$ rpki-client -vvf rpki.apnic.net/member_repository/A915123C/68F53F32CB3E11E8882CDA3AC4F9AE02/909zX9xaW5M28yTDLLpVjrvSjZc.mft File: 909zX9xaW5M28yTDLLpVjrvSjZc.mft (raw, json) Hash identifier: NckLGo7JZqb0mQc/iuFtHVOtwR12jJmcMLEN4JW2rLg= Subject key identifier: 34:5F:B1:6B:73:8C:37:F5:47:24:CA:FF:FD:50:CC:ED:C7:83:62:BB Authority key identifier: F7:4F:73:5F:DC:5A:5B:93:36:F3:24:C3:2C:BA:55:8E:BB:D2:8D:97 Certificate issuer: /CN=A915123C/serialNumber=F74F735FDC5A5B9336F324C32CBA558EBBD28D97 Certificate serial: 1338 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/909zX9xaW5M28yTDLLpVjrvSjZc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915123C/68F53F32CB3E11E8882CDA3AC4F9AE02/909zX9xaW5M28yTDLLpVjrvSjZc.mft Manifest number: 132F Signing time: Tue 12 May 2026 17:01:22 +0000 Manifest this update: Tue 12 May 2026 17:01:21 +0000 Manifest next update: Tue 19 May 2026 17:01:21 +0000 Files and hashes: 1: 909zX9xaW5M28yTDLLpVjrvSjZc.crl (hash: 0Xq0ld9AC6ZSow3T2l9qEibhTeXmZtvU5vHJeqowmoA=) 2: 5232D4B6926B11F09CB88A3FC4F9AE02.roa (hash: TXksggudhoYnYZG8XJQZOjMGiQeEQ88l8YGg9Asd64Y=) 3: 51C3E830926B11F09CB88A3FC4F9AE02.roa (hash: qokabZtBOAlQ/LOtlITa957LjkcWQQzpeDyYnXOKXSA=) 4: 5144F80E926B11F09CB88A3FC4F9AE02.roa (hash: sFjuCeK0cCGXi+GkdmGnHvDeHOKZWdP9M+7beoSSfAw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915123C/68F53F32CB3E11E8882CDA3AC4F9AE02/909zX9xaW5M28yTDLLpVjrvSjZc.crl rsync://rpki.apnic.net/member_repository/A915123C/68F53F32CB3E11E8882CDA3AC4F9AE02/909zX9xaW5M28yTDLLpVjrvSjZc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/909zX9xaW5M28yTDLLpVjrvSjZc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 17:01:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4920 (0x1338) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915123C, serialNumber=F74F735FDC5A5B9336F324C32CBA558EBBD28D97 Validity Not Before: May 12 17:01:21 2026 GMT Not After : May 19 17:01:21 2026 GMT Subject: CN=6a035ce1-88da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:b9:2c:42:89:4a:66:0e:fd:f7:06:af:4b:3e: f1:37:00:85:95:e3:e1:38:2c:9d:82:2d:9c:a8:79: 4e:f1:0d:f8:86:81:24:b5:4b:f6:ef:39:a2:2d:01: ea:6b:be:67:ce:1e:b4:b7:b3:68:7d:9c:1b:c9:dd: 58:e2:6b:ea:6d:f4:47:9d:fd:86:2f:46:c3:ca:33: 01:74:b2:b7:3b:5c:b9:c8:c7:aa:06:ec:b7:bb:26: bd:f6:6e:2f:5b:42:d6:7c:08:fa:90:0c:3c:03:aa: cf:33:72:7a:f7:63:9b:6c:35:3d:df:de:1a:e6:5c: f6:7f:98:b3:f6:c4:fd:02:34:88:0c:b3:85:a8:fc: f1:c5:b5:86:93:39:cf:2b:29:e7:09:90:0e:b4:59: 62:0a:65:d0:4e:5b:a3:b1:6b:b6:5b:34:ac:39:9b: 38:0b:f1:d2:5d:b1:2f:79:a1:d2:cd:94:dd:10:bb: 19:6c:d8:03:0a:8a:f2:cc:0f:e1:ce:4e:ad:6e:46: 8e:53:cc:2f:54:1c:a3:8b:2b:9d:2e:6e:b7:d8:af: ef:5e:37:95:32:23:05:26:36:09:f7:af:1b:10:10: 1a:49:fa:5c:0f:f5:f7:37:6b:d1:a2:2c:b5:18:68: 59:cb:09:5b:da:d0:98:0e:14:6a:77:49:e0:db:34: 80:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:5F:B1:6B:73:8C:37:F5:47:24:CA:FF:FD:50:CC:ED:C7:83:62:BB