$ rpki-client -vvf rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.mft File: 2DuT4x6TmTfYyxX-Ocpebo_q-ps.mft (raw, json) Hash identifier: o8O/tTFxBOvilC+Wqvt7toPN60X0kiPp1pqqx3mMvNg= Subject key identifier: A0:D2:D8:22:5B:90:95:C0:46:6E:E8:A1:67:FF:91:9C:72:FB:61:72 Authority key identifier: D8:3B:93:E3:1E:93:99:37:D8:CB:15:FE:39:CA:5E:6E:8F:EA:FA:9B Certificate issuer: /CN=A9197277/serialNumber=D83B93E31E939937D8CB15FE39CA5E6E8FEAFA9B Certificate serial: 01E8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2DuT4x6TmTfYyxX-Ocpebo_q-ps.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.mft Manifest number: 01C1 Signing time: Mon 01 Jun 2026 04:36:42 +0000 Manifest this update: Mon 01 Jun 2026 04:36:41 +0000 Manifest next update: Mon 08 Jun 2026 04:36:41 +0000 Files and hashes: 1: 2DuT4x6TmTfYyxX-Ocpebo_q-ps.crl (hash: xHr+WrrDOA/mVYzExQ9rcboZ8Ii291FtrRlP6YUJ7L8=) 2: 2DCC0688B57211EEBB68526DC4F9AE02.roa (hash: NmZuwfe+5iCEAPBHvUzD6sfa6o4YMsY1q8dOeYPy2vQ=) 3: 2E31B8FCB57211EEBB68526DC4F9AE02.roa (hash: KgiFn2JDnQbMiTSP1itjG4XdcrHVh1Ue7B/XnPt0zdY=) 4: 6F5F30B8B56111EE91C72951C4F9AE02.roa (hash: dah/3/ypf+hEWNUOIDeyyUD/b92XWbsj2RzQqTtYlqg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.crl rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2DuT4x6TmTfYyxX-Ocpebo_q-ps.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Jun 2026 04:36:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 488 (0x1e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197277, serialNumber=D83B93E31E939937D8CB15FE39CA5E6E8FEAFA9B Validity Not Before: Jun 1 04:36:41 2026 GMT Not After : Jun 8 04:36:41 2026 GMT Subject: CN=6a1d0c5a-256a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:9b:4a:33:af:a8:3e:2a:c1:13:04:b0:b5:f6: 8b:cb:10:01:22:1a:f0:83:69:0c:ad:11:f4:81:32: da:a5:40:0d:5b:34:ce:bf:b7:f2:5d:d8:ed:b8:f2: 70:c7:dc:20:e4:bb:1c:80:1e:c6:63:82:8a:b6:f0: f5:ef:7a:a5:1b:6c:5d:b6:a3:a9:23:5f:ea:1b:03: 42:e7:47:65:5b:82:b0:1d:49:0a:4d:5f:40:92:a2: 67:c6:ec:c9:15:0d:1e:b6:97:4a:38:aa:6f:77:f7: a5:d8:4f:9c:a3:01:60:aa:35:5a:94:46:47:9c:c7: d8:85:69:1f:0c:f0:b0:71:59:83:c0:3f:ad:2d:41: f8:65:47:04:b1:ac:d6:29:08:10:74:42:68:66:85: bd:c8:b2:54:a3:0e:4b:40:08:51:94:66:2d:56:f1: a8:6b:5b:0a:a8:80:7b:2d:56:25:e5:fd:33:e3:e2: a9:26:d4:b6:e7:a1:43:2e:fc:15:4d:ea:d0:3c:e2: 11:18:6a:a0:4b:90:fa:c0:aa:bf:86:3d:be:e7:bb: da:6c:83:2a:f6:46:96:c4:4e:a5:de:b1:18:2a:66: 17:87:46:01:10:fb:53:77:7a:e8:78:27:c1:0d:9d: 8f:89:0c:bc:6a:1d:8b:c2:92:93:1e:4c:0b:89:2e: a2:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:D2:D8:22:5B:90:95:C0:46:6E:E8:A1:67:FF:91:9C:72:FB:61:72 X509v3 Authority Key Identifier: keyid:D8:3B:93:E3:1E:93:99:37:D8:CB:15:FE:39:CA:5E:6E:8F:EA:FA:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2DuT4x6TmTfYyxX-Ocpebo_q-ps.