$ rpki-client -vvf rpki.apnic.net/member_repository/A91B391F/58DB87F2457011EF9C8B8E71C4F9AE02/Zva4RKn4Ca4wexuc7kv9R8PHdxs.mft File: Zva4RKn4Ca4wexuc7kv9R8PHdxs.mft (raw, json) Hash identifier: dU31ksMzdxGpr2s3OVSX9WAjzegaB5M5zOPKTuwu2SA= Subject key identifier: 87:B2:BD:5D:CC:A2:4C:99:55:27:4E:DA:ED:9A:2B:F8:3D:82:CF:E3 Authority key identifier: 66:F6:B8:44:A9:F8:09:AE:30:7B:1B:9C:EE:4B:FD:47:C3:C7:77:1B Certificate issuer: /CN=A91B391F/serialNumber=66F6B844A9F809AE307B1B9CEE4BFD47C3C7771B Certificate serial: 0162 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zva4RKn4Ca4wexuc7kv9R8PHdxs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B391F/58DB87F2457011EF9C8B8E71C4F9AE02/Zva4RKn4Ca4wexuc7kv9R8PHdxs.mft Manifest number: 015A Signing time: Thu 21 May 2026 05:04:55 +0000 Manifest this update: Thu 21 May 2026 05:04:55 +0000 Manifest next update: Thu 28 May 2026 05:04:55 +0000 Files and hashes: 1: Zva4RKn4Ca4wexuc7kv9R8PHdxs.crl (hash: R8RnxS4SxN9V2DxKmjSFuC7YDokQT/StQqsYlhI03Rs=) 2: 5069A4E034B311F0B93A6228C4F9AE02.roa (hash: wogzPFrO6PioOLcaFojHXvQTNXcyldVbnRyjuhu4nbo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B391F/58DB87F2457011EF9C8B8E71C4F9AE02/Zva4RKn4Ca4wexuc7kv9R8PHdxs.crl rsync://rpki.apnic.net/member_repository/A91B391F/58DB87F2457011EF9C8B8E71C4F9AE02/Zva4RKn4Ca4wexuc7kv9R8PHdxs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zva4RKn4Ca4wexuc7kv9R8PHdxs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 05:04:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 354 (0x162) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B391F, serialNumber=66F6B844A9F809AE307B1B9CEE4BFD47C3C7771B Validity Not Before: May 21 05:04:55 2026 GMT Not After : May 28 05:04:55 2026 GMT Subject: CN=6a0e9277-1f1d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:90:3a:5e:dd:d5:65:be:d0:0d:53:c6:a4:c5: 03:26:d1:e1:22:2a:9f:a1:a5:34:b7:8c:23:04:5c: 95:87:b7:55:23:0e:e0:c1:af:13:50:75:d1:f1:42: ff:d8:87:97:46:94:d4:bc:ab:aa:d5:75:8d:2e:d9: 98:0d:96:11:40:eb:b2:1d:c6:57:70:ab:1e:a5:6f: 6d:57:23:75:03:19:bb:fb:64:11:f0:29:34:46:64: 60:7f:de:8e:dd:24:64:6b:85:9c:69:42:03:b7:ed: f9:70:c0:17:3b:35:28:b0:ee:09:14:35:de:ee:ad: 9c:3c:cb:00:af:22:bd:4a:16:d9:1c:22:60:6e:46: 43:fe:8e:0c:03:e5:6a:72:93:61:98:24:42:5e:47: 64:ee:56:41:19:54:a8:11:43:f4:bf:28:60:65:c5: ae:0a:f4:4a:30:50:e6:d0:98:4d:23:2c:d3:e5:c7: 08:d6:b2:6a:c3:d7:be:be:cf:a4:77:23:7d:d7:3e: c2:51:31:cb:84:c0:72:13:8b:b0:aa:df:76:4b:e8: 62:ec:b8:b4:8d:23:e1:f5:a6:2d:a8:bb:27:b3:9e: 80:18:17:23:6f:42:34:19:f3:af:b2:4d:a0:36:1d: 03:72:37:c9:1b:39:00:62:4e:9f:fb:7a:c7:b9:e9: 88:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:B2:BD:5D:CC:A2:4C:99:55:27:4E:DA:ED:9A:2B:F8:3D:82:CF:E3 X509v3 Authority Key Identifier: