$ rpki-client -vvf rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.mft File: d9okgAToxYcr33K6wSIsfMtujjc.mft (raw, json) Hash identifier: XnKpNjtxytbwupNKGCZV5QKlWd8peHdLPI59Rz369nY= Subject key identifier: 26:5E:47:5D:01:0E:A8:3B:CF:60:99:83:1F:CF:15:8D:FE:A4:8F:B6 Authority key identifier: 77:DA:24:80:04:E8:C5:87:2B:DF:72:BA:C1:22:2C:7C:CB:6E:8E:37 Certificate issuer: /CN=A9156342/serialNumber=77DA248004E8C5872BDF72BAC1222C7CCB6E8E37 Certificate serial: 0A34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d9okgAToxYcr33K6wSIsfMtujjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.mft Manifest number: 0A0D Signing time: Mon 04 May 2026 19:51:51 +0000 Manifest this update: Mon 04 May 2026 19:51:51 +0000 Manifest next update: Mon 11 May 2026 19:51:51 +0000 Files and hashes: 1: d9okgAToxYcr33K6wSIsfMtujjc.crl (hash: +9p9k749o0ChMNSEuq8A3oHr5M+OeCyl+vffrpUxcnI=) 2: 3A58D9F499E611EAB3C00943C4F9AE02.roa (hash: Ix/A1HAv4E1o+T96OwAx6diCaMu8Un7l8lL1cR9lZ0I=) 3: 3BABBD7699E611EAB3C00943C4F9AE02.roa (hash: goeW12JBA3cKKGwjatqM92u32XRcfD8Zb78gB6ELWSk=) 4: 3AFD491C99E611EAB3C00943C4F9AE02.roa (hash: hAA41RG01uNOAJq/J2qFIRJdJvtjuAyTCQh8VD7YTr4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.crl rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d9okgAToxYcr33K6wSIsfMtujjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 May 2026 22:28:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2612 (0xa34) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156342, serialNumber=77DA248004E8C5872BDF72BAC1222C7CCB6E8E37 Validity Not Before: May 4 19:51:51 2026 GMT Not After : May 11 19:51:51 2026 GMT Subject: CN=69f8f8d7-0223 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:44:38:87:6c:37:ed:27:2d:c6:0d:27:70:68: bd:ba:04:9f:a7:e6:e3:a9:b9:c9:b9:43:d2:32:31: d6:79:98:00:f1:72:b7:0a:7c:ec:26:60:7c:93:ea: 2f:b8:6a:3b:cf:ba:d1:ae:83:fc:ae:52:33:ad:b4: cf:a5:e9:12:f2:02:5f:f6:e6:59:92:93:f1:7a:86: 22:06:09:24:bf:6e:84:b6:ae:20:9b:23:6d:52:9a: d1:39:c0:a1:3c:21:44:7b:cc:94:1c:f1:e0:41:7d: 8a:ae:74:f8:3a:0a:44:02:13:93:58:25:16:e3:83: 6e:8c:40:2f:47:f1:3e:f5:29:bb:97:3a:f3:d1:f5: f9:6c:3f:8f:54:51:55:44:69:74:a9:f7:0a:2f:cc: c9:0a:94:ef:eb:a9:3c:21:ee:ab:fb:3a:42:51:b8: 43:7c:ed:b8:37:fc:b5:46:fa:ed:0a:4d:aa:ea:45: 8d:b5:10:51:e6:a4:c7:9f:58:f7:5c:99:c5:6f:38: f9:23:b1:96:88:62:5b:d4:ad:f2:73:4f:9b:b2:d9: 69:f8:f8:68:5f:93:7d:f4:ba:c9:6e:74:bd:b6:2d: 9b:4f:c9:6b:8d:11:99:5c:41:42:e8:e4:b8:aa:3a: e8:c8:42:21:ab:b8:4f:ff:5b:46:48:b7:c8:61:7f: 8b:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:5E:47:5D:01:0E:A8:3B:CF:60:99:83:1F:CF:15:8D:FE:A4:8F:B6 X509v3 Authority Key