$ rpki-client -vvf rpki.apnic.net/member_repository/A911A108/F958FC4A6C0011EEB98B430EC4F9AE02/ao09a_bbD13jJOQgxXOwqRhDx5Q.mft File: ao09a_bbD13jJOQgxXOwqRhDx5Q.mft (raw, json) Hash identifier: jQPwqy+bKvyLWVSLHpOltdbrdaIRso6vuW4YOYoCsUA= Subject key identifier: 34:FB:80:DE:A0:89:E8:65:9A:04:5D:11:54:6B:C8:EF:A2:D1:14:D6 Authority key identifier: 6A:8D:3D:6B:F6:DB:0F:5D:E3:24:E4:20:C5:73:B0:A9:18:43:C7:94 Certificate issuer: /CN=A911A108/serialNumber=6A8D3D6BF6DB0F5DE324E420C573B0A91843C794 Certificate serial: 01DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ao09a_bbD13jJOQgxXOwqRhDx5Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911A108/F958FC4A6C0011EEB98B430EC4F9AE02/ao09a_bbD13jJOQgxXOwqRhDx5Q.mft Manifest number: 01D9 Signing time: Fri 17 Apr 2026 03:17:19 +0000 Manifest this update: Fri 17 Apr 2026 03:17:19 +0000 Manifest next update: Fri 24 Apr 2026 03:17:19 +0000 Files and hashes: 1: ao09a_bbD13jJOQgxXOwqRhDx5Q.crl (hash: DAeGYoiJoNTz6TVvmp4PM5C5ht37wc4cmmATLIYvy7g=) 2: 2152B7B06C0411EEBC1AA814C4F9AE02.roa (hash: hDaWJ1MPMK/kTcYrElHYKR5D6BKNhIGyYI8+GpXOoQk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911A108/F958FC4A6C0011EEB98B430EC4F9AE02/ao09a_bbD13jJOQgxXOwqRhDx5Q.crl rsync://rpki.apnic.net/member_repository/A911A108/F958FC4A6C0011EEB98B430EC4F9AE02/ao09a_bbD13jJOQgxXOwqRhDx5Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ao09a_bbD13jJOQgxXOwqRhDx5Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 03:17:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 479 (0x1df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911A108, serialNumber=6A8D3D6BF6DB0F5DE324E420C573B0A91843C794 Validity Not Before: Apr 17 03:17:19 2026 GMT Not After : Apr 24 03:17:19 2026 GMT Subject: CN=69e1a63f-11d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:dd:dc:5e:34:a7:eb:a4:5a:08:3f:a6:e0:3a: ba:6b:2b:fb:d5:98:9d:f0:d8:57:d1:0c:ef:70:6a: 64:ab:94:39:fe:3c:86:aa:1c:34:ec:56:1d:db:56: a4:1a:b9:21:e4:78:4d:f7:f7:ec:e8:a5:69:65:1c: 25:79:ad:c1:aa:e4:5c:2c:43:4c:da:d9:8e:a3:d4: 52:55:b7:6e:ed:e3:d2:f6:c8:89:12:fb:40:f8:a4: 38:6d:ba:9a:69:3c:32:58:2b:bb:50:58:82:d9:98: 3c:62:e2:72:72:29:6f:97:67:f7:72:5a:4e:ef:06: b0:26:bf:c1:40:7c:a5:e2:62:71:c9:e1:7a:35:93: 4d:ef:4e:2a:ec:8e:48:96:12:9f:7e:ca:33:cc:4c: a4:40:be:14:65:4d:1d:bc:13:f3:1a:57:da:06:46: 87:a9:40:3b:9a:14:e6:e0:11:a6:b7:68:9b:f7:af: 4f:5d:b7:c9:c7:5d:bc:79:c4:8a:13:ea:59:14:c4: 2d:08:37:87:ba:e1:be:f7:c7:c4:39:16:07:ee:19: 05:83:45:23:4d:5f:e9:33:b2:ee:b4:f7:70:c4:3c: cd:46:9f:59:d1:a4:6c:5b:c0:ac:52:05:87:cd:0b: bd:97:3d:79:1e:c2:0d:16:a5:4a:96:35:60:c6:2e: 46:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:FB:80:DE:A0:89:E8:65:9A:04:5D:11:54:6B:C8:EF:A2:D1:14:D6 X509v3 Authority Key Identifier: keyid:6A:8D:3D:6B:F6:DB:0F:5D:E3:24:E4:20:C5:73:B0:A9:18:43:C7:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911A108/F958FC4A6C0011EEB98B430EC4F9AE02/ao09a_bbD13jJOQgxXOwqRhDx5Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ao09a_bbD13jJOQgxXOwqRhDx5Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911A108/F958FC4A6C0011EEB98B430EC4F9AE02/ao09a_bbD13jJOQgxXOwqRhDx5Q.