$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/OBfP4ApfGsw2O0cvT2nag761ZhM.mft File: OBfP4ApfGsw2O0cvT2nag761ZhM.mft (raw, json) Hash identifier: EW/iadXs4zh+kZrFdb9DG3S/44TNI4XWpdXhkSGp58g= Subject key identifier: F9:11:40:7E:03:9E:4D:4B:5C:8F:0B:0E:6B:C4:AE:7F:9C:6B:91:42 Authority key identifier: 38:17:CF:E0:0A:5F:1A:CC:36:3B:47:2F:4F:69:DA:83:BE:B5:66:13 Certificate issuer: /CN=A91B9AB9/serialNumber=3817CFE00A5F1ACC363B472F4F69DA83BEB56613 Certificate serial: 0149 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBfP4ApfGsw2O0cvT2nag761ZhM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/OBfP4ApfGsw2O0cvT2nag761ZhM.mft Manifest number: 0141 Signing time: Mon 25 May 2026 05:21:38 +0000 Manifest this update: Mon 25 May 2026 05:21:38 +0000 Manifest next update: Mon 01 Jun 2026 05:21:38 +0000 Files and hashes: 1: OBfP4ApfGsw2O0cvT2nag761ZhM.crl (hash: EYavc6YxG+o8wrxiGx/hdwgB33Cyb3T6YN1+T3aJ13c=) 2: A06AB21E6E8811EF95434073C4F9AE02.roa (hash: 1cWKe61JXoqpcmn6lNJya/Zcn9d/497NYBSEDuJwXJY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/OBfP4ApfGsw2O0cvT2nag761ZhM.crl rsync://rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/OBfP4ApfGsw2O0cvT2nag761ZhM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBfP4ApfGsw2O0cvT2nag761ZhM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 01 Jun 2026 05:21:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 329 (0x149) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9AB9, serialNumber=3817CFE00A5F1ACC363B472F4F69DA83BEB56613 Validity Not Before: May 25 05:21:38 2026 GMT Not After : Jun 1 05:21:38 2026 GMT Subject: CN=6a13dc62-5dae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:60:31:d5:b9:a2:d7:8f:9c:4c:6d:c4:56:b1: 01:55:35:da:cf:5f:4c:83:fd:45:e2:7d:3b:6b:59: 51:10:b7:f5:02:bc:1f:97:50:8f:34:df:0c:bd:ef: 59:f4:3b:ae:45:0a:85:5a:f7:87:9f:f7:d3:93:30: be:9a:05:4e:7e:52:45:da:f1:18:72:ab:b7:83:08: 74:fd:97:a7:87:85:b0:a1:93:73:27:dd:6f:8f:99: 61:a4:17:59:d0:cb:cb:ec:c4:a9:fa:66:37:a0:f6: c1:3e:40:bf:9b:0a:22:1c:27:be:ae:89:8a:6a:14: ab:33:08:f3:2f:f6:7e:1d:5f:dd:9b:a6:07:74:9b: 07:c1:94:bc:fb:d0:0a:45:a7:f5:cc:e3:27:7d:46: 1a:dd:7f:d6:41:6c:f4:da:b1:bb:39:f0:81:ef:b7: 84:52:7a:e1:65:f1:ad:b8:af:84:e3:64:d8:86:f9: f7:bc:cc:4c:5d:1a:f5:ff:2f:c9:a9:44:89:52:55: d0:bf:08:0e:3c:ec:06:95:0b:1d:f9:e8:1a:a3:6b: 10:27:91:60:d0:1c:76:19:14:ad:64:25:5a:d7:8a: 90:93:40:df:19:1f:ba:32:90:c0:50:4e:4c:93:bf: a8:3c:02:9c:81:80:58:3a:44:96:03:8d:a3:9c:d1: 83:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:11:40:7E:03:9E:4D:4B:5C:8F:0B:0E:6B:C4:AE:7F:9C:6B:91:42 X509v3 Authority Key Identifier: keyid:38:17:CF:E0:0A:5F:1A:CC:36:3B:47:2F:4F:69:DA:83:BE:B5:66:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/OBfP4ApfGsw2O0cvT2nag761ZhM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBfP4ApfGsw2O0cvT2nag761ZhM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/OBfP4ApfGsw2O0cvT2nag761ZhM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:f6:fe:89:c2:d6:ad:8a:04:57:81:b0:35:60:2c:53:33:f3: 2e:d3:39:e0:c4:63:5f:9a:b8:88:01:67:a4:ea:43:99:b6:37: 13:c4:0f:fc:2f:0a:9e:f2:50:d0:23:3a:23:cc:2e:b5:59:fc: 29:9a:72:bd:97:62:b1:e9:98:f5:ef:a6:0d:61:63:53:59:a7: a2:ec:94:70:e5:bb:d8:87:b3:f9:99:e7:2d:d5:3b:7d:58:16: 17:40:88:f9:10:64:20:bb:21:e3:0c:af:bd:71:c1:9e:96:d0: e6:a8:32:a3:16:8e:f8:ec:81:77:4a:4a:be:8c:4a:8b:e5:43: b1:5c:a8:63:c7:fb:7a:f0:70:d6:fc:4b:8d:f2:b6:f9:f3:3a: 84:e6:81:37:bf:6f:65:45:b5:bb:20:ae:bf:3d:fa:0d:e1:e2: cf:cb:08:03:80:ea:70:5c:32:68:11:7b:a6:20:f0:e3:f5:d7: 55:02:c8:a1:74:fb:ce:f2:aa:79:c5:52:ab:53:a3:00:1e:b4: 07:35:96:df:68:e1:4b:4f:a6:73:e2:be:ae:ac:80:4a:18:14: 33:54:11:16:8f:dc:fb:10:90:41:94:ec:f3:7b:89:96:59:ca: b4:84:6a:80:c4:13:d1:4c:2d:5c:0b:f5:28:24:08:fa:12:c3: 27:04:76:ac -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAUkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjlBQjkxMTAvBgNVBAUTKDM4MTdDRkUwMEE1RjFBQ0MzNjNCNDcyRjRGNjlEQTgz QkVCNTY2MTMwHhcNMjYwNTI1MDUyMTM4WhcNMjYwNjAxMDUyMTM4WjAYMRYwFAYD VQQDEw02YTEzZGM2Mi01ZGFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuGAx1bmi14+cTG3EVrEBVTXaz19Mg/1F4n07a1lRELf1Arwfl1CPNN8Mve9Z 9DuuRQqFWveHn/fTkzC+mgVOflJF2vEYcqu3gwh0/Zenh4WwoZNzJ91vj5lhpBdZ 0MvL7MSp+mY3oPbBPkC/mwoiHCe+romKahSrMwjzL/Z+HV/dm6YHdJsHwZS8+9AK Raf1zOMnfUYa3X/WQWz02rG7OfCB77eEUnrhZfGtuK+E42TYhvn3vMxMXRr1/y/J qUSJUlXQvwgOPOwGlQsd+egao2sQJ5Fg0Bx2GRStZCVa14qQk0DfGR+6MpDAUE5M k7+oPAKcgYBYOkSWA42jnNGDywIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPkRQH4D nk1LXI8LDmvErn+ca5FCMB8GA1UdIwQYMBaAFDgXz+AKXxrMNjtHL09p2oO+tWYT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOUFCOS9EMTE4QzBCQzZF ODQxMUVGQTNDRDk4M0ZDNEY5QUUwMi9PQmZQNEFwZkdzdzJPMGN2VDJuYWc3NjFa aE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09CZlA0QXBmR3N3Mk8wY3ZUMm5hZzc2MVpoTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OUFCOS9EMTE4QzBCQzZFODQxMUVGQTNDRDk4M0ZDNEY5QUUwMi9PQmZQNEFwZkdz dzJPMGN2VDJuYWc3NjFaaE0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAH/b+icLWrYoEV4GwNWAsUzPzLtM54MRjX5q4iAFnpOpDmbY3E8QP/C8KnvJQ 0CM6I8wutVn8KZpyvZdisemY9e+mDWFjU1mnouyUcOW72Iez+ZnnLdU7fVgWF0CI +RBkILsh4wyvvXHBnpbQ5qgyoxaO+OyBd0pKvoxKi+VDsVyoY8f7evBw1vxLjfK2 +fM6hOaBN79vZUW1uyCuvz36DeHiz8sIA4DqcFwyaBF7piDw4/XXVQLIoXT7zvKq ecVSq1OjAB60BzWW32jhS0+mc+K+rqyAShgUM1QRFo/c+xCQQZTs83uJllnKtIRq gMQT0UwtXAv1KCQI+hLDJwR2rA== -----END CERTIFICATE-----Generated at Mon May 25 17:16:35 2026 by rpki-client