$ rpki-client -vvf rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.mft File: _ONoVUVgesO8wzQNA5shaIJxJ74.mft (raw, json) Hash identifier: 0Sm2khMnPamVUK37pLPCIGemwuwZ3aYuOpfrqVJfkuA= Subject key identifier: E0:44:DC:17:7F:9C:BA:E1:16:70:16:DE:18:86:FA:E1:34:BB:A2:52 Authority key identifier: FC:E3:68:55:45:60:7A:C3:BC:C3:34:0D:03:9B:21:68:82:71:27:BE Certificate issuer: /CN=A9198D02/serialNumber=FCE3685545607AC3BCC3340D039B2168827127BE Certificate serial: 08FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_ONoVUVgesO8wzQNA5shaIJxJ74.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.mft Manifest number: 08DB Signing time: Wed 20 May 2026 20:24:45 +0000 Manifest this update: Wed 20 May 2026 20:24:45 +0000 Manifest next update: Wed 27 May 2026 20:24:45 +0000 Files and hashes: 1: _ONoVUVgesO8wzQNA5shaIJxJ74.crl (hash: fye86tnEjgc+NAl4cJlgGaiVtDZytamSMEJ0HLQBVHw=) 2: 3BF0A4D868F511ECAB15DE18C4F9AE02.roa (hash: d8G/TfpNpL6HX37ocKvM5TsVlVjVR76JD7mZYT1iKdk=) 3: 51A7E3C28EB711EBB8A7B01DC4F9AE02.roa (hash: +lxeSugWEuY86E4w4UGBy7QvT+6uw0dBO3CLwKjhb3k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.crl rsync://rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_ONoVUVgesO8wzQNA5shaIJxJ74.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 20:24:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2298 (0x8fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198D02, serialNumber=FCE3685545607AC3BCC3340D039B2168827127BE Validity Not Before: May 20 20:24:45 2026 GMT Not After : May 27 20:24:45 2026 GMT Subject: CN=6a0e188d-a7e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:ca:43:08:92:96:76:61:14:af:86:2a:90:dd: a1:0f:6c:b9:e9:23:71:97:89:0d:21:0b:51:3d:04: 2d:9f:57:2d:a9:65:57:42:9e:9c:be:3e:95:e4:9d: 2e:17:c0:ce:af:a5:2b:1e:1b:9f:38:4a:40:fe:85: e4:50:42:fd:eb:2d:26:58:83:c7:bb:e3:64:31:d7: 6d:e4:fa:bc:ec:62:eb:82:4e:57:10:37:48:f6:e8: 29:59:b6:37:58:36:08:ae:85:49:53:8f:28:ed:34: 3d:24:ba:0d:48:c8:4e:47:39:a9:d2:0c:a4:e9:c1: 29:12:11:00:e1:ba:12:7c:8f:a2:d3:2a:9b:6b:47: 76:ce:fe:46:82:95:76:df:db:86:2a:41:19:98:c5: 8f:b9:d0:92:f7:f4:43:5f:f2:b7:41:cb:0f:f0:7a: 3d:21:93:d3:33:30:16:48:6b:c5:ba:47:83:ab:bb: 16:af:e9:ab:6c:70:07:27:7f:f0:af:35:f6:d8:2b: 68:82:74:94:02:56:d6:f8:4f:ae:6d:94:89:1c:6d: 3b:20:68:66:8b:48:04:48:5b:f7:81:5e:b3:37:59: 69:98:1f:6a:47:24:02:b9:b8:b4:1e:ce:65:99:3c: 92:67:b0:a5:00:b8:e9:50:dd:7c:85:cb:a9:34:71: ca:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:44:DC:17:7F:9C:BA:E1:16:70:16:DE:18:86:FA:E1:34:BB:A2:52 X509v3 Authority Key Identifier: keyid:FC:E3:68:55:45:60:7A:C3:BC:C3:34:0D:03:9B:21:68:82:71:27:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_ONoVUVgesO8wzQNA5shaIJxJ74.