$ rpki-client -vvf rpki.apnic.net/member_repository/A9197390/D2C7E7163E7A11EEA977D620C4F9AE02/oTW4FOHrHifJWX7tLoIoVJMNP88.mft File: oTW4FOHrHifJWX7tLoIoVJMNP88.mft (raw, json) Hash identifier: LbXsNpWCqHpAJj7bbzPkCfoDRjB/Rj3qoNDA4QF/D/Y= Subject key identifier: 65:69:D0:02:89:E7:01:F5:23:8C:5D:FC:B6:13:FB:67:0A:E6:C1:D1 Authority key identifier: A1:35:B8:14:E1:EB:1E:27:C9:59:7E:ED:2E:82:28:54:93:0D:3F:CF Certificate issuer: /CN=A9197390/serialNumber=A135B814E1EB1E27C9597EED2E822854930D3FCF Certificate serial: 0257 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oTW4FOHrHifJWX7tLoIoVJMNP88.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197390/D2C7E7163E7A11EEA977D620C4F9AE02/oTW4FOHrHifJWX7tLoIoVJMNP88.mft Manifest number: 0234 Signing time: Mon 01 Jun 2026 03:44:23 +0000 Manifest this update: Mon 01 Jun 2026 03:44:22 +0000 Manifest next update: Mon 08 Jun 2026 03:44:22 +0000 Files and hashes: 1: oTW4FOHrHifJWX7tLoIoVJMNP88.crl (hash: xMrO906605vxRoeHNcfxapi3VhezbL2YDFcgVqEX0nA=) 2: CD168A226C2111EFB0ACC153C4F9AE02.roa (hash: UJfcT25TpxMsPXblHXFvDdc06o4EalWiUveKOaWphfo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197390/D2C7E7163E7A11EEA977D620C4F9AE02/oTW4FOHrHifJWX7tLoIoVJMNP88.crl rsync://rpki.apnic.net/member_repository/A9197390/D2C7E7163E7A11EEA977D620C4F9AE02/oTW4FOHrHifJWX7tLoIoVJMNP88.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oTW4FOHrHifJWX7tLoIoVJMNP88.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Jun 2026 03:44:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 599 (0x257) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197390, serialNumber=A135B814E1EB1E27C9597EED2E822854930D3FCF Validity Not Before: Jun 1 03:44:22 2026 GMT Not After : Jun 8 03:44:22 2026 GMT Subject: CN=6a1d0016-1400 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:bb:69:e8:f5:0c:35:52:23:2b:c2:0a:5e:f5: 70:bc:6f:4a:96:6f:20:d1:71:39:ea:59:89:ed:5e: 63:f0:a1:76:05:c0:2f:c9:bd:d5:d4:b8:7c:42:30: e6:f0:e7:cf:b5:b2:73:90:d1:47:2b:b4:70:a7:0a: f6:54:c8:67:cc:b6:21:55:9b:8c:84:b8:9c:a6:79: 7d:d3:0c:c3:73:0e:33:69:ba:b9:69:a7:23:37:28: 5a:5d:d8:a7:c8:d2:50:76:05:c9:ee:6b:dc:0c:c0: 0c:08:d3:ba:5a:cf:0c:2f:bd:a1:4a:92:39:01:c2: b7:df:11:6d:c8:fc:ed:fc:17:aa:ef:ca:d6:35:d0: 67:c0:28:f5:95:a3:5e:82:92:a3:e5:f1:a8:de:50: 78:4b:0c:50:13:b4:5a:6e:f7:51:53:d6:d3:b2:63: d9:7e:c8:a6:85:93:e8:ab:ea:e5:20:13:18:a7:20: 8e:4d:ea:e2:7b:df:42:9a:de:40:1e:f3:a9:61:68: e6:a2:fe:5a:a8:e7:9d:1c:39:f9:d1:85:a1:be:aa: da:14:be:d3:01:e6:6d:27:6e:54:f1:bc:d4:51:92: 2b:3b:59:d7:13:d6:6c:00:5b:63:ec:5d:aa:b9:56: a6:b7:23:44:b0:89:52:50:eb:da:72:46:23:58:66: ee:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:69:D0:02:89:E7:01:F5:23:8C:5D:FC:B6:13:FB:67:0A:E6:C1:D1 X509v3 Authority Key Identifier: keyid:A1:35:B8:14:E1:EB:1E:27:C9:59:7E:ED:2E:82:28:54:93:0D:3F:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197390/D2C7E7163E7A11EEA977D620C4F9AE02/oTW4FOHrHifJWX7tLoIoVJMNP88.