$ rpki-client -vvf rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/09Fa7ppPiuXCgRCKfS062B1Oec0.mft File: 09Fa7ppPiuXCgRCKfS062B1Oec0.mft (raw, json) Hash identifier: eDB1KR96O/W0aPTzOOdUuRq4OA3m9hUhQHZm09QIJbI= Subject key identifier: CA:40:53:93:A6:31:5F:66:6C:4F:A8:37:F5:F7:20:6C:8D:8F:22:3C Authority key identifier: D3:D1:5A:EE:9A:4F:8A:E5:C2:81:10:8A:7D:2D:3A:D8:1D:4E:79:CD Certificate issuer: /CN=A91397C2/serialNumber=D3D15AEE9A4F8AE5C281108A7D2D3AD81D4E79CD Certificate serial: 08CD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/09Fa7ppPiuXCgRCKfS062B1Oec0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/09Fa7ppPiuXCgRCKfS062B1Oec0.mft Manifest number: 0894 Signing time: Tue 12 May 2026 20:46:32 +0000 Manifest this update: Tue 12 May 2026 20:46:32 +0000 Manifest next update: Tue 19 May 2026 20:46:32 +0000 Files and hashes: 1: 09Fa7ppPiuXCgRCKfS062B1Oec0.crl (hash: Y3Urt8N/9Gh67n2EQNMs6WkBVevMrkQFEdFeWv/EA3Y=) 2: 0C64C6B2821011F0B329B866C4F9AE02.roa (hash: UuZBWjQy/vvCDj1GH11Ut9+9Pjsx/5KL/8Qu7tKsi7U=) 3: BE79CDCE16AF11F08B8C4061C4F9AE02.roa (hash: PXtviaHqQJLCMEu9tn+Fq2a2NfU37e2CJGxdPkOxh1g=) 4: 29BC840E002711EB8FA6A142C4F9AE02.roa (hash: 1hK6aCJ+7Fb1oUPOZ4u6IyJKzDYRKvTsmB4Y2o3Noe8=) 5: E4FA38362D2311F1A198B1F8B7833773.roa (hash: AxJKOqSnxksdZpHOPb0q92RjtR735qgr4EIIyE6SdIo=) 6: B7AD6F08264611F1A7E2573D9F833773.roa (hash: cAi1E/gIPdIvRZ5EylPtBXr5xfvPwzP6uzvwERgkasg=) 7: 931A1664264611F1BB7525369F833773.roa (hash: O+dFRmqz0HLQWE2NlORO6GptWeFGJW4FEbE2GeFkulo=) 8: 7F9EB0A28CF111F09EC8727CC4F9AE02.roa (hash: gzcB5bzyDXKQ7TWulNDMH2WNKACJo+cBlc1OpEzaIqo=) 9: 3AA556009A8411EFB791ED77C4F9AE02.roa (hash: 6t+wjHRQ/GqT5IcSFRj+6zc7NKRi89qTochP2LMsRS8=) 10: C3738F60A78511F0B1D3342CC4F9AE02.roa (hash: tB/DnIqV82CpIIhO+TP7hcH1C9TgViQTWGZ17z9LsKo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/09Fa7ppPiuXCgRCKfS062B1Oec0.crl rsync://rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/09Fa7ppPiuXCgRCKfS062B1Oec0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/09Fa7ppPiuXCgRCKfS062B1Oec0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 20:46:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2253 (0x8cd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91397C2, serialNumber=D3D15AEE9A4F8AE5C281108A7D2D3AD81D4E79CD Validity Not Before: May 12 20:46:32 2026 GMT Not After : May 19 20:46:32 2026 GMT Subject: CN=6a0391a8-c9eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:43:37:3f:22:be:cd:44:9b:78:ad:2c:f7:1a: fb:3a:ad:40:1c:6e:1d:37:bc:17:e5:96:6c:e3:03: be:9f:76:ae:bc:6a:cd:35:79:da:32:60:b8:6f:f6: 21:5a:49:93:c2:a4:0b:b0:12:8d:68:bf:dd:a5:cf: c6:29:f6:cd:e5:ad:f4:33:4f:a8:b5:a1:ce:dd:b6: ea:a6:e1:29:7b:68:1e:c0:fe:43:fb:d4:20:22:d1: 95:2c:b5:d9:c7:38:3b:74:af:90:3f:6d:e1:16:57: 76:5c:a9:7d:92:9b:65:c2:16:a1:1b:0b:5f:21:e3: 56:5b:98:f0:29:e6:dc:c0:a4:35:21:81:86:fa:f6: 69:4b:c1:93:32:5e:5c:b6:c7:ed:d7:dd:54:be:a1: c6:50:38:0b:8b:cb:dd:90:fc:fe:53:50:5a:5a:47: 87:d0:ce:c7:cd:73:dd:2e:f2:a1:e5:ae:81:68:bc: 02:f0:f4:5b:4c:8e:54:31:51:5f:fe:66:e9:6b:3e: ad:e8:cf:44:ed:9c:e3:2b:f0:ea:7b:bc:b6:40:29: 