$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDC78/15474008AEAC11EAA6C1D761C4F9AE02/zFfgNkMaXqPBcqpyg0Aa88StXFk.mft File: zFfgNkMaXqPBcqpyg0Aa88StXFk.mft (raw, json) Hash identifier: SKqU35Nd/9ADiEcrniMobm7ogCdBxwVrOWIGsGsLosg= Subject key identifier: EA:CB:E2:78:0A:86:1D:04:DA:7D:5B:00:45:D5:F1:43:A3:7F:0A:92 Authority key identifier: CC:57:E0:36:43:1A:5E:A3:C1:72:AA:72:83:40:1A:F3:C4:AD:5C:59 Certificate issuer: /CN=A91FDC78/serialNumber=CC57E036431A5EA3C172AA7283401AF3C4AD5C59 Certificate serial: 09BF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zFfgNkMaXqPBcqpyg0Aa88StXFk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDC78/15474008AEAC11EAA6C1D761C4F9AE02/zFfgNkMaXqPBcqpyg0Aa88StXFk.mft Manifest number: 09AB Signing time: Wed 20 May 2026 20:01:07 +0000 Manifest this update: Wed 20 May 2026 20:01:06 +0000 Manifest next update: Wed 27 May 2026 20:01:06 +0000 Files and hashes: 1: zFfgNkMaXqPBcqpyg0Aa88StXFk.crl (hash: t5aUfYFjQAyw7JHTr42nroU084qqfpG9Zc64rCRoz6g=) 2: DA0B639E89E711F08DD17A55C4F9AE02.roa (hash: WShAID2RQGXvLt6YUD1Hwx0ZMGyvGXCWr68bcuwRc4Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDC78/15474008AEAC11EAA6C1D761C4F9AE02/zFfgNkMaXqPBcqpyg0Aa88StXFk.crl rsync://rpki.apnic.net/member_repository/A91FDC78/15474008AEAC11EAA6C1D761C4F9AE02/zFfgNkMaXqPBcqpyg0Aa88StXFk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zFfgNkMaXqPBcqpyg0Aa88StXFk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 20:01:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2495 (0x9bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDC78, serialNumber=CC57E036431A5EA3C172AA7283401AF3C4AD5C59 Validity Not Before: May 20 20:01:06 2026 GMT Not After : May 27 20:01:06 2026 GMT Subject: CN=6a0e1303-bc6f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:c4:04:5a:ad:91:45:4e:6b:ec:6d:57:1b:fa: 9f:6b:b6:77:26:48:7c:d5:b4:d4:a3:08:88:8b:ec: f7:6e:34:e1:8c:60:63:3c:4a:fe:b5:d1:27:0e:86: 1f:db:80:01:b0:c0:e6:58:91:a8:eb:cc:a7:77:9f: b3:56:68:46:f3:d9:ca:33:b4:8b:8e:96:30:39:cd: 28:17:f3:63:70:2c:37:f3:61:d2:d7:63:52:cf:4c: d1:1e:d3:8d:d8:fc:ee:35:48:54:ea:9b:3d:5a:85: c5:cb:9f:7e:8d:e7:eb:bc:14:ae:5c:8a:7f:b8:28: 47:8c:ba:67:e9:5e:05:13:b1:e0:40:be:e9:7e:0f: a0:b7:8e:11:df:4b:3c:6b:89:6a:ca:f2:a0:aa:d2: 1b:1c:05:fb:68:29:9b:b8:b2:c3:70:3a:b3:ce:ad: e5:c0:63:a4:ac:32:7c:d3:0d:55:ab:87:fa:09:d6: 7e:ae:86:96:85:31:2f:f6:b8:b4:cb:be:1d:5d:e9: 7e:b3:48:ee:70:af:fa:97:58:56:13:7e:f3:5c:4c: df:8e:68:43:4f:11:db:ef:dc:4c:66:3a:e3:58:21: d6:9e:30:8a:52:cd:66:08:0f:bc:e4:8f:fc:99:63: 53:e9:89:89:9a:cb:b9:84:ee:f1:92:8d:c7:df:30: f0:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:CB:E2:78:0A:86:1D:04:DA:7D:5B:00:45:D5:F1:43:A3:7F:0A:92 X509v3 Authority Key Identifier: