$ rpki-client -vvf rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.mft File: ZUCRhgKOxUzUW1g0_77K9LePGcI.mft (raw, json) Hash identifier: u1f6p5RDdANaOQfEwQNTMPMSl569rC30qdaw8tee4CE= Subject key identifier: 56:92:88:FF:FE:32:5D:D8:B2:C9:AD:51:4A:8D:09:D8:A1:D0:93:00 Authority key identifier: 65:40:91:86:02:8E:C5:4C:D4:5B:58:34:FF:BE:CA:F4:B7:8F:19:C2 Certificate issuer: /CN=A917BBF1/serialNumber=65409186028EC54CD45B5834FFBECAF4B78F19C2 Certificate serial: 0D28 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZUCRhgKOxUzUW1g0_77K9LePGcI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.mft Manifest number: 0D00 Signing time: Fri 12 Jun 2026 18:20:42 +0000 Manifest this update: Fri 12 Jun 2026 18:20:41 +0000 Manifest next update: Fri 19 Jun 2026 18:20:41 +0000 Files and hashes: 1: ZUCRhgKOxUzUW1g0_77K9LePGcI.crl (hash: 4//plUBDs4zK4y+JSWG5hJne4TjGhjeAgujYZcuv/7U=) 2: 1B54858065B711EE93D6ED6DC4F9AE02.roa (hash: RJJ5TtxisaxrsdKJrxokk1MUJk/sClMJ57OXkPbYyvk=) 3: FF4F13D4448711ECA80CFC34C4F9AE02.roa (hash: lDq/RoR1gtpy/cAfk0IFee9KhUVF1t6WS4LHb4U+atA=) 4: 3EED102CC53011F0ADCB012EC4F9AE02.roa (hash: LxKNHe3GpfHVZCaXnBap/M64zNmMtKYhFB34n7ePJpg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.crl rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZUCRhgKOxUzUW1g0_77K9LePGcI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 18:20:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3368 (0xd28) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917BBF1, serialNumber=65409186028EC54CD45B5834FFBECAF4B78F19C2 Validity Not Before: Jun 12 18:20:41 2026 GMT Not After : Jun 19 18:20:41 2026 GMT Subject: CN=6a2c4dfa-119e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:57:8e:5e:9c:b0:40:00:1f:d6:bb:e1:98:0a: 6d:a2:4e:34:df:a1:c2:fa:ea:69:35:b1:24:57:47: 3c:8f:55:27:c9:25:a1:ae:e4:d9:8a:49:5a:91:83: 83:cd:2b:6a:16:32:7d:2e:ac:a6:97:03:68:d3:ba: db:6a:26:c3:d0:76:7f:13:67:4e:20:a7:ab:c4:b8: 65:e7:5b:3d:b6:cf:34:b1:db:a8:76:b6:ab:c6:58: 44:e1:be:91:06:f8:e3:25:68:0b:31:e5:e9:79:42: 81:11:0e:7e:7a:f5:82:72:63:2c:82:7e:cf:41:b0: 4c:62:4c:10:0d:12:26:49:48:46:00:39:3c:2b:98: ed:36:08:d9:c5:1c:5f:41:4a:dd:09:d3:69:95:4c: a6:3e:2d:2f:a8:0d:25:be:f7:2d:8f:c4:16:f8:e6: 50:a5:0f:6d:cf:c9:5b:ae:19:74:cf:e9:c4:4b:5d: 16:b0:bb:4f:5d:8e:d0:f9:99:1f:7b:0c:49:5f:d7: e5:01:4f:97:9d:35:a1:bd:e9:45:ee:8f:5c:1e:35: 88:85:32:35:42:0e:87:26:96:6d:9a:6e:3a:3e:6a: 45:79:76:ad:f7:3d:61:59:99:ef:81:2e:93:fb:b2: 46:8e:f0:b6:3f:12:d8:6b:18:33:5b:76:b6:85:6b: 8e:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:92:88:FF:FE:32:5D:D8:B2:C9:AD:51:4A:8D:09:D8:A1:D0:93:00 X509v3 Authority Key