$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1025/8D7B9BF29D8411EF817E1420C4F9AE02/OZp7H8QgfroHB6hRUZXMaOg2q_g.mft File: OZp7H8QgfroHB6hRUZXMaOg2q_g.mft (raw, json) Hash identifier: 3tuRky7GY9P23i5wqJiSyFE9E4XcdpNLnftuN63TOEc= Subject key identifier: 1C:2F:B8:00:DF:14:FE:B6:0D:CD:44:E6:B1:2A:17:FE:EF:F2:01:59 Authority key identifier: 39:9A:7B:1F:C4:20:7E:BA:07:07:A8:51:51:95:CC:68:E8:36:AB:F8 Certificate issuer: /CN=A91C1025/serialNumber=399A7B1FC4207EBA0707A8515195CC68E836ABF8 Certificate serial: 012B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OZp7H8QgfroHB6hRUZXMaOg2q_g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1025/8D7B9BF29D8411EF817E1420C4F9AE02/OZp7H8QgfroHB6hRUZXMaOg2q_g.mft Manifest number: 0125 Signing time: Thu 21 May 2026 05:50:13 +0000 Manifest this update: Thu 21 May 2026 05:50:12 +0000 Manifest next update: Thu 28 May 2026 05:50:12 +0000 Files and hashes: 1: OZp7H8QgfroHB6hRUZXMaOg2q_g.crl (hash: TfoWamfY1drieOFPtXTcLZvpU1L9xYyk3qRcN3d6VJw=) 2: 4996A7209D9211EFAD3DCF45C4F9AE02.roa (hash: /TeFmAq6WUrTiuCuPlwLIq4bJylbmUbGhfodPgyaENY=) 3: 03FFD61EEF8A11F09F678C04616F56BC.roa (hash: Vq7WOAaGyHrEANMuaydXxs4oGlSE1GWybP72WD+YuWk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1025/8D7B9BF29D8411EF817E1420C4F9AE02/OZp7H8QgfroHB6hRUZXMaOg2q_g.crl rsync://rpki.apnic.net/member_repository/A91C1025/8D7B9BF29D8411EF817E1420C4F9AE02/OZp7H8QgfroHB6hRUZXMaOg2q_g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OZp7H8QgfroHB6hRUZXMaOg2q_g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 05:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 299 (0x12b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1025, serialNumber=399A7B1FC4207EBA0707A8515195CC68E836ABF8 Validity Not Before: May 21 05:50:12 2026 GMT Not After : May 28 05:50:12 2026 GMT Subject: CN=6a0e9d15-6e59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:08:22:37:35:45:c5:7b:82:99:f4:06:0a:c5: 73:e3:ff:11:b2:e4:49:d9:56:a7:64:ac:a2:2e:35: 7d:a7:a2:38:19:6f:ac:ab:6b:cf:89:22:5e:4f:7e: 8f:ac:b8:ae:f4:9a:d3:ea:b1:65:3a:6d:69:64:22: 51:6e:7d:8d:20:16:f8:39:ad:c1:25:92:8d:d6:01: e9:ff:64:51:d6:24:f7:12:60:c1:42:69:6b:f4:9e: 5d:17:81:1c:d9:cd:95:c5:af:77:37:2f:4b:78:c0: 1e:02:e4:c2:22:55:f9:00:ee:16:31:1d:67:0a:02: 71:9a:0a:92:ac:66:16:f9:03:2a:d1:97:eb:e5:20: b0:7d:3a:0c:89:03:2e:fc:2f:12:bb:55:a7:94:5d: b1:b2:a3:02:f8:13:75:d3:ba:3c:b1:73:90:15:80: 8f:79:ff:24:a3:8a:42:0c:b4:a6:09:ef:8b:21:1c: d0:ac:60:be:14:fc:10:31:fb:09:e5:0d:eb:2d:ba: 71:0b:79:07:dc:9c:17:52:27:ae:f6:74:7e:bc:01: ab:3c:a3:1d:04:74:0a:5d:80:14:e2:b1:40:75:b7: 5d:7b:96:af:f1:59:ba:32:fa:e3:df:25:fe:13:22: 92:2d:33:46:8f:ad:4f:ca:d6:d5:53:bd:9b:23:f0: 67:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:2F:B8:00:DF:14:FE:B6:0D:CD:44:E6:B1:2A:17:FE:EF:F2:01:59 X509v3 Authority Key Identifier: keyid:39:9A:7B:1F:C4:20:7E:BA:07:07:A8:51:51:95:CC:68:E8:36:AB:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1025/8D7B9BF29D8411EF817E1420C4F9AE02/OZp7H8QgfroHB6hRUZXMaOg2q_g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OZp7H8QgfroHB6hRUZXMaOg2q_g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1025/8D7B9BF29D8411EF817E1420C4F9AE02/OZp7H8QgfroHB6hRUZXMaOg2q_g.