$ rpki-client -vvf rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.mft File: oKMiStDIKz-aYvNHrKP5RdsI8rA.mft (raw, json) Hash identifier: Juia9e5mZ3MLhRmroefhT/QwAYNZoMcoR+bpG9QVlNQ= Subject key identifier: E6:0E:E3:48:72:FC:77:1A:B2:4D:DB:6F:5A:F6:2D:4B:41:00:E6:66 Authority key identifier: A0:A3:22:4A:D0:C8:2B:3F:9A:62:F3:47:AC:A3:F9:45:DB:08:F2:B0 Certificate issuer: /CN=A91B80BD/serialNumber=A0A3224AD0C82B3F9A62F347ACA3F945DB08F2B0 Certificate serial: 3135 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKMiStDIKz-aYvNHrKP5RdsI8rA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.mft Manifest number: 30DA Signing time: Sat 02 May 2026 15:26:58 +0000 Manifest this update: Sat 02 May 2026 15:26:58 +0000 Manifest next update: Sat 09 May 2026 15:26:58 +0000 Files and hashes: 1: oKMiStDIKz-aYvNHrKP5RdsI8rA.crl (hash: QBPUyPd5WWaZVldS1lZWXrjTqtmfTO0oveR4oFW70Nw=) 2: 915E51B8F3BE11ED8B9B1450C4F9AE02.roa (hash: jY72D9kM4ZreV4v43viz3/fEA3o/FMiAaeH7fUiUeSs=) 3: 583C1F6854F611E79DF7E643C4F9AE02.roa (hash: M6QpwrrsCEg6uS0XBq+MJGbdVX3IkfmFKf0zFhM8Oec=) 4: 4C72E61CB0EC11E5A6934B42C4F9AE02.roa (hash: ot76bD4Fe2eGS+QL+OB7ESET88ZeiKoIEOY/MT5QHrY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.crl rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKMiStDIKz-aYvNHrKP5RdsI8rA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 May 2026 15:26:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12597 (0x3135) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B80BD, serialNumber=A0A3224AD0C82B3F9A62F347ACA3F945DB08F2B0 Validity Not Before: May 2 15:26:58 2026 GMT Not After : May 9 15:26:58 2026 GMT Subject: CN=69f617c2-02a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:84:99:4a:dd:ee:0e:dd:76:e8:2f:b4:10:55:ae: 93:fd:a9:f9:73:f8:01:75:52:8e:3b:60:37:38:f4: 4b:4f:6d:7b:47:32:78:74:1e:10:50:dd:ef:f7:2b: 58:1a:5f:80:b9:4e:19:58:df:13:22:6b:a1:f4:4d: 3f:9e:d2:b8:5e:3c:1c:31:3f:6d:b0:a4:6d:43:01: 85:f5:2f:42:18:47:11:c2:38:1c:ff:73:80:ad:01: fb:79:3d:be:9d:f7:4a:83:1f:24:6e:ef:e0:97:aa: ab:69:ea:48:c3:8a:52:44:77:c4:14:36:7d:88:e2: 8a:5b:a3:54:5b:7c:4e:f9:1d:66:51:fc:aa:cb:1f: 8f:3a:3f:5b:c2:0f:f8:ef:b3:dd:ca:e9:a7:7c:46: e8:f7:6a:29:3c:d8:af:44:05:a0:b0:cf:c4:6e:41: 06:7a:36:6b:77:73:24:41:fb:e8:7e:e6:44:84:be: fd:be:84:d8:e5:0f:e3:ed:31:cc:d2:6e:49:b5:8a: 82:af:0f:ad:63:67:b0:67:f8:4c:60:5c:a3:f0:1c: c1:c8:f9:ba:0d:25:12:24:f7:8a:cc:d2:74:8f:d5: a2:c4:55:0e:d7:db:3f:9d:0d:98:8f:56:79:c5:47: 5f:0f:94:0f:fc:af:d0:c4:af:c5:eb:49:38:d9:b8: 30:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:0E:E3:48:72:FC:77:1A:B2:4D:DB:6F:5A:F6:2D:4B:41:00:E6:66 X509v3 Authority Key