$ rpki-client -vvf rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.mft File: z8CATaxP_3oipAThDphkpxHeGck.mft (raw, json) Hash identifier: QIECbt/6oHVCzms89m5ucYKEhcovh9BRGcpUB0JYSv4= Subject key identifier: AB:2F:B7:AB:2D:0F:DF:52:32:BE:CD:D5:8F:3E:BE:27:FC:A1:AB:26 Authority key identifier: CF:C0:80:4D:AC:4F:FF:7A:22:A4:04:E1:0E:98:64:A7:11:DE:19:C9 Certificate issuer: /CN=A91A12C4/serialNumber=CFC0804DAC4FFF7A22A404E10E9864A711DE19C9 Certificate serial: 014F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z8CATaxP_3oipAThDphkpxHeGck.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.mft Manifest number: 0147 Signing time: Mon 01 Jun 2026 06:01:49 +0000 Manifest this update: Mon 01 Jun 2026 06:01:48 +0000 Manifest next update: Mon 08 Jun 2026 06:01:48 +0000 Files and hashes: 1: z8CATaxP_3oipAThDphkpxHeGck.crl (hash: Z78p+/g9EUPcmyNZ3rkdiD2LAMZxBFnRvFHtPciSIC0=) 2: BCA395126C1811EFAFBE6B0FC4F9AE02.roa (hash: YuQff5ZM6ktoeLhGQjtDQt4j9brqyCXl9qvUHGQ/W6c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.crl rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z8CATaxP_3oipAThDphkpxHeGck.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Jun 2026 06:01:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 335 (0x14f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A12C4, serialNumber=CFC0804DAC4FFF7A22A404E10E9864A711DE19C9 Validity Not Before: Jun 1 06:01:48 2026 GMT Not After : Jun 8 06:01:48 2026 GMT Subject: CN=6a1d204d-e78f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:df:32:31:3f:95:55:b4:e3:7c:72:73:7b:56: 1a:6e:04:22:05:83:6b:61:bc:bf:0b:78:09:d8:c6: 49:ab:e4:a3:f7:4e:10:c0:d4:d6:84:cf:fe:49:e1: bd:62:3c:a8:23:83:74:9b:8e:a3:2f:3d:a5:e8:5b: d8:92:60:53:f0:bf:2d:fa:39:57:51:14:24:48:8f: 27:72:4e:8c:82:90:0a:a8:a1:6f:4a:ed:09:16:4f: e1:37:10:7e:e2:7c:f2:e7:9d:31:19:df:48:93:8f: 05:b5:b6:fd:cc:80:53:07:ac:a2:c2:e9:9e:a2:d5: a2:f6:50:49:14:20:fb:f6:bc:0e:1e:46:67:98:15: bd:89:18:0f:29:53:e8:fa:c8:74:6a:a2:08:b8:ae: 74:98:cb:21:cb:a7:3a:e6:10:c5:77:05:cb:49:19: 63:72:23:64:b6:9c:13:76:23:b2:a2:cf:b4:f9:83: 64:4b:0e:2d:e7:26:3d:36:0a:32:e8:30:f9:15:e8: fb:51:71:d6:3f:d9:99:df:01:17:f1:50:c2:60:02: 32:76:f1:19:45:04:4f:3c:cb:09:c5:1e:ce:14:ec: 46:5b:b8:a5:81:52:db:bc:7e:5d:21:76:48:74:b9: 18:04:0f:8c:27:46:54:92:97:d7:c3:66:73:b9:c2: 76:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:2F:B7:AB:2D:0F:DF:52:32:BE:CD:D5:8F:3E:BE:27:FC:A1:AB:26 X509v3 Authority Key Identifier: keyid:CF:C0:80:4D:AC:4F:FF:7A:22:A4:04:E1:0E:98:64:A7:11:DE:19:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z8CATaxP_3oipAThDphkpxHeGck.