$ rpki-client -vvf rpki.apnic.net/member_repository/A918377D/9F7C8152B4B111EEB0ADE352C4F9AE02/ofrVQukeAX0lfVGxT_XDW4lCnvU.mft File: ofrVQukeAX0lfVGxT_XDW4lCnvU.mft (raw, json) Hash identifier: U94QtLXqPp5/qVyU85VaeI0YeFnuuU0tYHcQQzh2QU8= Subject key identifier: 81:98:7B:93:DB:11:BA:FF:B5:9A:08:54:E5:81:60:D1:BF:36:54:8B Authority key identifier: A1:FA:D5:42:E9:1E:01:7D:25:7D:51:B1:4F:F5:C3:5B:89:42:9E:F5 Certificate issuer: /CN=A918377D/serialNumber=A1FAD542E91E017D257D51B14FF5C35B89429EF5 Certificate serial: 01B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ofrVQukeAX0lfVGxT_XDW4lCnvU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918377D/9F7C8152B4B111EEB0ADE352C4F9AE02/ofrVQukeAX0lfVGxT_XDW4lCnvU.mft Manifest number: 01B8 Signing time: Thu 21 May 2026 03:56:55 +0000 Manifest this update: Thu 21 May 2026 03:56:55 +0000 Manifest next update: Thu 28 May 2026 03:56:55 +0000 Files and hashes: 1: ofrVQukeAX0lfVGxT_XDW4lCnvU.crl (hash: qBq4fOYfXrTmFhqT48Uk2n3PX6JlvpbXtp4jhKPr6aI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918377D/9F7C8152B4B111EEB0ADE352C4F9AE02/ofrVQukeAX0lfVGxT_XDW4lCnvU.crl rsync://rpki.apnic.net/member_repository/A918377D/9F7C8152B4B111EEB0ADE352C4F9AE02/ofrVQukeAX0lfVGxT_XDW4lCnvU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ofrVQukeAX0lfVGxT_XDW4lCnvU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 03:56:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 440 (0x1b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918377D, serialNumber=A1FAD542E91E017D257D51B14FF5C35B89429EF5 Validity Not Before: May 21 03:56:55 2026 GMT Not After : May 28 03:56:55 2026 GMT Subject: CN=6a0e8287-7504 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:82:cf:a8:a5:18:15:4b:b2:14:bb:e5:86:bb: 66:0a:81:4f:aa:72:71:49:36:d7:3e:1d:cb:9f:df: 7c:2e:ef:41:b7:87:2f:ae:fe:06:f3:00:bd:72:33: 1f:63:43:91:42:ca:68:ed:4d:c0:ff:be:d2:ef:3d: e1:d8:ec:44:a5:9f:8b:cf:77:f2:d2:37:8a:46:41: 87:a2:74:ba:eb:30:e9:fa:5f:ea:09:06:e9:dc:0e: 8a:ad:1b:b4:af:9f:ed:4c:63:f6:ea:02:26:8d:c8: ed:07:e4:1a:90:d7:d7:f5:3a:fe:38:9b:c1:70:46: 34:4c:59:cf:89:1f:68:39:9a:9a:eb:fc:9e:29:e5: 81:89:44:37:e0:21:4b:07:a5:cf:ef:f1:25:0c:dc: 62:ce:40:50:c9:e7:6e:e4:58:fc:28:75:ae:d6:28: d9:26:78:67:33:60:cd:ce:32:73:d6:01:5a:8b:6c: da:4f:8a:c2:f6:74:d0:c8:cb:8f:be:d7:b7:9f:b5: 3d:2c:22:85:b8:65:3b:ed:53:80:0e:bd:42:28:cc: cf:74:5e:a4:5c:0d:4a:75:09:97:dd:76:f4:33:22: 1d:fa:eb:74:c1:3c:16:aa:92:9a:07:92:5f:ab:3c: 7d:29:01:1e:c7:f8:0b:25:a9:ac:24:51:24:b5:c7: 0b:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:98:7B:93:DB:11:BA:FF:B5:9A:08:54:E5:81:60:D1:BF:36:54:8B X509v3 Authority Key Identifier: