$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAE63/5E966394CA0911ED81B6F63CC4F9AE02/zHxfJ4CoDTxmayv2kVPyBIS-7nE.mft File: zHxfJ4CoDTxmayv2kVPyBIS-7nE.mft (raw, json) Hash identifier: T4Y161804qkm/DICYR2vTbAPtZQx+1otaYW4NMfkQWY= Subject key identifier: 10:8B:FC:C9:09:CB:F5:B5:DB:3E:E5:1D:21:79:6D:94:60:93:E0:13 Authority key identifier: CC:7C:5F:27:80:A8:0D:3C:66:6B:2B:F6:91:53:F2:04:84:BE:EE:71 Certificate issuer: /CN=A91AAE63/serialNumber=CC7C5F2780A80D3C666B2BF69153F20484BEEE71 Certificate serial: 025B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zHxfJ4CoDTxmayv2kVPyBIS-7nE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAE63/5E966394CA0911ED81B6F63CC4F9AE02/zHxfJ4CoDTxmayv2kVPyBIS-7nE.mft Manifest number: 0257 Signing time: Mon 01 Jun 2026 03:00:40 +0000 Manifest this update: Mon 01 Jun 2026 03:00:40 +0000 Manifest next update: Mon 08 Jun 2026 03:00:40 +0000 Files and hashes: 1: zHxfJ4CoDTxmayv2kVPyBIS-7nE.crl (hash: GrzfRtetWRi8Tu5XF3hlHm69cOLA5nVMQP1GnMnpBvw=) 2: 5DCF3814CA0E11ED9251861DC4F9AE02.roa (hash: jvV2Z+fiyEhetDjklhcAMgGtL3vvbGgKgdynXMsgt90=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAE63/5E966394CA0911ED81B6F63CC4F9AE02/zHxfJ4CoDTxmayv2kVPyBIS-7nE.crl rsync://rpki.apnic.net/member_repository/A91AAE63/5E966394CA0911ED81B6F63CC4F9AE02/zHxfJ4CoDTxmayv2kVPyBIS-7nE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zHxfJ4CoDTxmayv2kVPyBIS-7nE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Jun 2026 03:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 603 (0x25b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAE63, serialNumber=CC7C5F2780A80D3C666B2BF69153F20484BEEE71 Validity Not Before: Jun 1 03:00:40 2026 GMT Not After : Jun 8 03:00:40 2026 GMT Subject: CN=6a1cf5d8-daef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:94:32:d9:0b:df:06:ce:d0:f8:82:19:a9:c5: a9:a7:7e:42:24:a2:a5:1d:f3:3c:79:d7:46:bc:9c: cb:2a:81:3c:90:c2:af:f2:eb:f7:50:bb:56:0e:26: f8:6b:da:b6:2d:09:14:db:ae:5e:62:2b:c7:f8:94: 48:3b:3b:d3:b7:ca:25:32:c9:ea:4d:14:e6:09:d4: 66:ea:1d:c9:49:fb:fb:1a:a0:5b:78:2f:7c:fd:8b: 13:3d:40:14:26:8b:2c:14:e8:f6:da:08:5d:3c:98: e6:c8:ac:53:e3:fb:90:54:b0:11:71:5e:07:25:a1: 09:70:01:16:73:bd:a8:9a:4f:90:f8:a6:84:45:82: 26:24:fc:f1:b7:d1:e5:9f:b0:98:15:80:55:58:26: e6:7c:73:85:26:db:96:d4:b9:19:a2:98:4d:3a:d9: b8:c9:b4:38:2c:96:26:32:fe:f1:ec:10:02:44:29: b3:12:a7:14:27:93:9d:27:f6:4a:a4:c2:e6:66:77: 44:7d:bc:57:c1:f0:86:15:bf:31:ef:97:f4:30:bc: ca:5d:66:e5:e5:b8:ef:2f:9d:33:00:d4:a6:c5:35: 89:d6:da:6a:8d:e7:f3:35:17:94:07:89:e7:52:59: 84:be:e4:f4:58:44:bc:bf:1a:55:a9:da:2d:cb:c7: 43:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:8B:FC:C9:09:CB:F5:B5:DB:3E:E5:1D:21:79:6D:94:60:93:E0:13 X509v3 Authority Key Identifier: keyid:CC:7C:5F:27:80:A8:0D:3C:66:6B:2B:F6:91:53:F2:04:84:BE:EE:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAE63/5E966394CA0911ED81B6F63CC4F9AE02/zHxfJ4CoDTxmayv2kVPyBIS-7nE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zHxfJ4CoDTxmayv2kVPyBIS-7nE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAE63/5E966394CA0911ED81B6F63CC4F9AE02/zHxfJ4CoDTxmayv2kVPyBIS-7nE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:5e:62:e2:8d:77:42:20:a7:61:d6:11:1f:88:55:00:15:06: de:08:88:5b:2d:56:7f:1e:d5:e1:11:29:16:74:cb:70:e3:51: 32:b6:39:cb:d8:bb:13:81:f1:dc:5d:7f:34:3c:3d:ff:51:77: da:e7:5c:42:40:64:2a:bf:e4:36:a7:7d:82:d4:71:45:85:bd: 69:9c:6a:96:e3:78:f5:10:9b:d9:29:01:fc:e5:39:e1:c3:f1: a3:b0:63:f4:00:21:75:ef:a3:45:b3:f7:92:b0:65:62:ff:f7: d0:97:88:e0:00:05:91:a7:e0:5a:03:4d:ee:3d:f0:b9:66:72: 9b:8c:bf:80:b1:d0:e4:b7:03:be:c8:06:bb:ef:56:ac:05:9e: c6:6c:c9:3e:c6:bb:6b:54:cc:38:28:e4:b4:cf:55:93:6a:51: 1a:56:c7:1e:23:e3:e4:d5:c7:22:0b:53:a4:5b:2d:34:ff:e9: 12:37:0a:f1:86:57:f7:10:c2:c1:45:c7:e1:4e:bf:c0:79:02: 73:3d:75:42:45:38:05:c6:c7:d3:3e:3c:df:d0:92:bf:62:6c: e2:d3:eb:8f:19:6b:9f:34:e9:f0:d9:c3:46:c2:1f:54:63:cb: 2a:84:9f:e0:f0:00:25:41:52:06:e1:8d:62:a3:db:d2:fa:23: 0b:a7:30:6a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAlswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFFNjMxMTAvBgNVBAUTKENDN0M1RjI3ODBBODBEM0M2NjZCMkJGNjkxNTNGMjA0 ODRCRUVFNzEwHhcNMjYwNjAxMDMwMDQwWhcNMjYwNjA4MDMwMDQwWjAYMRYwFAYD VQQDEw02YTFjZjVkOC1kYWVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAi5Qy2QvfBs7Q+IIZqcWpp35CJKKlHfM8eddGvJzLKoE8kMKv8uv3ULtWDib4 a9q2LQkU265eYivH+JRIOzvTt8olMsnqTRTmCdRm6h3JSfv7GqBbeC98/YsTPUAU JossFOj22ghdPJjmyKxT4/uQVLARcV4HJaEJcAEWc72omk+Q+KaERYImJPzxt9Hl n7CYFYBVWCbmfHOFJtuW1LkZophNOtm4ybQ4LJYmMv7x7BACRCmzEqcUJ5OdJ/ZK pMLmZndEfbxXwfCGFb8x75f0MLzKXWbl5bjvL50zANSmxTWJ1tpqjefzNReUB4nn UlmEvuT0WES8vxpVqdoty8dDTQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBCL/MkJ y/W12z7lHSF5bZRgk+ATMB8GA1UdIwQYMBaAFMx8XyeAqA08Zmsr9pFT8gSEvu5x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUU2My81RTk2NjM5NENB MDkxMUVEODFCNkY2M0NDNEY5QUUwMi96SHhmSjRDb0RUeG1heXYya1ZQeUJJUy03 bkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pIeGZKNENvRFR4bWF5djJrVlB5QklTLTduRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUU2My81RTk2NjM5NENBMDkxMUVEODFCNkY2M0NDNEY5QUUwMi96SHhmSjRDb0RU eG1heXYya1ZQeUJJUy03bkUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAD15i4o13QiCnYdYRH4hVABUG3giIWy1Wfx7V4REpFnTLcONRMrY5y9i7E4Hx 3F1/NDw9/1F32udcQkBkKr/kNqd9gtRxRYW9aZxqluN49RCb2SkB/OU54cPxo7Bj 9AAhde+jRbP3krBlYv/30JeI4AAFkafgWgNN7j3wuWZym4y/gLHQ5LcDvsgGu+9W rAWexmzJPsa7a1TMOCjktM9Vk2pRGlbHHiPj5NXHIgtTpFstNP/pEjcK8YZX9xDC wUXH4U6/wHkCcz11QkU4BcbH0z4839CSv2Js4tPrjxlrnzTp8NnDRsIfVGPLKoSf 4PAAJUFSBuGNYqPb0vojC6cwag== -----END CERTIFICATE-----Generated at Thu Jun 4 19:14:27 2026 by rpki-client