$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE6EC/D3AB601614C811E5A2FCEF15C4F9AE02/ocI5ZXBAF3JCnrjLsN9mU_FnjPY.mft File: ocI5ZXBAF3JCnrjLsN9mU_FnjPY.mft (raw, json) Hash identifier: RIcdCfLAwxByqX/iMRQkbONirp9yE2NlodAp8rAcLY4= Subject key identifier: 27:11:72:96:C6:D9:94:9A:9B:F8:6D:06:02:98:ED:BF:8B:BD:6A:DB Authority key identifier: A1:C2:39:65:70:40:17:72:42:9E:B8:CB:B0:DF:66:53:F1:67:8C:F6 Certificate issuer: /CN=A91CE6EC/serialNumber=A1C2396570401772429EB8CBB0DF6653F1678CF6 Certificate serial: 2644 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ocI5ZXBAF3JCnrjLsN9mU_FnjPY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE6EC/D3AB601614C811E5A2FCEF15C4F9AE02/ocI5ZXBAF3JCnrjLsN9mU_FnjPY.mft Manifest number: 2635 Signing time: Wed 20 May 2026 15:43:07 +0000 Manifest this update: Wed 20 May 2026 15:43:06 +0000 Manifest next update: Wed 27 May 2026 15:43:06 +0000 Files and hashes: 1: ocI5ZXBAF3JCnrjLsN9mU_FnjPY.crl (hash: gs898L2YM0v2LMv8SjvxEduBUp5/U6RVkTlGtUMgDuQ=) 2: 86D7036A0E1011F1BB4320E6093D8C67.roa (hash: T9SIi9mDgUlqLoammnb7erYFDZJKyrEKSkygd0pgH9w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE6EC/D3AB601614C811E5A2FCEF15C4F9AE02/ocI5ZXBAF3JCnrjLsN9mU_FnjPY.crl rsync://rpki.apnic.net/member_repository/A91CE6EC/D3AB601614C811E5A2FCEF15C4F9AE02/ocI5ZXBAF3JCnrjLsN9mU_FnjPY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ocI5ZXBAF3JCnrjLsN9mU_FnjPY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 15:43:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9796 (0x2644) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE6EC, serialNumber=A1C2396570401772429EB8CBB0DF6653F1678CF6 Validity Not Before: May 20 15:43:06 2026 GMT Not After : May 27 15:43:06 2026 GMT Subject: CN=6a0dd68b-dd96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:4b:ef:c9:56:62:b8:f5:76:a2:9e:9f:db:8d: e0:6e:5e:c2:ac:84:b0:ca:af:6a:bc:dc:f8:8c:80: 77:a8:f7:ca:0f:ae:75:b4:04:cb:ae:b4:0f:1c:86: 97:d3:52:67:f1:05:f2:8d:ff:c5:43:b4:3c:b1:85: c0:c7:cd:77:5b:b7:e4:a6:f4:1c:11:2e:52:35:4c: a3:6e:61:0d:1d:ae:68:6c:e8:f3:31:29:3e:23:99: ab:f5:85:85:eb:37:a8:50:e8:e4:2d:dd:bf:a0:65: f2:62:85:e3:df:88:3b:9c:b4:dc:e7:b1:07:b7:0c: d9:9c:98:e8:9b:8d:dd:24:cb:34:5c:b1:d0:73:0c: 20:b6:17:b1:b5:c6:04:a5:5f:1a:fc:4a:b0:d8:71: f7:82:f2:95:6d:f2:dd:c2:29:15:25:e1:b7:e5:e2: ca:c5:4e:b3:34:b9:90:57:1d:48:d4:57:6d:af:5b: e3:93:b1:01:a7:f9:c5:b5:b1:38:d7:b6:e3:6b:01: df:0a:a2:f3:8e:1c:ef:5f:4a:6c:fe:7c:99:47:76: 4d:5c:5d:c1:1a:4e:49:f8:cf:2d:5d:f5:31:88:f7: 06:c5:e0:e2:30:de:ac:d3:1b:a3:32:b1:4f:1a:ac: e0:e5:7a:9c:e7:93:e7:7c:b8:bf:eb:0a:95:3d:9b: dc:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:11:72:96:C6:D9:94:9A:9B:F8:6D:06:02:98:ED:BF:8B:BD:6A:DB X509v3 Authority Key Identifier: keyid:A1:C2:39:65:70:40:17:72:42:9E:B8:CB:B0:DF:66:53:F1:67:8C:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE6EC/D3AB601614C811E5A2FCEF15C4F9AE02/ocI5ZXBAF3JCnrjLsN9mU_FnjPY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ocI5ZXBAF3JCnrjLsN9mU_FnjPY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE6EC/D3AB601614C811E5A2FCEF15C4F9AE02/ocI5ZXBAF3JCnrjLsN9mU_FnjPY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:cb:c4:fc:ad:99:67:92:f5:0c:19:29:c1:39:26:33:27:fc: 3a:ff:a3:54:f9:07:34:51:4f:ae:3f:ba:43:04:73:e4:33:89: 12:7e:67:b0:e7:d3:6a:cc:fb:b5:c5:f9:56:c6:d7:dd:d9:98: ee:ef:1c:c9:c1:37:e1:38:be:57:20:50:87:83:37:50:91:f0: 3c:09:db:bb:be:e8:d3:77:18:39:cb:52:08:ed:35:4e:f9:c2: 43:bb:c6:ea:9a:68:f3:8d:07:f0:88:05:9b:cc:ec:a1:7d:c4: 18:1e:8e:b9:66:e9:82:9f:a8:1a:b2:1f:e6:40:29:e4:16:fd: 97:a5:84:83:5e:55:4d:df:4e:b2:7f:4e:b9:78:47:60:6c:47: d7:ec:cc:08:de:c5:c7:19:6c:9c:5d:59:7c:4a:c7:67:0f:82: eb:c5:75:10:e6:27:c7:23:2b:df:3b:dd:9d:57:8c:1a:ea:79: 43:61:84:8f:37:4c:66:85:f5:39:f9:76:88:fc:c2:68:69:73: cb:7d:0c:57:4b:7d:96:28:eb:37:f7:9a:c0:b6:a5:e6:c2:d2: da:8b:c1:6e:ca:54:fd:2e:f6:a4:c2:8f:c5:91:68:b9:9f:75: a9:fa:00:d1:8b:b1:ab:80:cd:9a:dc:bf:dd:b5:d1:7b:a8:7d: c3:92:7e:68 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICJkQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U2RUMxMTAvBgNVBAUTKEExQzIzOTY1NzA0MDE3NzI0MjlFQjhDQkIwREY2NjUz RjE2NzhDRjYwHhcNMjYwNTIwMTU0MzA2WhcNMjYwNTI3MTU0MzA2WjAYMRYwFAYD VQQDEw02YTBkZDY4Yi1kZDk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqEvvyVZiuPV2op6f243gbl7CrISwyq9qvNz4jIB3qPfKD651tATLrrQPHIaX 01Jn8QXyjf/FQ7Q8sYXAx813W7fkpvQcES5SNUyjbmENHa5obOjzMSk+I5mr9YWF 6zeoUOjkLd2/oGXyYoXj34g7nLTc57EHtwzZnJjom43dJMs0XLHQcwwgthextcYE pV8a/Eqw2HH3gvKVbfLdwikVJeG35eLKxU6zNLmQVx1I1Fdtr1vjk7EBp/nFtbE4 17bjawHfCqLzjhzvX0ps/nyZR3ZNXF3BGk5J+M8tXfUxiPcGxeDiMN6s0xujMrFP Gqzg5Xqc55PnfLi/6wqVPZvcyQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCcRcpbG 2ZSam/htBgKY7b+LvWrbMB8GA1UdIwQYMBaAFKHCOWVwQBdyQp64y7DfZlPxZ4z2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTZFQy9EM0FCNjAxNjE0 QzgxMUU1QTJGQ0VGMTVDNEY5QUUwMi9vY0k1WlhCQUYzSkNucmpMc045bVVfRm5q UFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29jSTVaWEJBRjNKQ25yakxzTjltVV9GbmpQWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTZFQy9EM0FCNjAxNjE0QzgxMUU1QTJGQ0VGMTVDNEY5QUUwMi9vY0k1WlhCQUYz SkNucmpMc045bVVfRm5qUFkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAIsvE/K2ZZ5L1DBkpwTkmMyf8Ov+jVPkHNFFPrj+6QwRz5DOJEn5nsOfTasz7 tcX5VsbX3dmY7u8cycE34Ti+VyBQh4M3UJHwPAnbu77o03cYOctSCO01TvnCQ7vG 6ppo840H8IgFm8zsoX3EGB6OuWbpgp+oGrIf5kAp5Bb9l6WEg15VTd9Osn9OuXhH YGxH1+zMCN7FxxlsnF1ZfErHZw+C68V1EOYnxyMr3zvdnVeMGup5Q2GEjzdMZoX1 Ofl2iPzCaGlzy30MV0t9lijrN/eawLal5sLS2ovBbspU/S72pMKPxZFouZ91qfoA 0Yuxq4DNmty/3bXRe6h9w5J+aA== -----END CERTIFICATE-----Generated at Thu May 21 10:14:38 2026 by rpki-client