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:f5:d7:f3:d7:be:46:22:76:d0:bf:d9:ec:bb:5e:04:c5:a6: 7c:75:2d:61:b4:32:a0:36:6e:a2:34:59:7e:ac:c6:9d:05:e1: 85:39:92:2e:47:a5:15:f1:2c:fa:e7:d8:11:a1:4c:df:6b:ea: 56:9d:e7:42:be:8c:30:7a:c6:4f:38:20:2b:89:67:1e:2e:32: 52:e1:67:a5:1b:ea:0a:52:ab:64:be:0c:8a:38:00:e6:6e:b9: 2b:e7:98:5c:93:48:66:25:83:97:c1:c5:c2:26:98:12:f7:b2: bb:f8:f3:b1:8d:3d:eb:59:d2:13:f2:d2:88:c6:df:ee:73:37: 6a:c8:88:2d:da:0d:05:3d:33:0e:c8:c2:44:2b:c1:ca:42:fb: b3:be:97:5f:b3:57:53:05:0d:40:e2:3f:8c:c0:d6:bc:99:94: 2a:40:43:1a:94:67:10:1e:b7:a0:c4:8b:0a:74:21:9a:9e:d6: 32:ce:2a:be:09:41:21:98:30:52:b7:9e:75:cd:b4:55:bc:f9: ed:66:86:c7:28:72:49:74:51:3c:e8:1e:82:c3:80:1f:b2:c7: a4:87:07:b2:ee:40:b5:46:c3:f3:67:fd:01:30:36:38:15:94: 56:36:b4:4f:7d:8c:f3:86:52:64:1c:b3:75:ac:5e:6e:07:06: cc:31:59:25 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAd8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUExMDgxMTAvBgNVBAUTKDZBOEQzRDZCRjZEQjBGNURFMzI0RTQyMEM1NzNCMEE5 MTg0M0M3OTQwHhcNMjYwNDE3MDMxNzE5WhcNMjYwNDI0MDMxNzE5WjAYMRYwFAYD VQQDEw02OWUxYTYzZi0xMWQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl93cXjSn66RaCD+m4Dq6ayv71Zid8NhX0QzvcGpkq5Q5/jyGqhw07FYd21ak Grkh5HhN9/fs6KVpZRwlea3BquRcLENM2tmOo9RSVbdu7ePS9siJEvtA+KQ4bbqa aTwyWCu7UFiC2Zg8YuJycilvl2f3clpO7wawJr/BQHyl4mJxyeF6NZNN704q7I5I lhKffsozzEykQL4UZU0dvBPzGlfaBkaHqUA7mhTm4BGmt2ib969PXbfJx128ecSK E+pZFMQtCDeHuuG+98fEORYH7hkFg0UjTV/pM7LutPdwxDzNRp9Z0aRsW8CsUgWH zQu9lz15HsINFqVKljVgxi5GXwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDT7gN6g iehlmgRdEVRryO+i0RTWMB8GA1UdIwQYMBaAFGqNPWv22w9d4yTkIMVzsKkYQ8eU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQTEwOC9GOTU4RkM0QTZD MDAxMUVFQjk4QjQzMEVDNEY5QUUwMi9hbzA5YV9iYkQxM2pKT1FneFhPd3FSaER4 NVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FvMDlhX2JiRDEzakpPUWd4WE93cVJoRHg1US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QTEwOC9GOTU4RkM0QTZDMDAxMUVFQjk4QjQzMEVDNEY5QUUwMi9hbzA5YV9iYkQx M2pKT1FneFhPd3FSaER4NVEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAgvXX89e+RiJ20L/Z7LteBMWmfHUtYbQyoDZuojRZfqzGnQXhhTmSLkelFfEs +ufYEaFM32vqVp3nQr6MMHrGTzggK4lnHi4yUuFnpRvqClKrZL4MijgA5m65K+eY XJNIZiWDl8HFwiaYEveyu/jzsY0961nSE/LSiMbf7nM3asiILdoNBT0zDsjCRCvB ykL7s76XX7NXUwUNQOI/jMDWvJmUKkBDGpRnEB63oMSLCnQhmp7WMs4qvglBIZgw Ureedc20Vbz57WaGxyhySXRRPOgegsOAH7LHpIcHsu5AtUbD82f9ATA2OBWUVja0 T32M84ZSZByzdaxebgcGzDFZJQ== -----END CERTIFICATE-----Generated at Fri Apr 17 14:31:23 2026 by rpki-client