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:e9:44:14:c2:bc:f3:00:f4:fe:d6:60:4c:72:c4:eb:a0:d4: 56:a2:d6:fa:e0:3e:ce:2f:ac:68:8c:8b:b9:7f:18:8d:e3:4f: 24:b2:47:9a:03:0c:75:60:bb:7f:d6:d8:d0:46:bb:03:95:7b: 66:86:e0:39:46:51:fc:31:47:3b:d1:82:a2:f7:99:50:92:70: 6f:e3:cd:ac:8f:1a:97:43:d8:bd:85:85:ea:c5:17:84:a7:e5: bd:78:0a:20:48:0c:95:6e:5d:aa:b3:f2:18:d2:8a:1c:2b:88: 1f:95:d8:91:42:53:98:f8:ae:63:4f:54:46:b6:cb:96:36:f2: 0d:e3:b2:f0:6f:2e:4e:80:46:47:02:7d:fd:33:7e:c4:56:ea: 28:50:9c:c4:ec:2d:f3:6e:79:f1:34:91:eb:2d:83:dc:4d:3c: 3f:bd:4f:ee:88:47:09:e1:3e:48:e3:89:5f:ae:35:70:22:64: 00:de:8f:f0:4b:e0:2b:d1:9d:e8:2a:76:8e:a4:c6:ee:32:42: 4a:56:a1:44:2e:31:18:af:32:ec:9d:af:8b:41:ca:ae:34:8f: b1:29:bb:b7:9d:f3:10:d7:1b:74:3e:95:1a:a6:d0:cc:fb:f1: 4b:c2:89:87:79:44:a4:42:ed:4c:dd:a4:e1:ab:70:24:b4:6e: c8:d7:d8:32 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCPowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OThEMDIxMTAvBgNVBAUTKEZDRTM2ODU1NDU2MDdBQzNCQ0MzMzQwRDAzOUIyMTY4 ODI3MTI3QkUwHhcNMjYwNTIwMjAyNDQ1WhcNMjYwNTI3MjAyNDQ1WjAYMRYwFAYD VQQDEw02YTBlMTg4ZC1hN2U3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2cpDCJKWdmEUr4YqkN2hD2y56SNxl4kNIQtRPQQtn1ctqWVXQp6cvj6V5J0u F8DOr6UrHhufOEpA/oXkUEL96y0mWIPHu+NkMddt5Pq87GLrgk5XEDdI9ugpWbY3 WDYIroVJU48o7TQ9JLoNSMhORzmp0gyk6cEpEhEA4boSfI+i0yqba0d2zv5GgpV2 39uGKkEZmMWPudCS9/RDX/K3QcsP8Ho9IZPTMzAWSGvFukeDq7sWr+mrbHAHJ3/w rzX22CtognSUAlbW+E+ubZSJHG07IGhmi0gESFv3gV6zN1lpmB9qRyQCubi0Hs5l mTySZ7ClALjpUN18hcupNHHK6QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOBE3Bd/ nLrhFnAW3hiG+uE0u6JSMB8GA1UdIwQYMBaAFPzjaFVFYHrDvMM0DQObIWiCcSe+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OEQwMi8yOEE1MDZGQUQ4 NjcxMUVBOEI1MTYyMERDNEY5QUUwMi9fT05vVlVWZ2VzTzh3elFOQTVzaGFJSnhK NzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19PTm9WVVZnZXNPOHd6UU5BNXNoYUlKeEo3NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OEQwMi8yOEE1MDZGQUQ4NjcxMUVBOEI1MTYyMERDNEY5QUUwMi9fT05vVlVWZ2Vz Tzh3elFOQTVzaGFJSnhKNzQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAdOlEFMK88wD0/tZgTHLE66DUVqLW+uA+zi+saIyLuX8YjeNPJLJHmgMMdWC7 f9bY0Ea7A5V7ZobgOUZR/DFHO9GCoveZUJJwb+PNrI8al0PYvYWF6sUXhKflvXgK IEgMlW5dqrPyGNKKHCuIH5XYkUJTmPiuY09URrbLljbyDeOy8G8uToBGRwJ9/TN+ xFbqKFCcxOwt82558TSR6y2D3E08P71P7ohHCeE+SOOJX641cCJkAN6P8EvgK9Gd 6Cp2jqTG7jJCSlahRC4xGK8y7J2vi0HKrjSPsSm7t53zENcbdD6VGqbQzPvxS8KJ h3lEpELtTN2k4atwJLRuyNfYMg== -----END CERTIFICATE-----Generated at Thu May 21 09:38:53 2026 by rpki-client