$ rpki-client -vvf rpki.apnic.net/member_repository/A91A25DF/E61240825ED511F09CF1D50CC4F9AE02/089k1dsXYfy2pVLwaAkTMMW19Ts.mft File: 089k1dsXYfy2pVLwaAkTMMW19Ts.mft (raw, json) Hash identifier: xdkPZlL3aTrijBvMgdekGlZLZ+liImRJi8FUtH99XrE= Subject key identifier: BD:5D:AC:E7:D8:EC:BA:C2:E6:0D:69:47:5B:D9:9B:14:EA:98:C8:12 Authority key identifier: D3:CF:64:D5:DB:17:61:FC:B6:A5:52:F0:68:09:13:30:C5:B5:F5:3B Certificate issuer: /CN=A91A25DF/serialNumber=D3CF64D5DB1761FCB6A552F068091330C5B5F53B Certificate serial: A0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/089k1dsXYfy2pVLwaAkTMMW19Ts.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A25DF/E61240825ED511F09CF1D50CC4F9AE02/089k1dsXYfy2pVLwaAkTMMW19Ts.mft Manifest number: 9E Signing time: Mon 11 May 2026 07:29:46 +0000 Manifest this update: Mon 11 May 2026 07:29:46 +0000 Manifest next update: Mon 18 May 2026 07:29:46 +0000 Files and hashes: 1: 089k1dsXYfy2pVLwaAkTMMW19Ts.crl (hash: W+/k/zKk3nwau1VydU6+EZ8bE1FEc/XNd459ucx3x1U=) 2: C54DD1F45EDA11F0A5EAB579C4F9AE02.roa (hash: Hc8ozT9yDfNYsIpquS99Gm4q+mTiTQ1cphIlHACdz5k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A25DF/E61240825ED511F09CF1D50CC4F9AE02/089k1dsXYfy2pVLwaAkTMMW19Ts.crl rsync://rpki.apnic.net/member_repository/A91A25DF/E61240825ED511F09CF1D50CC4F9AE02/089k1dsXYfy2pVLwaAkTMMW19Ts.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/089k1dsXYfy2pVLwaAkTMMW19Ts.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 07:29:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 160 (0xa0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A25DF, serialNumber=D3CF64D5DB1761FCB6A552F068091330C5B5F53B Validity Not Before: May 11 07:29:46 2026 GMT Not After : May 18 07:29:46 2026 GMT Subject: CN=6a01856a-3f39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:9b:af:52:87:e6:1e:71:9e:4b:82:e4:0b:90: 68:8d:e3:bc:ef:9e:17:c3:c1:18:fd:d4:37:f3:84: 75:79:68:3d:74:5f:2f:eb:f2:a1:e5:35:a8:84:ee: b4:51:c4:ef:c1:4f:3d:bc:ec:f1:72:b7:b1:cc:83: 2b:0a:67:04:d5:de:22:16:48:98:ee:4c:02:59:d8: 39:b9:4f:c5:ed:33:66:c8:fc:e8:34:6b:32:c5:dd: c9:84:bf:5d:01:cc:b7:bc:b7:cf:47:95:48:68:77: da:96:07:60:c7:96:7b:e8:61:f9:2e:c1:4a:b0:eb: 66:f9:29:77:fe:cb:81:71:c3:f0:28:71:80:04:3f: f5:2d:d2:e4:cf:b2:6a:99:6c:bc:79:cc:92:f4:9e: 87:fa:05:dd:ac:26:ca:ee:c2:1f:88:5d:e3:56:8c: 89:d7:d1:ce:2b:7d:86:9d:d4:55:4c:9a:5b:33:67: 45:fa:bd:9b:b3:58:46:0b:09:c6:e9:9d:1b:f0:ce: 16:f4:8f:b8:5a:4d:96:b1:2e:3b:bf:46:d2:e2:67: fc:1f:20:96:1f:ae:59:19:72:c5:61:8b:1a:da:a2: 5f:7d:64:c9:47:30:3e:7c:e4:83:9f:88:98:fd:9b: c6:98:99:0a:04:8d:ab:14:2b:a7:a0:e5:40:2c:3c: 15:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:5D:AC:E7:D8:EC:BA:C2:E6:0D:69:47:5B:D9:9B:14:EA:98:C8:12 X509v3 Authority Key Identifier: keyid:D3:CF:64:D5:DB:17:61:FC:B6:A5:52:F0:68:09:13:30:C5:B5:F5:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A25DF/E61240825ED511F09CF1D50CC4F9AE02/089k1dsXYfy2pVLwaAkTMMW19Ts.