$ rpki-client -vvf rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/09Fa7ppPiuXCgRCKfS062B1Oec0.mft File: 09Fa7ppPiuXCgRCKfS062B1Oec0.mft (raw, json) Hash identifier: fY+yzepj5dxrYjxpQR7NHgKoTasiFpzgP53HW7WP4S8= Subject key identifier: 75:F2:17:FF:B6:2D:13:18:D2:B9:1D:10:7D:4A:F4:AB:D0:00:A2:46 Authority key identifier: D3:D1:5A:EE:9A:4F:8A:E5:C2:81:10:8A:7D:2D:3A:D8:1D:4E:79:CD Certificate issuer: /CN=A91397C2/serialNumber=D3D15AEE9A4F8AE5C281108A7D2D3AD81D4E79CD Certificate serial: 08BF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/09Fa7ppPiuXCgRCKfS062B1Oec0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/09Fa7ppPiuXCgRCKfS062B1Oec0.mft Manifest number: 0887 Signing time: Sat 18 Apr 2026 20:36:59 +0000 Manifest this update: Sat 18 Apr 2026 20:36:58 +0000 Manifest next update: Sat 25 Apr 2026 20:36:58 +0000 Files and hashes: 1: 09Fa7ppPiuXCgRCKfS062B1Oec0.crl (hash: h1nqRYYOo+RA8JNAPYR7zoMHXg5hrF7wDASch/z/zDg=) 2: E4FA38362D2311F1A198B1F8B7833773.roa (hash: XioPrFVJE9iRgMu/wpEb87MQIymypqkVs8XZL4sAu4o=) 3: 931A1664264611F1BB7525369F833773.roa (hash: O+dFRmqz0HLQWE2NlORO6GptWeFGJW4FEbE2GeFkulo=) 4: 0C64C6B2821011F0B329B866C4F9AE02.roa (hash: UuZBWjQy/vvCDj1GH11Ut9+9Pjsx/5KL/8Qu7tKsi7U=) 5: 3AA556009A8411EFB791ED77C4F9AE02.roa (hash: 6t+wjHRQ/GqT5IcSFRj+6zc7NKRi89qTochP2LMsRS8=) 6: 7F9EB0A28CF111F09EC8727CC4F9AE02.roa (hash: gzcB5bzyDXKQ7TWulNDMH2WNKACJo+cBlc1OpEzaIqo=) 7: B7AD6F08264611F1A7E2573D9F833773.roa (hash: cAi1E/gIPdIvRZ5EylPtBXr5xfvPwzP6uzvwERgkasg=) 8: BE79CDCE16AF11F08B8C4061C4F9AE02.roa (hash: PXtviaHqQJLCMEu9tn+Fq2a2NfU37e2CJGxdPkOxh1g=) 9: C3738F60A78511F0B1D3342CC4F9AE02.roa (hash: tB/DnIqV82CpIIhO+TP7hcH1C9TgViQTWGZ17z9LsKo=) 10: 29BC840E002711EB8FA6A142C4F9AE02.roa (hash: 1hK6aCJ+7Fb1oUPOZ4u6IyJKzDYRKvTsmB4Y2o3Noe8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/09Fa7ppPiuXCgRCKfS062B1Oec0.crl rsync://rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/09Fa7ppPiuXCgRCKfS062B1Oec0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/09Fa7ppPiuXCgRCKfS062B1Oec0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Apr 2026 20:36:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2239 (0x8bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91397C2, serialNumber=D3D15AEE9A4F8AE5C281108A7D2D3AD81D4E79CD Validity Not Before: Apr 18 20:36:58 2026 GMT Not After : Apr 25 20:36:58 2026 GMT Subject: CN=69e3eb6b-c3d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:d2:e1:8d:b9:3b:b2:12:d8:98:ec:bd:13:41: c8:c9:4d:a3:77:4a:1f:9b:62:0a:49:a4:0c:38:14: fa:1a:c9:ea:5c:e4:3d:08:9e:56:09:65:17:0f:ff: 4d:72:7c:ef:ce:4f:77:a2:fe:8b:5e:dc:85:3d:f9: 9e:7b:3b:62:1f:10:a5:e8:13:f8:bc:69:35:0e:85: 7e:b5:ca:81:bf:58:3c:ee:af:93:a9:a6:65:e8:79: 2b:a1:33:ce:f3:ee:fb:bf:72:12:4c:0c:95:26:06: 30:07:14:fc:6e:70:61:38:27:d8:67:d7:bf:ef:7a: d6:e9:0d:83:88:de:41:93:f7:5c:ad:ca:5b:e9:41: 70:bf:76:cc:ce:5e:b7:5e:ef:a2:18:7b:c5:ca:f9: 2e:fb:62:94:ff:a8:94:c1:69:b9:da:7e:a6:84:dc: 3f:7f:af:51:4f:b0:aa:b6:3c:79:64:92:3b:b8:12: 9c:ed:58:b3:90:a6:05:c0:82:2f:a4:e1:f2:15:41: 91:82:7e:5f:b5:61:5d:01:65:75:f7:b9:15:b6:44: 