$ rpki-client -vvf rpki.apnic.net/member_repository/A91B2D29/F71E7166552111E5ADB2092AC4F9AE02/uOlsag2VSKKgQMvnGZdFun2x7Sg.mft File: uOlsag2VSKKgQMvnGZdFun2x7Sg.mft (raw, json) Hash identifier: n3ctw9Kb0f63kcSGP8MxbdYubYJYL/AZsOtn+xXZ/rY= Subject key identifier: 8D:B0:BB:3C:55:E7:18:0F:BA:94:CD:E5:2B:25:2B:81:74:22:F5:F1 Authority key identifier: B8:E9:6C:6A:0D:95:48:A2:A0:40:CB:E7:19:97:45:BA:7D:B1:ED:28 Certificate issuer: /CN=A91B2D29/serialNumber=B8E96C6A0D9548A2A040CBE7199745BA7DB1ED28 Certificate serial: 0A73 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uOlsag2VSKKgQMvnGZdFun2x7Sg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B2D29/F71E7166552111E5ADB2092AC4F9AE02/uOlsag2VSKKgQMvnGZdFun2x7Sg.mft Manifest number: 48A7 Signing time: Wed 20 May 2026 15:46:40 +0000 Manifest this update: Wed 20 May 2026 15:46:39 +0000 Manifest next update: Wed 27 May 2026 15:46:39 +0000 Files and hashes: 1: uOlsag2VSKKgQMvnGZdFun2x7Sg.crl (hash: 26YQIxRjPpFgNM3Mi8w5ilfRGMbxAYb/rJn/Csevqdc=) 2: 7CEC1452E17E11ECAB421316C4F9AE02.roa (hash: FehOg1jQMA1kFJnWyr7fIuCvYAwffMy7bJWnLWfMfbA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B2D29/F71E7166552111E5ADB2092AC4F9AE02/uOlsag2VSKKgQMvnGZdFun2x7Sg.crl rsync://rpki.apnic.net/member_repository/A91B2D29/F71E7166552111E5ADB2092AC4F9AE02/uOlsag2VSKKgQMvnGZdFun2x7Sg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uOlsag2VSKKgQMvnGZdFun2x7Sg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 15:46:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2675 (0xa73) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B2D29, serialNumber=B8E96C6A0D9548A2A040CBE7199745BA7DB1ED28 Validity Not Before: May 20 15:46:39 2026 GMT Not After : May 27 15:46:39 2026 GMT Subject: CN=6a0dd760-48c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:a6:7b:e3:58:8d:fe:75:26:0d:e0:88:41:0d: d9:c2:e5:8d:c0:73:19:3a:07:2f:d7:3e:48:e0:88: 56:d5:56:f5:61:24:57:b7:4b:2f:4c:4e:c1:fb:dd: aa:61:17:51:ae:31:7c:80:5c:da:8e:ef:e8:85:a9: 84:cf:82:68:63:2f:81:1e:a6:fa:1c:db:d7:fd:cb: cc:0e:3c:ce:13:51:d2:13:70:0c:11:36:4b:9c:d0: f9:0f:dd:f4:77:64:c4:16:5f:b6:8f:99:c0:eb:ff: 4e:74:fb:f5:4b:5a:a9:bc:91:77:80:e2:84:e4:f8: 7c:33:8b:34:ae:5c:12:99:ad:09:2f:3e:f1:ad:5f: 39:7e:af:6d:d2:c3:ad:37:a1:35:ce:fc:02:a6:f0: 3f:24:26:45:ce:e2:bc:e3:9f:23:04:4e:6d:9f:90: c1:4d:55:c6:8c:4d:26:e7:8e:6c:0a:69:e1:bf:6e: d1:e6:dd:63:fb:a9:42:9d:04:f2:50:64:cf:05:f3: b5:0b:63:fb:1b:a0:5c:83:ed:a1:22:21:03:5a:f9: d8:dd:62:28:00:cf:94:7c:7c:40:1e:79:a1:d2:9a: 55:5c:16:19:21:aa:60:49:56:b8:9e:1b:9f:31:16: aa:2d:5c:96:bd:eb:8f:9f:aa:77:e1:8e:d0:59:0b: a9:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:B0:BB:3C:55:E7:18:0F:BA:94:CD:E5:2B:25:2B:81:74:22:F5:F1 X509v3 Authority Key Identifier: