$ rpki-client -vvf rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.mft File: OxaIpfe3JKr754IKLGPZey6o5SI.mft (raw, json) Hash identifier: opv2AN++c7SNbrrm5YkzWfz9q1CkPsQ7bt6oxMo9BEE= Subject key identifier: 55:18:45:4C:A2:A5:44:1B:D7:4A:D9:A6:6C:C5:99:C6:E4:45:78:B5 Authority key identifier: 3B:16:88:A5:F7:B7:24:AA:FB:E7:82:0A:2C:63:D9:7B:2E:A8:E5:22 Certificate issuer: /CN=A91772FA/serialNumber=3B1688A5F7B724AAFBE7820A2C63D97B2EA8E522 Certificate serial: 03DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OxaIpfe3JKr754IKLGPZey6o5SI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.mft Manifest number: 03D2 Signing time: Thu 21 May 2026 00:40:23 +0000 Manifest this update: Thu 21 May 2026 00:40:23 +0000 Manifest next update: Thu 28 May 2026 00:40:23 +0000 Files and hashes: 1: OxaIpfe3JKr754IKLGPZey6o5SI.crl (hash: 6+er3mOYyQR60xKUW60N4ZkwrugDE22CIJOFuuILxYw=) 2: 2D613294CD7611EC83259862C4F9AE02.roa (hash: 6eoyUSOvVZ6K062G+XqAjy4oqU5ot0onLxElkewTe48=) 3: EF8CB49CD78F11EC91680D49C4F9AE02.roa (hash: M2pvQ304fe+2dKpg+pZivkjVtCyNRoxTwvcWntgc488=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.crl rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OxaIpfe3JKr754IKLGPZey6o5SI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 00:40:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 988 (0x3dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91772FA, serialNumber=3B1688A5F7B724AAFBE7820A2C63D97B2EA8E522 Validity Not Before: May 21 00:40:23 2026 GMT Not After : May 28 00:40:23 2026 GMT Subject: CN=6a0e5477-3c62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:62:a1:c6:5f:53:b9:d3:99:e2:25:5a:99:f3: a0:a9:27:71:8a:bb:4a:7b:c7:cc:4e:9c:99:f0:cb: 65:cf:86:b8:76:0e:4d:e1:51:9b:d1:42:c1:a0:bb: 3e:27:50:9d:b6:4d:d4:62:15:36:c9:92:6a:d4:10: 10:b0:1b:d2:10:37:c9:cf:2f:d3:4a:08:94:88:a8: eb:9c:be:07:46:f5:98:22:4e:63:c3:38:bc:31:74: 1c:9d:6d:ab:e4:4d:65:fe:94:bf:a2:a3:d4:aa:15: 7c:ee:85:22:f1:1e:e5:60:04:9a:78:47:86:ef:e8: 7d:8d:4d:2d:66:54:7a:7d:cb:3e:a7:aa:0d:c8:9e: 97:68:c9:fa:e8:ef:a1:25:b2:99:ae:41:ff:87:e2: 2c:48:1b:b4:7f:f8:5d:3c:95:f9:b4:4b:fb:1d:cf: 95:36:12:00:73:af:cf:92:9f:66:1f:c6:66:ef:c3: 2f:95:fc:da:fe:ab:f7:28:ba:a9:84:50:83:6f:5d: fd:7c:ef:95:69:e5:ee:ae:0e:93:03:63:59:b1:ba: 1d:2e:6a:96:e2:85:1b:90:28:f3:97:30:ee:e8:b5: 79:f9:78:19:c0:ab:5d:95:71:ce:2a:92:f2:3e:e7: dc:db:8f:10:e3:f3:96:c3:bb:2f:fb:f2:16:de:f6: 83:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:18:45:4C:A2:A5:44:1B:D7:4A:D9:A6:6C:C5:99:C6:E4:45:78:B5 X509v3 Authority Key Identifier: