$ rpki-client -vvf rpki.apnic.net/member_repository/A9110C7C/29F7A0406EF711E69E32670AC4F9AE02/OdHVlVQYkTUwlFg2GNbMB5yDDOE.mft File: OdHVlVQYkTUwlFg2GNbMB5yDDOE.mft (raw, json) Hash identifier: KxpGuKqWWXCc/scxYO2njbRlQJ1d7nkBdHWbkrbLOxM= Subject key identifier: 95:CA:8D:AC:85:6D:1C:17:B7:1F:FE:67:76:57:0F:B5:DE:28:B9:94 Authority key identifier: 39:D1:D5:95:54:18:91:35:30:94:58:36:18:D6:CC:07:9C:83:0C:E1 Certificate issuer: /CN=A9110C7C/serialNumber=39D1D595541891353094583618D6CC079C830CE1 Certificate serial: 1F7D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OdHVlVQYkTUwlFg2GNbMB5yDDOE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9110C7C/29F7A0406EF711E69E32670AC4F9AE02/OdHVlVQYkTUwlFg2GNbMB5yDDOE.mft Manifest number: 1F52 Signing time: Wed 20 May 2026 16:00:40 +0000 Manifest this update: Wed 20 May 2026 16:00:39 +0000 Manifest next update: Wed 27 May 2026 16:00:39 +0000 Files and hashes: 1: OdHVlVQYkTUwlFg2GNbMB5yDDOE.crl (hash: Ksr+P6gIhFtB1PLSbRKuKyDT8vZytqHQvnCkVKb7HCE=) 2: BFF7726E6EF711E69FBC340BC4F9AE02.roa (hash: brx3F+QJqCmHbyv8rdzAimZ77OckcLhAZCr5v55mHrc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9110C7C/29F7A0406EF711E69E32670AC4F9AE02/OdHVlVQYkTUwlFg2GNbMB5yDDOE.crl rsync://rpki.apnic.net/member_repository/A9110C7C/29F7A0406EF711E69E32670AC4F9AE02/OdHVlVQYkTUwlFg2GNbMB5yDDOE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OdHVlVQYkTUwlFg2GNbMB5yDDOE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 16:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8061 (0x1f7d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9110C7C, serialNumber=39D1D595541891353094583618D6CC079C830CE1 Validity Not Before: May 20 16:00:39 2026 GMT Not After : May 27 16:00:39 2026 GMT Subject: CN=6a0ddaa8-9695 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:c6:28:74:85:83:ac:cb:bd:cb:88:0e:ab:8c: 8c:de:84:80:d1:b4:6b:16:5e:53:83:6c:7a:6d:26: e7:59:ed:7b:6b:43:c0:6b:91:32:16:3a:07:97:73: 94:42:59:b3:1c:9c:e5:69:95:b9:5c:f8:ba:a1:9a: 47:59:89:4d:1c:06:c1:c1:7a:35:77:6e:44:d6:a8: 43:b2:3c:09:64:d6:82:5e:d1:f3:c5:92:23:ea:d4: df:07:ff:e2:1f:1e:a7:7f:ed:90:1e:45:38:aa:7b: c4:b6:a3:69:72:90:45:38:9a:07:64:5d:f4:6a:74: 41:e3:fd:0c:00:de:aa:fe:38:75:9a:f9:1c:96:08: ec:56:8c:f0:99:fe:ea:4d:1b:48:21:44:0c:ad:bb: 24:75:19:f0:77:1d:48:2f:cd:f3:1a:c1:31:69:90: 06:dd:11:a7:8e:19:ee:a6:50:a4:03:1f:62:3f:08: 5b:9e:98:c1:23:cd:8c:57:63:49:bd:65:e6:01:2a: 7c:a6:67:aa:e3:ac:88:6d:a1:6c:65:c5:8a:42:09: 82:03:f6:7a:bb:54:1a:26:69:35:68:3c:84:2c:55: 5f:ad:9c:e0:8e:d3:c3:a3:7b:c6:4e:18:29:d7:c8: 93:64:f5:86:84:25:f1:91:cc:a5:8c:6b:37:9b:1b: d4:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:CA:8D:AC:85:6D:1C:17:B7:1F:FE:67:76:57:0F:B5:DE:28:B9:94 X509v3 Authority Key Identifier: keyid:39:D1:D5:95:54:18:91:35:30:94:58:36:18:D6:CC:07:9C:83:0C:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9110C7C/29F7A0406EF711E69E32670AC4F9AE02/OdHVlVQYkTUwlFg2GNbMB5yDDOE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OdHVlVQYkTUwlFg2GNbMB5yDDOE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9110C7C/29F7A0406EF711E69E32670AC4F9AE02/OdHVlVQYkTUwlFg2GNbMB5yDDOE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d6:86:3c:3d:d2:b6:b3:41:70:96:62:2a:34:db:d8:c7:70:8f: ef:42:d4:17:cd:c4:68:88:3d:09:a0:c0:dc:92:6c:ea:d9:1a: fe:9d:94:b0:bf:a3:c9:6f:3d:cc:f6:47:cb:a8:a5:ec:a5:8a: 7e:8b:1e:e6:30:91:d6:c4:f6:c9:1d:07:75:54:3c:32:2f:a7: 8c:18:39:1e:4a:f0:e5:a6:da:db:54:8a:5c:a2:ba:cc:a4:da: b8:49:9a:9c:c5:84:91:7c:86:cb:0b:f8:28:ee:9b:91:b9:1d: 42:31:e8:dd:d4:82:4a:90:41:a1:49:59:29:29:c0:ce:d5:38: ca:93:fb:80:74:88:c7:50:1b:b7:61:33:7d:f3:9a:4e:de:c0: 76:de:84:1c:4b:b5:fc:84:2e:40:d7:36:ba:97:6e:f9:24:af: 97:2f:26:19:69:35:a8:1e:27:10:f6:0c:0f:8a:22:29:57:b9: 47:d0:94:f5:e2:79:80:17:ae:99:99:fe:8f:30:76:b6:0a:c5: 18:4c:0a:bd:ad:7e:70:2c:e7:e9:c8:36:bf:ed:ec:81:b2:b9: 6c:2f:75:78:a4:31:40:ae:72:c9:28:97:09:e7:f7:4f:b6:23: 32:b1:e6:c2:70:06:69:17:ab:fa:f7:4b:7d:e4:3d:1e:4b:67: 18:9d:ef:81 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICH30wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTBDN0MxMTAvBgNVBAUTKDM5RDFENTk1NTQxODkxMzUzMDk0NTgzNjE4RDZDQzA3 OUM4MzBDRTEwHhcNMjYwNTIwMTYwMDM5WhcNMjYwNTI3MTYwMDM5WjAYMRYwFAYD VQQDEw02YTBkZGFhOC05Njk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAusYodIWDrMu9y4gOq4yM3oSA0bRrFl5Tg2x6bSbnWe17a0PAa5EyFjoHl3OU QlmzHJzlaZW5XPi6oZpHWYlNHAbBwXo1d25E1qhDsjwJZNaCXtHzxZIj6tTfB//i Hx6nf+2QHkU4qnvEtqNpcpBFOJoHZF30anRB4/0MAN6q/jh1mvkclgjsVozwmf7q TRtIIUQMrbskdRnwdx1IL83zGsExaZAG3RGnjhnuplCkAx9iPwhbnpjBI82MV2NJ vWXmASp8pmeq46yIbaFsZcWKQgmCA/Z6u1QaJmk1aDyELFVfrZzgjtPDo3vGThgp 18iTZPWGhCXxkcyljGs3mxvUQwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJXKjayF bRwXtx/+Z3ZXD7XeKLmUMB8GA1UdIwQYMBaAFDnR1ZVUGJE1MJRYNhjWzAecgwzh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMEM3Qy8yOUY3QTA0MDZF RjcxMUU2OUUzMjY3MEFDNEY5QUUwMi9PZEhWbFZRWWtUVXdsRmcyR05iTUI1eURE T0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09kSFZsVlFZa1RVd2xGZzJHTmJNQjV5RERPRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MEM3Qy8yOUY3QTA0MDZFRjcxMUU2OUUzMjY3MEFDNEY5QUUwMi9PZEhWbFZRWWtU VXdsRmcyR05iTUI1eURET0UubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEA1oY8PdK2s0FwlmIqNNvYx3CP70LUF83EaIg9CaDA3JJs6tka/p2UsL+jyW89 zPZHy6il7KWKfose5jCR1sT2yR0HdVQ8Mi+njBg5Hkrw5aba21SKXKK6zKTauEma nMWEkXyGywv4KO6bkbkdQjHo3dSCSpBBoUlZKSnAztU4ypP7gHSIx1Abt2EzffOa Tt7Adt6EHEu1/IQuQNc2updu+SSvly8mGWk1qB4nEPYMD4oiKVe5R9CU9eJ5gBeu mZn+jzB2tgrFGEwKva1+cCzn6cg2v+3sgbK5bC91eKQxQK5yySiXCef3T7YjMrHm wnAGaRer+vdLfeQ9HktnGJ3vgQ== -----END CERTIFICATE-----Generated at Thu May 21 09:38:26 2026 by rpki-client