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:4f:f7:d6:ca:d4:12:59:e0:5d:06:a2:7b:3f:1c:8b:e8:bc: bb:09:c0:f6:d8:a6:4f:c2:24:da:ce:83:9b:c6:63:3e:78:ed: 49:3a:8a:23:ab:49:61:18:4f:51:81:35:a6:2a:51:ec:8f:10: 81:6d:ab:bf:e5:de:ed:04:83:21:db:d7:94:13:16:82:4d:be: ad:e0:27:2e:03:a7:bd:65:14:7a:87:01:f3:6b:d7:4c:41:25: 87:95:ed:9e:6a:dc:5a:26:6c:90:40:5c:e3:74:51:a3:7b:6d: 03:e0:5c:10:6d:ac:fd:64:e2:c2:14:f3:a2:39:5d:d4:bf:dd: 04:a3:96:a7:20:2d:cd:36:d7:57:12:14:61:3a:91:de:32:88: 27:8d:b6:88:b3:76:3a:fe:f5:7a:a3:28:12:90:54:b7:9b:66: 2b:81:62:ad:db:0a:a0:8a:65:e3:e7:3d:55:94:ee:cc:df:c8: 75:5e:16:51:1c:d7:de:e3:48:4d:d2:95:6a:af:58:2e:cb:94: 80:38:0b:05:93:d4:e7:3f:71:38:25:cb:27:b8:64:fc:62:55: 6f:0d:9c:61:df:3c:6a:40:2a:e2:58:31:dc:eb:99:8c:bd:a8: 15:2b:d8:6a:65:eb:40:db:e6:f2:71:93:15:f9:cc:28:fb:9e: 88:f4:1f:f6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAegwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcyNzcxMTAvBgNVBAUTKEQ4M0I5M0UzMUU5Mzk5MzdEOENCMTVGRTM5Q0E1RTZF OEZFQUZBOUIwHhcNMjYwNjAxMDQzNjQxWhcNMjYwNjA4MDQzNjQxWjAYMRYwFAYD VQQDEw02YTFkMGM1YS0yNTZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArZtKM6+oPirBEwSwtfaLyxABIhrwg2kMrRH0gTLapUANWzTOv7fyXdjtuPJw x9wg5LscgB7GY4KKtvD173qlG2xdtqOpI1/qGwNC50dlW4KwHUkKTV9AkqJnxuzJ FQ0etpdKOKpvd/el2E+cowFgqjValEZHnMfYhWkfDPCwcVmDwD+tLUH4ZUcEsazW KQgQdEJoZoW9yLJUow5LQAhRlGYtVvGoa1sKqIB7LVYl5f0z4+KpJtS256FDLvwV TerQPOIRGGqgS5D6wKq/hj2+57vabIMq9kaWxE6l3rEYKmYXh0YBEPtTd3roeCfB DZ2PiQy8ah2LwpKTHkwLiS6iQwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKDS2CJb kJXARm7ooWf/kZxy+2FyMB8GA1UdIwQYMBaAFNg7k+Mek5k32MsV/jnKXm6P6vqb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzI3Ny80M0E3RTg5NEI1 NjAxMUVFOTExQzVENEZDNEY5QUUwMi8yRHVUNHg2VG1UZll5eFgtT2NwZWJvX3Et cHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJEdVQ0eDZUbVRmWXl4WC1PY3BlYm9fcS1wcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzI3Ny80M0E3RTg5NEI1NjAxMUVFOTExQzVENEZDNEY5QUUwMi8yRHVUNHg2VG1U Zll5eFgtT2NwZWJvX3EtcHMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAhU/31srUElngXQaiez8ci+i8uwnA9timT8Ik2s6Dm8ZjPnjtSTqKI6tJYRhP UYE1pipR7I8QgW2rv+Xe7QSDIdvXlBMWgk2+reAnLgOnvWUUeocB82vXTEElh5Xt nmrcWiZskEBc43RRo3ttA+BcEG2s/WTiwhTzojld1L/dBKOWpyAtzTbXVxIUYTqR 3jKIJ422iLN2Ov71eqMoEpBUt5tmK4FirdsKoIpl4+c9VZTuzN/IdV4WURzX3uNI TdKVaq9YLsuUgDgLBZPU5z9xOCXLJ7hk/GJVbw2cYd88akAq4lgx3OuZjL2oFSvY amXrQNvm8nGTFfnMKPueiPQf9g== -----END CERTIFICATE-----Generated at Tue Jun 2 21:24:11 2026 by rpki-client