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ca:4f:38:16:c8:bf:62:a4:d4:50:b5:15:6d:8e:0b:c1:1c:49: e0:19:bd:6c:5a:41:d0:11:da:21:fd:f7:79:ff:93:64:4a:c8: 5d:3a:db:d6:70:fc:db:12:e5:d8:a9:27:63:42:7d:b5:29:53: f5:60:e3:48:9e:03:e1:38:1b:4d:2b:80:b2:e6:ae:d0:66:65: 4f:1b:d5:6a:b7:c3:32:f6:36:4f:69:bd:e2:46:2c:f3:4b:37: 0a:da:7a:87:76:19:31:ae:88:d0:45:35:29:ad:65:ca:1c:f7: 9d:25:64:49:e5:48:8e:64:5d:3e:ab:18:e4:a7:8c:9d:47:8b: 53:ac:10:e5:4e:9c:65:a1:73:3b:76:bf:64:2f:87:8c:b1:d5: 3c:91:56:9e:11:0b:d4:af:c9:03:5b:8c:64:63:6e:8a:4b:4b: f2:b3:89:56:66:2e:f2:f9:93:9e:3e:28:b2:d0:2a:38:5b:b3: 42:32:29:12:08:e2:47:bd:aa:64:b2:78:36:da:23:21:f5:65: fc:27:e3:37:34:db:6e:92:f4:2a:de:e9:ed:40:df:f8:e3:db: 18:e0:2b:f4:36:98:c8:b6:e3:5c:16:d4:39:c1:41:54:21:a3: 73:82:a4:6f:23:cf:60:c2:e7:91:96:cd:df:eb:5e:cd:17:a4: 52:5b:e4:37 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICASswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzEwMjUxMTAvBgNVBAUTKDM5OUE3QjFGQzQyMDdFQkEwNzA3QTg1MTUxOTVDQzY4 RTgzNkFCRjgwHhcNMjYwNTIxMDU1MDEyWhcNMjYwNTI4MDU1MDEyWjAYMRYwFAYD VQQDEw02YTBlOWQxNS02ZTU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzwgiNzVFxXuCmfQGCsVz4/8RsuRJ2VanZKyiLjV9p6I4GW+sq2vPiSJeT36P rLiu9JrT6rFlOm1pZCJRbn2NIBb4Oa3BJZKN1gHp/2RR1iT3EmDBQmlr9J5dF4Ec 2c2Vxa93Ny9LeMAeAuTCIlX5AO4WMR1nCgJxmgqSrGYW+QMq0Zfr5SCwfToMiQMu /C8Su1WnlF2xsqMC+BN107o8sXOQFYCPef8ko4pCDLSmCe+LIRzQrGC+FPwQMfsJ 5Q3rLbpxC3kH3JwXUieu9nR+vAGrPKMdBHQKXYAU4rFAdbdde5av8Vm6Mvrj3yX+ EyKSLTNGj61PytbVU72bI/BnTwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBwvuADf FP62Dc1E5rEqF/7v8gFZMB8GA1UdIwQYMBaAFDmaex/EIH66BweoUVGVzGjoNqv4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTAyNS84RDdCOUJGMjlE ODQxMUVGODE3RTE0MjBDNEY5QUUwMi9PWnA3SDhRZ2Zyb0hCNmhSVVpYTWFPZzJx X2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL09acDdIOFFnZnJvSEI2aFJVWlhNYU9nMnFfZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MTAyNS84RDdCOUJGMjlEODQxMUVGODE3RTE0MjBDNEY5QUUwMi9PWnA3SDhRZ2Zy b0hCNmhSVVpYTWFPZzJxX2cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAyk84Fsi/YqTUULUVbY4LwRxJ4Bm9bFpB0BHaIf33ef+TZErIXTrb1nD82xLl 2KknY0J9tSlT9WDjSJ4D4TgbTSuAsuau0GZlTxvVarfDMvY2T2m94kYs80s3Ctp6 h3YZMa6I0EU1Ka1lyhz3nSVkSeVIjmRdPqsY5KeMnUeLU6wQ5U6cZaFzO3a/ZC+H jLHVPJFWnhEL1K/JA1uMZGNuiktL8rOJVmYu8vmTnj4ostAqOFuzQjIpEgjiR72q ZLJ4NtojIfVl/CfjNzTbbpL0Kt7p7UDf+OPbGOAr9DaYyLbjXBbUOcFBVCGjc4Kk byPPYMLnkZbN3+tezRekUlvkNw== -----END CERTIFICATE-----Generated at Thu May 21 13:24:33 2026 by rpki-client