$ rpki-client -vvf rpki.apnic.net/member_repository/A9187BAC/C6AD3E0AD02C11EFB5584915C4F9AE02/opsbaAnOwakkcMWcbDa_pc84cYY.mft File: opsbaAnOwakkcMWcbDa_pc84cYY.mft (raw, json) Hash identifier: 6KxSXm1tTVSwWgbFt17wllIMS+/QP4yhBxZLsfDJ+6w= Subject key identifier: B3:C1:F0:0E:25:4D:2B:69:3E:CB:82:E3:CE:02:96:06:56:5F:EA:26 Authority key identifier: A2:9B:1B:68:09:CE:C1:A9:24:70:C5:9C:6C:36:BF:A5:CF:38:71:86 Certificate issuer: /CN=A9187BAC/serialNumber=A29B1B6809CEC1A92470C59C6C36BFA5CF387186 Certificate serial: 0114 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/opsbaAnOwakkcMWcbDa_pc84cYY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9187BAC/C6AD3E0AD02C11EFB5584915C4F9AE02/opsbaAnOwakkcMWcbDa_pc84cYY.mft Manifest number: 0108 Signing time: Thu 21 May 2026 06:15:35 +0000 Manifest this update: Thu 21 May 2026 06:15:34 +0000 Manifest next update: Thu 28 May 2026 06:15:34 +0000 Files and hashes: 1: opsbaAnOwakkcMWcbDa_pc84cYY.crl (hash: yhV1FxSyCz9ZN6pjuZL9o3vuygU3HA2/sk7Na2X6Fjw=) 2: 7375238236E411F0A95FB239C4F9AE02.roa (hash: IahlFKvuUvZTPl7dK0sCB7M+yoIRvnKGTDIQMSq4hWM=) 3: B1532E06F5FC11F08D6378D9536F56BC.roa (hash: 3XmkQBDW/VzAvHD7muWFlcJMnKZTQS3L1LZ6CKtf888=) 4: 7404496836E411F0A95FB239C4F9AE02.roa (hash: qJ7524YAscm+xf2ckiU9VWuAvVs5iHMseuM90BOMC/0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9187BAC/C6AD3E0AD02C11EFB5584915C4F9AE02/opsbaAnOwakkcMWcbDa_pc84cYY.crl rsync://rpki.apnic.net/member_repository/A9187BAC/C6AD3E0AD02C11EFB5584915C4F9AE02/opsbaAnOwakkcMWcbDa_pc84cYY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/opsbaAnOwakkcMWcbDa_pc84cYY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 06:15:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 276 (0x114) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9187BAC, serialNumber=A29B1B6809CEC1A92470C59C6C36BFA5CF387186 Validity Not Before: May 21 06:15:34 2026 GMT Not After : May 28 06:15:34 2026 GMT Subject: CN=6a0ea306-2ef9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:e6:48:32:24:71:c7:85:b8:97:cf:79:4d:aa: 83:78:c4:93:87:88:c5:36:5b:c8:c3:48:78:e0:b9: 71:61:b9:fd:3a:dd:d1:3d:26:18:cd:5e:3f:63:4b: 94:9c:0e:40:8e:12:e7:b3:39:e3:4d:a6:8d:b3:8a: 29:3a:33:af:75:cb:1d:0c:a6:b8:f0:a8:cc:46:1a: 59:fd:e4:f7:56:03:6c:3e:11:8c:95:22:70:63:d5: 07:e0:e4:01:4b:73:06:bc:2d:63:86:db:88:18:cb: 8b:21:39:b1:e6:09:7d:39:20:40:6b:28:80:29:d6: 9c:86:4f:79:32:62:18:af:f4:ba:34:83:77:93:91: 04:81:59:38:ab:4e:f8:45:8b:93:1d:34:d2:c9:18: 36:25:9e:eb:b1:48:9a:71:1d:4f:dc:51:b7:fb:87: f9:27:ec:1b:2a:2a:64:cb:2b:4f:66:82:f5:91:e2: 11:ba:56:96:ba:d5:1b:97:52:04:f2:c6:c3:6f:3c: 55:76:d1:d2:16:19:f2:d0:f1:70:ff:ed:31:c9:54: 1a:4f:9d:5a:0b:83:7f:3a:f7:ba:fd:d0:00:3c:30: 8d:67:2f:90:f6:a9:30:13:38:b5:d6:01:39:dd:59: ba:ff:65:6e:09:13:c5:69:9e:ad:db:b1:96:59:6d: 4f:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:C1:F0:0E:25:4D:2B:69:3E:CB:82:E3:CE:02:96:06:56:5F:EA:26 