$ rpki-client -vvf rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.mft File: D9l6GEHJl08fSQQu2j5yhCGq5f4.mft (raw, json) Hash identifier: aS4xyeK62uLlR8fnTTWan/2ap4lxZTHK0GyOBFzAHMY= Subject key identifier: AF:7D:A8:59:6B:9F:32:E4:5C:5A:0F:8E:A1:7D:A9:38:13:DD:51:DA Authority key identifier: 0F:D9:7A:18:41:C9:97:4F:1F:49:04:2E:DA:3E:72:84:21:AA:E5:FE Certificate issuer: /CN=A914ED2B/serialNumber=0FD97A1841C9974F1F49042EDA3E728421AAE5FE Certificate serial: 089A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9l6GEHJl08fSQQu2j5yhCGq5f4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.mft Manifest number: 0883 Signing time: Tue 12 May 2026 20:42:49 +0000 Manifest this update: Tue 12 May 2026 20:42:49 +0000 Manifest next update: Tue 19 May 2026 20:42:49 +0000 Files and hashes: 1: D9l6GEHJl08fSQQu2j5yhCGq5f4.crl (hash: rl5QapF6bBw6+0ey4kg/haIrqwuiUrsBjNk7eUTBdBo=) 2: D25A6970F40911EA8A5C9E70C4F9AE02.roa (hash: X+7xi8ucS3fgs8IMY8mWHVyiqI68xFhirEd+62e8Rek=) 3: CD0710DA3F3511ED84AFEA5BC4F9AE02.roa (hash: yYK7V7dW/D0eC17jG/LycZEBlM7X3W0O8v5bUzFm2dA=) 4: D31B3092F40911EA8A5C9E70C4F9AE02.roa (hash: xE0G8jy0x1aFTqJiiedpm0HY07HDA+9aAMGkr13aJlo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.crl rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9l6GEHJl08fSQQu2j5yhCGq5f4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 20:42:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2202 (0x89a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914ED2B, serialNumber=0FD97A1841C9974F1F49042EDA3E728421AAE5FE Validity Not Before: May 12 20:42:49 2026 GMT Not After : May 19 20:42:49 2026 GMT Subject: CN=6a0390c9-466b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:fa:13:58:ba:4b:ed:62:06:c6:8f:2a:22:c1: d2:b4:2d:fb:ee:38:8a:23:d9:f7:4c:b7:f9:68:f7: e6:f2:fe:6b:a7:7c:7d:f5:36:8b:f2:df:07:68:18: 02:31:d0:06:7b:3b:c8:0d:f3:66:b2:e7:ee:07:d8: e2:6c:e2:c7:56:27:8e:1e:b7:b7:41:86:75:75:7d: d0:a7:32:1a:22:f1:f5:31:7a:29:04:0c:bc:35:ab: db:a3:f6:b2:1c:ea:8b:bd:28:ba:65:2e:ba:67:66: 59:80:ff:a2:31:d6:c5:62:0b:8f:51:3c:0f:34:de: 08:df:92:9c:3c:58:b2:ca:07:2a:f7:e1:7a:e1:4c: 8b:87:00:3f:f1:6f:1b:a5:8c:0a:1d:bf:61:6f:17: e6:63:4d:7f:04:0f:ee:af:c1:05:d9:db:26:f2:b1: 48:49:37:f5:71:a7:cd:a1:a5:ac:10:8a:fe:e9:e0: 2a:88:89:9f:8e:d2:5b:83:83:9c:09:56:eb:f5:01: 4b:58:d2:4d:37:b5:e1:2e:7e:b9:42:e0:5b:12:12: 40:f7:ae:c3:f9:e5:e9:9b:cf:ad:59:5e:f5:95:d6: f9:96:ad:65:f7:65:b2:57:d5:1f:bb:7a:dd:96:bb: 2a:26:7d:f3:cd:cb:bd:16:ec:46:18:a7:d3:6e:cf: a5:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:7D:A8:59:6B:9F:32:E4:5C:5A:0F:8E:A1:7D:A9:38:13:DD:51:DA X509v3 Authority Key