$ rpki-client -vvf rpki.apnic.net/member_repository/A9158547/B38668E492A511EE8CD95B1EC4F9AE02/oNZvEXVTOiOoUulRUGXIWjOec4Y.mft File: oNZvEXVTOiOoUulRUGXIWjOec4Y.mft (raw, json) Hash identifier: uDpLjYapYvu/D/h6h7+YGp8pYbPaDaSFLaV/YHaVgdM= Subject key identifier: C0:60:1D:50:D8:24:23:04:CC:D1:C3:39:6F:2D:40:1B:72:64:B2:42 Authority key identifier: A0:D6:6F:11:75:53:3A:23:A8:52:E9:51:50:65:C8:5A:33:9E:73:86 Certificate issuer: /CN=A9158547/serialNumber=A0D66F1175533A23A852E9515065C85A339E7386 Certificate serial: 01D3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oNZvEXVTOiOoUulRUGXIWjOec4Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158547/B38668E492A511EE8CD95B1EC4F9AE02/oNZvEXVTOiOoUulRUGXIWjOec4Y.mft Manifest number: 01CE Signing time: Thu 21 May 2026 03:43:15 +0000 Manifest this update: Thu 21 May 2026 03:43:14 +0000 Manifest next update: Thu 28 May 2026 03:43:14 +0000 Files and hashes: 1: oNZvEXVTOiOoUulRUGXIWjOec4Y.crl (hash: ldf1qtOV8/hKUr5UPzwoxShiF/USRljqO7eY0+op4Qw=) 2: 6E7BFE7092A611EEBD5D8720C4F9AE02.roa (hash: GM/TYAUFUCny0Saz92cbiRCqbmb1aqzepH4OiX/MKnM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158547/B38668E492A511EE8CD95B1EC4F9AE02/oNZvEXVTOiOoUulRUGXIWjOec4Y.crl rsync://rpki.apnic.net/member_repository/A9158547/B38668E492A511EE8CD95B1EC4F9AE02/oNZvEXVTOiOoUulRUGXIWjOec4Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oNZvEXVTOiOoUulRUGXIWjOec4Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 03:43:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 467 (0x1d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158547, serialNumber=A0D66F1175533A23A852E9515065C85A339E7386 Validity Not Before: May 21 03:43:14 2026 GMT Not After : May 28 03:43:14 2026 GMT Subject: CN=6a0e7f53-cb6a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:53:9a:0f:11:0e:c7:3b:63:46:5a:54:71:17: f0:c2:9d:86:a1:b1:a6:f0:e0:d1:2a:06:49:78:41: d4:fd:3a:3f:08:68:4a:5d:3e:c8:08:64:9b:0e:5a: 64:76:a3:fd:a3:46:e5:7e:6e:37:86:fb:ae:d2:91: 69:e8:11:2d:78:ce:0b:ae:81:2f:5f:b1:83:bd:78: 25:32:b9:fd:3d:c8:e1:45:28:9f:5f:4d:11:0d:05: 43:32:ef:49:d6:33:a8:e4:be:ec:17:83:2b:8f:d4: 80:2b:63:3d:f7:f9:bd:4a:a8:2c:8c:63:35:5f:48: ae:e7:00:0b:d9:ab:f4:9e:ad:43:1e:73:be:9d:45: 22:d5:a7:19:8f:1d:69:88:7b:8c:d4:a4:57:bd:6b: 27:d7:ed:56:b6:1d:06:e3:94:7b:5d:c0:c7:55:48: e6:1e:60:1c:67:f6:bf:51:73:47:cb:ec:ae:d3:36: 8c:10:6c:ac:11:ea:bd:c5:ed:08:38:cf:bc:39:03: 47:8a:4e:d4:b2:c1:64:b4:7f:fc:81:fb:bd:66:8f: fb:1f:eb:c9:0d:7b:97:b2:ab:a0:ec:f5:fa:1b:17: 9e:d7:6d:8d:00:43:59:ae:3c:e8:c1:d5:82:6c:53: c2:66:10:6d:ad:a8:55:19:2a:4d:d3:17:bc:fc:4a: 8e:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:60:1D:50:D8:24:23:04:CC:D1:C3:39:6F:2D:40:1B:72:64:B2:42 X509v3 Authority Key Identifier: keyid:A0:D6:6F:11:75:53:3A:23:A8:52:E9:51:50:65:C8:5A:33:9E:73:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158547/B38668E492A511EE8CD95B1EC4F9AE02/oNZvEXVTOiOoUulRUGXIWjOec4Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oNZvEXVTOiOoUulRUGXIWjOec4Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158547/B38668E492A511EE8CD95B1EC4F9AE02/oNZvEXVTOiOoUulRUGXIWjOec4Y.