73:2a:38:44:c1:71:18:84:2e:2d:39:fa:ae:4c:01: 6b:bd:fe:7d:6a:dc:c3:47:b7:4f:65:d9:a9:d4:64: 34:1d:27:fd:de:d7:3e:62:73:eb:8d:e2:ca:7c:62: 45:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:F2:17:FF:B6:2D:13:18:D2:B9:1D:10:7D:4A:F4:AB:D0:00:A2:46 X509v3 Authority Key Identifier: keyid:D3:D1:5A:EE:9A:4F:8A:E5:C2:81:10:8A:7D:2D:3A:D8:1D:4E:79:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/09Fa7ppPiuXCgRCKfS062B1Oec0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/09Fa7ppPiuXCgRCKfS062B1Oec0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/09Fa7ppPiuXCgRCKfS062B1Oec0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:8d:74:8a:33:bf:2b:fa:e3:61:1a:41:7d:b8:6d:86:e1:b2: 26:64:29:54:ba:95:7c:8d:23:61:6d:50:ef:ce:f5:47:5d:58: 0d:b3:0d:d9:37:18:64:50:b8:d5:85:16:2b:e2:a7:a9:b5:c6: be:8a:1a:aa:36:8e:99:87:ac:98:08:f2:58:09:79:91:0f:2a: df:71:48:5e:18:a4:cf:a5:7a:24:53:2f:b0:c9:b5:3d:f6:5b: 40:e6:8e:82:4e:20:b1:4e:92:6c:42:c8:4a:8e:a2:46:a0:b5: 55:e7:97:83:39:5d:57:c5:08:10:cb:7c:7d:20:de:c7:ec:b7: 47:da:a7:7c:6c:ae:1b:a9:65:29:2f:b4:8a:82:c5:90:95:6c: 36:16:23:70:4a:25:6e:38:ca:9e:17:8d:1d:20:cc:6e:20:00: 20:1d:ec:2c:fd:1c:63:7f:cf:87:2c:0f:01:89:82:b2:d3:a2: 95:83:01:76:e8:a4:a0:7c:db:65:c2:dd:13:15:49:79:93:d4: de:bf:3d:2c:cf:2d:a1:82:76:e8:d3:ec:78:13:7d:db:86:5e: ae:ba:4c:81:a3:30:8f:bd:7f:ff:d1:8b:b7:68:33:94:d9:0f: 91:85:2d:7c:c6:9b:51:f7:87:03:31:f6:4e:eb:5b:ce:5f:c1: 4e:7c:1f:c3 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCL8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzk3QzIxMTAvBgNVBAUTKEQzRDE1QUVFOUE0RjhBRTVDMjgxMTA4QTdEMkQzQUQ4 MUQ0RTc5Q0QwHhcNMjYwNDE4MjAzNjU4WhcNMjYwNDI1MjAzNjU4WjAYMRYwFAYD VQQDEw02OWUzZWI2Yi1jM2Q2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwtLhjbk7shLYmOy9E0HIyU2jd0ofm2IKSaQMOBT6GsnqXOQ9CJ5WCWUXD/9N cnzvzk93ov6LXtyFPfmeeztiHxCl6BP4vGk1DoV+tcqBv1g87q+TqaZl6HkroTPO 8+77v3ISTAyVJgYwBxT8bnBhOCfYZ9e/73rW6Q2DiN5Bk/dcrcpb6UFwv3bMzl63 Xu+iGHvFyvku+2KU/6iUwWm52n6mhNw/f69RT7Cqtjx5ZJI7uBKc7VizkKYFwIIv pOHyFUGRgn5ftWFdAWV197kVtkRzKjhEwXEYhC4tOfquTAFrvf59atzDR7dPZdmp 1GQ0HSf93tc+YnPrjeLKfGJFAwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHXyF/+2 LRMY0rkdEH1K9KvQAKJGMB8GA1UdIwQYMBaAFNPRWu6aT4rlwoEQin0tOtgdTnnN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTdDMi80RTQyNkRFOEZC RUExMUVBOTQwQTFEMTlDNEY5QUUwMi8wOUZhN3BwUGl1WENnUkNLZlMwNjJCMU9l YzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzA5RmE3cHBQaXVYQ2dSQ0tmUzA2MkIxT2VjMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OTdDMi80RTQyNkRFOEZCRUExMUVBOTQwQTFEMTlDNEY5QUUwMi8wOUZhN3BwUGl1 WENnUkNLZlMwNjJCMU9lYzAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAPo10ijO/K/rjYRpBfbhthuGyJmQpVLqVfI0jYW1Q7871R11YDbMN2TcYZFC4 1YUWK+KnqbXGvooaqjaOmYesmAjyWAl5kQ8q33FIXhikz6V6JFMvsMm1PfZbQOaO gk4gsU6SbELISo6iRqC1VeeXgzldV8UIEMt8fSDex+y3R9qnfGyuG6llKS+0ioLF kJVsNhYjcEolbjjKnheNHSDMbiAAIB3sLP0cY3/PhywPAYmCstOilYMBduikoHzb ZcLdExVJeZPU3r89LM8toYJ26NPseBN924ZerrpMgaMwj71//9GLt2gzlNkPkYUt fMabUfeHAzH2Tutbzl/BTnwfww== -----END CERTIFICATE-----Generated at Sun Apr 19 08:22:32 2026 by rpki-client