$ rpki-client -vvf rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.mft File: ZUCRhgKOxUzUW1g0_77K9LePGcI.mft (raw, json) Hash identifier: 0iyKlbnyC3T+hSZ3L22TKJo6gOlK0+7+vVoQO8v/aUY= Subject key identifier: B7:3D:83:D9:98:DD:B7:60:5D:64:78:7C:8F:01:BB:95:AB:8F:00:4B Authority key identifier: 65:40:91:86:02:8E:C5:4C:D4:5B:58:34:FF:BE:CA:F4:B7:8F:19:C2 Certificate issuer: /CN=A917BBF1/serialNumber=65409186028EC54CD45B5834FFBECAF4B78F19C2 Certificate serial: 0D27 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZUCRhgKOxUzUW1g0_77K9LePGcI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.mft Manifest number: 0CFF Signing time: Wed 10 Jun 2026 18:22:10 +0000 Manifest this update: Wed 10 Jun 2026 18:22:09 +0000 Manifest next update: Wed 17 Jun 2026 18:22:09 +0000 Files and hashes: 1: ZUCRhgKOxUzUW1g0_77K9LePGcI.crl (hash: p5CyKlL+TwUAgGBG/kmGCc/7SMvtsvNC01PQv+2+wGY=) 2: FF4F13D4448711ECA80CFC34C4F9AE02.roa (hash: lDq/RoR1gtpy/cAfk0IFee9KhUVF1t6WS4LHb4U+atA=) 3: 3EED102CC53011F0ADCB012EC4F9AE02.roa (hash: LxKNHe3GpfHVZCaXnBap/M64zNmMtKYhFB34n7ePJpg=) 4: 1B54858065B711EE93D6ED6DC4F9AE02.roa (hash: RJJ5TtxisaxrsdKJrxokk1MUJk/sClMJ57OXkPbYyvk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.crl rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZUCRhgKOxUzUW1g0_77K9LePGcI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 18:22:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3367 (0xd27) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917BBF1, serialNumber=65409186028EC54CD45B5834FFBECAF4B78F19C2 Validity Not Before: Jun 10 18:22:09 2026 GMT Not After : Jun 17 18:22:09 2026 GMT Subject: CN=6a29ab52-176b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:e6:e0:d5:fc:ba:e8:57:26:c4:f6:66:21:6c: 1b:25:38:94:2b:4d:7e:ee:a9:3f:25:4b:26:04:8b: 65:91:58:15:5b:13:03:6a:fd:e8:ef:d6:41:cf:ab: 69:5b:c5:95:a3:6b:48:e5:6e:1c:9a:b5:1e:20:f6: 13:a1:2e:74:10:aa:65:45:d5:28:da:5a:6e:70:1c: e4:28:9d:f3:7a:bf:2a:78:de:ee:78:80:f9:cd:78: d6:e9:d4:62:06:a8:90:98:cc:ae:3f:b7:34:66:74: 78:fd:3a:b9:22:7b:4a:2e:63:50:ed:61:00:77:42: 01:7d:a7:19:00:f4:04:c8:03:ee:bd:05:08:60:5e: 56:52:b9:fd:19:f0:cc:36:3c:62:a3:0e:33:44:fb: 19:62:72:36:df:44:f7:52:f3:1f:5b:ed:a4:19:8f: d8:fa:bd:99:b2:db:cb:10:6d:8e:93:b3:83:4e:6c: 82:dd:9e:ae:9d:b1:71:cf:ba:b4:de:70:9b:d3:18: 24:09:5f:a2:9c:70:8e:52:45:d7:6a:9a:08:84:01: 1f:9d:a4:2c:c2:b2:af:30:14:35:04:90:96:aa:02: d3:26:12:63:57:4d:ad:74:ae:1c:52:5e:bf:7e:53: 7d:cd:65:48:d3:a7:28:2d:fc:cd:94:55:e6:19:4e: 28:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:3D:83:D9:98:DD:B7:60:5D:64:78:7C:8F:01:BB:95:AB:8F:00:4B X509v3 Authority Key