$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5B83/0F46CA8CADAF11EA84C04E10C4F9AE02/oL2xs_Hk5wTrTU8s5f405lA3uUM.mft File: oL2xs_Hk5wTrTU8s5f405lA3uUM.mft (raw, json) Hash identifier: EXkCeKb+DNRVqh8EcZrtta+i7sh3YYjbDAfU8u/kBUs= Subject key identifier: DD:43:E1:F7:42:45:51:45:D0:41:98:E0:EC:97:0F:AD:18:37:3F:FD Authority key identifier: A0:BD:B1:B3:F1:E4:E7:04:EB:4D:4F:2C:E5:FE:34:E6:50:37:B9:43 Certificate issuer: /CN=A91A5B83/serialNumber=A0BDB1B3F1E4E704EB4D4F2CE5FE34E65037B943 Certificate serial: 09AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oL2xs_Hk5wTrTU8s5f405lA3uUM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5B83/0F46CA8CADAF11EA84C04E10C4F9AE02/oL2xs_Hk5wTrTU8s5f405lA3uUM.mft Manifest number: 099F Signing time: Wed 20 May 2026 20:00:52 +0000 Manifest this update: Wed 20 May 2026 20:00:52 +0000 Manifest next update: Wed 27 May 2026 20:00:52 +0000 Files and hashes: 1: oL2xs_Hk5wTrTU8s5f405lA3uUM.crl (hash: 7PwDOWgr5UVXCNDARYPrhcnSxLUuQgWKwxd7dOvatNw=) 2: 975BB0CE73AD11EDAD75DB7DC4F9AE02.roa (hash: jAKvnhGGumY3r7ewKcT9Lzim+X/g3AItHLNz64M4NG8=) 3: A21F0938C44B11EB8CF88F1EC4F9AE02.roa (hash: NAdkxGEriD41T4r2Hs9G1ZaoxJyebhWdoS8t42aFjpU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5B83/0F46CA8CADAF11EA84C04E10C4F9AE02/oL2xs_Hk5wTrTU8s5f405lA3uUM.crl rsync://rpki.apnic.net/member_repository/A91A5B83/0F46CA8CADAF11EA84C04E10C4F9AE02/oL2xs_Hk5wTrTU8s5f405lA3uUM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oL2xs_Hk5wTrTU8s5f405lA3uUM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 20:00:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2478 (0x9ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5B83, serialNumber=A0BDB1B3F1E4E704EB4D4F2CE5FE34E65037B943 Validity Not Before: May 20 20:00:52 2026 GMT Not After : May 27 20:00:52 2026 GMT Subject: CN=6a0e12f4-73fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:3f:91:f4:32:86:18:11:20:8c:bf:27:59:a3: dc:b5:3e:7e:40:a2:90:e1:67:22:ba:91:54:d5:36: 1e:cd:53:03:0a:87:9b:ad:c3:f5:89:e4:a3:43:ce: cd:2c:a0:c4:47:16:af:79:6b:54:c7:46:9c:c6:9d: 7b:71:3f:a2:f9:b3:0f:b6:5c:79:71:d2:7b:95:cc: 78:1e:e7:95:8b:f9:8f:63:af:bf:b6:21:30:5f:9f: 83:de:3f:5b:22:ba:4e:86:35:90:d6:da:23:3e:d4: 08:da:32:fd:1d:fd:20:28:bb:81:3e:1c:69:d6:c9: e3:db:e6:36:44:4f:6e:0a:0c:87:4d:db:a8:79:71: 94:d9:3d:1c:ac:ec:be:8a:1f:f0:63:70:bf:99:21: df:be:eb:31:4f:57:a8:1f:57:e0:58:39:66:96:21: 6e:51:1c:bd:df:f2:a8:65:6d:fb:a0:8d:7c:eb:4e: ce:4e:de:37:94:88:57:53:6c:92:bd:a6:e8:c6:a7: 5c:fe:e1:bb:a6:33:bd:69:e7:78:52:a0:b1:5f:dd: 72:6e:0e:23:50:d0:b5:d8:c2:ff:bf:4d:c9:6f:8a: ef:da:ca:46:2a:78:e7:c8:48:41:20:30:27:d3:cc: b4:f5:6d:a2:c8:d3:52:5d:a8:a4:1a:ad:23:ae:25: 75:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:43:E1:F7:42:45:51:45:D0:41:98:E0:EC:97:0F:AD:18:37:3F:FD X509v3 Authority Key Identifier: keyid:A0:BD:B1:B3:F1:E4:E7:04:EB:4D:4F:2C:E5:FE:34:E6:50:37:B9:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5B83/0F46CA8CADAF11EA84C04E10C4F9AE02/oL2xs_Hk5wTrTU8s5f405lA3uUM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oL2xs_Hk5wTrTU8s5f405lA3uUM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5B83/0F46CA8CADAF11EA84C04E10C4F9AE02/oL2xs_Hk5wTrTU8s5f405lA3uUM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:be:67:d2:e3:29:4a:53:cb:27:16:6f:74:1a:19:e9:db:c2: 6b:f9:6b:96:fc:aa:16:58:16:70:dc:93:10:3e:d0:79:b0:60: 36:06:e6:f0:b3:78:07:5e:09:aa:b7:ed:23:d2:33:bd:9b:1c: 11:5e:46:4e:7f:3a:49:2b:b9:6b:a0:a1:d7:fb:ad:ee:cb:79: 3e:14:de:1c:82:6c:83:a8:52:03:8c:3f:9d:51:a7:9c:3f:50: 03:91:18:02:ff:5d:17:10:14:cf:18:95:40:ba:c3:a4:e2:63: 63:0a:9e:47:6e:48:a8:38:b3:d2:7b:4f:4a:5c:0a:61:47:bf: 15:87:1f:0f:a8:93:23:56:5c:ab:6b:a8:5c:54:36:c2:29:5b: 91:50:cd:4e:e9:b5:8e:d1:6d:86:04:dd:44:a9:08:a1:6c:e3: c2:cf:de:cf:4e:93:2a:b0:17:75:52:56:ea:d8:d3:61:2b:22: 56:c4:ee:c4:84:b1:28:73:75:8f:cd:f7:8e:44:b6:13:d8:f8: 5a:46:48:19:a0:af:dc:c5:5b:39:a2:50:a7:16:76:7f:b2:46: 87:c0:b1:4d:1d:f5:7c:6b:b0:66:bd:34:5a:36:6a:24:ad:15: 85:0d:ff:3c:80:b7:bf:2d:71:f2:c3:dc:ee:22:2d:46:76:64: 85:29:3e:4a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCa4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTVCODMxMTAvBgNVBAUTKEEwQkRCMUIzRjFFNEU3MDRFQjRENEYyQ0U1RkUzNEU2 NTAzN0I5NDMwHhcNMjYwNTIwMjAwMDUyWhcNMjYwNTI3MjAwMDUyWjAYMRYwFAYD VQQDEw02YTBlMTJmNC03M2ZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuj+R9DKGGBEgjL8nWaPctT5+QKKQ4WciupFU1TYezVMDCoebrcP1ieSjQ87N LKDERxaveWtUx0acxp17cT+i+bMPtlx5cdJ7lcx4HueVi/mPY6+/tiEwX5+D3j9b IrpOhjWQ1tojPtQI2jL9Hf0gKLuBPhxp1snj2+Y2RE9uCgyHTduoeXGU2T0crOy+ ih/wY3C/mSHfvusxT1eoH1fgWDlmliFuURy93/KoZW37oI18607OTt43lIhXU2yS vaboxqdc/uG7pjO9aed4UqCxX91ybg4jUNC12ML/v03Jb4rv2spGKnjnyEhBIDAn 08y09W2iyNNSXaikGq0jriV1zwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFN1D4fdC RVFF0EGY4OyXD60YNz/9MB8GA1UdIwQYMBaAFKC9sbPx5OcE601PLOX+NOZQN7lD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNUI4My8wRjQ2Q0E4Q0FE QUYxMUVBODRDMDRFMTBDNEY5QUUwMi9vTDJ4c19IazV3VHJUVThzNWY0MDVsQTN1 VU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29MMnhzX0hrNXdUclRVOHM1ZjQwNWxBM3VVTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NUI4My8wRjQ2Q0E4Q0FEQUYxMUVBODRDMDRFMTBDNEY5QUUwMi9vTDJ4c19IazV3 VHJUVThzNWY0MDVsQTN1VU0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEATb5n0uMpSlPLJxZvdBoZ6dvCa/lrlvyqFlgWcNyTED7QebBgNgbm8LN4B14J qrftI9IzvZscEV5GTn86SSu5a6Ch1/ut7st5PhTeHIJsg6hSA4w/nVGnnD9QA5EY Av9dFxAUzxiVQLrDpOJjYwqeR25IqDiz0ntPSlwKYUe/FYcfD6iTI1Zcq2uoXFQ2 wilbkVDNTum1jtFthgTdRKkIoWzjws/ez06TKrAXdVJW6tjTYSsiVsTuxISxKHN1 j833jkS2E9j4WkZIGaCv3MVbOaJQpxZ2f7JGh8CxTR31fGuwZr00WjZqJK0VhQ3/ PIC3vy1x8sPc7iItRnZkhSk+Sg== -----END CERTIFICATE-----Generated at Thu May 21 09:38:02 2026 by rpki-client