$ rpki-client -vvf rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/xOTw2gEK9YY3zFlihHHpmLckPFI.mft File: xOTw2gEK9YY3zFlihHHpmLckPFI.mft (raw, json) Hash identifier: GDH3baaJ+0c82dTGZjfD6JtGjlfKDj85q8kdwODUzh0= Subject key identifier: D6:17:09:38:86:78:DA:F5:30:72:C1:1B:84:FE:69:49:6B:D2:CB:F4 Authority key identifier: C4:E4:F0:DA:01:0A:F5:86:37:CC:59:62:84:71:E9:98:B7:24:3C:52 Certificate issuer: /CN=A91D83D0/serialNumber=C4E4F0DA010AF58637CC59628471E998B7243C52 Certificate serial: 09D1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xOTw2gEK9YY3zFlihHHpmLckPFI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/xOTw2gEK9YY3zFlihHHpmLckPFI.mft Manifest number: 09A6 Signing time: Wed 20 May 2026 20:01:52 +0000 Manifest this update: Wed 20 May 2026 20:01:52 +0000 Manifest next update: Wed 27 May 2026 20:01:52 +0000 Files and hashes: 1: xOTw2gEK9YY3zFlihHHpmLckPFI.crl (hash: RAIDRuuBX3x0m4u2091ubRSzkcLpO6L/QQRSyAAa/8g=) 2: 863670328FD011EEB6FFC636C4F9AE02.roa (hash: soe5Moz4gQVVes64vfH27mxJAWxDV9xSP3vrYYcdBj8=) 3: 03706138786411EC8624EB12C4F9AE02.roa (hash: BrG7Q3Tkykmo9xilseoxsNjwLBVZ7ijytYCkK61f/ms=) 4: 6A6E4770A10F11EF840C2548C4F9AE02.roa (hash: +RYGeu7uX4uBBcHWusqQhkXqLpcB4R1AKfIKops3PNA=) 5: 7B3252CC014911F1B56055C9516F56BC.roa (hash: Q4zhbv5IYafCWF+cKZ+N5EqVvhygYSFdunW/fgxR9Ms=) 6: 5353EA28781F11EEBA05B17FC4F9AE02.roa (hash: 95lSl7vVPRfDQ24xYlePTZRf3aCd1VmR4GdHAdsIHtU=) 7: F4E74AA8B99911EF9A0C3B63C4F9AE02.roa (hash: rC7/cLhAbtNiKypXkgnC2P4P5so5I+YnfNchz84YMA0=) 8: 2BFE357EF06211F08763644E5C6F56BC.roa (hash: 7NcbnhD/HJ8NBFUu7bu5fda+cHjTW1crabfldM6QJwo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/xOTw2gEK9YY3zFlihHHpmLckPFI.crl rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/xOTw2gEK9YY3zFlihHHpmLckPFI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xOTw2gEK9YY3zFlihHHpmLckPFI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 20:01:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2513 (0x9d1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D83D0, serialNumber=C4E4F0DA010AF58637CC59628471E998B7243C52 Validity Not Before: May 20 20:01:52 2026 GMT Not After : May 27 20:01:52 2026 GMT Subject: CN=6a0e1330-6f2b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:3e:6a:ce:58:a7:38:0c:72:e4:2e:60:4a:78: b8:9c:92:53:43:71:8b:57:ea:a4:ec:e3:09:e0:31: e4:1d:52:48:44:bc:8a:b3:a8:c1:5a:36:55:48:91: 26:91:d4:3b:20:32:a4:0f:f8:be:6a:6c:1c:25:c6: 90:dd:bd:74:f5:9f:d8:4b:f3:e4:99:d1:af:ca:29: fa:b4:66:dd:14:5c:2d:9b:81:68:e5:83:02:ef:32: 5d:20:1b:72:b8:e1:8b:e8:e1:ba:d7:ec:a5:58:97: fa:ca:7e:8f:40:fd:5e:1d:6d:86:14:b1:98:14:d9: 71:f6:86:0c:1c:9b:57:1f:23:9d:04:ab:5c:b1:64: 83:c9:1a:44:69:9a:f0:8c:55:ce:58:e1:f0:e9:cb: 54:ed:98:98:38:d0:4e:d0:0e:14:87:cb:d5:aa:7d: 56:ae:41:29:e6:7c:b1:7b:08:c4:9f:b5:01:31:9b: 9a:ca:ed:81:a8:48:07:17:3b:5a:63:9d:53:d4:73: ad:ee:5d:8e:bc:81:91:73:59:01:6a:98:3e:5d:68: cb:53:ec:05:1f:dc:9e:2d:2f:48:64:e8:b2:44:c2: 52:36:c2:6a:ba:88:3a:4b:ca:27:bc:8c:08:c0:d6: 