Identifier: keyid:65:40:91:86:02:8E:C5:4C:D4:5B:58:34:FF:BE:CA:F4:B7:8F:19:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZUCRhgKOxUzUW1g0_77K9LePGcI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:26:65:bd:43:95:af:f3:cf:dd:22:58:5c:10:96:b6:87:89: e9:41:e9:2d:37:1a:dd:a3:37:2e:15:21:49:82:e2:8d:b8:f4: e0:6d:42:f6:53:6e:88:8a:9d:bb:0b:4a:2b:f4:e9:94:fd:d9: 27:a7:51:6b:d3:1d:e3:dd:03:52:3e:8c:46:bf:52:89:0e:5a: 54:18:fc:f6:5d:f8:6d:91:19:65:dc:96:b4:39:af:85:6a:40: 0e:6e:11:e7:fb:c2:9a:45:7a:3b:65:67:78:55:48:52:a3:29: 11:01:0a:90:7b:e0:f7:88:fd:48:12:6c:ce:7b:0d:59:62:58: b8:89:73:5f:a5:7c:d3:f4:07:33:00:bb:24:c9:d3:2e:40:c3: 08:0e:bc:66:99:15:51:be:e0:a9:2d:35:d5:dc:7f:64:e9:02: 92:33:d3:92:58:36:85:a5:34:50:4a:16:d8:9a:09:38:8b:05: 10:40:e5:55:88:ec:b1:6f:fd:5a:e5:75:02:30:29:49:b2:64: 45:55:44:7f:ca:a1:ee:0c:2d:a5:b0:11:e7:a2:41:5c:97:05: 67:b7:14:3e:d2:cb:48:9f:23:5e:ef:25:a0:36:9a:ea:0b:90: 2f:8b:a9:65:d3:67:0b:de:03:0a:61:95:3a:8d:b2:42:61:70: 23:19:55:41 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDScwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0JCRjExMTAvBgNVBAUTKDY1NDA5MTg2MDI4RUM1NENENDVCNTgzNEZGQkVDQUY0 Qjc4RjE5QzIwHhcNMjYwNjEwMTgyMjA5WhcNMjYwNjE3MTgyMjA5WjAYMRYwFAYD VQQDEw02YTI5YWI1Mi0xNzZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuObg1fy66FcmxPZmIWwbJTiUK01+7qk/JUsmBItlkVgVWxMDav3o79ZBz6tp W8WVo2tI5W4cmrUeIPYToS50EKplRdUo2lpucBzkKJ3zer8qeN7ueID5zXjW6dRi BqiQmMyuP7c0ZnR4/Tq5IntKLmNQ7WEAd0IBfacZAPQEyAPuvQUIYF5WUrn9GfDM Njxiow4zRPsZYnI230T3UvMfW+2kGY/Y+r2ZstvLEG2Ok7ODTmyC3Z6unbFxz7q0 3nCb0xgkCV+inHCOUkXXapoIhAEfnaQswrKvMBQ1BJCWqgLTJhJjV02tdK4cUl6/ flN9zWVI06coLfzNlFXmGU4omQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLc9g9mY 3bdgXWR4fI8Bu5WrjwBLMB8GA1UdIwQYMBaAFGVAkYYCjsVM1FtYNP++yvS3jxnC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QkJGMS8yNDVEQzVDQTBB RjcxMUVBQTg1QTVEMUFDNEY5QUUwMi9aVUNSaGdLT3hVelVXMWcwXzc3SzlMZVBH Y0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pVQ1JoZ0tPeFV6VVcxZzBfNzdLOUxlUEdjSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QkJGMS8yNDVEQzVDQTBBRjcxMUVBQTg1QTVEMUFDNEY5QUUwMi9aVUNSaGdLT3hV elVXMWcwXzc3SzlMZVBHY0kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEALyZlvUOVr/PP3SJYXBCWtoeJ6UHpLTca3aM3LhUhSYLijbj04G1C9lNuiIqd uwtKK/TplP3ZJ6dRa9Md490DUj6MRr9SiQ5aVBj89l34bZEZZdyWtDmvhWpADm4R 5/vCmkV6O2VneFVIUqMpEQEKkHvg94j9SBJsznsNWWJYuIlzX6V80/QHMwC7JMnT LkDDCA68ZpkVUb7gqS011dx/ZOkCkjPTklg2haU0UEoW2JoJOIsFEEDlVYjssW/9 WuV1AjApSbJkRVVEf8qh7gwtpbAR56JBXJcFZ7cUPtLLSJ8jXu8loDaa6guQL4up ZdNnC94DCmGVOo2yQmFwIxlVQQ== -----END CERTIFICATE-----Generated at Fri Jun 12 19:15:16 2026 by rpki-client