$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9C03/37D18A1639A311F0BAD72C3CC4F9AE02/ok2WODNZy0lmoVuakGkT61RWZXs.mft File: ok2WODNZy0lmoVuakGkT61RWZXs.mft (raw, json) Hash identifier: vTEn77z/cZCFFoABzgL6QZs+4XpLbwRIMaoP2O+a/sE= Subject key identifier: 29:E3:72:92:AE:1B:29:AB:E6:C4:E6:7E:FF:75:2F:2D:38:E0:30:CE Authority key identifier: A2:4D:96:38:33:59:CB:49:66:A1:5B:9A:90:69:13:EB:54:56:65:7B Certificate issuer: /CN=A91C9C03/serialNumber=A24D96383359CB4966A15B9A906913EB5456657B Certificate serial: CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ok2WODNZy0lmoVuakGkT61RWZXs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9C03/37D18A1639A311F0BAD72C3CC4F9AE02/ok2WODNZy0lmoVuakGkT61RWZXs.mft Manifest number: C3 Signing time: Thu 21 May 2026 07:05:36 +0000 Manifest this update: Thu 21 May 2026 07:05:36 +0000 Manifest next update: Thu 28 May 2026 07:05:36 +0000 Files and hashes: 1: ok2WODNZy0lmoVuakGkT61RWZXs.crl (hash: KTjfp9HVuiBzSU3IepgVrkuOUhYQJ5Uvjph5K3EUQN4=) 2: 19088D04716211F0A531A51FC4F9AE02.roa (hash: YQ9P3hZSVyByvwWvHjcvm6ovGJgl+C3bbNJ0X0PJR6g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9C03/37D18A1639A311F0BAD72C3CC4F9AE02/ok2WODNZy0lmoVuakGkT61RWZXs.crl rsync://rpki.apnic.net/member_repository/A91C9C03/37D18A1639A311F0BAD72C3CC4F9AE02/ok2WODNZy0lmoVuakGkT61RWZXs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ok2WODNZy0lmoVuakGkT61RWZXs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 07:05:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 203 (0xcb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9C03, serialNumber=A24D96383359CB4966A15B9A906913EB5456657B Validity Not Before: May 21 07:05:36 2026 GMT Not After : May 28 07:05:36 2026 GMT Subject: CN=6a0eaec0-b20a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:87:0a:27:c5:88:3c:a5:e4:67:e8:29:8f:d0: db:37:c3:54:97:31:6a:84:79:77:fc:69:5f:a0:01: 7c:27:3f:15:36:21:15:4e:ab:6f:92:62:6e:b6:7e: a6:0d:7c:eb:be:92:d1:01:57:d8:f2:28:a3:3f:c8: 45:c9:47:a2:70:e6:29:8c:99:34:54:e4:17:bb:af: 84:22:23:b4:73:c2:1b:52:48:35:ac:21:79:e6:a4: a2:10:18:cc:4d:e8:13:dd:4e:0d:6e:a0:fd:9d:e2: d6:e3:bd:32:07:d4:33:d8:f4:9a:7d:b9:95:4b:fd: 7a:b9:42:da:00:83:c3:4d:48:99:61:1f:c0:15:99: 82:20:61:29:7a:08:fa:b6:33:9d:3c:73:ad:b1:c1: e7:09:38:91:58:d4:3e:81:a9:8a:c7:cb:1b:05:b5: 75:0c:8c:3b:ba:28:28:bf:48:93:de:70:09:c1:4e: ec:9e:17:3d:d1:b1:8e:4e:d7:11:bf:9b:e3:2c:f6: 16:81:49:4f:2f:81:77:ef:bf:cd:18:bf:df:e7:7c: 64:e6:db:a2:cb:ad:1f:c1:15:ce:60:6b:55:e8:5c: 9d:d7:1f:2b:50:25:e4:8f:1c:5b:87:df:c6:ef:e8: a2:8f:66:da:f2:da:32:09:05:4b:b8:37:66:b7:0e: 58:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:E3:72:92:AE:1B:29:AB:E6:C4:E6:7E:FF:75:2F:2D:38:E0:30:CE X509v3 Authority Key Identifier: keyid:A2:4D:96:38:33:59:CB:49:66:A1:5B:9A:90:69:13:EB:54:56:65:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9C03/37D18A1639A311F0BAD72C3CC4F9AE02/ok2WODNZy0lmoVuakGkT61RWZXs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ok2WODNZy0lmoVuakGkT61RWZXs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9C03/37D18A1639A311F0BAD72C3CC4F9AE02/ok2WODNZy0lmoVuakGkT61RWZXs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:83:a6:8f:f3:74:f3:95:6c:7a:78:d2:0e:12:16:a0:6e:19: 40:92:16:b9:c5:b0:6a:51:cf:5a:8d:d1:f0:ff:0c:cd:64:e8: 73:9e:b7:93:ae:56:c7:46:03:e0:85:2c:02:1b:bc:52:37:22: b9:ac:0f:45:12:54:98:8d:a8:e9:4d:2d:a4:56:cb:1c:4f:ac: 2c:17:3a:86:06:13:62:cb:2c:2d:f8:3b:eb:03:80:73:6e:27: 00:38:39:ab:08:26:40:ef:8a:c6:5e:66:4d:29:50:56:6e:4c: d0:ba:49:23:bb:da:9f:ce:22:4c:53:fb:bb:09:57:43:15:d1: dd:3e:66:89:39:12:9f:4c:6d:ef:5f:e3:b7:51:be:57:57:40: fc:67:3b:3e:5e:e5:e3:ec:da:b6:33:40:fe:b1:d3:a2:ae:eb: 74:d4:c9:b5:cc:34:be:56:36:c9:86:55:7b:24:95:41:9c:05: f8:b1:fd:c7:6e:4d:f6:23:81:5d:31:36:51:a7:68:21:24:af: 5a:12:84:9c:c1:27:02:fd:48:57:d6:8a:a0:63:9d:77:b4:7f: 3c:d7:bf:38:71:36:3d:f8:4d:23:f8:35:08:f0:f8:b4:6e:a1: 43:09:ee:0c:cf:d4:b6:8e:da:4d:00:df:fc:b3:b7:bb:95:49: c0:93:f0:fc -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAMswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzlDMDMxMTAvBgNVBAUTKEEyNEQ5NjM4MzM1OUNCNDk2NkExNUI5QTkwNjkxM0VC NTQ1NjY1N0IwHhcNMjYwNTIxMDcwNTM2WhcNMjYwNTI4MDcwNTM2WjAYMRYwFAYD VQQDEw02YTBlYWVjMC1iMjBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0YcKJ8WIPKXkZ+gpj9DbN8NUlzFqhHl3/GlfoAF8Jz8VNiEVTqtvkmJutn6m DXzrvpLRAVfY8iijP8hFyUeicOYpjJk0VOQXu6+EIiO0c8IbUkg1rCF55qSiEBjM TegT3U4NbqD9neLW470yB9Qz2PSafbmVS/16uULaAIPDTUiZYR/AFZmCIGEpegj6 tjOdPHOtscHnCTiRWNQ+gamKx8sbBbV1DIw7uigov0iT3nAJwU7snhc90bGOTtcR v5vjLPYWgUlPL4F377/NGL/f53xk5tuiy60fwRXOYGtV6Fyd1x8rUCXkjxxbh9/G 7+iij2ba8toyCQVLuDdmtw5YcQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCnjcpKu Gymr5sTmfv91Ly044DDOMB8GA1UdIwQYMBaAFKJNljgzWctJZqFbmpBpE+tUVmV7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOUMwMy8zN0QxOEExNjM5 QTMxMUYwQkFENzJDM0NDNEY5QUUwMi9vazJXT0ROWnkwbG1vVnVha0drVDYxUlda WHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29rMldPRE5aeTBsbW9WdWFrR2tUNjFSV1pYcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OUMwMy8zN0QxOEExNjM5QTMxMUYwQkFENzJDM0NDNEY5QUUwMi9vazJXT0ROWnkw bG1vVnVha0drVDYxUldaWHMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEABYOmj/N085VsenjSDhIWoG4ZQJIWucWwalHPWo3R8P8MzWToc563k65Wx0YD 4IUsAhu8UjciuawPRRJUmI2o6U0tpFbLHE+sLBc6hgYTYsssLfg76wOAc24nADg5 qwgmQO+Kxl5mTSlQVm5M0LpJI7van84iTFP7uwlXQxXR3T5miTkSn0xt71/jt1G+ V1dA/Gc7Pl7l4+zatjNA/rHToq7rdNTJtcw0vlY2yYZVeySVQZwF+LH9x25N9iOB XTE2UadoISSvWhKEnMEnAv1IV9aKoGOdd7R/PNe/OHE2PfhNI/g1CPD4tG6hQwnu DM/Uto7aTQDf/LO3u5VJwJPw/A== -----END CERTIFICATE-----Generated at Thu May 21 10:19:34 2026 by rpki-client