$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4D9B/F5BAA3D8C80011EA87D44A78C4F9AE02/z4nWqxHn1Hqhe0MJxypytxy6R64.mft File: z4nWqxHn1Hqhe0MJxypytxy6R64.mft (raw, json) Hash identifier: rFi/MLlbStHOoRJjy8eLssQu2X+RS9yCFBTCIC7IY+Y= Subject key identifier: 72:65:A9:25:FA:BA:7B:F4:1B:9C:85:01:3A:B5:1A:AF:46:5E:CA:7C Authority key identifier: CF:89:D6:AB:11:E7:D4:7A:A1:7B:43:09:C7:2A:72:B7:1C:BA:47:AE Certificate issuer: /CN=A91E4D9B/serialNumber=CF89D6AB11E7D47AA17B4309C72A72B71CBA47AE Certificate serial: 0927 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z4nWqxHn1Hqhe0MJxypytxy6R64.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4D9B/F5BAA3D8C80011EA87D44A78C4F9AE02/z4nWqxHn1Hqhe0MJxypytxy6R64.mft Manifest number: 091A Signing time: Wed 20 May 2026 20:18:08 +0000 Manifest this update: Wed 20 May 2026 20:18:07 +0000 Manifest next update: Wed 27 May 2026 20:18:07 +0000 Files and hashes: 1: z4nWqxHn1Hqhe0MJxypytxy6R64.crl (hash: puykdrRuBtEX4RFYkKi+h7tJ9p2WBvorYzdnJRTcCFM=) 2: CCF7B8AA22B811ECAD21FB20C4F9AE02.roa (hash: fbNgVaH91F2eFS+HbujhsXeCcZKoS980Yjgt5GelWLU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4D9B/F5BAA3D8C80011EA87D44A78C4F9AE02/z4nWqxHn1Hqhe0MJxypytxy6R64.crl rsync://rpki.apnic.net/member_repository/A91E4D9B/F5BAA3D8C80011EA87D44A78C4F9AE02/z4nWqxHn1Hqhe0MJxypytxy6R64.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z4nWqxHn1Hqhe0MJxypytxy6R64.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 20:18:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2343 (0x927) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4D9B, serialNumber=CF89D6AB11E7D47AA17B4309C72A72B71CBA47AE Validity Not Before: May 20 20:18:07 2026 GMT Not After : May 27 20:18:07 2026 GMT Subject: CN=6a0e16ff-e4fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:84:72:2a:89:56:2b:c8:1a:01:d6:be:32:b7: 91:6f:6b:43:02:ff:02:2b:c3:b0:c5:70:dd:4a:3a: 52:b3:af:ae:6e:e6:b2:bc:d1:21:a7:9d:3d:47:f4: a5:53:92:d6:7c:ae:a2:fd:0d:fe:7f:9f:11:eb:2f: 99:6f:00:12:af:a2:c9:ba:5e:94:8b:64:50:2a:31: de:55:16:4c:0d:14:db:40:0b:84:fe:7e:fb:30:32: 0d:7d:69:7d:f2:4e:c0:54:32:f0:6d:4a:e3:78:3b: e5:69:63:40:76:21:55:2f:9d:c0:c7:6f:f4:d8:c0: 41:1d:99:36:5f:fc:f5:82:30:26:5e:69:16:39:c5: d0:10:3c:39:2a:21:a3:21:c0:89:b1:b4:68:46:44: d9:ef:73:ed:55:74:77:9f:53:6b:91:b0:26:cb:2c: 2e:37:d1:00:38:92:98:de:06:d8:55:20:23:a8:d5: 2f:06:61:5f:8d:2b:e4:92:84:b0:41:ff:18:d8:7b: 56:7f:e6:f9:fb:5d:e8:65:bd:f8:5b:cf:94:75:86: 9a:a4:d8:c7:20:90:b6:97:1a:fa:36:47:ac:95:2d: cf:79:a1:cb:c5:1a:a3:12:2f:59:85:69:2d:4d:59: 50:ef:9b:bd:96:cb:1e:f3:c0:19:9a:8e:b7:85:35: fd:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:65:A9:25:FA:BA:7B:F4:1B:9C:85:01:3A:B5:1A:AF:46:5E:CA:7C X509v3 Authority Key Identifier: keyid:CF:89:D6:AB:11:E7:D4:7A:A1:7B:43:09:C7:2A:72:B7:1C:BA:47:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4D9B/F5BAA3D8C80011EA87D44A78C4F9AE02/z4nWqxHn1Hqhe0MJxypytxy6R64.