$ rpki-client -vvf rpki.apnic.net/member_repository/A9196AF7/CBE7F36824CE11F1BC1F5B8EA9833773/ouLfhQX-LyqKzdbd8cVh7_fdnuI.mft File: ouLfhQX-LyqKzdbd8cVh7_fdnuI.mft (raw, json) Hash identifier: PS0DcCkSMRUCqnvXNVo04sCVF44FT/K3s0D1WNJebX0= Subject key identifier: 93:F4:17:B8:C3:E3:E5:FC:C2:16:CE:A8:06:86:7A:E4:AB:38:C7:01 Authority key identifier: A2:E2:DF:85:05:FE:2F:2A:8A:CD:D6:DD:F1:C5:61:EF:F7:DD:9E:E2 Certificate issuer: /CN=A9196AF7/serialNumber=A2E2DF8505FE2F2A8ACDD6DDF1C561EFF7DD9EE2 Certificate serial: 22 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ouLfhQX-LyqKzdbd8cVh7_fdnuI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9196AF7/CBE7F36824CE11F1BC1F5B8EA9833773/ouLfhQX-LyqKzdbd8cVh7_fdnuI.mft Manifest number: 21 Signing time: Thu 21 May 2026 08:59:38 +0000 Manifest this update: Thu 21 May 2026 08:59:38 +0000 Manifest next update: Thu 28 May 2026 08:59:38 +0000 Files and hashes: 1: ouLfhQX-LyqKzdbd8cVh7_fdnuI.crl (hash: QDvOd88lf1caMObIff3tH/8vffm9t+gp+ob5z3UVVaA=) 2: 7EF6CB6E24CF11F1AAA533A9A9833773.roa (hash: 8y7L9hPSTuk1LDFXpb7ShDJmE7OnOp5HbjTXee/kCzg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9196AF7/CBE7F36824CE11F1BC1F5B8EA9833773/ouLfhQX-LyqKzdbd8cVh7_fdnuI.crl rsync://rpki.apnic.net/member_repository/A9196AF7/CBE7F36824CE11F1BC1F5B8EA9833773/ouLfhQX-LyqKzdbd8cVh7_fdnuI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ouLfhQX-LyqKzdbd8cVh7_fdnuI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 08:59:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34 (0x22) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9196AF7, serialNumber=A2E2DF8505FE2F2A8ACDD6DDF1C561EFF7DD9EE2 Validity Not Before: May 21 08:59:38 2026 GMT Not After : May 28 08:59:38 2026 GMT Subject: CN=6a0ec97a-6033 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:bb:d6:c6:d0:86:93:8d:38:ca:a2:d0:33:fa: 65:ab:9c:2f:c9:8c:00:b9:53:25:97:77:68:9b:4b: cc:51:74:60:bd:e7:99:4a:a3:09:bf:5c:47:9d:78: 69:35:a9:93:c0:a4:23:fa:cf:3e:12:40:dd:aa:c5: 84:02:cb:ad:1c:e7:0d:3a:35:ca:16:51:e2:d9:55: 16:35:71:73:f8:cd:43:31:1a:77:9f:18:96:e9:d0: 1c:35:17:ee:01:ce:8b:66:32:da:30:dd:37:f4:63: 44:75:c9:4d:d6:83:77:3d:ae:75:14:db:27:fb:43: df:93:21:fc:d2:16:49:44:30:b8:37:e5:07:2a:e2: 7b:e6:5f:3e:97:dd:ad:2f:96:c0:04:d1:28:f7:df: e0:1b:fb:fb:95:b9:b4:30:77:e1:21:56:a9:7f:6f: 66:a4:3c:72:69:59:74:48:5b:f8:66:50:20:b1:e2: 7d:e3:1d:e7:05:a4:82:40:46:7f:28:6e:ae:c9:65: 05:19:c8:82:9e:2b:57:16:99:d0:77:3b:45:f6:b6: 62:f6:f0:3d:d7:53:a2:c5:15:ca:16:7d:72:db:b1: cf:a4:56:98:02:68:b1:bf:a8:2f:c1:e1:2b:54:4b: 4a:55:c7:49:31:71:49:fe:e3:39:2b:0f:eb:36:f2: 03:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:F4:17:B8:C3:E3:E5:FC:C2:16:CE:A8:06:86:7A:E4:AB:38:C7:01 X509v3 Authority Key Identifier: keyid:A2:E2:DF:85:05:FE:2F:2A:8A:CD:D6:DD:F1:C5:61:EF:F7:DD:9E:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9196AF7/CBE7F36824CE11F1BC1F5B8EA9833773/ouLfhQX-LyqKzdbd8cVh7_fdnuI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ouLfhQX-LyqKzdbd8cVh7_fdnuI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196AF7/CBE7F36824CE11F1BC1F5B8EA9833773/ouLfhQX-LyqKzdbd8cVh7_fdnuI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:0d:8f:39:01:79:87:be:47:83:16:8a:63:13:7e:c2:c2:b0: 3a:17:26:6a:8b:8b:d2:79:96:63:63:ef:55:56:90:bd:05:a5: 8a:70:fb:67:c3:de:7a:a4:dd:58:25:ed:5d:1d:e2:4d:9c:04: 85:1e:73:e2:c8:08:25:01:59:1c:d7:a0:f9:4c:e5:40:4f:96: ba:8b:02:6e:a7:2a:91:bc:72:22:02:50:a4:e4:d0:3f:18:17: 30:1a:62:8f:9e:e8:29:16:ae:f8:45:2d:88:4f:ef:5f:c8:05: 8f:20:8f:d0:35:d8:82:9d:6f:8a:72:e8:26:83:3d:ec:9a:ab: e6:70:0d:78:28:8b:0d:7e:3c:c9:d4:4b:90:42:e7:23:a6:ae: 53:49:c2:5f:07:a2:5b:05:f7:3c:d4:7f:c8:aa:7f:84:42:fc: 8d:2a:53:dd:52:5d:f7:97:61:69:eb:a2:68:89:c1:32:bc:c4: 4a:ad:cd:74:d0:0b:ea:f2:4a:7d:0b:9f:7f:0a:67:ad:b1:a2: df:85:9b:1f:0c:05:bc:51:55:f7:b0:0d:64:7c:64:c2:ca:fe: b4:3a:ca:05:d9:15:af:c0:81:da:7f:7f:ef:1a:cd:c2:24:d0: 92:79:22:36:ad:cb:c5:71:48:b6:5d:ad:2e:36:50:10:f1:26: 6d:89:75:73 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBIjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 NkFGNzExMC8GA1UEBRMoQTJFMkRGODUwNUZFMkYyQThBQ0RENkRERjFDNTYxRUZG N0REOUVFMjAeFw0yNjA1MjEwODU5MzhaFw0yNjA1MjgwODU5MzhaMBgxFjAUBgNV BAMTDTZhMGVjOTdhLTYwMzMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCxu9bG0IaTjTjKotAz+mWrnC/JjAC5UyWXd2ibS8xRdGC955lKowm/XEedeGk1 qZPApCP6zz4SQN2qxYQCy60c5w06NcoWUeLZVRY1cXP4zUMxGnefGJbp0Bw1F+4B zotmMtow3Tf0Y0R1yU3Wg3c9rnUU2yf7Q9+TIfzSFklEMLg35Qcq4nvmXz6X3a0v lsAE0Sj33+Ab+/uVubQwd+EhVql/b2akPHJpWXRIW/hmUCCx4n3jHecFpIJARn8o bq7JZQUZyIKeK1cWmdB3O0X2tmL28D3XU6LFFcoWfXLbsc+kVpgCaLG/qC/B4StU S0pVx0kxcUn+4zkrD+s28gPhAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUk/QXuMPj 5fzCFs6oBoZ65Ks4xwEwHwYDVR0jBBgwFoAUouLfhQX+LyqKzdbd8cVh7/fdnuIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk2QUY3L0NCRTdGMzY4MjRD RTExRjFCQzFGNUI4RUE5ODMzNzczL291TGZoUVgtTHlxS3pkYmQ4Y1ZoN19mZG51 SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvb3VMZmhRWC1MeXFLemRiZDhjVmg3X2ZkbnVJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk2 QUY3L0NCRTdGMzY4MjRDRTExRjFCQzFGNUI4RUE5ODMzNzczL291TGZoUVgtTHlx S3pkYmQ4Y1ZoN19mZG51SS5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQCdDY85AXmHvkeDFopjE37CwrA6FyZqi4vSeZZjY+9VVpC9BaWKcPtnw956pN1Y Je1dHeJNnASFHnPiyAglAVkc16D5TOVAT5a6iwJupyqRvHIiAlCk5NA/GBcwGmKP nugpFq74RS2IT+9fyAWPII/QNdiCnW+Kcugmgz3smqvmcA14KIsNfjzJ1EuQQucj pq5TScJfB6JbBfc81H/Iqn+EQvyNKlPdUl33l2Fp66JoicEyvMRKrc100Avq8kp9 C59/CmetsaLfhZsfDAW8UVX3sA1kfGTCyv60OsoF2RWvwIHaf3/vGs3CJNCSeSI2 rcvFcUi2Xa0uNlAQ8SZtiXVz -----END CERTIFICATE-----Generated at Thu May 21 10:58:52 2026 by rpki-client