1a:4f:01:14:e5:18:65:5c:1b:5b:56:b0:45:71:ac: 5e:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:17:09:38:86:78:DA:F5:30:72:C1:1B:84:FE:69:49:6B:D2:CB:F4 X509v3 Authority Key Identifier: keyid:C4:E4:F0:DA:01:0A:F5:86:37:CC:59:62:84:71:E9:98:B7:24:3C:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/xOTw2gEK9YY3zFlihHHpmLckPFI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xOTw2gEK9YY3zFlihHHpmLckPFI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/xOTw2gEK9YY3zFlihHHpmLckPFI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c1:ec:a2:4f:ac:e1:4d:44:7b:83:d3:93:8a:66:e3:a0:38:e8: 84:57:c4:f2:cd:36:1d:a6:46:23:26:72:61:0d:43:3a:48:73: 2b:b1:5c:37:b3:e0:a9:78:78:58:77:31:83:15:09:fb:a7:bc: 7b:8c:a8:0f:8a:08:58:ca:cd:06:0d:85:c5:fc:82:30:be:de: 4c:dc:db:5e:58:dc:22:bd:31:38:f1:47:08:6a:12:27:b6:af: 82:c4:69:7a:a4:c7:9a:b3:7c:e8:73:eb:ac:a9:aa:62:16:37: fc:03:3d:b0:9f:ba:07:85:79:c3:13:02:16:92:89:fb:82:20: c8:8e:28:1c:32:c8:30:ed:0b:3a:e2:a8:2a:04:c6:9d:fa:44: 19:89:63:c3:af:31:d0:42:fb:8a:72:8e:77:4e:8e:e7:dc:42: 6f:b6:42:fb:d3:ce:e7:ef:1a:7b:f9:e6:b9:60:39:a5:56:30: 1d:2c:18:e9:19:7e:02:3b:de:47:aa:31:92:10:43:03:49:77: 64:bc:e8:3b:35:07:5a:58:af:bc:21:78:6e:a4:cf:78:24:e7: 33:80:48:26:47:3b:60:ed:f6:b5:73:b5:f3:7c:ea:c5:dc:9b: e7:bf:8a:0c:23:b0:32:ba:d8:10:f1:2a:eb:f2:e3:13:d0:60: 36:01:c5:df -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCdEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDgzRDAxMTAvBgNVBAUTKEM0RTRGMERBMDEwQUY1ODYzN0NDNTk2Mjg0NzFFOTk4 QjcyNDNDNTIwHhcNMjYwNTIwMjAwMTUyWhcNMjYwNTI3MjAwMTUyWjAYMRYwFAYD VQQDEw02YTBlMTMzMC02ZjJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAhz5qzlinOAxy5C5gSni4nJJTQ3GLV+qk7OMJ4DHkHVJIRLyKs6jBWjZVSJEm kdQ7IDKkD/i+amwcJcaQ3b109Z/YS/PkmdGvyin6tGbdFFwtm4Fo5YMC7zJdIBty uOGL6OG61+ylWJf6yn6PQP1eHW2GFLGYFNlx9oYMHJtXHyOdBKtcsWSDyRpEaZrw jFXOWOHw6ctU7ZiYONBO0A4Uh8vVqn1WrkEp5nyxewjEn7UBMZuayu2BqEgHFzta Y51T1HOt7l2OvIGRc1kBapg+XWjLU+wFH9yeLS9IZOiyRMJSNsJquog6S8onvIwI wNYaTwEU5RhlXBtbVrBFcaxeMQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNYXCTiG eNr1MHLBG4T+aUlr0sv0MB8GA1UdIwQYMBaAFMTk8NoBCvWGN8xZYoRx6Zi3JDxS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODNEMC8wQTE2MjA4QUFG QkMxMUVBQTk2MUNCODZDNEY5QUUwMi94T1R3MmdFSzlZWTN6RmxpaEhIcG1MY2tQ RkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hPVHcyZ0VLOVlZM3pGbGloSEhwbUxja1BGSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE ODNEMC8wQTE2MjA4QUFGQkMxMUVBQTk2MUNCODZDNEY5QUUwMi94T1R3MmdFSzlZ WTN6RmxpaEhIcG1MY2tQRkkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAweyiT6zhTUR7g9OTimbjoDjohFfE8s02HaZGIyZyYQ1DOkhzK7FcN7PgqXh4 WHcxgxUJ+6e8e4yoD4oIWMrNBg2FxfyCML7eTNzbXljcIr0xOPFHCGoSJ7avgsRp eqTHmrN86HPrrKmqYhY3/AM9sJ+6B4V5wxMCFpKJ+4IgyI4oHDLIMO0LOuKoKgTG nfpEGYljw68x0EL7inKOd06O59xCb7ZC+9PO5+8ae/nmuWA5pVYwHSwY6Rl+Ajve R6oxkhBDA0l3ZLzoOzUHWlivvCF4bqTPeCTnM4BIJkc7YO32tXO183zqxdyb57+K DCOwMrrYEPEq6/LjE9BgNgHF3w== -----END CERTIFICATE-----Generated at Thu May 21 09:39:00 2026 by rpki-client