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:4e:38:37:96:0b:a1:d6:29:80:05:13:f7:b4:d1:32:58:85: 6a:3f:38:6d:f2:dd:79:e8:47:79:d8:4b:33:b9:e5:5b:1f:99: 6d:cc:bd:00:1b:af:94:1d:1c:92:b3:ff:48:1f:c2:0e:98:b3: f7:f2:42:48:39:67:b5:2f:64:a5:6c:0e:94:30:66:de:57:7a: 8a:d2:90:63:f1:a1:30:d3:32:d2:1f:05:c7:d6:5e:10:8b:53: 2a:c6:1a:14:b0:96:3f:00:a5:c1:da:90:68:29:0f:3c:e8:ea: f5:a0:60:ca:79:a4:81:6f:58:63:e3:09:93:27:02:5c:82:87: b8:9d:17:68:b8:8a:4f:a2:36:6f:a0:dc:4e:35:4f:f3:07:d0: 82:ac:08:2a:1e:61:50:43:9c:d9:e2:82:f8:51:87:15:bb:ea: d7:5d:86:6f:19:85:f7:18:06:18:90:a3:0c:a4:87:2f:15:3e: a7:60:17:8d:f9:57:67:6d:f1:68:f8:1d:fb:21:f0:4e:af:f7: 7a:2e:8a:47:f6:96:ad:b5:2a:d4:fd:f1:39:5b:87:60:30:6e: 2d:97:d6:e4:ca:16:cf:14:a0:f8:b2:6f:45:7b:82:96:59:07: a0:9d:55:e2:a3:6c:fd:30:ce:01:ed:28:e2:86:1d:6c:e4:22: 45:3c:7d:5b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAdMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg1NDcxMTAvBgNVBAUTKEEwRDY2RjExNzU1MzNBMjNBODUyRTk1MTUwNjVDODVB MzM5RTczODYwHhcNMjYwNTIxMDM0MzE0WhcNMjYwNTI4MDM0MzE0WjAYMRYwFAYD VQQDEw02YTBlN2Y1My1jYjZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtVOaDxEOxztjRlpUcRfwwp2GobGm8ODRKgZJeEHU/To/CGhKXT7ICGSbDlpk dqP9o0blfm43hvuu0pFp6BEteM4LroEvX7GDvXglMrn9PcjhRSifX00RDQVDMu9J 1jOo5L7sF4Mrj9SAK2M99/m9SqgsjGM1X0iu5wAL2av0nq1DHnO+nUUi1acZjx1p iHuM1KRXvWsn1+1Wth0G45R7XcDHVUjmHmAcZ/a/UXNHy+yu0zaMEGysEeq9xe0I OM+8OQNHik7UssFktH/8gfu9Zo/7H+vJDXuXsqug7PX6Gxee122NAENZrjzowdWC bFPCZhBtrahVGSpN0xe8/EqOpwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMBgHVDY JCMEzNHDOW8tQBtyZLJCMB8GA1UdIwQYMBaAFKDWbxF1UzojqFLpUVBlyFoznnOG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODU0Ny9CMzg2NjhFNDky QTUxMUVFOENEOTVCMUVDNEY5QUUwMi9vTlp2RVhWVE9pT29VdWxSVUdYSVdqT2Vj NFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29OWnZFWFZUT2lPb1V1bFJVR1hJV2pPZWM0WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODU0Ny9CMzg2NjhFNDkyQTUxMUVFOENEOTVCMUVDNEY5QUUwMi9vTlp2RVhWVE9p T29VdWxSVUdYSVdqT2VjNFkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAgE44N5YLodYpgAUT97TRMliFaj84bfLdeehHedhLM7nlWx+Zbcy9ABuvlB0c krP/SB/CDpiz9/JCSDlntS9kpWwOlDBm3ld6itKQY/GhMNMy0h8Fx9ZeEItTKsYa FLCWPwClwdqQaCkPPOjq9aBgynmkgW9YY+MJkycCXIKHuJ0XaLiKT6I2b6DcTjVP 8wfQgqwIKh5hUEOc2eKC+FGHFbvq112GbxmF9xgGGJCjDKSHLxU+p2AXjflXZ23x aPgd+yHwTq/3ei6KR/aWrbUq1P3xOVuHYDBuLZfW5MoWzxSg+LJvRXuCllkHoJ1V 4qNs/TDOAe0o4oYdbOQiRTx9Ww== -----END CERTIFICATE-----Generated at Thu May 21 10:19:21 2026 by rpki-client