+E2COImloH30g71S1YihfzWZHRw4asg7 oNhn23lqUfKQuDXgXG5Yf8GLAA== -----END CERTIFICATE-----Generated at Tue Jun 2 21:41:34 2026 by rpki-client