$ rpki-client -vvf rpki.apnic.net/member_repository/A9145E09/87055B3208C811F0A0D34E56C4F9AE02/CKORxrOJyBDpW8YTnOyynV05WMQ.mft File: CKORxrOJyBDpW8YTnOyynV05WMQ.mft (raw, json) Hash identifier: YRl5f+o5el8xmJzqiJmLy/NqABhIRRjsdY5T4oefHFQ= Subject key identifier: 48:CD:0F:27:4C:C2:E7:09:C9:8A:D6:99:66:D5:F7:1E:BA:E7:E2:2D Authority key identifier: 08:A3:91:C6:B3:89:C8:10:E9:5B:C6:13:9C:EC:B2:9D:5D:39:58:C4 Certificate issuer: /CN=A9145E09/serialNumber=08A391C6B389C810E95BC6139CECB29D5D3958C4 Certificate serial: DF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CKORxrOJyBDpW8YTnOyynV05WMQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145E09/87055B3208C811F0A0D34E56C4F9AE02/CKORxrOJyBDpW8YTnOyynV05WMQ.mft Manifest number: D7 Signing time: Wed 13 May 2026 06:49:47 +0000 Manifest this update: Wed 13 May 2026 06:49:47 +0000 Manifest next update: Wed 20 May 2026 06:49:47 +0000 Files and hashes: 1: CKORxrOJyBDpW8YTnOyynV05WMQ.crl (hash: MtGGaoOzn7ejs9G6qA8Fyq0vCoFXYrikN/oJ6NUEZLU=) 2: EE04266A08C811F09F9B7B57C4F9AE02.roa (hash: cNFpk4xvE3+xhetFVsHGb9R/5Z63kJbCCHb2RP80z/0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145E09/87055B3208C811F0A0D34E56C4F9AE02/CKORxrOJyBDpW8YTnOyynV05WMQ.crl rsync://rpki.apnic.net/member_repository/A9145E09/87055B3208C811F0A0D34E56C4F9AE02/CKORxrOJyBDpW8YTnOyynV05WMQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CKORxrOJyBDpW8YTnOyynV05WMQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 06:14:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 223 (0xdf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145E09, serialNumber=08A391C6B389C810E95BC6139CECB29D5D3958C4 Validity Not Before: May 13 06:49:47 2026 GMT Not After : May 20 06:49:47 2026 GMT Subject: CN=6a041f0b-7def Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:83:c3:18:d1:23:47:a1:aa:02:bc:0f:34:ad: 6a:05:62:e0:ed:f0:27:a1:e1:e5:d9:60:bd:0f:5d: b1:c6:a5:87:0d:80:75:bc:b2:05:5e:b6:02:fa:18: 2d:15:85:88:67:c6:a1:cf:ed:c2:f5:f9:dc:88:5f: 77:74:b7:54:f8:1f:f3:28:ae:bd:62:8c:7a:55:1a: f3:d6:b4:17:3f:fc:14:aa:9d:75:9e:c1:80:cf:60: b6:f8:47:b8:45:4d:d7:cc:11:ca:48:80:01:9e:a5: 30:30:c3:89:a9:ed:5d:f4:94:23:b4:ac:9a:d9:de: d6:a7:18:73:48:1a:14:1a:5f:8e:b5:fa:1d:17:cf: 1d:bb:c3:74:39:c0:7c:d3:d3:ea:8e:74:45:e5:92: 83:69:11:84:d7:2d:ab:3d:dc:2f:ba:81:e7:76:31: 13:19:c5:81:64:d6:f8:f8:30:6d:cd:01:ca:3d:f9: 7d:ee:45:ab:9e:9a:5a:5a:dd:62:34:67:21:d5:20: a2:32:b4:12:32:63:5d:4b:06:70:1a:83:02:2d:5e: b6:aa:a2:51:99:01:e9:73:58:81:8d:3c:9b:d2:4d: 28:e4:db:6c:5f:54:90:ad:41:b5:32:10:ff:4a:f7: 56:d3:eb:f1:f4:5f:01:9c:c4:c6:61:a8:69:44:dd: f9:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:CD:0F:27:4C:C2:E7:09:C9:8A:D6:99:66:D5:F7:1E:BA:E7:E2:2D X509v3 Authority Key Identifier: keyid:08:A3:91:C6:B3:89:C8:10:E9:5B:C6:13:9C:EC:B2:9D:5D:39:58:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145E09/87055B3208C811F0A0D34E56C4F9AE02/CKORxrOJyBDpW8YTnOyynV05WMQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CKORxrOJyBDpW8YTnOyynV05WMQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145E09/87055B3208C811F0A0D34E56C4F9AE02/CKORxrOJyBDpW8YTnOyynV05WMQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:7c:ad:65:9f:79:ad:cc:51:10:f9:dc:e9:fd:eb:d8:a0:12: 15:b8:6d:1d:a4:95:ff:a4:ad:15:9f:42:78:83:99:5a:39:b1: 47:93:f7:5c:a2:1f:ff:61:d4:d0:eb:2f:cd:6e:c6:45:de:50: a2:58:da:a9:f4:b0:9b:8d:22:bf:30:98:3f:6f:4c:68:99:cf: a8:57:e4:3f:bd:78:59:ab:2e:a3:3e:ff:c1:09:7b:2a:56:a9: 57:5c:b3:ac:16:0c:a3:91:b9:8e:2d:ab:25:c6:ab:67:34:1f: a2:85:25:c9:71:f0:45:c2:8a:b7:d7:9b:d6:cd:f9:0d:6d:12: e8:70:66:d4:e6:30:5e:b4:44:36:61:52:32:ee:23:3d:f3:41: f2:9d:c4:af:3e:a4:e9:78:92:8e:f0:f6:c6:04:d3:d0:29:9f: 3f:13:93:15:57:82:cc:1e:04:27:bf:b2:a5:1d:b4:12:f4:d5: 2a:4d:f7:0b:e0:64:df:67:65:a9:e9:9d:92:e1:30:6b:d4:d2: 02:96:6c:9c:33:a3:69:a1:90:bb:a9:fe:e5:27:77:8f:ec:3f: 02:e5:8e:30:df:01:5c:30:09:03:28:e2:17:20:31:9b:6c:17: 4f:66:73:19:49:c7:2c:c2:7e:d9:57:70:a6:6e:b9:b5:1b:80: f1:57:78:93 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAN8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDVFMDkxMTAvBgNVBAUTKDA4QTM5MUM2QjM4OUM4MTBFOTVCQzYxMzlDRUNCMjlE NUQzOTU4QzQwHhcNMjYwNTEzMDY0OTQ3WhcNMjYwNTIwMDY0OTQ3WjAYMRYwFAYD VQQDEw02YTA0MWYwYi03ZGVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuYPDGNEjR6GqArwPNK1qBWLg7fAnoeHl2WC9D12xxqWHDYB1vLIFXrYC+hgt FYWIZ8ahz+3C9fnciF93dLdU+B/zKK69Yox6VRrz1rQXP/wUqp11nsGAz2C2+Ee4 RU3XzBHKSIABnqUwMMOJqe1d9JQjtKya2d7WpxhzSBoUGl+OtfodF88du8N0OcB8 09PqjnRF5ZKDaRGE1y2rPdwvuoHndjETGcWBZNb4+DBtzQHKPfl97kWrnppaWt1i NGch1SCiMrQSMmNdSwZwGoMCLV62qqJRmQHpc1iBjTyb0k0o5NtsX1SQrUG1MhD/ SvdW0+vx9F8BnMTGYahpRN35ZwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEjNDydM wucJyYrWmWbV9x665+ItMB8GA1UdIwQYMBaAFAijkcazicgQ6VvGE5zssp1dOVjE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NUUwOS84NzA1NUIzMjA4 QzgxMUYwQTBEMzRFNTZDNEY5QUUwMi9DS09SeHJPSnlCRHBXOFlUbk95eW5WMDVX TVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0NLT1J4ck9KeUJEcFc4WVRuT3l5blYwNVdNUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NUUwOS84NzA1NUIzMjA4QzgxMUYwQTBEMzRFNTZDNEY5QUUwMi9DS09SeHJPSnlC RHBXOFlUbk95eW5WMDVXTVEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAn3ytZZ95rcxREPnc6f3r2KASFbhtHaSV/6StFZ9CeIOZWjmxR5P3XKIf/2HU 0OsvzW7GRd5QoljaqfSwm40ivzCYP29MaJnPqFfkP714Wasuoz7/wQl7KlapV1yz rBYMo5G5ji2rJcarZzQfooUlyXHwRcKKt9eb1s35DW0S6HBm1OYwXrRENmFSMu4j PfNB8p3Erz6k6XiSjvD2xgTT0CmfPxOTFVeCzB4EJ7+ypR20EvTVKk33C+Bk32dl qemdkuEwa9TSApZsnDOjaaGQu6n+5Sd3j+w/AuWOMN8BXDAJAyjiFyAxm2wXT2Zz GUnHLMJ+2Vdwpm65tRuA8Vd4kw== -----END CERTIFICATE-----Generated at Wed May 13 15:21:00 2026 by rpki-client