$ rpki-client -vvf rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.mft File: Okb7D0D2nV4dt10oUfBAwZ9m8iw.mft (raw, json) Hash identifier: PGQBnwWSZcmhXOpz8/5CutMyVnKGkoHsd54E9+2wZkk= Subject key identifier: 4F:72:6C:09:F4:BB:72:0A:B9:D2:E1:AF:BB:A7:E6:27:75:84:4E:D5 Authority key identifier: 3A:46:FB:0F:40:F6:9D:5E:1D:B7:5D:28:51:F0:40:C1:9F:66:F2:2C Certificate issuer: /CN=A91ACD4D/serialNumber=3A46FB0F40F69D5E1DB75D2851F040C19F66F22C Certificate serial: 16FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Okb7D0D2nV4dt10oUfBAwZ9m8iw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.mft Manifest number: 16E4 Signing time: Thu 04 Jun 2026 16:38:31 +0000 Manifest this update: Thu 04 Jun 2026 16:38:30 +0000 Manifest next update: Thu 11 Jun 2026 16:38:30 +0000 Files and hashes: 1: Okb7D0D2nV4dt10oUfBAwZ9m8iw.crl (hash: mEn1XSOOMJGGNdP/FuVV3NhzTmqX0a56b8KmOfPcl0E=) 2: 3DE1DBC4D81011EC892E8A79C4F9AE02.roa (hash: axiKuwLSfY8matk7uBsk8eo5tXOq+cX6OWML8EZD+cQ=) 3: 268ECB3ED5BD11E894FFC250C4F9AE02.roa (hash: Z38B7rPVhqG6tcWO8r6+i/l0vZbjlq448NkG06qknRg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.crl rsync://rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Okb7D0D2nV4dt10oUfBAwZ9m8iw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 16:38:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5882 (0x16fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ACD4D, serialNumber=3A46FB0F40F69D5E1DB75D2851F040C19F66F22C Validity Not Before: Jun 4 16:38:30 2026 GMT Not After : Jun 11 16:38:30 2026 GMT Subject: CN=6a21aa07-8da8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:04:2b:a0:eb:75:a8:1f:b3:a4:43:d2:df:cb: ee:41:0d:9b:68:85:1d:5d:bb:11:54:75:38:56:ce: 49:f5:9e:30:73:e3:49:55:88:19:3b:b7:5a:82:b4: 16:75:f6:f6:cd:e0:4e:13:1e:64:6b:fd:b8:ca:a7: 56:b0:94:ed:83:6f:fc:91:ae:8f:22:13:23:3d:3a: 58:58:66:0d:11:fd:7a:0e:c4:16:1e:55:b9:44:be: f1:7f:78:75:13:28:13:bf:62:76:3a:c3:10:a5:b3: 46:8c:c0:2c:30:8e:8e:eb:4e:3e:8c:07:25:7f:2a: 4e:d4:95:65:96:cd:60:eb:f2:ec:c6:a9:d6:1b:a1: d2:72:27:b1:9e:8f:66:30:be:da:80:89:b0:69:9e: 82:2d:a7:ee:54:3c:2b:a3:51:76:25:fa:17:54:f4: b8:d0:83:f3:31:32:7b:8a:93:6c:86:25:1d:08:64: 7f:ad:73:17:b0:f5:73:c6:b3:ee:05:04:9e:ac:41: c7:bf:12:5b:89:f9:39:d8:03:55:62:d1:35:39:81: 79:95:e4:e9:12:fb:54:e9:68:fb:12:db:09:53:44: a3:28:62:cf:71:a5:2f:a1:bc:c9:4f:37:8b:18:1c: 6f:60:03:c7:58:c8:86:86:3f:08:e5:12:89:fc:14: 9d:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:72:6C:09:F4:BB:72:0A:B9:D2:E1:AF:BB:A7:E6:27:75:84:4E:D5 X509v3 Authority Key Identifier: keyid:3A:46:FB:0F:40:F6:9D:5E:1D:B7:5D:28:51:F0:40:C1:9F:66:F2:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Okb7D0D2nV4dt10oUfBAwZ9m8iw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:6c:14:91:21:87:aa:99:e9:8b:bf:c0:2a:f8:f8:ac:dc:be: 17:57:36:6c:63:07:df:4d:df:02:10:51:c9:58:a0:ae:93:00: d4:9f:70:bb:c4:60:2e:ee:fe:f1:8f:0e:a8:7a:6d:89:ff:97: 00:dc:e4:94:53:c3:dc:41:04:da:17:1b:dd:dc:21:42:f7:e3: 32:c7:61:b4:3a:98:e7:f2:14:e1:0e:50:b9:de:e7:fd:e2:dc: 21:b8:a6:2a:1a:76:ba:b3:dc:38:94:48:8a:d0:4d:a5:bc:4e: 98:9e:92:76:53:54:69:79:ef:12:7f:2e:4b:f8:9e:a1:17:76: 22:c9:93:cf:70:9d:3a:72:53:c2:4a:e4:7c:e8:6a:e3:18:86: cc:03:fb:a0:2d:a9:cf:cc:41:49:98:56:37:e6:ff:61:b4:df: a2:39:8b:3c:40:8a:d7:6b:1f:f6:82:84:b4:96:9c:38:97:c7: 2d:48:ed:4f:4a:7f:c3:0a:fc:98:67:a2:b9:58:3b:73:12:a0: 43:29:ea:da:d0:85:bf:42:99:09:bc:5a:6b:e5:6f:23:2a:7e: 48:91:5e:48:97:8b:84:cb:f2:d5:2c:30:1d:5f:9e:79:e0:56: d1:aa:93:44:12:5e:34:14:07:fa:a5:a8:7b:28:66:09:f6:59: 53:98:11:d6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICFvowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUNENEQxMTAvBgNVBAUTKDNBNDZGQjBGNDBGNjlENUUxREI3NUQyODUxRjA0MEMx OUY2NkYyMkMwHhcNMjYwNjA0MTYzODMwWhcNMjYwNjExMTYzODMwWjAYMRYwFAYD VQQDEw02YTIxYWEwNy04ZGE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAugQroOt1qB+zpEPS38vuQQ2baIUdXbsRVHU4Vs5J9Z4wc+NJVYgZO7dagrQW dfb2zeBOEx5ka/24yqdWsJTtg2/8ka6PIhMjPTpYWGYNEf16DsQWHlW5RL7xf3h1 EygTv2J2OsMQpbNGjMAsMI6O604+jAclfypO1JVlls1g6/LsxqnWG6HSciexno9m ML7agImwaZ6CLafuVDwro1F2JfoXVPS40IPzMTJ7ipNshiUdCGR/rXMXsPVzxrPu BQSerEHHvxJbifk52ANVYtE1OYF5leTpEvtU6Wj7EtsJU0SjKGLPcaUvobzJTzeL GBxvYAPHWMiGhj8I5RKJ/BSdFwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFE9ybAn0 u3IKudLhr7un5id1hE7VMB8GA1UdIwQYMBaAFDpG+w9A9p1eHbddKFHwQMGfZvIs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQ0Q0RC8xMzdEMDBENDE2 MEUxMUU4ODUyQzQzN0VDNEY5QUUwMi9Pa2I3RDBEMm5WNGR0MTBvVWZCQXdaOW04 aXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09rYjdEMEQyblY0ZHQxMG9VZkJBd1o5bThpdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Q0Q0RC8xMzdEMDBENDE2MEUxMUU4ODUyQzQzN0VDNEY5QUUwMi9Pa2I3RDBEMm5W NGR0MTBvVWZCQXdaOW04aXcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAjGwUkSGHqpnpi7/AKvj4rNy+F1c2bGMH303fAhBRyVigrpMA1J9wu8RgLu7+ 8Y8OqHptif+XANzklFPD3EEE2hcb3dwhQvfjMsdhtDqY5/IU4Q5Qud7n/eLcIbim Khp2urPcOJRIitBNpbxOmJ6SdlNUaXnvEn8uS/ieoRd2IsmTz3CdOnJTwkrkfOhq 4xiGzAP7oC2pz8xBSZhWN+b/YbTfojmLPECK12sf9oKEtJacOJfHLUjtT0p/wwr8 mGeiuVg7cxKgQynq2tCFv0KZCbxaa+VvIyp+SJFeSJeLhMvy1SwwHV+eeeBW0aqT RBJeNBQH+qWoeyhmCfZZU5gR1g== -----END CERTIFICATE-----Generated at Sat Jun 6 07:00:29 2026 by rpki-client