Identifier: keyid:77:DA:24:80:04:E8:C5:87:2B:DF:72:BA:C1:22:2C:7C:CB:6E:8E:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d9okgAToxYcr33K6wSIsfMtujjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:3d:26:ed:34:81:df:0a:45:6d:e0:be:90:2a:7c:0f:f6:5b: 6b:69:1f:8b:15:9c:d3:93:62:c9:4a:4d:52:8b:48:1e:0e:10: 16:d4:c0:75:f6:70:54:c7:53:1e:a5:1b:11:7e:e4:de:b4:f5: 71:a5:88:af:2f:89:a2:fc:48:80:5a:0e:39:e1:e5:e6:cd:05: 78:3b:4c:58:2e:f4:df:05:48:0b:7c:85:75:22:02:c6:cd:4b: 8a:a8:6b:04:33:ea:c3:de:c7:8e:b3:7c:ee:05:03:ee:0c:ef: c1:fd:e9:51:00:9e:74:78:51:b1:53:ff:86:91:ab:f6:20:15: 9a:89:c4:44:a3:95:ae:85:03:29:b6:51:2d:98:ed:ae:f7:7b: fe:b1:36:df:ec:66:07:85:4d:c7:15:04:07:1b:a0:2f:65:2a: 4e:db:f2:f7:2c:23:dd:6d:63:9c:da:09:4b:95:2f:3b:3c:d7: e5:3e:3f:27:97:a9:4a:00:60:8b:db:e8:21:1d:bd:0b:69:82: e4:1e:e8:52:1b:80:1b:b0:d1:f4:fd:a6:27:20:87:2f:9a:85: 84:34:a8:13:83:32:e9:b8:74:39:fc:03:80:3c:54:68:9a:84: e0:74:35:99:6d:8f:69:0c:40:1d:ec:0a:f1:b8:e0:0e:df:07: ef:26:86:db -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCjQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTYzNDIxMTAvBgNVBAUTKDc3REEyNDgwMDRFOEM1ODcyQkRGNzJCQUMxMjIyQzdD Q0I2RThFMzcwHhcNMjYwNTA0MTk1MTUxWhcNMjYwNTExMTk1MTUxWjAYMRYwFAYD VQQDEw02OWY4ZjhkNy0wMjIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0EQ4h2w37Sctxg0ncGi9ugSfp+bjqbnJuUPSMjHWeZgA8XK3CnzsJmB8k+ov uGo7z7rRroP8rlIzrbTPpekS8gJf9uZZkpPxeoYiBgkkv26Etq4gmyNtUprROcCh PCFEe8yUHPHgQX2KrnT4OgpEAhOTWCUW44NujEAvR/E+9Sm7lzrz0fX5bD+PVFFV RGl0qfcKL8zJCpTv66k8Ie6r+zpCUbhDfO24N/y1RvrtCk2q6kWNtRBR5qTHn1j3 XJnFbzj5I7GWiGJb1K3yc0+bstlp+PhoX5N99LrJbnS9ti2bT8lrjRGZXEFC6OS4 qjroyEIhq7hP/1tGSLfIYX+LEwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCZeR10B Dqg7z2CZgx/PFY3+pI+2MB8GA1UdIwQYMBaAFHfaJIAE6MWHK99yusEiLHzLbo43 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjM0Mi9CREY4OTA4MDk5 RTQxMUVBODlBNEMyNDBDNEY5QUUwMi9kOW9rZ0FUb3hZY3IzM0s2d1NJc2ZNdHVq amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Q5b2tnQVRveFljcjMzSzZ3U0lzZk10dWpqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjM0Mi9CREY4OTA4MDk5RTQxMUVBODlBNEMyNDBDNEY5QUUwMi9kOW9rZ0FUb3hZ Y3IzM0s2d1NJc2ZNdHVqamMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAhD0m7TSB3wpFbeC+kCp8D/Zba2kfixWc05NiyUpNUotIHg4QFtTAdfZwVMdT HqUbEX7k3rT1caWIry+JovxIgFoOOeHl5s0FeDtMWC703wVIC3yFdSICxs1Liqhr BDPqw97HjrN87gUD7gzvwf3pUQCedHhRsVP/hpGr9iAVmonERKOVroUDKbZRLZjt rvd7/rE23+xmB4VNxxUEBxugL2UqTtvy9ywj3W1jnNoJS5UvOzzX5T4/J5epSgBg i9voIR29C2mC5B7oUhuAG7DR9P2mJyCHL5qFhDSoE4My6bh0OfwDgDxUaJqE4HQ1 mW2PaQxAHewK8bjgDt8H7yaG2w== -----END CERTIFICATE-----Generated at Wed May 6 03:28:41 2026 by rpki-client