keyid:A1:FA:D5:42:E9:1E:01:7D:25:7D:51:B1:4F:F5:C3:5B:89:42:9E:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918377D/9F7C8152B4B111EEB0ADE352C4F9AE02/ofrVQukeAX0lfVGxT_XDW4lCnvU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ofrVQukeAX0lfVGxT_XDW4lCnvU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918377D/9F7C8152B4B111EEB0ADE352C4F9AE02/ofrVQukeAX0lfVGxT_XDW4lCnvU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:e5:4e:52:06:83:83:0e:51:b9:c9:d0:1f:b9:69:7f:5d:ab: d7:34:8c:1e:6c:9a:db:77:2a:5d:21:2d:18:a3:44:93:81:de: 35:a9:25:f3:48:42:0d:23:d5:09:55:27:29:16:53:bf:c1:41: b0:77:6f:cf:66:bd:a4:f0:88:22:1e:7e:41:5b:70:a8:0a:12: b6:72:a5:db:35:19:9b:8e:13:62:2f:8e:3d:b5:3f:fa:2e:5e: f4:42:9c:be:d4:6d:b1:23:a7:63:69:00:75:41:40:0e:31:b0: 1b:c1:cc:c9:77:1c:f6:86:f8:5b:75:1c:f3:ab:b2:a0:fe:bd: 9f:b0:e0:39:29:7a:9b:fd:a7:05:56:36:81:82:82:61:e8:ad: 07:05:d5:93:26:d8:d7:53:8d:93:9e:9d:f2:44:6d:2d:d2:c1: ec:ef:bc:f6:20:f8:68:e1:00:ba:13:33:51:ae:ef:08:7a:57: 67:57:f2:5e:b9:3f:59:15:60:5e:a7:72:73:5c:f1:1d:c8:31: 90:04:65:9a:24:02:be:5d:f3:d1:b4:12:f2:25:ca:9b:78:05: 65:ce:60:85:5f:d5:f5:64:89:0b:ed:5a:93:9c:14:92:51:6d: 72:36:8e:33:91:34:f6:e1:39:2d:7e:ec:25:cc:19:c4:67:90: 3b:ba:26:85 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAbgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODM3N0QxMTAvBgNVBAUTKEExRkFENTQyRTkxRTAxN0QyNTdENTFCMTRGRjVDMzVC ODk0MjlFRjUwHhcNMjYwNTIxMDM1NjU1WhcNMjYwNTI4MDM1NjU1WjAYMRYwFAYD VQQDEw02YTBlODI4Ny03NTA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2ILPqKUYFUuyFLvlhrtmCoFPqnJxSTbXPh3Ln998Lu9Bt4cvrv4G8wC9cjMf Y0ORQspo7U3A/77S7z3h2OxEpZ+Lz3fy0jeKRkGHonS66zDp+l/qCQbp3A6KrRu0 r5/tTGP26gImjcjtB+QakNfX9Tr+OJvBcEY0TFnPiR9oOZqa6/yeKeWBiUQ34CFL B6XP7/ElDNxizkBQyedu5Fj8KHWu1ijZJnhnM2DNzjJz1gFai2zaT4rC9nTQyMuP vte3n7U9LCKFuGU77VOADr1CKMzPdF6kXA1KdQmX3Xb0MyId+ut0wTwWqpKaB5Jf qzx9KQEex/gLJamsJFEktccLDwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIGYe5Pb Ebr/tZoIVOWBYNG/NlSLMB8GA1UdIwQYMBaAFKH61ULpHgF9JX1RsU/1w1uJQp71 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Mzc3RC85RjdDODE1MkI0 QjExMUVFQjBBREUzNTJDNEY5QUUwMi9vZnJWUXVrZUFYMGxmVkd4VF9YRFc0bENu dlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29mclZRdWtlQVgwbGZWR3hUX1hEVzRsQ252VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Mzc3RC85RjdDODE1MkI0QjExMUVFQjBBREUzNTJDNEY5QUUwMi9vZnJWUXVrZUFY MGxmVkd4VF9YRFc0bENudlUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAVeVOUgaDgw5RucnQH7lpf12r1zSMHmya23cqXSEtGKNEk4HeNakl80hCDSPV CVUnKRZTv8FBsHdvz2a9pPCIIh5+QVtwqAoStnKl2zUZm44TYi+OPbU/+i5e9EKc vtRtsSOnY2kAdUFADjGwG8HMyXcc9ob4W3Uc86uyoP69n7DgOSl6m/2nBVY2gYKC YeitBwXVkybY11ONk56d8kRtLdLB7O+89iD4aOEAuhMzUa7vCHpXZ1fyXrk/WRVg Xqdyc1zxHcgxkARlmiQCvl3z0bQS8iXKm3gFZc5ghV/V9WSJC+1ak5wUklFtcjaO M5E09uE5LX7sJcwZxGeQO7omhQ== -----END CERTIFICATE-----Generated at Thu May 21 09:28:51 2026 by rpki-client