$ rpki-client -vvf rpki.apnic.net/member_repository/A91F09FE/3803AA1C9B1211EFA87BB43BC4F9AE02/ZMzBZsWMOP6MwZdvXPB8HdBvaBQ.mft File: ZMzBZsWMOP6MwZdvXPB8HdBvaBQ.mft (raw, json) Hash identifier: zsXX+QXOOTQQe7/K5/SU/z8cxPPY6rsungu0X79nduU= Subject key identifier: 43:EF:63:C9:60:BB:C3:D3:ED:76:F4:4B:D6:9D:E7:A9:8C:49:AF:BC Authority key identifier: 64:CC:C1:66:C5:8C:38:FE:8C:C1:97:6F:5C:F0:7C:1D:D0:6F:68:14 Certificate issuer: /CN=A91F09FE/serialNumber=64CCC166C58C38FE8CC1976F5CF07C1DD06F6814 Certificate serial: 0124 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZMzBZsWMOP6MwZdvXPB8HdBvaBQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F09FE/3803AA1C9B1211EFA87BB43BC4F9AE02/ZMzBZsWMOP6MwZdvXPB8HdBvaBQ.mft Manifest number: 0121 Signing time: Thu 21 May 2026 05:48:13 +0000 Manifest this update: Thu 21 May 2026 05:48:13 +0000 Manifest next update: Thu 28 May 2026 05:48:13 +0000 Files and hashes: 1: ZMzBZsWMOP6MwZdvXPB8HdBvaBQ.crl (hash: sjSWdVVO34Rkh79TVPqAKifKfaUC9/eVM5ejbpUAHGQ=) 2: 841585749B1211EFBFBF913CC4F9AE02.roa (hash: gdDMQEhJKbqQYoRrpzaidx3PSUdHajAqC/+MOePDuxs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F09FE/3803AA1C9B1211EFA87BB43BC4F9AE02/ZMzBZsWMOP6MwZdvXPB8HdBvaBQ.crl rsync://rpki.apnic.net/member_repository/A91F09FE/3803AA1C9B1211EFA87BB43BC4F9AE02/ZMzBZsWMOP6MwZdvXPB8HdBvaBQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZMzBZsWMOP6MwZdvXPB8HdBvaBQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 05:48:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 292 (0x124) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F09FE, serialNumber=64CCC166C58C38FE8CC1976F5CF07C1DD06F6814 Validity Not Before: May 21 05:48:13 2026 GMT Not After : May 28 05:48:13 2026 GMT Subject: CN=6a0e9c9d-5910 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:65:ff:84:b2:f5:50:f2:94:b1:0f:4f:dd:9f: f1:f3:76:fe:ad:0c:2a:64:8e:ca:cb:60:65:96:eb: f1:32:77:27:27:35:2f:ff:07:44:34:df:bd:5b:fc: b1:78:00:1a:4b:84:0d:44:fb:8e:2d:a2:37:c0:d9: 2b:de:13:43:7c:64:d5:fd:00:0f:a3:5e:a5:3d:f5: 74:dc:d5:0c:bc:bb:3a:c7:a2:68:5b:c6:6f:d8:ea: c9:64:6b:45:2d:3e:05:76:4e:a9:cd:b5:f7:f9:d1: 54:2a:22:8d:1d:5a:0a:87:33:42:20:bd:57:2d:c5: 77:48:45:2a:4e:4f:25:be:99:ee:8a:f5:07:5e:36: 0d:d5:6c:d4:4b:e7:b7:72:ab:9b:38:2c:03:7d:23: 65:2e:3b:72:1e:2d:c4:c9:fe:a3:7f:59:a4:5a:4c: 13:4c:98:e0:12:3c:82:cc:93:fd:65:16:2f:ac:78: 80:8b:dc:42:78:da:19:da:62:92:7d:a1:bc:11:8f: 7f:fe:1f:c9:22:be:75:5f:2d:82:95:4d:13:19:a3: cf:2b:ce:f6:e7:13:7a:40:ae:13:d0:66:c8:25:c7: 17:3a:f8:cf:a4:63:84:f0:45:67:1f:13:59:7a:b1: 0f:45:7f:6d:fa:4b:2a:26:ee:f2:62:f3:fd:a8:c3: ee:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:EF:63:C9:60:BB:C3:D3:ED:76:F4:4B:D6:9D:E7:A9:8C:49:AF:BC X509v3 Authority Key Identifier: keyid:64:CC:C1:66:C5:8C:38:FE:8C:C1:97:6F:5C:F0:7C:1D:D0:6F:68:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F09FE/3803AA1C9B1211EFA87BB43BC4F9AE02/ZMzBZsWMOP6MwZdvXPB8HdBvaBQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZMzBZsWMOP6MwZdvXPB8HdBvaBQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F09FE/3803AA1C9B1211EFA87BB43BC4F9AE02/ZMzBZsWMOP6MwZdvXPB8HdBvaBQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:de:9d:21:8b:6e:68:e4:84:ec:08:2f:73:ad:99:84:2c:57: 37:10:05:2a:cd:8f:ef:d1:df:d0:6f:f3:b0:96:57:8e:3d:96: c4:41:94:b3:76:f0:57:ae:66:09:e6:35:85:f2:a5:ab:e7:5d: e0:2a:d5:fe:56:76:58:0c:59:92:4d:a2:c6:ac:29:ed:a3:76: 77:55:7b:0e:9f:14:87:d6:7e:61:55:b6:73:23:f2:42:fd:68: d8:d3:20:10:ba:17:2e:bd:b4:89:00:98:a6:9c:36:d2:50:ed: 1b:1f:07:cf:e5:49:43:d7:af:4e:04:7a:0c:03:28:cb:1a:37: 2a:86:cd:2e:7e:8c:ab:d6:f0:0d:48:05:ef:44:b5:2a:b9:f3: 18:ca:3c:0f:15:08:94:71:9c:a6:85:f5:d2:02:85:f4:3b:a4: 40:be:22:fa:a4:d2:0e:0f:08:9e:d5:43:dd:df:29:71:aa:17: 89:5b:6c:88:68:fc:78:16:b3:5e:3b:81:00:81:03:0e:f8:cb: f6:75:80:52:cf:f4:9c:57:66:23:94:b0:73:b6:90:0d:05:5e: 22:5a:a3:a5:fe:d5:4f:40:98:09:c7:26:15:b8:f6:8c:8f:4a: 74:bd:a1:31:38:d7:19:36:34:50:d5:47:e9:fe:b5:31:22:5e: 55:5a:42:95 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICASQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjA5RkUxMTAvBgNVBAUTKDY0Q0NDMTY2QzU4QzM4RkU4Q0MxOTc2RjVDRjA3QzFE RDA2RjY4MTQwHhcNMjYwNTIxMDU0ODEzWhcNMjYwNTI4MDU0ODEzWjAYMRYwFAYD VQQDEw02YTBlOWM5ZC01OTEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzWX/hLL1UPKUsQ9P3Z/x83b+rQwqZI7Ky2BlluvxMncnJzUv/wdENN+9W/yx eAAaS4QNRPuOLaI3wNkr3hNDfGTV/QAPo16lPfV03NUMvLs6x6JoW8Zv2OrJZGtF LT4Fdk6pzbX3+dFUKiKNHVoKhzNCIL1XLcV3SEUqTk8lvpnuivUHXjYN1WzUS+e3 cqubOCwDfSNlLjtyHi3Eyf6jf1mkWkwTTJjgEjyCzJP9ZRYvrHiAi9xCeNoZ2mKS faG8EY9//h/JIr51Xy2ClU0TGaPPK8725xN6QK4T0GbIJccXOvjPpGOE8EVnHxNZ erEPRX9t+ksqJu7yYvP9qMPuewIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEPvY8lg u8PT7Xb0S9ad56mMSa+8MB8GA1UdIwQYMBaAFGTMwWbFjDj+jMGXb1zwfB3Qb2gU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMDlGRS8zODAzQUExQzlC MTIxMUVGQTg3QkI0M0JDNEY5QUUwMi9aTXpCWnNXTU9QNk13WmR2WFBCOEhkQnZh QlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pNekJac1dNT1A2TXdaZHZYUEI4SGRCdmFCUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MDlGRS8zODAzQUExQzlCMTIxMUVGQTg3QkI0M0JDNEY5QUUwMi9aTXpCWnNXTU9Q Nk13WmR2WFBCOEhkQnZhQlEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAaN6dIYtuaOSE7Agvc62ZhCxXNxAFKs2P79Hf0G/zsJZXjj2WxEGUs3bwV65m CeY1hfKlq+dd4CrV/lZ2WAxZkk2ixqwp7aN2d1V7Dp8Uh9Z+YVW2cyPyQv1o2NMg ELoXLr20iQCYppw20lDtGx8Hz+VJQ9evTgR6DAMoyxo3KobNLn6Mq9bwDUgF70S1 KrnzGMo8DxUIlHGcpoX10gKF9DukQL4i+qTSDg8IntVD3d8pcaoXiVtsiGj8eBaz XjuBAIEDDvjL9nWAUs/0nFdmI5Swc7aQDQVeIlqjpf7VT0CYCccmFbj2jI9KdL2h MTjXGTY0UNVH6f61MSJeVVpClQ== -----END CERTIFICATE-----Generated at Thu May 21 10:53:39 2026 by rpki-client