keyid:3B:16:88:A5:F7:B7:24:AA:FB:E7:82:0A:2C:63:D9:7B:2E:A8:E5:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OxaIpfe3JKr754IKLGPZey6o5SI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:9d:9c:4e:33:77:c0:50:76:10:9b:39:5f:9e:bd:67:fe:4d: de:f2:9a:50:0f:ad:0c:2d:db:cd:c1:18:49:e9:ae:83:5e:b7: 9a:b1:58:36:8d:e5:15:2f:f2:69:3b:6e:67:f8:9a:98:63:49: 92:0a:31:75:f7:0e:1c:40:3c:ee:8a:c9:a9:f6:81:4d:96:76: fd:60:6f:59:89:b2:9a:42:6d:b6:1e:39:a6:c2:d6:37:ba:ee: 7b:d3:90:8e:bb:96:72:18:76:01:2d:00:51:68:8f:ff:50:f8: 7e:df:b2:66:bf:7a:bd:c1:b1:2c:67:2d:08:07:04:07:37:ef: 4d:f9:b4:c9:29:5a:7d:69:5d:7c:56:cb:90:f8:d2:0f:d6:e0: 6c:ed:2f:77:c7:b3:b0:d1:f3:c2:ce:07:b9:3b:62:98:87:1e: 71:bc:85:80:e5:ce:e0:93:0a:88:76:59:b5:c5:7e:a9:80:6e: 31:5e:ea:09:97:97:2c:2a:af:a7:8b:98:54:49:2f:06:51:81: ff:d6:eb:b3:21:71:7d:14:ae:a3:e2:f5:23:0e:16:61:b6:6c: 02:90:9a:74:58:92:b8:c1:59:47:04:76:e4:6c:34:1e:c5:5f: 24:cf:a8:99:9b:7b:44:eb:a0:3f:b8:7d:c2:f1:b0:5b:3b:8d: 85:3b:78:55 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA9wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzcyRkExMTAvBgNVBAUTKDNCMTY4OEE1RjdCNzI0QUFGQkU3ODIwQTJDNjNEOTdC MkVBOEU1MjIwHhcNMjYwNTIxMDA0MDIzWhcNMjYwNTI4MDA0MDIzWjAYMRYwFAYD VQQDEw02YTBlNTQ3Ny0zYzYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxmKhxl9TudOZ4iVamfOgqSdxirtKe8fMTpyZ8Mtlz4a4dg5N4VGb0ULBoLs+ J1Cdtk3UYhU2yZJq1BAQsBvSEDfJzy/TSgiUiKjrnL4HRvWYIk5jwzi8MXQcnW2r 5E1l/pS/oqPUqhV87oUi8R7lYASaeEeG7+h9jU0tZlR6fcs+p6oNyJ6XaMn66O+h JbKZrkH/h+IsSBu0f/hdPJX5tEv7Hc+VNhIAc6/Pkp9mH8Zm78Mvlfza/qv3KLqp hFCDb139fO+VaeXurg6TA2NZsbodLmqW4oUbkCjzlzDu6LV5+XgZwKtdlXHOKpLy Pufc248Q4/OWw7sv+/IW3vaDowIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFUYRUyi pUQb10rZpmzFmcbkRXi1MB8GA1UdIwQYMBaAFDsWiKX3tySq++eCCixj2XsuqOUi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NzJGQS9ENzI0NDU2MkNE NzMxMUVDQTBBQTgwNjFDNEY5QUUwMi9PeGFJcGZlM0pLcjc1NElLTEdQWmV5Nm81 U0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL094YUlwZmUzSktyNzU0SUtMR1BaZXk2bzVTSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NzJGQS9ENzI0NDU2MkNENzMxMUVDQTBBQTgwNjFDNEY5QUUwMi9PeGFJcGZlM0pL cjc1NElLTEdQWmV5Nm81U0kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAG52cTjN3wFB2EJs5X569Z/5N3vKaUA+tDC3bzcEYSemug163mrFYNo3lFS/y aTtuZ/iamGNJkgoxdfcOHEA87orJqfaBTZZ2/WBvWYmymkJtth45psLWN7rue9OQ jruWchh2AS0AUWiP/1D4ft+yZr96vcGxLGctCAcEBzfvTfm0ySlafWldfFbLkPjS D9bgbO0vd8ezsNHzws4HuTtimIcecbyFgOXO4JMKiHZZtcV+qYBuMV7qCZeXLCqv p4uYVEkvBlGB/9brsyFxfRSuo+L1Iw4WYbZsApCadFiSuMFZRwR25Gw0HsVfJM+o mZt7ROugP7h9wvGwWzuNhTt4VQ== -----END CERTIFICATE-----Generated at Fri May 22 15:11:50 2026 by rpki-client