keyid:B8:E9:6C:6A:0D:95:48:A2:A0:40:CB:E7:19:97:45:BA:7D:B1:ED:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B2D29/F71E7166552111E5ADB2092AC4F9AE02/uOlsag2VSKKgQMvnGZdFun2x7Sg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uOlsag2VSKKgQMvnGZdFun2x7Sg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B2D29/F71E7166552111E5ADB2092AC4F9AE02/uOlsag2VSKKgQMvnGZdFun2x7Sg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:79:12:1d:30:65:01:2c:b4:95:0d:bf:c0:0c:fa:d3:a7:d1: 60:38:40:89:3a:4c:aa:f6:bb:d6:94:cf:24:0b:d2:93:eb:f6: e3:73:70:9a:1d:e3:c6:dc:ad:2a:73:2f:25:17:43:4c:a4:33: 6d:7d:60:f5:a0:9e:71:29:88:f8:2d:a5:27:99:8d:6b:9a:3a: 70:90:bf:43:92:21:a8:b7:de:e2:a7:e3:37:a8:54:f5:68:66: f3:aa:1a:89:62:fe:b6:04:c7:d2:55:18:7a:4e:7b:55:d9:9a: ca:51:c9:18:0c:21:7a:a7:e9:fb:09:5c:bc:a3:8b:47:32:1e: 34:67:c9:03:32:fd:65:22:28:4c:4e:30:09:1c:e5:6b:9d:8e: 5f:91:9c:57:33:aa:5c:f0:d2:6f:cd:e8:2c:d0:31:af:23:30: b3:46:37:dd:30:4c:65:e0:71:bc:5b:96:8b:21:32:6a:fc:aa: 1b:f7:5f:7e:cd:14:b4:db:98:62:85:05:b6:6c:a9:a3:22:b4: 26:89:ac:00:fb:bf:d8:f0:81:a2:14:14:b8:93:b1:40:26:44: c1:b4:8f:42:fd:ff:a3:80:e2:64:50:d2:fc:2d:a0:99:6f:8a: 77:30:f2:70:51:71:bb:1c:44:82:9d:46:98:c2:9f:32:63:31: 10:b5:59:8e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCnMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjJEMjkxMTAvBgNVBAUTKEI4RTk2QzZBMEQ5NTQ4QTJBMDQwQ0JFNzE5OTc0NUJB N0RCMUVEMjgwHhcNMjYwNTIwMTU0NjM5WhcNMjYwNTI3MTU0NjM5WjAYMRYwFAYD VQQDEw02YTBkZDc2MC00OGM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmaZ741iN/nUmDeCIQQ3ZwuWNwHMZOgcv1z5I4IhW1Vb1YSRXt0svTE7B+92q YRdRrjF8gFzaju/ohamEz4JoYy+BHqb6HNvX/cvMDjzOE1HSE3AMETZLnND5D930 d2TEFl+2j5nA6/9OdPv1S1qpvJF3gOKE5Ph8M4s0rlwSma0JLz7xrV85fq9t0sOt N6E1zvwCpvA/JCZFzuK8458jBE5tn5DBTVXGjE0m545sCmnhv27R5t1j+6lCnQTy UGTPBfO1C2P7G6Bcg+2hIiEDWvnY3WIoAM+UfHxAHnmh0ppVXBYZIapgSVa4nhuf MRaqLVyWveuPn6p34Y7QWQup1QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFI2wuzxV 5xgPupTN5SslK4F0IvXxMB8GA1UdIwQYMBaAFLjpbGoNlUiioEDL5xmXRbp9se0o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMkQyOS9GNzFFNzE2NjU1 MjExMUU1QURCMjA5MkFDNEY5QUUwMi91T2xzYWcyVlNLS2dRTXZuR1pkRnVuMng3 U2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VPbHNhZzJWU0tLZ1FNdm5HWmRGdW4yeDdTZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MkQyOS9GNzFFNzE2NjU1MjExMUU1QURCMjA5MkFDNEY5QUUwMi91T2xzYWcyVlNL S2dRTXZuR1pkRnVuMng3U2cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAknkSHTBlASy0lQ2/wAz606fRYDhAiTpMqva71pTPJAvSk+v243Nwmh3jxtyt KnMvJRdDTKQzbX1g9aCecSmI+C2lJ5mNa5o6cJC/Q5IhqLfe4qfjN6hU9Whm86oa iWL+tgTH0lUYek57VdmaylHJGAwheqfp+wlcvKOLRzIeNGfJAzL9ZSIoTE4wCRzl a52OX5GcVzOqXPDSb83oLNAxryMws0Y33TBMZeBxvFuWiyEyavyqG/dffs0UtNuY YoUFtmypoyK0JomsAPu/2PCBohQUuJOxQCZEwbSPQv3/o4DiZFDS/C2gmW+KdzDy cFFxuxxEgp1GmMKfMmMxELVZjg== -----END CERTIFICATE-----Generated at Thu May 21 10:14:40 2026 by rpki-client