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:a5:b1:06:a2:a3:89:a6:35:25:c3:db:99:96:f4:42:7f:17: 1b:01:ab:65:01:d3:60:25:c6:9b:7b:5b:06:3a:5f:4f:dc:f8: ff:fc:e1:0f:33:6e:e4:80:97:55:29:2b:e2:6d:09:8c:63:77: 91:e7:55:8b:df:50:2d:59:0f:b0:3a:9e:77:c5:24:54:9c:a5: 83:b6:22:b7:46:41:ee:ac:18:18:71:77:ab:ae:c8:d7:eb:41: 36:9c:bd:ac:f1:d3:78:1f:4b:fc:cb:7c:c5:e0:a7:42:d2:da: e7:ad:aa:96:d5:5c:b5:46:63:a0:a4:59:dd:53:ba:d2:12:c7: 60:2d:e1:42:b3:10:d0:76:a8:91:a9:e5:a3:51:a6:36:51:32: d1:37:4b:14:bf:35:fb:94:0b:63:e5:6b:ca:45:67:42:6b:9d: 0e:4d:c5:c8:ee:32:85:a2:83:d6:f0:a6:55:e5:89:37:7f:42: d2:04:d0:a0:46:d2:f0:49:39:02:ad:9b:2f:04:75:b7:11:ba: 12:27:ac:a8:aa:94:3a:5a:db:37:db:75:0b:82:9e:18:67:33: 2c:22:c3:64:cc:b6:4d:3e:51:2b:80:76:6e:9b:31:1b:e9:38: 17:fb:12:7b:19:a4:43:26:b3:44:82:1b:4e:9c:cf:5a:77:67: ff:bc:0b:e7 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAU8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTEyQzQxMTAvBgNVBAUTKENGQzA4MDREQUM0RkZGN0EyMkE0MDRFMTBFOTg2NEE3 MTFERTE5QzkwHhcNMjYwNjAxMDYwMTQ4WhcNMjYwNjA4MDYwMTQ4WjAYMRYwFAYD VQQDEw02YTFkMjA0ZC1lNzhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAk98yMT+VVbTjfHJze1YabgQiBYNrYby/C3gJ2MZJq+Sj904QwNTWhM/+SeG9 YjyoI4N0m46jLz2l6FvYkmBT8L8t+jlXURQkSI8nck6MgpAKqKFvSu0JFk/hNxB+ 4nzy550xGd9Ik48Ftbb9zIBTB6yiwumeotWi9lBJFCD79rwOHkZnmBW9iRgPKVPo +sh0aqIIuK50mMshy6c65hDFdwXLSRljciNktpwTdiOyos+0+YNkSw4t5yY9Ngoy 6DD5Fej7UXHWP9mZ3wEX8VDCYAIydvEZRQRPPMsJxR7OFOxGW7ilgVLbvH5dIXZI dLkYBA+MJ0ZUkpfXw2ZzucJ2AQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKsvt6st D99SMr7N1Y8+vif8oasmMB8GA1UdIwQYMBaAFM/AgE2sT/96IqQE4Q6YZKcR3hnJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMTJDNC9GMzE5RURDMjZD MTcxMUVGQkRCRkQ1MEJDNEY5QUUwMi96OENBVGF4UF8zb2lwQVRoRHBoa3B4SGVH Y2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3o4Q0FUYXhQXzNvaXBBVGhEcGhrcHhIZUdjay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MTJDNC9GMzE5RURDMjZDMTcxMUVGQkRCRkQ1MEJDNEY5QUUwMi96OENBVGF4UF8z b2lwQVRoRHBoa3B4SGVHY2subWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEALaWxBqKjiaY1JcPbmZb0Qn8XGwGrZQHTYCXGm3tbBjpfT9z4//zhDzNu5ICX VSkr4m0JjGN3kedVi99QLVkPsDqed8UkVJylg7Yit0ZB7qwYGHF3q67I1+tBNpy9 rPHTeB9L/Mt8xeCnQtLa562qltVctUZjoKRZ3VO60hLHYC3hQrMQ0Haokanlo1Gm NlEy0TdLFL81+5QLY+VrykVnQmudDk3FyO4yhaKD1vCmVeWJN39C0gTQoEbS8Ek5 Aq2bLwR1txG6EiesqKqUOlrbN9t1C4KeGGczLCLDZMy2TT5RK4B2bpsxG+k4F/sS exmkQyazRIIbTpzPWndn/7wL5w== -----END CERTIFICATE-----Generated at Tue Jun 2 21:23:32 2026 by rpki-client