$ rpki-client -vvf rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.mft File: d9okgAToxYcr33K6wSIsfMtujjc.mft (raw, json) Hash identifier: C+w8vdtMGrW4Kn9QanDdgbTRbWzJWDF9Ah81up7Uo8U= Subject key identifier: EF:83:22:E0:90:57:5F:FE:13:C8:E8:27:25:70:17:E3:30:D7:A2:61 Authority key identifier: 77:DA:24:80:04:E8:C5:87:2B:DF:72:BA:C1:22:2C:7C:CB:6E:8E:37 Certificate issuer: /CN=A9156342/serialNumber=77DA248004E8C5872BDF72BAC1222C7CCB6E8E37 Certificate serial: 0A38 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d9okgAToxYcr33K6wSIsfMtujjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.mft Manifest number: 0A11 Signing time: Tue 12 May 2026 19:53:09 +0000 Manifest this update: Tue 12 May 2026 19:53:08 +0000 Manifest next update: Tue 19 May 2026 19:53:08 +0000 Files and hashes: 1: d9okgAToxYcr33K6wSIsfMtujjc.crl (hash: u1KULPcIcctXGzu5YaPkFmy7Mzyk5W1ir/wsVNMxRpE=) 2: 3BABBD7699E611EAB3C00943C4F9AE02.roa (hash: goeW12JBA3cKKGwjatqM92u32XRcfD8Zb78gB6ELWSk=) 3: 3A58D9F499E611EAB3C00943C4F9AE02.roa (hash: Ix/A1HAv4E1o+T96OwAx6diCaMu8Un7l8lL1cR9lZ0I=) 4: 3AFD491C99E611EAB3C00943C4F9AE02.roa (hash: hAA41RG01uNOAJq/J2qFIRJdJvtjuAyTCQh8VD7YTr4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.crl rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d9okgAToxYcr33K6wSIsfMtujjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 19:53:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2616 (0xa38) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156342, serialNumber=77DA248004E8C5872BDF72BAC1222C7CCB6E8E37 Validity Not Before: May 12 19:53:08 2026 GMT Not After : May 19 19:53:08 2026 GMT Subject: CN=6a038525-b837 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:21:a4:58:d5:ea:60:03:fe:37:aa:74:ba:4c: fc:ae:72:90:c9:81:5d:65:32:ce:96:86:47:26:96: 04:90:81:84:bc:d7:09:3d:34:1a:5e:d9:e5:32:7a: a2:d7:46:00:a7:25:27:46:d7:25:f7:5f:2e:d1:19: 6b:a4:0e:e5:14:c4:9d:c1:f9:b6:8c:05:fa:1f:d4: 95:92:fc:c3:76:3b:9a:49:17:31:76:16:87:8e:d4: a7:dd:c1:84:5a:ee:7a:33:9e:42:20:b3:9b:bb:e5: dd:83:5a:98:20:41:b0:3e:1f:03:83:7d:8d:a0:63: 1f:88:42:9e:c4:24:ca:ae:c6:5f:41:e6:15:b3:9a: f7:b6:91:5b:8c:ef:4f:3d:7d:22:12:64:d0:01:a8: ef:3c:07:f1:74:66:c7:5f:92:f8:d5:06:c2:14:2f: 4d:e3:93:67:22:36:e0:27:0e:eb:8e:88:02:83:92: 95:94:b4:7b:89:21:03:2e:7f:32:ac:a2:47:c5:d4: 51:5b:6a:a4:d4:de:6d:a4:2e:a9:71:d1:1a:3e:d6: 0e:6c:b0:e7:e3:44:cc:b5:fb:91:31:0a:8a:c9:41: 4b:a3:6c:36:98:6a:f3:f6:c8:05:32:95:6b:4e:d3: 69:f0:55:87:06:65:68:55:10:6a:0a:45:be:47:69: 22:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:83:22:E0:90:57:5F:FE:13:C8:E8:27:25:70:17:E3:30:D7:A2:61 X509v3 Authority Key