Identifier: keyid:A0:A3:22:4A:D0:C8:2B:3F:9A:62:F3:47:AC:A3:F9:45:DB:08:F2:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKMiStDIKz-aYvNHrKP5RdsI8rA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:00:64:b9:6d:09:45:28:bc:83:7d:39:1a:f1:36:4b:43:cf: b2:c7:fe:a1:ab:43:57:87:43:64:60:e6:81:e4:f4:6c:be:57: ea:9d:15:dc:ad:9d:69:f8:f9:3c:d1:71:f4:7a:d7:9b:da:07: a3:89:5c:5d:3d:0f:3f:4e:1e:93:37:f1:0e:d1:fe:be:62:8c: 12:77:e9:95:31:88:59:9d:ed:49:a3:60:6b:9f:42:f9:64:c5: 9e:47:4f:fb:60:6c:41:70:c8:f1:12:bf:5f:3d:c5:34:1a:39: 9c:5a:23:61:07:56:c5:06:39:e3:32:0b:4c:7c:0a:61:e7:86: d2:47:ed:42:79:08:a9:c3:8f:a3:38:5e:4a:5c:b3:a3:7c:2c: 68:6d:99:d4:3e:31:33:63:42:5f:b9:15:9a:51:e4:97:72:4e: ab:7e:a2:65:07:2e:f4:3b:f4:19:6d:d7:e2:e3:fd:b9:7f:b9: 5c:2b:6d:e4:5b:f4:18:72:d3:1d:0c:f2:a6:2f:e5:ab:31:dc: 0a:b1:b5:52:60:39:43:04:62:05:4c:f5:2a:73:c3:7f:81:37: 30:70:0b:ea:59:83:02:a8:37:ba:f7:a5:2c:fe:e1:40:b2:21: 8a:c3:c6:28:cd:5f:2a:0a:70:5e:0e:2b:43:76:0a:65:c3:a7: a1:87:a8:68 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICMTUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjgwQkQxMTAvBgNVBAUTKEEwQTMyMjRBRDBDODJCM0Y5QTYyRjM0N0FDQTNGOTQ1 REIwOEYyQjAwHhcNMjYwNTAyMTUyNjU4WhcNMjYwNTA5MTUyNjU4WjAYMRYwFAYD VQQDEw02OWY2MTdjMi0wMmE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAhJlK3e4O3XboL7QQVa6T/an5c/gBdVKOO2A3OPRLT217RzJ4dB4QUN3v9ytY Gl+AuU4ZWN8TImuh9E0/ntK4XjwcMT9tsKRtQwGF9S9CGEcRwjgc/3OArQH7eT2+ nfdKgx8kbu/gl6qraepIw4pSRHfEFDZ9iOKKW6NUW3xO+R1mUfyqyx+POj9bwg/4 77PdyumnfEbo92opPNivRAWgsM/EbkEGejZrd3MkQfvofuZEhL79voTY5Q/j7THM 0m5JtYqCrw+tY2ewZ/hMYFyj8BzByPm6DSUSJPeKzNJ0j9WixFUO19s/nQ2Yj1Z5 xUdfD5QP/K/QxK/F60k42bgwqQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOYO40hy /Hcask3bb1r2LUtBAOZmMB8GA1UdIwQYMBaAFKCjIkrQyCs/mmLzR6yj+UXbCPKw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCODBCRC9CNUE2MzZEOEZF NUMxMUUyQUVDMDQyNTA1OTExRUEzMi9vS01pU3RESUt6LWFZdk5IcktQNVJkc0k4 ckEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29LTWlTdERJS3otYVl2TkhyS1A1UmRzSThyQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC ODBCRC9CNUE2MzZEOEZFNUMxMUUyQUVDMDQyNTA1OTExRUEzMi9vS01pU3RESUt6 LWFZdk5IcktQNVJkc0k4ckEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAJwBkuW0JRSi8g305GvE2S0PPssf+oatDV4dDZGDmgeT0bL5X6p0V3K2dafj5 PNFx9HrXm9oHo4lcXT0PP04ekzfxDtH+vmKMEnfplTGIWZ3tSaNga59C+WTFnkdP +2BsQXDI8RK/Xz3FNBo5nFojYQdWxQY54zILTHwKYeeG0kftQnkIqcOPozheSlyz o3wsaG2Z1D4xM2NCX7kVmlHkl3JOq36iZQcu9Dv0GW3X4uP9uX+5XCtt5Fv0GHLT HQzypi/lqzHcCrG1UmA5QwRiBUz1KnPDf4E3MHAL6lmDAqg3uvelLP7hQLIhisPG KM1fKgpwXg4rQ3YKZcOnoYeoaA== -----END CERTIFICATE-----Generated at Sun May 3 06:59:36 2026 by rpki-client