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z4nWqxHn1Hqhe0MJxypytxy6R64.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4D9B/F5BAA3D8C80011EA87D44A78C4F9AE02/z4nWqxHn1Hqhe0MJxypytxy6R64.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:9f:4d:32:9c:3b:c6:8d:c9:4c:e8:42:35:8a:01:63:4b:37: d9:cb:cd:4c:3a:97:ee:3e:4b:f0:37:74:5a:3c:6c:79:04:14: 3a:9b:83:db:4d:b8:ca:19:bd:8c:37:61:f1:fa:2e:38:e7:f3: 79:8f:39:79:7c:28:98:1e:fb:19:de:70:58:23:0e:22:f3:a9: ec:5b:dc:9d:b6:a2:40:73:2e:a2:5a:e5:74:60:b7:8b:f6:ab: e7:91:34:59:4d:b7:eb:a7:d8:f1:9a:d1:9f:ed:03:e4:b9:d3: a9:6e:67:7e:b4:d9:6b:a8:b6:1c:82:7b:53:91:f5:48:0b:9d: d4:90:17:a8:87:8f:4f:6f:09:8b:e7:e9:47:41:e5:41:90:a4: 44:6f:45:f9:55:73:68:73:2e:62:a9:ff:d4:1d:44:e5:24:ab: 08:b4:a2:a2:9a:0b:b6:2e:d4:51:4f:6c:af:df:b4:34:f9:74: 9d:5a:0f:c7:4f:6a:04:ef:bb:5a:f4:b8:2a:83:37:3e:47:72: 53:43:9a:af:95:c5:eb:3c:c9:d0:8c:b2:e4:e1:f3:d8:f1:09: c7:a9:75:d0:70:8c:15:ca:89:64:70:01:f0:b7:54:05:a7:7f: 19:6d:04:f7:4c:30:41:db:17:4d:00:1a:87:50:48:96:b6:3e: cb:c9:71:95 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCScwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTREOUIxMTAvBgNVBAUTKENGODlENkFCMTFFN0Q0N0FBMTdCNDMwOUM3MkE3MkI3 MUNCQTQ3QUUwHhcNMjYwNTIwMjAxODA3WhcNMjYwNTI3MjAxODA3WjAYMRYwFAYD VQQDEw02YTBlMTZmZi1lNGZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtYRyKolWK8gaAda+MreRb2tDAv8CK8OwxXDdSjpSs6+ubuayvNEhp509R/Sl U5LWfK6i/Q3+f58R6y+ZbwASr6LJul6Ui2RQKjHeVRZMDRTbQAuE/n77MDINfWl9 8k7AVDLwbUrjeDvlaWNAdiFVL53Ax2/02MBBHZk2X/z1gjAmXmkWOcXQEDw5KiGj IcCJsbRoRkTZ73PtVXR3n1NrkbAmyywuN9EAOJKY3gbYVSAjqNUvBmFfjSvkkoSw Qf8Y2HtWf+b5+13oZb34W8+UdYaapNjHIJC2lxr6NkeslS3PeaHLxRqjEi9ZhWkt TVlQ75u9lsse88AZmo63hTX9fwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHJlqSX6 unv0G5yFATq1Gq9GXsp8MB8GA1UdIwQYMBaAFM+J1qsR59R6oXtDCccqcrccukeu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEQ5Qi9GNUJBQTNEOEM4 MDAxMUVBODdENDRBNzhDNEY5QUUwMi96NG5XcXhIbjFIcWhlME1KeHlweXR4eTZS NjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3o0bldxeEhuMUhxaGUwTUp4eXB5dHh5NlI2NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NEQ5Qi9GNUJBQTNEOEM4MDAxMUVBODdENDRBNzhDNEY5QUUwMi96NG5XcXhIbjFI cWhlME1KeHlweXR4eTZSNjQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAHZ9NMpw7xo3JTOhCNYoBY0s32cvNTDqX7j5L8Dd0WjxseQQUOpuD2024yhm9 jDdh8fouOOfzeY85eXwomB77Gd5wWCMOIvOp7FvcnbaiQHMuolrldGC3i/ar55E0 WU2366fY8ZrRn+0D5LnTqW5nfrTZa6i2HIJ7U5H1SAud1JAXqIePT28Ji+fpR0Hl QZCkRG9F+VVzaHMuYqn/1B1E5SSrCLSiopoLti7UUU9sr9+0NPl0nVoPx09qBO+7 WvS4KoM3PkdyU0Oar5XF6zzJ0Iyy5OHz2PEJx6l10HCMFcqJZHAB8LdUBad/GW0E 90wwQdsXTQAah1BIlrY+y8lxlQ== -----END CERTIFICATE-----Generated at Thu May 21 10:29:08 2026 by rpki-client