X509v3 Authority Key Identifier: keyid:A2:9B:1B:68:09:CE:C1:A9:24:70:C5:9C:6C:36:BF:A5:CF:38:71:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9187BAC/C6AD3E0AD02C11EFB5584915C4F9AE02/opsbaAnOwakkcMWcbDa_pc84cYY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/opsbaAnOwakkcMWcbDa_pc84cYY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9187BAC/C6AD3E0AD02C11EFB5584915C4F9AE02/opsbaAnOwakkcMWcbDa_pc84cYY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:dc:7d:22:52:4a:03:44:e2:34:83:16:fe:93:0b:f3:41:83: 80:0e:69:f8:e8:2a:18:07:b0:e1:a3:30:c9:24:ee:3e:d8:03: e4:1c:86:cb:f9:c4:65:6f:16:c7:03:d0:4a:3d:af:62:fa:47: 90:16:4e:49:40:6f:d1:29:d3:d2:97:d5:7a:cc:d8:05:87:76: 97:aa:06:d8:f4:a2:0e:ff:97:df:83:c8:6e:c0:8c:cc:fc:8a: d3:d2:d5:e2:c2:76:ec:e3:24:14:e4:c9:d2:24:a5:47:c0:6e: a7:b8:d3:dd:eb:c9:52:99:53:ba:f2:07:2a:a7:98:5e:61:22: 03:31:44:3f:0a:09:56:0e:c2:a5:e2:6b:0d:93:9d:ea:cf:de: e7:d5:9f:2b:e1:be:ed:41:fa:07:b7:aa:8a:7b:9b:15:97:87: ac:be:a9:5d:37:1b:d1:6d:4d:b5:f0:26:5d:f7:79:a8:35:09: 40:aa:94:2b:3f:6e:c9:d5:ac:2c:eb:6f:5a:f6:f7:a4:0a:a6: f5:8b:4b:d3:21:41:7b:80:7a:a8:55:b7:5b:0a:a1:ea:53:fb: fe:4b:75:c1:24:d2:d5:61:55:1f:4d:df:8f:ff:e2:23:50:d6: 63:6b:21:d2:5a:73:65:12:82:f6:51:fb:0f:dc:2e:08:43:23: 12:dd:b1:b8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICARQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODdCQUMxMTAvBgNVBAUTKEEyOUIxQjY4MDlDRUMxQTkyNDcwQzU5QzZDMzZCRkE1 Q0YzODcxODYwHhcNMjYwNTIxMDYxNTM0WhcNMjYwNTI4MDYxNTM0WjAYMRYwFAYD VQQDEw02YTBlYTMwNi0yZWY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1uZIMiRxx4W4l895TaqDeMSTh4jFNlvIw0h44LlxYbn9Ot3RPSYYzV4/Y0uU nA5AjhLnsznjTaaNs4opOjOvdcsdDKa48KjMRhpZ/eT3VgNsPhGMlSJwY9UH4OQB S3MGvC1jhtuIGMuLITmx5gl9OSBAayiAKdachk95MmIYr/S6NIN3k5EEgVk4q074 RYuTHTTSyRg2JZ7rsUiacR1P3FG3+4f5J+wbKipkyytPZoL1keIRulaWutUbl1IE 8sbDbzxVdtHSFhny0PFw/+0xyVQaT51aC4N/Ove6/dAAPDCNZy+Q9qkwEzi11gE5 3Vm6/2VuCRPFaZ6t27GWWW1PxwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLPB8A4l TStpPsuC484ClgZWX+omMB8GA1UdIwQYMBaAFKKbG2gJzsGpJHDFnGw2v6XPOHGG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4N0JBQy9DNkFEM0UwQUQw MkMxMUVGQjU1ODQ5MTVDNEY5QUUwMi9vcHNiYUFuT3dha2tjTVdjYkRhX3BjODRj WVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29wc2JhQW5Pd2Fra2NNV2NiRGFfcGM4NGNZWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 N0JBQy9DNkFEM0UwQUQwMkMxMUVGQjU1ODQ5MTVDNEY5QUUwMi9vcHNiYUFuT3dh a2tjTVdjYkRhX3BjODRjWVkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAgdx9IlJKA0TiNIMW/pML80GDgA5p+OgqGAew4aMwySTuPtgD5ByGy/nEZW8W xwPQSj2vYvpHkBZOSUBv0SnT0pfVeszYBYd2l6oG2PSiDv+X34PIbsCMzPyK09LV 4sJ27OMkFOTJ0iSlR8Bup7jT3evJUplTuvIHKqeYXmEiAzFEPwoJVg7CpeJrDZOd 6s/e59WfK+G+7UH6B7eqinubFZeHrL6pXTcb0W1NtfAmXfd5qDUJQKqUKz9uydWs LOtvWvb3pAqm9YtL0yFBe4B6qFW3Wwqh6lP7/kt1wSTS1WFVH03fj//iI1DWY2sh 0lpzZRKC9lH7D9wuCEMjEt2xuA== -----END CERTIFICATE-----Generated at Thu May 21 09:35:39 2026 by rpki-client