$ rpki-client -vvf rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/09Fa7ppPiuXCgRCKfS062B1Oec0.mft File: 09Fa7ppPiuXCgRCKfS062B1Oec0.mft (raw, json) Hash identifier: /Anu/q+XcZNby5F7VOEQigPRB46KvkUqHA65tdH/k3I= Subject key identifier: 2A:8F:85:96:62:AC:08:FC:54:DB:50:37:C9:31:15:06:01:47:CB:A0 Authority key identifier: D3:D1:5A:EE:9A:4F:8A:E5:C2:81:10:8A:7D:2D:3A:D8:1D:4E:79:CD Certificate issuer: /CN=A91397C2/serialNumber=D3D15AEE9A4F8AE5C281108A7D2D3AD81D4E79CD Certificate serial: 08DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/09Fa7ppPiuXCgRCKfS062B1Oec0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/09Fa7ppPiuXCgRCKfS062B1Oec0.mft Manifest number: 08A4 Signing time: Fri 12 Jun 2026 20:42:26 +0000 Manifest this update: Fri 12 Jun 2026 20:42:25 +0000 Manifest next update: Fri 19 Jun 2026 20:42:25 +0000 Files and hashes: 1: 09Fa7ppPiuXCgRCKfS062B1Oec0.crl (hash: ixH4SD4mjm7O76o1uWVtz9YTFASli08Yudx6DhAiIYQ=) 2: 0C64C6B2821011F0B329B866C4F9AE02.roa (hash: UuZBWjQy/vvCDj1GH11Ut9+9Pjsx/5KL/8Qu7tKsi7U=) 3: 7F9EB0A28CF111F09EC8727CC4F9AE02.roa (hash: gzcB5bzyDXKQ7TWulNDMH2WNKACJo+cBlc1OpEzaIqo=) 4: 29BC840E002711EB8FA6A142C4F9AE02.roa (hash: 1hK6aCJ+7Fb1oUPOZ4u6IyJKzDYRKvTsmB4Y2o3Noe8=) 5: E4FA38362D2311F1A198B1F8B7833773.roa (hash: AxJKOqSnxksdZpHOPb0q92RjtR735qgr4EIIyE6SdIo=) 6: BE79CDCE16AF11F08B8C4061C4F9AE02.roa (hash: PXtviaHqQJLCMEu9tn+Fq2a2NfU37e2CJGxdPkOxh1g=) 7: B7AD6F08264611F1A7E2573D9F833773.roa (hash: cAi1E/gIPdIvRZ5EylPtBXr5xfvPwzP6uzvwERgkasg=) 8: 931A1664264611F1BB7525369F833773.roa (hash: O+dFRmqz0HLQWE2NlORO6GptWeFGJW4FEbE2GeFkulo=) 9: C3738F60A78511F0B1D3342CC4F9AE02.roa (hash: tB/DnIqV82CpIIhO+TP7hcH1C9TgViQTWGZ17z9LsKo=) 10: 3AA556009A8411EFB791ED77C4F9AE02.roa (hash: 6t+wjHRQ/GqT5IcSFRj+6zc7NKRi89qTochP2LMsRS8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/09Fa7ppPiuXCgRCKfS062B1Oec0.crl rsync://rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/09Fa7ppPiuXCgRCKfS062B1Oec0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/09Fa7ppPiuXCgRCKfS062B1Oec0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 20:42:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2269 (0x8dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91397C2, serialNumber=D3D15AEE9A4F8AE5C281108A7D2D3AD81D4E79CD Validity Not Before: Jun 12 20:42:25 2026 GMT Not After : Jun 19 20:42:25 2026 GMT Subject: CN=6a2c6f32-45bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:b4:d2:e8:30:c6:73:f0:79:9b:8e:6f:9d:0d: be:ba:0b:62:75:31:28:6f:a1:9f:d5:aa:d8:4e:5b: 16:cd:72:9c:9c:ca:f9:73:71:31:81:2d:92:4b:6b: e4:e7:c1:2f:65:5a:6b:99:b8:73:2a:eb:3d:69:ea: a5:ac:fc:a5:2c:15:7e:6d:63:9d:c1:47:69:0e:d7: 48:b1:d9:28:70:12:23:ea:dc:5d:77:be:a6:7c:5d: 19:20:38:2f:96:af:bd:b3:b2:83:6b:25:14:08:7a: d4:80:ba:6c:22:40:72:0c:3a:41:69:c0:ee:d2:a7: a8:a7:83:60:65:8f:c9:ad:22:3b:70:2f:f2:0e:56: 1e:f6:8e:63:11:72:7f:f0:73:6b:03:57:53:64:2e: 13:8b:1f:f1:0f:d1:fc:3e:f0:76:7f:53:f4:30:59: ad:0a:72:14:e3:3b:8d:42:4d:11:fa:0b:8e:52:4d: 86:7c:23:f1:7a:b9:b9:89:cb:de:ac:65:73:fc:22: 13:fa:02:5b:bf:7d:84:1d:ff:55:8b:02:90:73:b2: cc:f1:72:e2:c4:1c:72:17:f5:12:ce:cc:63:83:b9: 2f:bd:7c:1e:38:b9:39:84:32:74:78:53:ac:02:f9: c3:77:88:7f:80:8a:5d:6c:36:97:c3:74:11:80:47: 0e:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:8F:85:96:62:AC:08:FC:54:DB:50:37:C9:31:15:06:01:47:CB:A0 X509v3 Authority Key Identifier: keyid:D3:D1:5A:EE:9A:4F:8A:E5:C2:81:10:8A:7D:2D:3A:D8:1D:4E:79:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/09Fa7ppPiuXCgRCKfS062B1Oec0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/09Fa7ppPiuXCgRCKfS062B1Oec0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/09Fa7ppPiuXCgRCKfS062B1Oec0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:96:dc:f3:46:f4:86:3a:b9:f0:a6:18:e9:45:26:49:fd:51: dc:2a:42:ad:1f:9b:a9:19:af:0a:58:36:4d:79:c5:6b:28:b9: cb:0d:7d:f8:ca:de:d8:75:ad:2e:1c:b5:86:1f:5d:1a:cc:d2: 18:23:00:b3:41:59:3d:f3:0b:68:aa:ce:2b:b2:17:79:0a:be: d3:c4:40:0f:8b:e3:4a:42:06:c2:5d:17:66:63:5e:18:c4:a3: c5:a5:bc:40:b9:4a:af:50:96:bf:6a:ba:03:bc:14:58:b6:7f: 82:38:2c:98:ef:7a:e5:0f:c4:9c:b2:6a:b0:84:ab:47:0e:06: 0c:2f:b8:5b:27:44:ac:d4:f6:29:3c:a4:ed:03:58:7c:02:4d: 97:f3:e4:ac:2f:e2:6f:f8:b6:79:77:81:de:01:6b:1a:65:89: f0:6a:ce:2b:00:81:81:d6:0c:a5:21:08:72:1b:e3:c9:54:60: 0c:87:03:61:11:30:85:8d:86:20:05:13:dd:b2:b3:98:26:3a: aa:31:e6:1e:87:5a:1c:23:74:5c:b4:d9:be:8d:46:b6:44:57: 4b:c4:38:33:28:21:49:9e:9a:95:d8:80:4e:d6:2c:f7:43:f6: 02:e3:d4:99:c3:d1:ac:52:2a:21:d0:06:7e:92:49:d5:15:ce: 0f:6b:8d:31 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCN0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzk3QzIxMTAvBgNVBAUTKEQzRDE1QUVFOUE0RjhBRTVDMjgxMTA4QTdEMkQzQUQ4 MUQ0RTc5Q0QwHhcNMjYwNjEyMjA0MjI1WhcNMjYwNjE5MjA0MjI1WjAYMRYwFAYD VQQDEw02YTJjNmYzMi00NWJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkrTS6DDGc/B5m45vnQ2+ugtidTEob6Gf1arYTlsWzXKcnMr5c3ExgS2SS2vk 58EvZVprmbhzKus9aeqlrPylLBV+bWOdwUdpDtdIsdkocBIj6txdd76mfF0ZIDgv lq+9s7KDayUUCHrUgLpsIkByDDpBacDu0qeop4NgZY/JrSI7cC/yDlYe9o5jEXJ/ 8HNrA1dTZC4Tix/xD9H8PvB2f1P0MFmtCnIU4zuNQk0R+guOUk2GfCPxerm5icve rGVz/CIT+gJbv32EHf9ViwKQc7LM8XLixBxyF/USzsxjg7kvvXweOLk5hDJ0eFOs AvnDd4h/gIpdbDaXw3QRgEcOgQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCqPhZZi rAj8VNtQN8kxFQYBR8ugMB8GA1UdIwQYMBaAFNPRWu6aT4rlwoEQin0tOtgdTnnN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTdDMi80RTQyNkRFOEZC RUExMUVBOTQwQTFEMTlDNEY5QUUwMi8wOUZhN3BwUGl1WENnUkNLZlMwNjJCMU9l YzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzA5RmE3cHBQaXVYQ2dSQ0tmUzA2MkIxT2VjMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OTdDMi80RTQyNkRFOEZCRUExMUVBOTQwQTFEMTlDNEY5QUUwMi8wOUZhN3BwUGl1 WENnUkNLZlMwNjJCMU9lYzAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAipbc80b0hjq58KYY6UUmSf1R3CpCrR+bqRmvClg2TXnFayi5yw19+Mre2HWt Lhy1hh9dGszSGCMAs0FZPfMLaKrOK7IXeQq+08RAD4vjSkIGwl0XZmNeGMSjxaW8 QLlKr1CWv2q6A7wUWLZ/gjgsmO965Q/EnLJqsISrRw4GDC+4WydErNT2KTyk7QNY fAJNl/PkrC/ib/i2eXeB3gFrGmWJ8GrOKwCBgdYMpSEIchvjyVRgDIcDYREwhY2G IAUT3bKzmCY6qjHmHodaHCN0XLTZvo1GtkRXS8Q4MyghSZ6aldiATtYs90P2AuPU mcPRrFIqIdAGfpJJ1RXOD2uNMQ== -----END CERTIFICATE-----Generated at Sat Jun 13 16:15:10 2026 by rpki-client