keyid:CC:57:E0:36:43:1A:5E:A3:C1:72:AA:72:83:40:1A:F3:C4:AD:5C:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDC78/15474008AEAC11EAA6C1D761C4F9AE02/zFfgNkMaXqPBcqpyg0Aa88StXFk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zFfgNkMaXqPBcqpyg0Aa88StXFk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDC78/15474008AEAC11EAA6C1D761C4F9AE02/zFfgNkMaXqPBcqpyg0Aa88StXFk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:b6:4f:23:58:13:10:e5:23:c4:4a:bf:d3:c2:79:f1:94:b6: c9:ab:7a:23:81:82:ff:a5:b2:6a:00:38:2b:e7:4d:9c:54:49: d6:65:ff:6b:50:5d:4e:6c:90:2a:d8:21:22:0a:b9:93:78:f2: 7c:95:50:b4:a8:6f:d3:99:85:e0:dd:d3:28:bd:e7:2f:8f:ee: a4:20:14:41:5d:bf:b5:f2:df:5e:60:2d:92:9e:30:1c:4d:e8: 1c:23:6b:b4:db:4b:14:d1:f1:3b:7f:67:bd:08:a6:76:2e:41: f5:5b:6d:3c:ca:f3:16:9a:51:c0:0c:8a:a4:97:59:1a:18:13: 8a:bc:de:e7:b7:c3:bd:22:d6:cf:b5:cc:c1:1e:35:7f:4b:32: b9:1a:b4:56:d0:1c:e2:ba:7e:5f:75:06:f1:01:b1:1c:49:94: 6b:fe:bf:0b:5b:a3:c4:68:f5:00:b3:5d:38:7e:66:80:5c:b8: 00:92:f3:ef:05:e8:13:80:a6:d7:81:a9:45:fd:34:96:cb:4a: b5:30:7f:bc:d7:59:57:58:64:01:2a:34:c1:6c:43:86:25:8b: 15:90:2f:1b:4d:47:21:80:f4:ef:20:6c:57:a6:b8:21:58:66: f4:17:d3:21:45:71:38:bb:9b:13:cb:c9:81:d5:c8:bf:e1:3a: 42:77:b9:f2 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCb8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkRDNzgxMTAvBgNVBAUTKENDNTdFMDM2NDMxQTVFQTNDMTcyQUE3MjgzNDAxQUYz QzRBRDVDNTkwHhcNMjYwNTIwMjAwMTA2WhcNMjYwNTI3MjAwMTA2WjAYMRYwFAYD VQQDEw02YTBlMTMwMy1iYzZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv8QEWq2RRU5r7G1XG/qfa7Z3Jkh81bTUowiIi+z3bjThjGBjPEr+tdEnDoYf 24ABsMDmWJGo68ynd5+zVmhG89nKM7SLjpYwOc0oF/NjcCw382HS12NSz0zRHtON 2PzuNUhU6ps9WoXFy59+jefrvBSuXIp/uChHjLpn6V4FE7HgQL7pfg+gt44R30s8 a4lqyvKgqtIbHAX7aCmbuLLDcDqzzq3lwGOkrDJ80w1Vq4f6CdZ+roaWhTEv9ri0 y74dXel+s0jucK/6l1hWE37zXEzfjmhDTxHb79xMZjrjWCHWnjCKUs1mCA+85I/8 mWNT6YmJmsu5hO7xko3H3zDwkwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOrL4ngK hh0E2n1bAEXV8UOjfwqSMB8GA1UdIwQYMBaAFMxX4DZDGl6jwXKqcoNAGvPErVxZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGREM3OC8xNTQ3NDAwOEFF QUMxMUVBQTZDMUQ3NjFDNEY5QUUwMi96RmZnTmtNYVhxUEJjcXB5ZzBBYTg4U3RY RmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pGZmdOa01hWHFQQmNxcHlnMEFhODhTdFhGay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG REM3OC8xNTQ3NDAwOEFFQUMxMUVBQTZDMUQ3NjFDNEY5QUUwMi96RmZnTmtNYVhx UEJjcXB5ZzBBYTg4U3RYRmsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAgbZPI1gTEOUjxEq/08J58ZS2yat6I4GC/6WyagA4K+dNnFRJ1mX/a1BdTmyQ KtghIgq5k3jyfJVQtKhv05mF4N3TKL3nL4/upCAUQV2/tfLfXmAtkp4wHE3oHCNr tNtLFNHxO39nvQimdi5B9VttPMrzFppRwAyKpJdZGhgTirze57fDvSLWz7XMwR41 f0syuRq0VtAc4rp+X3UG8QGxHEmUa/6/C1ujxGj1ALNdOH5mgFy4AJLz7wXoE4Cm 14GpRf00lstKtTB/vNdZV1hkASo0wWxDhiWLFZAvG01HIYD07yBsV6a4IVhm9BfT IUVxOLubE8vJgdXIv+E6Qne58g== -----END CERTIFICATE-----Generated at Thu May 21 10:16:10 2026 by rpki-client