Identifier: keyid:77:DA:24:80:04:E8:C5:87:2B:DF:72:BA:C1:22:2C:7C:CB:6E:8E:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d9okgAToxYcr33K6wSIsfMtujjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:3c:74:31:7b:38:8b:bf:a6:67:46:e1:ce:ca:d9:e8:64:f0: f4:d8:63:58:3f:63:47:a1:e7:75:0d:47:cb:a7:14:c8:0a:46: 41:46:32:55:30:92:aa:2a:98:e7:d7:6a:ce:76:c6:3a:a6:bc: 16:05:b2:65:5b:92:c1:6d:b1:9c:df:20:a8:a4:70:ad:22:d6: ac:ee:40:a0:c2:0d:26:f5:cd:e6:47:62:37:10:c3:e0:39:2d: 96:50:83:37:86:5d:cb:7c:2a:15:1b:43:e8:7d:f3:31:7a:b0: 70:86:c7:85:62:8a:ed:6c:cc:da:df:fb:9c:61:23:6a:ab:6b: b3:fa:c9:8a:bf:1c:62:a3:84:99:ec:26:97:c0:66:67:2b:1e: 53:de:c0:7f:e4:52:8a:e5:3c:7f:7d:1b:e6:e5:3a:1a:40:11: 32:e7:09:ca:42:23:57:2e:3a:b6:60:46:17:69:c5:6f:32:27: 8c:be:07:53:fc:47:62:a4:92:78:a3:f6:71:86:b5:c4:3d:e7: 85:2a:ff:17:25:11:af:46:01:17:93:84:f1:67:97:ff:97:ce: ab:0a:ec:4b:25:92:2d:d9:33:4f:57:b7:29:49:ee:b6:b6:42: 67:28:9d:05:51:ce:aa:ea:b5:9f:64:e2:07:e3:ff:c1:cf:a7: 09:54:b5:be -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCjgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTYzNDIxMTAvBgNVBAUTKDc3REEyNDgwMDRFOEM1ODcyQkRGNzJCQUMxMjIyQzdD Q0I2RThFMzcwHhcNMjYwNTEyMTk1MzA4WhcNMjYwNTE5MTk1MzA4WjAYMRYwFAYD VQQDEw02YTAzODUyNS1iODM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2CGkWNXqYAP+N6p0ukz8rnKQyYFdZTLOloZHJpYEkIGEvNcJPTQaXtnlMnqi 10YApyUnRtcl918u0RlrpA7lFMSdwfm2jAX6H9SVkvzDdjuaSRcxdhaHjtSn3cGE Wu56M55CILObu+Xdg1qYIEGwPh8Dg32NoGMfiEKexCTKrsZfQeYVs5r3tpFbjO9P PX0iEmTQAajvPAfxdGbHX5L41QbCFC9N45NnIjbgJw7rjogCg5KVlLR7iSEDLn8y rKJHxdRRW2qk1N5tpC6pcdEaPtYObLDn40TMtfuRMQqKyUFLo2w2mGrz9sgFMpVr TtNp8FWHBmVoVRBqCkW+R2kiJQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFO+DIuCQ V1/+E8joJyVwF+Mw16JhMB8GA1UdIwQYMBaAFHfaJIAE6MWHK99yusEiLHzLbo43 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjM0Mi9CREY4OTA4MDk5 RTQxMUVBODlBNEMyNDBDNEY5QUUwMi9kOW9rZ0FUb3hZY3IzM0s2d1NJc2ZNdHVq amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Q5b2tnQVRveFljcjMzSzZ3U0lzZk10dWpqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjM0Mi9CREY4OTA4MDk5RTQxMUVBODlBNEMyNDBDNEY5QUUwMi9kOW9rZ0FUb3hZ Y3IzM0s2d1NJc2ZNdHVqamMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAWTx0MXs4i7+mZ0bhzsrZ6GTw9NhjWD9jR6HndQ1Hy6cUyApGQUYyVTCSqiqY 59dqznbGOqa8FgWyZVuSwW2xnN8gqKRwrSLWrO5AoMINJvXN5kdiNxDD4DktllCD N4Zdy3wqFRtD6H3zMXqwcIbHhWKK7WzM2t/7nGEjaqtrs/rJir8cYqOEmewml8Bm ZyseU97Af+RSiuU8f30b5uU6GkARMucJykIjVy46tmBGF2nFbzInjL4HU/xHYqSS eKP2cYa1xD3nhSr/FyURr0YBF5OE8WeX/5fOqwrsSyWSLdkzT1e3KUnutrZCZyid BVHOquq1n2TiB+P/wc+nCVS1vg== -----END CERTIFICATE-----Generated at Wed May 13 08:35:16 2026 by rpki-client