99:59:00:7d:1c:21:7a:25:96:06:55:23:44:7d:07: ed:96:b3:80:86:43:5d:4b:c9:26:e9:9a:8f:4a:b4: 86:41:b1:e2:d7:82:72:e8:3f:23:dd:e3:17:7d:de: 00:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:40:53:93:A6:31:5F:66:6C:4F:A8:37:F5:F7:20:6C:8D:8F:22:3C X509v3 Authority Key Identifier: keyid:D3:D1:5A:EE:9A:4F:8A:E5:C2:81:10:8A:7D:2D:3A:D8:1D:4E:79:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/09Fa7ppPiuXCgRCKfS062B1Oec0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/09Fa7ppPiuXCgRCKfS062B1Oec0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/09Fa7ppPiuXCgRCKfS062B1Oec0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:8a:a8:95:77:71:e1:47:b9:cb:dd:43:28:04:9f:77:f1:57: 35:8f:7e:6f:da:71:40:d6:e1:40:82:21:36:de:b0:1d:0d:2f: 8b:eb:68:55:33:44:2a:7b:8a:f3:3d:a4:2e:15:36:88:68:cd: 37:2e:c8:1f:e8:25:9b:2c:e9:11:15:81:99:2f:57:fe:e7:3e: da:4f:f4:be:9d:d1:86:10:15:4d:64:1c:72:d3:d4:d7:21:16: 7e:d2:49:66:aa:01:2c:87:15:09:2b:4b:de:68:c2:3d:a1:c2: 9a:44:7b:bd:ba:2b:9f:ba:8b:e3:0b:0f:22:65:c9:5b:71:31: 72:e8:c9:7a:be:83:09:a5:2a:e9:b1:7b:36:34:8c:61:58:97: 16:6f:09:5d:6a:8d:b6:c3:84:16:d5:e1:b7:d4:cb:0b:05:4b: 97:77:64:a8:48:e4:ef:f2:83:bc:5c:fb:91:8f:98:30:c8:b8: 6c:bc:bc:ea:89:63:44:ca:9f:a0:93:d9:78:29:cc:d2:64:09: 06:5d:2f:ac:99:01:1d:72:12:f4:1e:72:dd:d3:3b:a7:f3:63: de:47:2f:26:3b:01:e8:c4:36:78:f1:f9:2b:50:16:96:72:94: 15:9e:c9:9d:8a:03:48:3c:e2:f9:03:f2:83:51:97:8b:94:ea: fc:9c:1f:8e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCM0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzk3QzIxMTAvBgNVBAUTKEQzRDE1QUVFOUE0RjhBRTVDMjgxMTA4QTdEMkQzQUQ4 MUQ0RTc5Q0QwHhcNMjYwNTEyMjA0NjMyWhcNMjYwNTE5MjA0NjMyWjAYMRYwFAYD VQQDEw02YTAzOTFhOC1jOWViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApkM3PyK+zUSbeK0s9xr7Oq1AHG4dN7wX5ZZs4wO+n3auvGrNNXnaMmC4b/Yh WkmTwqQLsBKNaL/dpc/GKfbN5a30M0+otaHO3bbqpuEpe2gewP5D+9QgItGVLLXZ xzg7dK+QP23hFld2XKl9kptlwhahGwtfIeNWW5jwKebcwKQ1IYGG+vZpS8GTMl5c tsft191UvqHGUDgLi8vdkPz+U1BaWkeH0M7HzXPdLvKh5a6BaLwC8PRbTI5UMVFf /mbpaz6t6M9E7ZzjK/Dqe7y2QCmZWQB9HCF6JZYGVSNEfQftlrOAhkNdS8km6ZqP SrSGQbHi14Jy6D8j3eMXfd4A2QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMpAU5Om MV9mbE+oN/X3IGyNjyI8MB8GA1UdIwQYMBaAFNPRWu6aT4rlwoEQin0tOtgdTnnN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTdDMi80RTQyNkRFOEZC RUExMUVBOTQwQTFEMTlDNEY5QUUwMi8wOUZhN3BwUGl1WENnUkNLZlMwNjJCMU9l YzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzA5RmE3cHBQaXVYQ2dSQ0tmUzA2MkIxT2VjMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OTdDMi80RTQyNkRFOEZCRUExMUVBOTQwQTFEMTlDNEY5QUUwMi8wOUZhN3BwUGl1 WENnUkNLZlMwNjJCMU9lYzAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEARIqolXdx4Ue5y91DKASfd/FXNY9+b9pxQNbhQIIhNt6wHQ0vi+toVTNEKnuK 8z2kLhU2iGjNNy7IH+glmyzpERWBmS9X/uc+2k/0vp3RhhAVTWQcctPU1yEWftJJ ZqoBLIcVCStL3mjCPaHCmkR7vborn7qL4wsPImXJW3ExcujJer6DCaUq6bF7NjSM YViXFm8JXWqNtsOEFtXht9TLCwVLl3dkqEjk7/KDvFz7kY+YMMi4bLy86oljRMqf oJPZeCnM0mQJBl0vrJkBHXIS9B5y3dM7p/Nj3kcvJjsB6MQ2ePH5K1AWlnKUFZ7J nYoDSDzi+QPyg1GXi5Tq/Jwfjg== -----END CERTIFICATE-----Generated at Wed May 13 05:30:48 2026 by rpki-client