$ rpki-client -vvf rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft File: d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft (raw, json) Hash identifier: 03sQZF8Z8mBC6Gy4z34HaKO2Jnv1vUm8//hdQPJx7PY= Subject key identifier: 57:2D:6B:84:57:2E:6B:DA:1E:AA:1D:EB:E1:0B:CF:1E:AF:7B:13:9A Authority key identifier: 77:40:CE:0E:6C:D0:54:C4:32:DE:46:D4:C3:ED:A1:4F:64:2F:DA:14 Certificate issuer: /CN=A9120AC1/serialNumber=7740CE0E6CD054C432DE46D4C3EDA14F642FDA14 Certificate serial: 057A Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft Manifest number: 0566 Signing time: Tue 12 May 2026 23:28:16 +0000 Manifest this update: Tue 12 May 2026 23:28:15 +0000 Manifest next update: Tue 19 May 2026 23:28:15 +0000 Files and hashes: 1: d0DODmzQVMQy3kbUw-2hT2Qv2hQ.crl (hash: Mck1uF5LGt+Zo3XVDrT2xijMYM6CJINtIEGFZjXAOl8=) 2: B5AC177E3E0411ECABD9496CC4F9AE02.roa (hash: yeDD3azucqTXwa0Gdb8W5tD9O2qrp+zwpH6Y+zEBWbM=) 3: 9BBDF5DEFFD611EF9AE4D35EC4F9AE02.roa (hash: Z6zpJNeDiRoumvX5lCIDf2X6SZzpmpEYlhnAJ6yadjo=) 4: EBF4C0063C8811EC889B9D78C4F9AE02.roa (hash: xL18VcZ56ntQg06dxu8mPMsho0DT/fe8AiSvaUT/7NM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.crl rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 23:28:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1402 (0x57a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120AC1, serialNumber=7740CE0E6CD054C432DE46D4C3EDA14F642FDA14 Validity Not Before: May 12 23:28:15 2026 GMT Not After : May 19 23:28:15 2026 GMT Subject: CN=6a03b790-0fc3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:b4:00:4c:75:8c:10:39:cd:d6:44:69:24:5b: 48:8f:68:65:00:f5:ce:a7:e2:77:9b:05:a2:48:65: 8b:f7:0c:0a:d3:7e:23:ec:51:0b:87:31:97:ca:2d: bf:07:98:8b:21:bf:8d:76:26:19:7b:ab:fe:46:ac: 35:e9:db:ea:30:69:b9:0c:96:6d:8c:bb:4a:b5:77: 1c:c6:3e:c3:c5:ed:cb:57:6c:16:dd:0a:3e:a3:08: d5:69:ff:de:f0:2a:36:a4:d0:cb:e2:ba:43:55:4b: 64:68:f0:d7:0a:0b:04:2d:c4:df:df:58:6e:45:be: ed:e1:ea:51:6d:ff:53:61:e5:de:ee:b9:ea:4d:cd: d6:1d:df:27:b6:42:01:0c:44:fa:36:ae:aa:db:bb: bc:a0:f4:53:6d:34:a6:ec:a0:b1:98:a2:08:a5:21: fb:02:c7:0f:f6:25:86:77:5f:25:26:9e:2d:c8:2a: 29:01:90:a7:b5:7d:40:51:6a:3f:a0:dc:cb:6d:d5: 5f:af:46:98:d1:ec:03:ae:26:5f:59:3f:51:f9:12: f8:ab:b1:02:d9:ff:49:68:15:ea:c0:a1:c1:0c:b8: ce:0e:ef:c0:aa:3c:6a:b4:5e:9d:5d:67:02:20:20: 2a:71:d3:a6:62:4b:49:31:33:18:76:c0:7c:0c:9a: d6:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:2D:6B:84:57:2E:6B:DA:1E:AA:1D:EB:E1:0B:CF:1E:AF:7B:13:9A X509v3 Authority Key Identifier: keyid:77:40:CE:0E:6C:D0:54:C4:32:DE:46:D4:C3:ED:A1:4F:64:2F:DA:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:de:8d:95:4c:7c:1d:fe:56:de:35:48:f2:fa:a2:50:12:30: 62:0c:73:0c:4a:a5:4a:26:b5:63:87:07:0b:3d:e4:53:7b:0b: 57:ef:da:4f:da:05:b3:12:7f:81:c3:68:2e:b5:a9:aa:fe:88: 8f:e4:d1:65:c4:1d:22:c4:02:ce:b5:29:d2:c6:71:98:6d:75: 05:95:43:85:c7:e9:af:82:f6:75:0e:6c:28:bc:26:0a:d0:09: 19:89:d5:f6:a1:6d:bc:be:26:8d:0e:79:17:48:56:c2:87:53: ee:67:e6:41:30:77:72:5e:d4:65:69:90:4e:1e:98:f3:ff:9c: fa:f6:ef:90:0c:a7:ba:5f:d3:c9:08:ed:58:e2:a8:66:46:42: 09:b0:29:03:d4:f1:a2:41:5d:00:0e:9f:b4:38:4e:0c:78:47: 2e:a1:db:20:ce:a5:5a:b5:ed:44:df:e5:41:a1:82:90:2a:2b: 4c:36:04:54:7a:31:65:3a:06:5d:00:09:74:8d:25:92:20:8a: ed:40:d7:10:5a:5c:6c:67:83:a9:06:43:6b:8e:6d:e1:cc:4d: b8:d7:0e:d9:93:b9:28:41:bc:fd:a0:e2:22:2b:1e:72:a9:c0: 65:6f:01:33:e1:f7:a1:04:80:a6:a1:a7:2f:ab:d1:0a:11:7e: 2f:1a:92:30 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBXowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBBQzExMTAvBgNVBAUTKDc3NDBDRTBFNkNEMDU0QzQzMkRFNDZENEMzRURBMTRG NjQyRkRBMTQwHhcNMjYwNTEyMjMyODE1WhcNMjYwNTE5MjMyODE1WjAYMRYwFAYD VQQDEw02YTAzYjc5MC0wZmMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+bQATHWMEDnN1kRpJFtIj2hlAPXOp+J3mwWiSGWL9wwK034j7FELhzGXyi2/ B5iLIb+NdiYZe6v+Rqw16dvqMGm5DJZtjLtKtXccxj7Dxe3LV2wW3Qo+owjVaf/e 8Co2pNDL4rpDVUtkaPDXCgsELcTf31huRb7t4epRbf9TYeXe7rnqTc3WHd8ntkIB DET6Nq6q27u8oPRTbTSm7KCxmKIIpSH7AscP9iWGd18lJp4tyCopAZCntX1AUWo/ oNzLbdVfr0aY0ewDriZfWT9R+RL4q7EC2f9JaBXqwKHBDLjODu/AqjxqtF6dXWcC ICAqcdOmYktJMTMYdsB8DJrWawIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFcta4RX LmvaHqod6+ELzx6vexOaMB8GA1UdIwQYMBaAFHdAzg5s0FTEMt5G1MPtoU9kL9oU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEFDMS8zNTkwNjVBNjMw OTcxMUVDQjI4NUE2NEJDNEY5QUUwMi9kMERPRG16UVZNUXkza2JVdy0yaFQyUXYy aFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2QwRE9EbXpRVk1ReTNrYlV3LTJoVDJRdjJoUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MEFDMS8zNTkwNjVBNjMwOTcxMUVDQjI4NUE2NEJDNEY5QUUwMi9kMERPRG16UVZN UXkza2JVdy0yaFQyUXYyaFEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAHN6NlUx8Hf5W3jVI8vqiUBIwYgxzDEqlSia1Y4cHCz3kU3sLV+/aT9oFsxJ/ gcNoLrWpqv6Ij+TRZcQdIsQCzrUp0sZxmG11BZVDhcfpr4L2dQ5sKLwmCtAJGYnV 9qFtvL4mjQ55F0hWwodT7mfmQTB3cl7UZWmQTh6Y8/+c+vbvkAynul/TyQjtWOKo ZkZCCbApA9TxokFdAA6ftDhODHhHLqHbIM6lWrXtRN/lQaGCkCorTDYEVHoxZToG XQAJdI0lkiCK7UDXEFpcbGeDqQZDa45t4cxNuNcO2ZO5KEG8/aDiIisecqnAZW8B M+H3oQSApqGnL6vRChF+LxqSMA== -----END CERTIFICATE-----Generated at Wed May 13 06:17:24 2026 by rpki-client