Identifier: keyid:65:40:91:86:02:8E:C5:4C:D4:5B:58:34:FF:BE:CA:F4:B7:8F:19:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZUCRhgKOxUzUW1g0_77K9LePGcI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:f3:76:da:73:40:ff:3d:2e:4d:6a:fa:57:54:16:1a:fb:69: d5:23:db:f0:e0:6a:c3:e4:3d:c7:da:43:3c:80:15:c0:83:84: ac:fe:a8:9e:bd:f9:6b:f7:1b:8e:dc:65:67:b4:99:7a:8c:db: 38:b2:e9:7e:f8:c6:aa:4c:85:4a:28:e2:94:96:c7:03:f0:06: c9:a1:ff:fb:87:e8:ea:58:e8:55:ea:78:cf:fc:5a:ff:49:7a: c0:fa:28:dc:9c:4b:c0:4c:94:ec:00:e5:6d:cc:93:e6:52:83: 2c:92:cb:30:f2:24:a9:52:20:f4:46:39:73:81:7b:6c:c7:fb: bf:ab:39:a7:5b:87:2f:55:2f:3c:7e:7f:fe:3a:3c:7b:74:87: 75:c9:53:eb:ea:44:9b:f0:b2:fb:31:99:53:ba:e8:b0:31:ca: 0c:f5:dd:61:89:89:33:76:20:18:4e:f8:17:7f:27:72:82:34: d0:cc:96:cc:55:bc:eb:89:0d:e7:1a:a7:1f:30:37:18:a9:b9: 5b:76:60:e3:6e:b1:9e:7a:37:26:0e:83:f0:3f:ba:5c:be:a0: ed:d6:2e:6c:ce:fc:aa:74:a2:4f:49:31:a4:13:ac:3d:03:47: 1a:df:a2:76:12:67:e8:fb:7c:b3:91:f0:ba:bf:b9:2b:f7:25: 0a:81:df:b6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDSgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0JCRjExMTAvBgNVBAUTKDY1NDA5MTg2MDI4RUM1NENENDVCNTgzNEZGQkVDQUY0 Qjc4RjE5QzIwHhcNMjYwNjEyMTgyMDQxWhcNMjYwNjE5MTgyMDQxWjAYMRYwFAYD VQQDEw02YTJjNGRmYS0xMTllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmVeOXpywQAAf1rvhmAptok4036HC+uppNbEkV0c8j1UnySWhruTZiklakYOD zStqFjJ9LqymlwNo07rbaibD0HZ/E2dOIKerxLhl51s9ts80sduodrarxlhE4b6R BvjjJWgLMeXpeUKBEQ5+evWCcmMsgn7PQbBMYkwQDRImSUhGADk8K5jtNgjZxRxf QUrdCdNplUymPi0vqA0lvvctj8QW+OZQpQ9tz8lbrhl0z+nES10WsLtPXY7Q+Zkf ewxJX9flAU+XnTWhvelF7o9cHjWIhTI1Qg6HJpZtmm46PmpFeXat9z1hWZnvgS6T +7JGjvC2PxLYaxgzW3a2hWuOfQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFaSiP/+ Ml3YssmtUUqNCdih0JMAMB8GA1UdIwQYMBaAFGVAkYYCjsVM1FtYNP++yvS3jxnC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QkJGMS8yNDVEQzVDQTBB RjcxMUVBQTg1QTVEMUFDNEY5QUUwMi9aVUNSaGdLT3hVelVXMWcwXzc3SzlMZVBH Y0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pVQ1JoZ0tPeFV6VVcxZzBfNzdLOUxlUEdjSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QkJGMS8yNDVEQzVDQTBBRjcxMUVBQTg1QTVEMUFDNEY5QUUwMi9aVUNSaGdLT3hV elVXMWcwXzc3SzlMZVBHY0kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAuvN22nNA/z0uTWr6V1QWGvtp1SPb8OBqw+Q9x9pDPIAVwIOErP6onr35a/cb jtxlZ7SZeozbOLLpfvjGqkyFSijilJbHA/AGyaH/+4fo6ljoVep4z/xa/0l6wPoo 3JxLwEyU7ADlbcyT5lKDLJLLMPIkqVIg9EY5c4F7bMf7v6s5p1uHL1UvPH5//jo8 e3SHdclT6+pEm/Cy+zGZU7rosDHKDPXdYYmJM3YgGE74F38ncoI00MyWzFW864kN 5xqnHzA3GKm5W3Zg426xnno3Jg6D8D+6XL6g7dYubM78qnSiT0kxpBOsPQNHGt+i dhJn6Pt8s5Hwur+5K/clCoHftg== -----END CERTIFICATE-----Generated at Sun Jun 14 12:10:15 2026 by rpki-client