X509v3 Authority Key Identifier: keyid:F7:4F:73:5F:DC:5A:5B:93:36:F3:24:C3:2C:BA:55:8E:BB:D2:8D:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915123C/68F53F32CB3E11E8882CDA3AC4F9AE02/909zX9xaW5M28yTDLLpVjrvSjZc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/909zX9xaW5M28yTDLLpVjrvSjZc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915123C/68F53F32CB3E11E8882CDA3AC4F9AE02/909zX9xaW5M28yTDLLpVjrvSjZc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:0d:e0:72:de:b3:b6:71:8a:c5:8e:0f:ef:29:f6:75:1e:a9: 09:75:3b:d3:89:32:15:05:a8:27:9f:e8:4a:d2:01:d1:29:ba: 71:86:27:47:61:14:f9:88:4b:62:f0:1f:b8:17:ef:3d:9b:07: 2f:b6:3d:8a:35:e5:06:f8:cd:84:1b:f7:cd:f8:13:1f:0b:af: 2e:16:99:b7:a2:13:61:ed:c1:58:c9:9d:f9:3c:73:2e:49:d0: 55:86:15:b2:e8:c2:83:62:ad:e2:3b:f2:c7:2a:00:d5:69:00: 3a:43:2f:27:20:55:22:fe:84:f0:11:b7:dd:53:a2:cc:e9:a8: f8:73:a1:1a:e6:a7:2c:50:7d:a4:0c:69:b8:54:ff:de:93:bd: 3c:0d:f3:c6:a5:80:fa:78:e8:d9:5b:ba:a8:f5:48:b7:f5:d5: b0:f5:0d:ff:4a:a1:3f:d4:87:68:62:f4:62:e2:9a:4b:3d:70: fc:42:2f:b3:94:1b:f5:77:5d:71:15:b4:67:05:63:01:0e:8f: da:79:b6:dd:9f:c4:c9:14:69:41:b2:0a:6d:b7:b0:0f:dd:65: 74:45:b7:ab:91:7d:55:78:9f:fd:47:ea:a3:0a:12:2c:c3:96: 53:82:30:c3:30:ae:39:55:fe:69:6d:91:e5:0d:e5:37:ac:fc: cb:e3:67:8c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICEzgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTEyM0MxMTAvBgNVBAUTKEY3NEY3MzVGREM1QTVCOTMzNkYzMjRDMzJDQkE1NThF QkJEMjhEOTcwHhcNMjYwNTEyMTcwMTIxWhcNMjYwNTE5MTcwMTIxWjAYMRYwFAYD VQQDEw02YTAzNWNlMS04OGRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz7ksQolKZg799wavSz7xNwCFlePhOCydgi2cqHlO8Q34hoEktUv27zmiLQHq a75nzh60t7NofZwbyd1Y4mvqbfRHnf2GL0bDyjMBdLK3O1y5yMeqBuy3uya99m4v W0LWfAj6kAw8A6rPM3J692ObbDU9394a5lz2f5iz9sT9AjSIDLOFqPzxxbWGkznP KynnCZAOtFliCmXQTlujsWu2WzSsOZs4C/HSXbEveaHSzZTdELsZbNgDCoryzA/h zk6tbkaOU8wvVByjiyudLm632K/vXjeVMiMFJjYJ968bEBAaSfpcD/X3N2vRoiy1 GGhZywlb2tCYDhRqd0ng2zSAJQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDRfsWtz jDf1RyTK//1QzO3Hg2K7MB8GA1UdIwQYMBaAFPdPc1/cWluTNvMkwyy6VY670o2X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTIzQy82OEY1M0YzMkNC M0UxMUU4ODgyQ0RBM0FDNEY5QUUwMi85MDl6WDl4YVc1TTI4eVRETExwVmpydlNq WmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzkwOXpYOXhhVzVNMjh5VERMTHBWanJ2U2paYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MTIzQy82OEY1M0YzMkNCM0UxMUU4ODgyQ0RBM0FDNEY5QUUwMi85MDl6WDl4YVc1 TTI4eVRETExwVmpydlNqWmMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAfQ3gct6ztnGKxY4P7yn2dR6pCXU704kyFQWoJ5/oStIB0Sm6cYYnR2EU+YhL YvAfuBfvPZsHL7Y9ijXlBvjNhBv3zfgTHwuvLhaZt6ITYe3BWMmd+TxzLknQVYYV sujCg2Kt4jvyxyoA1WkAOkMvJyBVIv6E8BG33VOizOmo+HOhGuanLFB9pAxpuFT/ 3pO9PA3zxqWA+njo2Vu6qPVIt/XVsPUN/0qhP9SHaGL0YuKaSz1w/EIvs5Qb9Xdd cRW0ZwVjAQ6P2nm23Z/EyRRpQbIKbbewD91ldEW3q5F9VXif/UfqowoSLMOWU4Iw wzCuOVX+aW2R5Q3lN6z8y+NnjA== -----END CERTIFICATE-----Generated at Wed May 13 14:52:00 2026 by rpki-client