$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.mft File: Oq-A6pfpm5UlszvBM1uwlcLSeKc.mft (raw, json) Hash identifier: YVprss1m1RDwNr+bza6uJ5LSb/6FTTx/74DSXwmKEMk= Subject key identifier: AA:E5:18:CA:C6:85:4A:57:FC:13:7B:CA:34:39:E6:D3:43:07:A3:0B Authority key identifier: 3A:AF:80:EA:97:E9:9B:95:25:B3:3B:C1:33:5B:B0:95:C2:D2:78:A7 Certificate issuer: /CN=A91C4F06/serialNumber=3AAF80EA97E99B9525B33BC1335BB095C2D278A7 Certificate serial: 3634 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.mft Manifest number: 35BE Signing time: Wed 20 May 2026 14:49:39 +0000 Manifest this update: Wed 20 May 2026 14:49:39 +0000 Manifest next update: Wed 27 May 2026 14:49:39 +0000 Files and hashes: 1: Oq-A6pfpm5UlszvBM1uwlcLSeKc.crl (hash: ARpoLZZdcDWhwrrc17Z0y4MYowvd6jjKG1lB+/V0JbM=) 2: 5A318E06F6A111EBB6318B7EC4F9AE02.roa (hash: Kcd6XpOFaQiuuRL3zl2swXULLS6KNUXvk+RMSSrL0Fo=) 3: 1600DBF659C311E9A04B846FC4F9AE02.roa (hash: bGRZ0FpspSCf0cAveUKjR/NLCR8lXup6exlYiK4KDOA=) 4: 6F1612BE562511EB9470B150C4F9AE02.roa (hash: VN3fbgbN+VB5jjHGJ778LsC3bD0h86H1GfKAiCzDGbA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.crl rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 14:49:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13876 (0x3634) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C4F06, serialNumber=3AAF80EA97E99B9525B33BC1335BB095C2D278A7 Validity Not Before: May 20 14:49:39 2026 GMT Not After : May 27 14:49:39 2026 GMT Subject: CN=6a0dca03-9601 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:d3:4c:42:80:e6:08:11:b5:23:5b:41:83:a8: 3c:0d:c4:8e:1c:a6:d8:71:13:ec:9a:61:c4:8d:a5: a0:04:09:54:09:39:4a:27:5b:98:5b:73:14:20:0a: 20:7b:6f:cb:e8:95:ce:54:df:47:8a:35:9b:61:37: 6d:9c:d9:4f:9c:00:ba:0f:06:bb:23:b7:68:b4:12: 0c:68:d5:26:74:86:51:f3:32:52:16:ff:9f:22:b6: 84:b0:71:36:af:51:88:0e:2d:ee:c4:6d:1d:9c:1f: 13:ca:a9:b0:19:28:94:6f:f9:1a:26:3f:35:bb:98: e8:d0:74:a2:d9:fe:6d:1d:32:95:31:5e:31:f1:5b: 97:19:be:af:24:0a:a1:7a:ef:20:f3:15:c3:f3:be: 61:a5:c2:2d:26:2c:a2:0b:46:c4:86:14:d0:9c:c5: de:9c:dd:c4:81:73:ea:c2:87:b8:7f:b6:8e:03:7f: a3:9f:2e:d9:78:eb:05:cc:89:5b:68:53:a1:0e:9e: 54:de:3d:23:cc:f0:9d:85:a1:bf:ac:99:e6:4f:01: c8:3c:de:da:14:fd:16:81:4e:12:37:cf:23:99:ab: 26:de:c9:f5:bb:08:2d:e7:78:59:ce:8f:11:94:c4: ab:05:e3:aa:84:9c:71:a7:c5:11:83:f6:ce:4f:74: 39:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:E5:18:CA:C6:85:4A:57:FC:13:7B:CA:34:39:E6:D3:43:07:A3:0B X509v3 Authority Key Identifier: keyid:3A:AF:80:EA:97:E9:9B:95:25:B3:3B:C1:33:5B:B0:95:C2:D2:78:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:1b:29:09:bd:7e:3e:e7:21:19:32:be:12:85:e7:e8:95:83: 7c:f6:fc:a3:1e:07:3b:70:45:5d:c0:65:83:77:35:26:3f:66: 7a:e4:07:58:80:55:fb:9f:a2:5d:32:a9:30:0b:3e:57:79:97: d8:00:e0:83:2c:13:32:6a:fa:88:34:3e:57:42:2c:6b:a4:20: 4b:2f:20:e5:5f:59:48:a0:26:c9:ba:3a:e6:dc:44:25:07:f1: 2c:e9:7e:80:73:d7:99:49:52:cd:e5:8c:e0:89:4b:f0:d6:10: 44:9b:c2:1b:e2:48:bc:64:35:23:82:34:ed:e7:be:8c:04:b1: 07:17:d2:91:18:6a:e0:f5:5e:67:fb:6d:32:a3:62:2f:11:1f: 0c:c8:f6:41:dc:53:0f:39:f7:f0:22:04:d6:f2:c7:d9:b7:9e: a7:9c:48:1d:7d:43:08:db:63:63:8d:da:e1:bd:6d:72:bf:ed: 79:3f:e7:06:13:44:a1:6a:10:16:b9:76:37:1e:8a:1e:ca:94: 2f:f4:ff:57:9a:b0:68:d3:bf:ab:4c:7b:9c:f9:b2:7f:e5:f6: 57:dd:9e:10:3b:5c:0d:2c:ca:6a:a9:05:dc:56:20:94:2e:cb: e6:9f:9f:72:e8:41:01:e6:af:60:bc:99:3a:fa:4e:25:f6:03: 2a:5c:5e:5f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNjQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzRGMDYxMTAvBgNVBAUTKDNBQUY4MEVBOTdFOTlCOTUyNUIzM0JDMTMzNUJCMDk1 QzJEMjc4QTcwHhcNMjYwNTIwMTQ0OTM5WhcNMjYwNTI3MTQ0OTM5WjAYMRYwFAYD VQQDEw02YTBkY2EwMy05NjAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy9NMQoDmCBG1I1tBg6g8DcSOHKbYcRPsmmHEjaWgBAlUCTlKJ1uYW3MUIAog e2/L6JXOVN9HijWbYTdtnNlPnAC6Dwa7I7dotBIMaNUmdIZR8zJSFv+fIraEsHE2 r1GIDi3uxG0dnB8TyqmwGSiUb/kaJj81u5jo0HSi2f5tHTKVMV4x8VuXGb6vJAqh eu8g8xXD875hpcItJiyiC0bEhhTQnMXenN3EgXPqwoe4f7aOA3+jny7ZeOsFzIlb aFOhDp5U3j0jzPCdhaG/rJnmTwHIPN7aFP0WgU4SN88jmasm3sn1uwgt53hZzo8R lMSrBeOqhJxxp8URg/bOT3Q5cQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKrlGMrG hUpX/BN7yjQ55tNDB6MLMB8GA1UdIwQYMBaAFDqvgOqX6ZuVJbM7wTNbsJXC0nin MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNEYwNi83NkUxQzQ3RTFE OTUxMUUyQkU1OTVFN0QwOEIwMkNEMi9PcS1BNnBmcG01VWxzenZCTTF1d2xjTFNl S2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09xLUE2cGZwbTVVbHN6dkJNMXV3bGNMU2VLYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NEYwNi83NkUxQzQ3RTFEOTUxMUUyQkU1OTVFN0QwOEIwMkNEMi9PcS1BNnBmcG01 VWxzenZCTTF1d2xjTFNlS2MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAQBspCb1+PuchGTK+EoXn6JWDfPb8ox4HO3BFXcBlg3c1Jj9meuQHWIBV+5+i XTKpMAs+V3mX2ADggywTMmr6iDQ+V0Isa6QgSy8g5V9ZSKAmybo65txEJQfxLOl+ gHPXmUlSzeWM4IlL8NYQRJvCG+JIvGQ1I4I07ee+jASxBxfSkRhq4PVeZ/ttMqNi LxEfDMj2QdxTDzn38CIE1vLH2beep5xIHX1DCNtjY43a4b1tcr/teT/nBhNEoWoQ Frl2Nx6KHsqUL/T/V5qwaNO/q0x7nPmyf+X2V92eEDtcDSzKaqkF3FYglC7L5p+f cuhBAeavYLyZOvpOJfYDKlxeXw== -----END CERTIFICATE-----Generated at Thu May 21 10:18:06 2026 by rpki-client