$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4517/406F904C6AE611E491914687C4F9AE02/Z187oflqnh7CsBN2YsdU2x0eAHM.mft File: Z187oflqnh7CsBN2YsdU2x0eAHM.mft (raw, json) Hash identifier: glriQerDf9QnNGwZKN2p5MKWTG+i9mluPVIQeX1zUvs= Subject key identifier: B8:EE:65:61:BE:5B:B4:1C:3F:FC:E7:B5:7A:13:28:10:D9:48:C2:F6 Authority key identifier: 67:5F:3B:A1:F9:6A:9E:1E:C2:B0:13:76:62:C7:54:DB:1D:1E:00:73 Certificate issuer: /CN=A91A4517/serialNumber=675F3BA1F96A9E1EC2B0137662C754DB1D1E0073 Certificate serial: 29D3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z187oflqnh7CsBN2YsdU2x0eAHM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4517/406F904C6AE611E491914687C4F9AE02/Z187oflqnh7CsBN2YsdU2x0eAHM.mft Manifest number: 29AE Signing time: Wed 20 May 2026 15:35:34 +0000 Manifest this update: Wed 20 May 2026 15:35:34 +0000 Manifest next update: Wed 27 May 2026 15:35:34 +0000 Files and hashes: 1: Z187oflqnh7CsBN2YsdU2x0eAHM.crl (hash: 3xNwpBVQMpgIgA+zIW7EHnEems0mHwseQZA6P+P3Bks=) 2: F4246CDA561811E98A165872C4F9AE02.roa (hash: 2dvRnm4pfzjCtWstN3B5/ymv7Hda5U6DYqNjAuMZVLY=) 3: 58292E96774111F0A079543BC4F9AE02.roa (hash: +OItqlvFi/OJz28aPTkH59gdOncbNOxJz2Bk3pv0y/8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4517/406F904C6AE611E491914687C4F9AE02/Z187oflqnh7CsBN2YsdU2x0eAHM.crl rsync://rpki.apnic.net/member_repository/A91A4517/406F904C6AE611E491914687C4F9AE02/Z187oflqnh7CsBN2YsdU2x0eAHM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z187oflqnh7CsBN2YsdU2x0eAHM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 15:35:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10707 (0x29d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4517, serialNumber=675F3BA1F96A9E1EC2B0137662C754DB1D1E0073 Validity Not Before: May 20 15:35:34 2026 GMT Not After : May 27 15:35:34 2026 GMT Subject: CN=6a0dd4c6-0c20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:d9:b9:05:0a:e0:37:a3:01:e3:56:d5:6d:2c: 5a:63:a0:b5:11:fa:43:8c:99:23:99:1b:ae:b3:7e: d9:8b:22:9a:88:45:ee:6c:78:fe:08:57:7c:9d:f5: 74:53:9f:7d:da:d5:35:d5:e9:96:59:d2:1d:56:d8: 4d:41:4f:21:9b:60:b3:0e:1a:24:67:9e:3a:12:d4: 58:03:2a:e7:27:a7:83:b2:b1:20:7d:43:91:7c:e5: da:65:5d:a3:87:b9:a7:f7:5c:a7:39:6f:ce:cb:dd: bd:bb:89:45:50:7b:5f:ef:82:c3:94:26:cc:a8:61: 9a:ae:fe:65:c4:8f:39:8b:24:f3:0a:18:17:86:48: 7e:e4:34:e3:c2:2c:19:09:ec:99:de:66:91:1f:6c: 1a:95:b4:15:bf:ee:c7:79:8c:5b:e0:6d:7b:e0:bb: 5f:1b:92:71:e6:c8:00:48:42:04:d2:69:d9:39:fe: bf:43:23:f2:2b:8c:47:74:5c:8f:45:75:4a:9e:4e: 44:da:ec:2d:07:9d:c0:43:22:ce:e1:ed:6d:50:f2: b3:ae:c9:5c:92:49:c0:38:b2:4c:35:1d:5d:a2:83: 5d:19:71:23:4e:f3:a8:a8:30:56:3f:95:6d:57:b7: d9:dc:c3:e8:ca:7a:5c:dd:e5:c8:b2:e5:15:6e:e3: 98:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:EE:65:61:BE:5B:B4:1C:3F:FC:E7:B5:7A:13:28:10:D9:48:C2:F6 X509v3 Authority Key Identifier: keyid:67:5F:3B:A1:F9:6A:9E:1E:C2:B0:13:76:62:C7:54:DB:1D:1E:00:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4517/406F904C6AE611E491914687C4F9AE02/Z187oflqnh7CsBN2YsdU2x0eAHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z187oflqnh7CsBN2YsdU2x0eAHM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4517/406F904C6AE611E491914687C4F9AE02/Z187oflqnh7CsBN2YsdU2x0eAHM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bb:fa:6a:7a:bf:cc:5b:82:d6:be:fc:81:d4:17:da:5c:94:da: a7:75:d9:67:48:f2:9f:cc:a9:ab:2d:6e:52:4b:e0:a1:51:2d: 09:f1:75:66:55:ab:b5:d7:fd:4c:76:1a:7c:fe:e2:bf:0d:ff: ee:e3:23:8c:73:3d:55:30:e2:cc:ec:4b:d9:ea:6c:06:1b:08: e9:98:28:12:c7:f3:9c:7d:01:fc:f0:d8:10:ac:cb:1f:96:a8: 6c:14:a2:84:d1:76:bb:68:5b:7d:a8:1b:bd:64:9d:80:d7:1b: 8d:bf:d4:7b:22:ab:41:75:95:07:22:a0:25:f3:da:3a:42:0c: f2:e6:8a:27:08:0f:1e:e8:95:f4:05:08:ad:bc:2a:4a:c9:70: b5:2e:ee:6d:14:2f:ef:94:fc:e0:4a:01:56:31:ac:1c:0c:b7: 46:29:84:cd:35:02:90:68:d7:4c:cd:11:23:84:02:3f:f0:9f: 79:43:10:91:05:69:4c:07:aa:46:ee:dc:7b:71:8e:25:ce:70: 27:7c:79:85:ec:15:33:bd:d7:6f:1b:7c:92:e5:ec:b5:fa:2b: e9:96:d6:ff:bd:19:2c:ee:8a:32:bd:dc:62:f3:ea:67:1c:12: b3:15:c4:f9:ef:66:69:48:c9:5c:49:cb:c2:7d:15:08:3c:a6: 42:e5:83:0a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICKdMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ1MTcxMTAvBgNVBAUTKDY3NUYzQkExRjk2QTlFMUVDMkIwMTM3NjYyQzc1NERC MUQxRTAwNzMwHhcNMjYwNTIwMTUzNTM0WhcNMjYwNTI3MTUzNTM0WjAYMRYwFAYD VQQDEw02YTBkZDRjNi0wYzIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy9m5BQrgN6MB41bVbSxaY6C1EfpDjJkjmRuus37ZiyKaiEXubHj+CFd8nfV0 U5992tU11emWWdIdVthNQU8hm2CzDhokZ546EtRYAyrnJ6eDsrEgfUORfOXaZV2j h7mn91ynOW/Oy929u4lFUHtf74LDlCbMqGGarv5lxI85iyTzChgXhkh+5DTjwiwZ CeyZ3maRH2walbQVv+7HeYxb4G174LtfG5Jx5sgASEIE0mnZOf6/QyPyK4xHdFyP RXVKnk5E2uwtB53AQyLO4e1tUPKzrslckknAOLJMNR1dooNdGXEjTvOoqDBWP5Vt V7fZ3MPoynpc3eXIsuUVbuOY5QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLjuZWG+ W7QcP/zntXoTKBDZSML2MB8GA1UdIwQYMBaAFGdfO6H5ap4ewrATdmLHVNsdHgBz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDUxNy80MDZGOTA0QzZB RTYxMUU0OTE5MTQ2ODdDNEY5QUUwMi9aMTg3b2ZscW5oN0NzQk4yWXNkVTJ4MGVB SE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1oxODdvZmxxbmg3Q3NCTjJZc2RVMngwZUFITS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDUxNy80MDZGOTA0QzZBRTYxMUU0OTE5MTQ2ODdDNEY5QUUwMi9aMTg3b2ZscW5o N0NzQk4yWXNkVTJ4MGVBSE0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAu/pqer/MW4LWvvyB1BfaXJTap3XZZ0jyn8ypqy1uUkvgoVEtCfF1ZlWrtdf9 THYafP7ivw3/7uMjjHM9VTDizOxL2epsBhsI6ZgoEsfznH0B/PDYEKzLH5aobBSi hNF2u2hbfagbvWSdgNcbjb/UeyKrQXWVByKgJfPaOkIM8uaKJwgPHuiV9AUIrbwq SslwtS7ubRQv75T84EoBVjGsHAy3RimEzTUCkGjXTM0RI4QCP/CfeUMQkQVpTAeq Ru7ce3GOJc5wJ3x5hewVM73Xbxt8kuXstfor6ZbW/70ZLO6KMr3cYvPqZxwSsxXE +e9maUjJXEnLwn0VCDymQuWDCg== -----END CERTIFICATE-----Generated at Thu May 21 17:48:52 2026 by rpki-client