$ rpki-client -vvf rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.mft File: zWXmdAuufrM71eU4ye5t6LM1RDE.mft (raw, json) Hash identifier: HYdfY9f4hEXV5YMC3eN05Qbk3jPK9sP2rIx08gm8wtQ= Subject key identifier: 4A:2C:DB:43:8A:8C:D1:0E:F2:27:9D:3F:E7:38:F0:E3:F4:BD:A8:EA Authority key identifier: CD:65:E6:74:0B:AE:7E:B3:3B:D5:E5:38:C9:EE:6D:E8:B3:35:44:31 Certificate issuer: /CN=A916FA49/serialNumber=CD65E6740BAE7EB33BD5E538C9EE6DE8B3354431 Certificate serial: 01F3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zWXmdAuufrM71eU4ye5t6LM1RDE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.mft Manifest number: 01EA Signing time: Fri 12 Jun 2026 16:43:58 +0000 Manifest this update: Fri 12 Jun 2026 16:43:57 +0000 Manifest next update: Fri 19 Jun 2026 16:43:57 +0000 Files and hashes: 1: zWXmdAuufrM71eU4ye5t6LM1RDE.crl (hash: Re009J4zm+GLhwItu+b2LpQhRmcHyJ9w6tYPEdVqfvk=) 2: 74F996F62F2511EF8D78DC62C4F9AE02.roa (hash: sPimiMMVQ8HhWMH3h4YYvgrI9mvp3guGNNGoHKdWxG8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.crl rsync://rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zWXmdAuufrM71eU4ye5t6LM1RDE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 16:43:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 499 (0x1f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916FA49, serialNumber=CD65E6740BAE7EB33BD5E538C9EE6DE8B3354431 Validity Not Before: Jun 12 16:43:57 2026 GMT Not After : Jun 19 16:43:57 2026 GMT Subject: CN=6a2c374e-a098 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:b1:8d:7e:31:7f:61:74:36:4f:2e:e1:15:c6: ba:92:ae:34:1b:39:a8:be:70:95:60:11:28:fd:80: 10:3f:0a:de:0c:14:7b:e7:3c:b8:72:c0:9d:8d:dc: 00:17:90:8d:bb:1f:0b:34:d1:42:78:19:22:e0:26: 1c:d5:72:04:8e:36:2a:c8:c1:be:96:4c:62:23:8b: 5c:39:53:e8:c8:14:8e:21:ec:cc:88:e5:ff:30:66: 3d:c6:dc:dd:02:9d:3a:ca:ba:71:4f:de:b0:5d:95: ab:6b:6f:85:3f:03:9e:c2:d7:9b:2d:45:ba:30:db: cb:63:ac:58:8a:e9:b4:16:8a:b6:88:a1:c1:b8:ec: dd:41:ef:48:f3:74:30:91:92:25:f5:ce:d0:c8:28: e4:5e:ee:17:f7:43:1a:b6:08:12:8d:27:7e:dd:28: 8a:30:44:80:b6:6c:15:64:15:74:15:61:45:a5:63: f4:0f:67:74:58:23:38:8d:9c:cc:f4:e1:33:f5:57: 2e:b4:ad:7c:73:63:d7:9f:fe:3d:57:ec:f7:e2:c2: 80:2c:da:69:74:32:35:8d:63:66:d3:b8:66:94:33: 1d:01:b9:f5:e0:2c:4c:1e:a1:b4:65:f2:65:0d:81: f7:96:7d:e0:ab:87:06:97:bd:3d:02:a2:53:88:a5: 08:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:2C:DB:43:8A:8C:D1:0E:F2:27:9D:3F:E7:38:F0:E3:F4:BD:A8:EA X509v3 Authority Key Identifier: keyid:CD:65:E6:74:0B:AE:7E:B3:3B:D5:E5:38:C9:EE:6D:E8:B3:35:44:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zWXmdAuufrM71eU4ye5t6LM1RDE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:6f:09:a2:9b:44:8d:10:bb:6f:37:a9:a5:09:78:39:d1:b9: 61:7e:d5:a2:68:9f:37:10:af:38:5d:40:ff:26:63:fa:c8:bb: d6:3c:7f:82:61:aa:c8:19:1c:a1:c6:67:0b:cd:68:c0:78:35: 54:69:b1:cd:8d:02:04:93:6c:5d:35:3b:11:36:c0:40:b7:61: b0:72:e7:94:09:39:16:f5:a0:e6:f7:ef:09:ac:ad:31:89:08: c6:35:ec:4d:20:65:33:a0:44:f9:70:21:ff:4b:d5:11:53:56: 29:c6:a3:36:06:6f:e0:ec:d9:1a:dc:f9:a0:78:48:e9:36:96: 9b:f4:53:93:89:0a:fe:c9:1f:72:e6:b0:ee:24:81:d1:52:3d: 10:27:d9:af:33:86:d6:54:87:cc:ca:f3:0a:fc:70:47:27:d6: f9:e8:14:ae:27:30:96:c6:73:15:8b:9c:8c:1b:e5:ea:97:67: 35:1e:8d:48:c1:b6:79:0d:c3:e7:a0:03:f1:49:4c:e0:b9:77: 31:f1:ce:26:47:2d:64:5b:78:fb:38:f4:6b:2d:67:7f:fd:cc: b7:5a:cb:69:12:24:e7:af:87:67:89:d9:86:c5:85:21:db:d4: 3a:05:ae:8b:50:86:cf:2a:0d:29:5b:58:2f:b2:27:cc:07:72: fc:93:e1:20 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAfMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkZBNDkxMTAvBgNVBAUTKENENjVFNjc0MEJBRTdFQjMzQkQ1RTUzOEM5RUU2REU4 QjMzNTQ0MzEwHhcNMjYwNjEyMTY0MzU3WhcNMjYwNjE5MTY0MzU3WjAYMRYwFAYD VQQDEw02YTJjMzc0ZS1hMDk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1rGNfjF/YXQ2Ty7hFca6kq40GzmovnCVYBEo/YAQPwreDBR75zy4csCdjdwA F5CNux8LNNFCeBki4CYc1XIEjjYqyMG+lkxiI4tcOVPoyBSOIezMiOX/MGY9xtzd Ap06yrpxT96wXZWra2+FPwOewtebLUW6MNvLY6xYium0Foq2iKHBuOzdQe9I83Qw kZIl9c7QyCjkXu4X90MatggSjSd+3SiKMESAtmwVZBV0FWFFpWP0D2d0WCM4jZzM 9OEz9VcutK18c2PXn/49V+z34sKALNppdDI1jWNm07hmlDMdAbn14CxMHqG0ZfJl DYH3ln3gq4cGl709AqJTiKUIoQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEos20OK jNEO8iedP+c48OP0vajqMB8GA1UdIwQYMBaAFM1l5nQLrn6zO9XlOMnubeizNUQx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RkE0OS9BNEMwQ0E5Njkw MDkxMUVFOUU1NEEwMzNDNEY5QUUwMi96V1htZEF1dWZyTTcxZVU0eWU1dDZMTTFS REUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3pXWG1kQXV1ZnJNNzFlVTR5ZTV0NkxNMVJERS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RkE0OS9BNEMwQ0E5NjkwMDkxMUVFOUU1NEEwMzNDNEY5QUUwMi96V1htZEF1dWZy TTcxZVU0eWU1dDZMTTFSREUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAJ28JoptEjRC7bzeppQl4OdG5YX7VomifNxCvOF1A/yZj+si71jx/gmGqyBkc ocZnC81owHg1VGmxzY0CBJNsXTU7ETbAQLdhsHLnlAk5FvWg5vfvCaytMYkIxjXs TSBlM6BE+XAh/0vVEVNWKcajNgZv4OzZGtz5oHhI6TaWm/RTk4kK/skfcuaw7iSB 0VI9ECfZrzOG1lSHzMrzCvxwRyfW+egUricwlsZzFYucjBvl6pdnNR6NSMG2eQ3D 56AD8UlM4Ll3MfHOJkctZFt4+zj0ay1nf/3Mt1rLaRIk56+HZ4nZhsWFIdvUOgWu i1CGzyoNKVtYL7InzAdy/JPhIA== -----END CERTIFICATE-----Generated at Sun Jun 14 00:33:10 2026 by rpki-client