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oTW4FOHrHifJWX7tLoIoVJMNP88.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197390/D2C7E7163E7A11EEA977D620C4F9AE02/oTW4FOHrHifJWX7tLoIoVJMNP88.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:59:28:bb:37:7c:6c:92:95:a6:4c:3b:9e:5b:85:a1:c7:de: 6f:b5:b6:d1:ed:6d:01:40:4f:41:dc:d3:f9:33:a7:2d:b5:4a: dc:32:aa:7d:1d:cc:fd:05:be:3e:90:ed:ce:36:83:a6:e6:0d: a6:a0:14:ed:a5:bd:b8:25:3c:ad:2e:a0:a3:b6:00:77:52:02: b4:87:02:35:e7:9c:22:6d:72:21:09:07:19:65:bc:50:e0:f3: b0:c2:5c:91:e0:8f:68:ae:9e:fb:ad:79:b4:a0:02:d0:99:b2: 5c:b9:1a:1f:f7:1a:f8:1c:e2:3c:d3:93:5d:42:0d:37:6a:58: 0c:04:55:5d:c5:22:34:75:22:0c:f7:2d:5f:aa:ec:c5:6f:d9: dd:8e:d4:9c:45:f5:f1:72:cd:68:ec:4a:f8:ae:40:32:53:e3: 81:db:22:1d:98:f1:07:ff:38:78:8a:5f:4a:a7:d5:69:70:0e: b1:df:ec:2b:cd:96:22:4d:a4:56:67:f8:b9:c9:77:89:03:f6: 36:ec:24:7b:93:db:a7:6a:fe:25:d3:57:78:94:20:72:09:dd: 7d:94:8a:e4:7a:21:08:5b:c0:5d:fe:75:09:9c:0b:93:de:71: b7:ac:b7:be:94:e9:4f:75:d7:01:d3:61:a6:7c:b6:cd:c0:07: e5:57:a5:67 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAlcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTczOTAxMTAvBgNVBAUTKEExMzVCODE0RTFFQjFFMjdDOTU5N0VFRDJFODIyODU0 OTMwRDNGQ0YwHhcNMjYwNjAxMDM0NDIyWhcNMjYwNjA4MDM0NDIyWjAYMRYwFAYD VQQDEw02YTFkMDAxNi0xNDAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkbtp6PUMNVIjK8IKXvVwvG9Klm8g0XE56lmJ7V5j8KF2BcAvyb3V1Lh8QjDm 8OfPtbJzkNFHK7Rwpwr2VMhnzLYhVZuMhLicpnl90wzDcw4zabq5aacjNyhaXdin yNJQdgXJ7mvcDMAMCNO6Ws8ML72hSpI5AcK33xFtyPzt/Beq78rWNdBnwCj1laNe gpKj5fGo3lB4SwxQE7RabvdRU9bTsmPZfsimhZPoq+rlIBMYpyCOTerie99Cmt5A HvOpYWjmov5aqOedHDn50YWhvqraFL7TAeZtJ25U8bzUUZIrO1nXE9ZsAFtj7F2q uVamtyNEsIlSUOvackYjWGbuHwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGVp0AKJ 5wH1I4xd/LYT+2cK5sHRMB8GA1UdIwQYMBaAFKE1uBTh6x4nyVl+7S6CKFSTDT/P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzM5MC9EMkM3RTcxNjNF N0ExMUVFQTk3N0Q2MjBDNEY5QUUwMi9vVFc0Rk9IckhpZkpXWDd0TG9Jb1ZKTU5Q ODguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29UVzRGT0hySGlmSldYN3RMb0lvVkpNTlA4OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzM5MC9EMkM3RTcxNjNFN0ExMUVFQTk3N0Q2MjBDNEY5QUUwMi9vVFc0Rk9Ickhp ZkpXWDd0TG9Jb1ZKTU5QODgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAK1kouzd8bJKVpkw7nluFocfeb7W20e1tAUBPQdzT+TOnLbVK3DKqfR3M/QW+ PpDtzjaDpuYNpqAU7aW9uCU8rS6go7YAd1ICtIcCNeecIm1yIQkHGWW8UODzsMJc keCPaK6e+615tKAC0JmyXLkaH/ca+BziPNOTXUINN2pYDARVXcUiNHUiDPctX6rs xW/Z3Y7UnEX18XLNaOxK+K5AMlPjgdsiHZjxB/84eIpfSqfVaXAOsd/sK82WIk2k Vmf4ucl3iQP2Nuwke5Pbp2r+JdNXeJQgcgndfZSK5HohCFvAXf51CZwLk95xt6y3 vpTpT3XXAdNhpny2zcAH5VelZw== -----END CERTIFICATE-----Generated at Thu Jun 4 12:04:23 2026 by rpki-client