keyid:66:F6:B8:44:A9:F8:09:AE:30:7B:1B:9C:EE:4B:FD:47:C3:C7:77:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B391F/58DB87F2457011EF9C8B8E71C4F9AE02/Zva4RKn4Ca4wexuc7kv9R8PHdxs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zva4RKn4Ca4wexuc7kv9R8PHdxs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B391F/58DB87F2457011EF9C8B8E71C4F9AE02/Zva4RKn4Ca4wexuc7kv9R8PHdxs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:aa:ee:f4:08:8b:da:37:5e:b3:63:ea:c8:14:1b:f4:aa:08: bc:5c:42:79:25:5b:81:6f:34:f4:a8:30:1b:45:e4:eb:66:ef: 14:1a:86:6b:b1:d1:14:ab:88:08:74:f9:e6:05:76:7b:da:09: df:97:86:66:cc:fa:9c:34:2d:51:39:b3:87:06:53:be:d0:5e: f0:24:f7:78:1b:00:84:55:67:23:c2:5a:8c:92:8f:e0:e1:fa: 76:40:0c:70:89:8a:d9:2c:d2:a9:1c:aa:2b:ca:97:b0:68:b4: b7:4a:14:19:a6:d6:e1:f4:78:af:c4:83:ec:41:56:81:67:a1: a8:b7:e3:39:b2:87:ff:2a:b9:3d:2f:8d:51:bf:da:57:20:d7: d3:f5:1e:87:78:74:67:ff:e9:10:38:23:a2:5f:01:2a:fc:9b: 9e:ef:2a:00:26:85:eb:82:81:eb:a2:6b:fa:a1:de:a6:28:31: f6:62:dc:b2:59:62:c6:0f:98:cb:63:c1:6a:d7:07:b2:01:28: 92:8c:f7:b6:d3:4f:6c:c5:7e:ed:a9:b2:ce:4c:45:92:92:91: b2:d8:e5:69:eb:31:d0:c1:70:79:b3:b5:42:04:3e:eb:de:f7: 35:d7:46:a5:72:5b:69:db:a6:18:31:43:37:4c:6c:99:09:5f: 5c:30:4a:97 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAWIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjM5MUYxMTAvBgNVBAUTKDY2RjZCODQ0QTlGODA5QUUzMDdCMUI5Q0VFNEJGRDQ3 QzNDNzc3MUIwHhcNMjYwNTIxMDUwNDU1WhcNMjYwNTI4MDUwNDU1WjAYMRYwFAYD VQQDEw02YTBlOTI3Ny0xZjFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1JA6Xt3VZb7QDVPGpMUDJtHhIiqfoaU0t4wjBFyVh7dVIw7gwa8TUHXR8UL/ 2IeXRpTUvKuq1XWNLtmYDZYRQOuyHcZXcKsepW9tVyN1Axm7+2QR8Ck0RmRgf96O 3SRka4WcaUIDt+35cMAXOzUosO4JFDXe7q2cPMsAryK9ShbZHCJgbkZD/o4MA+Vq cpNhmCRCXkdk7lZBGVSoEUP0vyhgZcWuCvRKMFDm0JhNIyzT5ccI1rJqw9e+vs+k dyN91z7CUTHLhMByE4uwqt92S+hi7Li0jSPh9aYtqLsns56AGBcjb0I0GfOvsk2g Nh0DcjfJGzkAYk6f+3rHuemIowIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIeyvV3M okyZVSdO2u2aK/g9gs/jMB8GA1UdIwQYMBaAFGb2uESp+AmuMHsbnO5L/UfDx3cb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMzkxRi81OERCODdGMjQ1 NzAxMUVGOUM4QjhFNzFDNEY5QUUwMi9admE0UktuNENhNHdleHVjN2t2OVI4UEhk eHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1p2YTRSS240Q2E0d2V4dWM3a3Y5UjhQSGR4cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MzkxRi81OERCODdGMjQ1NzAxMUVGOUM4QjhFNzFDNEY5QUUwMi9admE0UktuNENh NHdleHVjN2t2OVI4UEhkeHMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAr6ru9AiL2jdes2PqyBQb9KoIvFxCeSVbgW809KgwG0Xk62bvFBqGa7HRFKuI CHT55gV2e9oJ35eGZsz6nDQtUTmzhwZTvtBe8CT3eBsAhFVnI8JajJKP4OH6dkAM cImK2SzSqRyqK8qXsGi0t0oUGabW4fR4r8SD7EFWgWehqLfjObKH/yq5PS+NUb/a VyDX0/Ueh3h0Z//pEDgjol8BKvybnu8qACaF64KB66Jr+qHepigx9mLcsllixg+Y y2PBatcHsgEokoz3ttNPbMV+7amyzkxFkpKRstjlaesx0MFwebO1QgQ+6973NddG pXJbadumGDFDN0xsmQlfXDBKlw== -----END CERTIFICATE-----Generated at Thu May 21 10:53:44 2026 by rpki-client