Identifier: keyid:0F:D9:7A:18:41:C9:97:4F:1F:49:04:2E:DA:3E:72:84:21:AA:E5:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9l6GEHJl08fSQQu2j5yhCGq5f4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:f2:36:1a:fd:db:bb:a8:39:fc:45:2e:fb:a5:27:56:7c:39: 40:b8:b5:57:f9:f9:2a:61:fa:f8:45:da:ae:1f:19:3f:2b:a8: 70:d0:9f:96:09:cd:10:a7:5e:63:50:63:98:8a:fd:31:43:05: 85:9b:e8:4d:c0:ae:42:9c:15:78:5f:fd:5f:aa:95:62:22:a5: 15:f7:bb:7c:d4:eb:f4:3e:f4:1e:36:3c:d6:7f:a5:eb:a5:94: e0:d4:6a:25:23:0d:be:48:8b:a3:93:94:6c:83:d7:11:1f:20: 69:19:8a:66:87:8c:54:c0:96:a4:46:a7:e2:57:80:eb:0c:5e: 12:f0:21:ac:13:f8:90:77:66:6b:c5:bf:02:70:06:3c:ff:f5: 71:34:7f:5b:ea:c0:de:c6:d9:91:99:91:92:72:2b:98:81:57: 2c:97:82:32:33:e9:d5:1a:8f:78:99:8e:c1:84:c4:06:43:80: dc:b6:9b:0b:ab:90:03:54:d0:fa:7c:52:30:3d:97:33:0b:b1: 48:59:7e:09:c0:a4:0f:3a:04:f0:ac:14:2d:31:a3:08:54:8c: 08:7b:49:bf:40:ae:1b:ea:21:4a:27:d7:e1:52:e9:8b:cb:88: 17:6a:82:21:d9:2e:78:5c:7a:1e:d1:8f:d8:ca:27:dd:43:f7: 22:88:1d:03 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCJowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVEMkIxMTAvBgNVBAUTKDBGRDk3QTE4NDFDOTk3NEYxRjQ5MDQyRURBM0U3Mjg0 MjFBQUU1RkUwHhcNMjYwNTEyMjA0MjQ5WhcNMjYwNTE5MjA0MjQ5WjAYMRYwFAYD VQQDEw02YTAzOTBjOS00NjZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAufoTWLpL7WIGxo8qIsHStC377jiKI9n3TLf5aPfm8v5rp3x99TaL8t8HaBgC MdAGezvIDfNmsufuB9jibOLHVieOHre3QYZ1dX3QpzIaIvH1MXopBAy8Navbo/ay HOqLvSi6ZS66Z2ZZgP+iMdbFYguPUTwPNN4I35KcPFiyygcq9+F64UyLhwA/8W8b pYwKHb9hbxfmY01/BA/ur8EF2dsm8rFISTf1cafNoaWsEIr+6eAqiImfjtJbg4Oc CVbr9QFLWNJNN7XhLn65QuBbEhJA967D+eXpm8+tWV71ldb5lq1l92WyV9Ufu3rd lrsqJn3zzcu9FuxGGKfTbs+lTwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFK99qFlr nzLkXFoPjqF9qTgT3VHaMB8GA1UdIwQYMBaAFA/ZehhByZdPH0kELto+coQhquX+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUQyQi84QjY3MDBBNkY0 MDgxMUVBOTBBQzU2NkZDNEY5QUUwMi9EOWw2R0VISmwwOGZTUVF1Mmo1eWhDR3E1 ZjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Q5bDZHRUhKbDA4ZlNRUXUyajV5aENHcTVmNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RUQyQi84QjY3MDBBNkY0MDgxMUVBOTBBQzU2NkZDNEY5QUUwMi9EOWw2R0VISmww OGZTUVF1Mmo1eWhDR3E1ZjQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAJ/I2Gv3bu6g5/EUu+6UnVnw5QLi1V/n5KmH6+EXarh8ZPyuocNCflgnNEKde Y1BjmIr9MUMFhZvoTcCuQpwVeF/9X6qVYiKlFfe7fNTr9D70HjY81n+l66WU4NRq JSMNvkiLo5OUbIPXER8gaRmKZoeMVMCWpEan4leA6wxeEvAhrBP4kHdma8W/AnAG PP/1cTR/W+rA3sbZkZmRknIrmIFXLJeCMjPp1RqPeJmOwYTEBkOA3LabC6uQA1TQ +nxSMD2XMwuxSFl+CcCkDzoE8KwULTGjCFSMCHtJv0CuG+ohSifX4VLpi8uIF2qC IdkueFx6HtGP2Mon3UP3IogdAw== -----END CERTIFICATE-----Generated at Wed May 13 08:20:15 2026 by rpki-client