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/089k1dsXYfy2pVLwaAkTMMW19Ts.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A25DF/E61240825ED511F09CF1D50CC4F9AE02/089k1dsXYfy2pVLwaAkTMMW19Ts.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:99:92:b4:06:a2:e4:78:0e:27:7d:a9:92:08:a1:e1:df:74: 77:52:69:c7:8b:06:37:fd:bd:09:f9:cc:6a:40:91:39:b4:4b: 30:af:c6:68:14:06:9a:97:20:72:37:c2:1c:a3:9a:65:f9:d5: 82:38:49:e4:60:e3:6f:d0:08:f6:1d:7a:93:38:eb:7a:00:bf: 43:92:e1:00:9c:83:8f:24:d7:82:b4:2b:fc:4d:03:fb:41:4f: 04:34:db:66:01:0d:03:32:7c:f9:fc:96:33:73:37:84:ec:7e: 16:ab:5a:d3:14:4a:75:c3:bf:b4:4f:2d:3d:39:45:42:93:94: 1c:63:62:9f:57:fe:d6:99:7a:d5:80:7f:20:90:7f:f2:07:d4: e0:5d:3c:7e:8a:85:0e:e3:18:4c:de:a1:f3:50:92:b1:70:42: ed:b3:72:84:73:2d:4a:fb:87:4f:8b:8b:d6:19:41:ff:ae:99: c8:ca:37:68:ef:3b:fe:08:69:57:3c:d9:d7:93:76:a7:38:44: 38:3e:f7:fa:9a:b7:67:16:24:b9:d0:f3:21:1d:2c:a7:6d:15: 07:e2:b9:3a:02:00:d4:c3:94:91:60:05:14:13:3e:b4:23:06: f9:b7:62:6b:30:dc:03:0a:40:38:c9:10:ca:a8:c1:ee:60:d2: b9:c1:9b:b2 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAKAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTI1REYxMTAvBgNVBAUTKEQzQ0Y2NEQ1REIxNzYxRkNCNkE1NTJGMDY4MDkxMzMw QzVCNUY1M0IwHhcNMjYwNTExMDcyOTQ2WhcNMjYwNTE4MDcyOTQ2WjAYMRYwFAYD VQQDEw02YTAxODU2YS0zZjM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtpuvUofmHnGeS4LkC5BojeO8754Xw8EY/dQ384R1eWg9dF8v6/Kh5TWohO60 UcTvwU89vOzxcrexzIMrCmcE1d4iFkiY7kwCWdg5uU/F7TNmyPzoNGsyxd3JhL9d Acy3vLfPR5VIaHfalgdgx5Z76GH5LsFKsOtm+Sl3/suBccPwKHGABD/1LdLkz7Jq mWy8ecyS9J6H+gXdrCbK7sIfiF3jVoyJ19HOK32GndRVTJpbM2dF+r2bs1hGCwnG 6Z0b8M4W9I+4Wk2WsS47v0bS4mf8HyCWH65ZGXLFYYsa2qJffWTJRzA+fOSDn4iY /ZvGmJkKBI2rFCunoOVALDwV4wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFL1drOfY 7LrC5g1pR1vZmxTqmMgSMB8GA1UdIwQYMBaAFNPPZNXbF2H8tqVS8GgJEzDFtfU7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMjVERi9FNjEyNDA4MjVF RDUxMUYwOUNGMUQ1MENDNEY5QUUwMi8wODlrMWRzWFlmeTJwVkx3YUFrVE1NVzE5 VHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzA4OWsxZHNYWWZ5MnBWTHdhQWtUTU1XMTlUcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MjVERi9FNjEyNDA4MjVFRDUxMUYwOUNGMUQ1MENDNEY5QUUwMi8wODlrMWRzWFlm eTJwVkx3YUFrVE1NVzE5VHMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAlZmStAai5HgOJ32pkgih4d90d1Jpx4sGN/29CfnMakCRObRLMK/GaBQGmpcg cjfCHKOaZfnVgjhJ5GDjb9AI9h16kzjregC/Q5LhAJyDjyTXgrQr/E0D+0FPBDTb ZgENAzJ8+fyWM3M3hOx+Fqta0xRKdcO/tE8tPTlFQpOUHGNin1f+1pl61YB/IJB/ 8gfU4F08foqFDuMYTN6h81CSsXBC7bNyhHMtSvuHT4uL1hlB/66ZyMo3aO87/ghp VzzZ15N2pzhEOD73+pq3ZxYkudDzIR0sp20VB+K5OgIA1MOUkWAFFBM+tCMG+bdi azDcAwpAOMkQyqjB7mDSucGbsg== -----END CERTIFICATE-----Generated at Wed May 13 03:10:42 2026 by rpki-client