$ rpki-client -vvf rpki.apnic.net/member_repository/A91951DE/904F870A60B411F08ED7AE63C4F9AE02/ZH5crcsfv367iZpyGcOg8D0_ew0.mft File: ZH5crcsfv367iZpyGcOg8D0_ew0.mft (raw, json) Hash identifier: PL03rpxUUVdDuiGR9RHfuifp1ZVuUwDtk6+VobXQT8k= Subject key identifier: CA:00:3A:35:D2:52:BB:85:D6:F8:00:C7:DC:DE:E1:50:45:2E:C0:34 Authority key identifier: 64:7E:5C:AD:CB:1F:BF:7E:BB:89:9A:72:19:C3:A0:F0:3D:3F:7B:0D Certificate issuer: /CN=A91951DE/serialNumber=647E5CADCB1FBF7EBB899A7219C3A0F03D3F7B0D Certificate serial: AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZH5crcsfv367iZpyGcOg8D0_ew0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91951DE/904F870A60B411F08ED7AE63C4F9AE02/ZH5crcsfv367iZpyGcOg8D0_ew0.mft Manifest number: A3 Signing time: Thu 21 May 2026 07:24:23 +0000 Manifest this update: Thu 21 May 2026 07:24:23 +0000 Manifest next update: Thu 28 May 2026 07:24:23 +0000 Files and hashes: 1: ZH5crcsfv367iZpyGcOg8D0_ew0.crl (hash: rOdzT1LoWtZHGftaoAXnJ2McIxhImDXQbZ3qbYn1ewg=) 2: 533DC25E60B511F0AB567568C4F9AE02.roa (hash: 3eyoBtxWZnVo9d8QTWGg5n0zVCETmWq673Im+Ia8NGk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91951DE/904F870A60B411F08ED7AE63C4F9AE02/ZH5crcsfv367iZpyGcOg8D0_ew0.crl rsync://rpki.apnic.net/member_repository/A91951DE/904F870A60B411F08ED7AE63C4F9AE02/ZH5crcsfv367iZpyGcOg8D0_ew0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZH5crcsfv367iZpyGcOg8D0_ew0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 07:24:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 171 (0xab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91951DE, serialNumber=647E5CADCB1FBF7EBB899A7219C3A0F03D3F7B0D Validity Not Before: May 21 07:24:23 2026 GMT Not After : May 28 07:24:23 2026 GMT Subject: CN=6a0eb327-6fea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:37:ef:6b:b2:29:18:c8:66:27:c6:2e:72:e8: 75:18:b8:04:2e:b8:4c:6f:07:58:38:9e:8d:d2:f2: 39:ed:78:ae:fd:5d:0d:c7:51:c7:94:b9:d2:6a:ac: 75:c5:52:ef:6c:d8:bd:02:a8:9d:de:72:41:19:10: 4f:c9:68:0c:31:37:39:cb:c5:69:58:c0:80:96:59: a8:2c:55:f2:dd:17:36:f9:78:43:78:00:10:b7:5a: 21:92:5c:cf:5c:e7:d2:15:41:25:ef:15:bf:b1:a4: 2f:31:a9:38:fd:18:b6:07:5b:d8:2e:f6:fb:c5:cf: 85:71:76:96:33:96:01:09:80:c9:54:b5:36:bf:41: 30:3b:b8:b5:d1:35:66:52:af:94:c4:ee:cd:72:17: 49:d4:60:a0:99:2d:51:6e:de:0e:aa:81:50:60:5a: 57:80:7d:ec:88:bb:be:c6:a5:65:00:c0:ca:6f:c5: 24:53:f0:bc:22:df:b3:d4:41:77:55:f5:4d:1e:6a: 9a:40:8f:4c:fc:ed:93:da:56:8d:a5:99:d8:59:da: 16:bf:e2:48:46:1c:73:0f:b9:c5:11:ca:92:46:59: 86:48:8a:8a:cc:c8:83:d7:c9:13:9e:75:27:ca:08: eb:a4:ae:02:ab:7f:9e:8a:62:d8:6a:8d:55:fc:18: 0f:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:00:3A:35:D2:52:BB:85:D6:F8:00:C7:DC:DE:E1:50:45:2E:C0:34 X509v3 Authority Key Identifier: keyid:64:7E:5C:AD:CB:1F:BF:7E:BB:89:9A:72:19:C3:A0:F0:3D:3F:7B:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91951DE/904F870A60B411F08ED7AE63C4F9AE02/ZH5crcsfv367iZpyGcOg8D0_ew0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZH5crcsfv367iZpyGcOg8D0_ew0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91951DE/904F870A60B411F08ED7AE63C4F9AE02/ZH5crcsfv367iZpyGcOg8D0_ew0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:e9:2a:0d:82:a6:2f:2c:a1:da:3d:cf:97:06:85:eb:41:ff: 32:fa:7c:8a:1d:24:10:1c:77:40:9d:cc:44:46:d3:90:0a:95: 57:ab:6a:14:54:12:31:2c:8b:96:fb:c6:35:79:33:4a:be:66: 83:9b:d1:08:68:c7:dc:29:5a:08:dd:b3:2c:74:26:53:75:08: 59:5c:1d:d2:e8:65:5b:58:18:2c:c3:69:18:81:da:54:8c:9c: c9:58:a8:ec:06:6b:14:11:7f:56:be:84:bd:c6:f1:00:df:1c: ec:22:2e:7f:3d:0a:4d:aa:16:b4:7b:ba:b9:55:c9:fe:ba:1e: db:0b:29:18:7a:9d:e7:53:2c:63:a3:01:97:e5:b1:aa:fb:a7: c3:d2:3d:a4:29:48:37:8b:17:f6:14:9a:b9:a6:e3:41:bb:56: 15:2b:87:95:c4:6d:1a:b4:f2:56:fe:e0:bf:13:3b:5b:b5:2a: d6:57:3f:6c:5d:6b:01:9b:f0:c1:a0:27:d2:f1:1e:05:b5:3d: a8:4d:04:57:8d:37:41:ba:d5:db:d5:de:6b:b2:5b:2e:ae:ae: ec:b2:7a:bd:12:aa:01:85:f5:6d:f6:b0:74:d4:31:88:c4:6a: b1:4d:49:1b:53:8a:50:18:1f:87:66:6c:df:71:53:d0:fd:c7: 26:a2:9c:8b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAKswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTUxREUxMTAvBgNVBAUTKDY0N0U1Q0FEQ0IxRkJGN0VCQjg5OUE3MjE5QzNBMEYw M0QzRjdCMEQwHhcNMjYwNTIxMDcyNDIzWhcNMjYwNTI4MDcyNDIzWjAYMRYwFAYD VQQDEw02YTBlYjMyNy02ZmVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqjfva7IpGMhmJ8Yucuh1GLgELrhMbwdYOJ6N0vI57Xiu/V0Nx1HHlLnSaqx1 xVLvbNi9Aqid3nJBGRBPyWgMMTc5y8VpWMCAllmoLFXy3Rc2+XhDeAAQt1ohklzP XOfSFUEl7xW/saQvMak4/Ri2B1vYLvb7xc+FcXaWM5YBCYDJVLU2v0EwO7i10TVm Uq+UxO7NchdJ1GCgmS1Rbt4OqoFQYFpXgH3siLu+xqVlAMDKb8UkU/C8It+z1EF3 VfVNHmqaQI9M/O2T2laNpZnYWdoWv+JIRhxzD7nFEcqSRlmGSIqKzMiD18kTnnUn ygjrpK4Cq3+eimLYao1V/BgPlQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMoAOjXS UruF1vgAx9ze4VBFLsA0MB8GA1UdIwQYMBaAFGR+XK3LH79+u4machnDoPA9P3sN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NTFERS85MDRGODcwQTYw QjQxMUYwOEVEN0FFNjNDNEY5QUUwMi9aSDVjcmNzZnYzNjdpWnB5R2NPZzhEMF9l dzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pINWNyY3NmdjM2N2lacHlHY09nOEQwX2V3MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NTFERS85MDRGODcwQTYwQjQxMUYwOEVEN0FFNjNDNEY5QUUwMi9aSDVjcmNzZnYz NjdpWnB5R2NPZzhEMF9ldzAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAgukqDYKmLyyh2j3PlwaF60H/Mvp8ih0kEBx3QJ3MREbTkAqVV6tqFFQSMSyL lvvGNXkzSr5mg5vRCGjH3ClaCN2zLHQmU3UIWVwd0uhlW1gYLMNpGIHaVIycyVio 7AZrFBF/Vr6EvcbxAN8c7CIufz0KTaoWtHu6uVXJ/roe2wspGHqd51MsY6MBl+Wx qvunw9I9pClIN4sX9hSauabjQbtWFSuHlcRtGrTyVv7gvxM7W7Uq1lc/bF1rAZvw waAn0vEeBbU9qE0EV403QbrV29Xea7JbLq6u7LJ6vRKqAYX1bfawdNQxiMRqsU1J G1OKUBgfh2Zs33FT0P3HJqKciw== -----END CERTIFICATE-----Generated at Thu May 21 10:54:06 2026 by rpki-client