$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.mft File: oZOMkSrC9KlYuT2vj0snIBWw2Ng.mft (raw, json) Hash identifier: 64QzWavtCFlnJM4Xgq8xRpzbmVUVLtlzMfyhs6Xox5I= Subject key identifier: A1:7A:6B:E6:6B:6A:13:77:00:6C:41:D8:A2:DD:31:D3:F4:08:F8:1C Authority key identifier: A1:93:8C:91:2A:C2:F4:A9:58:B9:3D:AF:8F:4B:27:20:15:B0:D8:D8 Certificate issuer: /CN=A91D9D8B/serialNumber=A1938C912AC2F4A958B93DAF8F4B272015B0D8D8 Certificate serial: 028B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oZOMkSrC9KlYuT2vj0snIBWw2Ng.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.mft Manifest number: 0283 Signing time: Thu 21 May 2026 01:55:37 +0000 Manifest this update: Thu 21 May 2026 01:55:37 +0000 Manifest next update: Thu 28 May 2026 01:55:37 +0000 Files and hashes: 1: oZOMkSrC9KlYuT2vj0snIBWw2Ng.crl (hash: sRhKyOAZVHGeigE+A/yZLgFcaEE4yiQ6RhygI5iisIA=) 2: 95C4C7AA7F7911ED9C1EAE19C4F9AE02.roa (hash: Ouit03LRtJZqOFfBSglxXn5xGezeH2cCBVrluC7GA64=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.crl rsync://rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oZOMkSrC9KlYuT2vj0snIBWw2Ng.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 01:55:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 651 (0x28b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9D8B, serialNumber=A1938C912AC2F4A958B93DAF8F4B272015B0D8D8 Validity Not Before: May 21 01:55:37 2026 GMT Not After : May 28 01:55:37 2026 GMT Subject: CN=6a0e6619-570d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:e2:d7:04:40:4a:48:18:d8:f6:ab:a1:f7:65: 2c:22:9a:39:a0:90:62:4c:57:53:24:79:14:36:44: 62:bc:ea:9f:8c:7f:28:0d:e1:16:e7:bf:bb:60:73: 05:c2:ee:68:df:74:3a:ab:57:a5:ed:5d:f8:8f:20: c5:22:17:c4:a4:e8:5f:8d:78:42:40:b4:01:7a:8b: c1:f3:3a:06:95:c4:b2:25:89:9d:c4:1f:11:b1:87: 30:ec:5e:99:ef:04:18:f9:5b:1b:3e:a0:21:ce:69: eb:64:03:01:18:9f:d0:a9:1d:c5:ec:1a:a0:cc:e9: 37:0e:44:91:d1:44:2d:1d:0c:77:8a:53:70:1f:52: 37:88:f3:e1:0f:d3:5a:9e:bd:04:d7:d0:e5:57:88: 78:4d:ee:50:cb:ae:01:d2:fb:25:da:8f:e1:ee:92: 9e:03:f4:84:78:90:6a:bf:74:0e:0c:88:df:e3:3c: 06:7e:d0:d8:34:25:43:f7:2a:24:66:f2:f6:8a:6e: bf:31:39:f3:a9:2f:f2:dc:d1:8d:d8:4a:e5:57:59: 1f:5b:f3:f3:de:e1:a5:20:ea:38:9f:c4:ea:25:c0: 80:df:53:1a:14:ae:03:75:02:63:fc:c8:0f:eb:71: b5:47:b6:c2:af:2b:86:b9:da:c4:b0:4d:ab:f4:da: 84:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:7A:6B:E6:6B:6A:13:77:00:6C:41:D8:A2:DD:31:D3:F4:08:F8:1C X509v3 Authority Key Identifier: keyid:A1:93:8C:91:2A:C2:F4:A9:58:B9:3D:AF:8F:4B:27:20:15:B0:D8:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oZOMkSrC9KlYuT2vj0snIBWw2Ng.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:7e:42:eb:5e:c5:19:77:fa:62:43:2c:99:6e:72:64:71:95: 13:49:14:3c:30:23:fa:42:29:fd:6b:23:39:f5:f4:86:74:59: 96:f5:d6:84:15:2a:8d:f5:21:f3:72:e4:d3:41:82:e4:ac:ca: 87:8e:f6:b2:cf:db:86:93:b8:8e:a3:77:28:15:c6:d1:df:1d: 22:1e:be:04:49:4a:cc:16:f1:f5:21:f0:4d:a6:f8:4f:33:bd: a7:c1:28:bc:35:7d:aa:20:b6:46:c0:86:99:cc:a3:84:c3:21: 17:bf:7a:dc:27:f2:e1:82:dd:74:89:4b:58:64:5e:a2:ab:fe: c4:3d:92:47:1a:81:f1:01:2b:59:0b:b0:2d:81:fd:3e:d2:24: 8c:e6:54:6d:85:b4:8d:ed:6e:53:62:80:08:c2:8f:6b:0a:ea: 3d:53:cc:77:f0:3b:3f:4e:d3:d6:3e:fb:c1:17:9b:94:af:8d: 90:df:51:44:4d:9b:e9:06:69:03:dc:08:8f:f9:1e:b9:af:5d: 73:25:a7:f5:4b:72:86:45:c8:a5:3b:98:fc:40:43:cf:aa:f4: 9b:4c:72:fe:32:1f:7a:7d:aa:2e:0b:f7:21:0f:cc:34:af:7a: eb:57:5e:86:64:c0:a6:59:b0:40:07:23:e3:0b:75:63:bb:cd: 69:5a:55:f4 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAoswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDlEOEIxMTAvBgNVBAUTKEExOTM4QzkxMkFDMkY0QTk1OEI5M0RBRjhGNEIyNzIw MTVCMEQ4RDgwHhcNMjYwNTIxMDE1NTM3WhcNMjYwNTI4MDE1NTM3WjAYMRYwFAYD VQQDEw02YTBlNjYxOS01NzBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuuLXBEBKSBjY9quh92UsIpo5oJBiTFdTJHkUNkRivOqfjH8oDeEW57+7YHMF wu5o33Q6q1el7V34jyDFIhfEpOhfjXhCQLQBeovB8zoGlcSyJYmdxB8RsYcw7F6Z 7wQY+VsbPqAhzmnrZAMBGJ/QqR3F7BqgzOk3DkSR0UQtHQx3ilNwH1I3iPPhD9Na nr0E19DlV4h4Te5Qy64B0vsl2o/h7pKeA/SEeJBqv3QODIjf4zwGftDYNCVD9yok ZvL2im6/MTnzqS/y3NGN2ErlV1kfW/Pz3uGlIOo4n8TqJcCA31MaFK4DdQJj/MgP 63G1R7bCryuGudrEsE2r9NqEHwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKF6a+Zr ahN3AGxB2KLdMdP0CPgcMB8GA1UdIwQYMBaAFKGTjJEqwvSpWLk9r49LJyAVsNjY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOUQ4Qi81RjExRTAyQTdG NzUxMUVEOEFGQkU2NzNDNEY5QUUwMi9vWk9Na1NyQzlLbFl1VDJ2ajBzbklCV3cy TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29aT01rU3JDOUtsWXVUMnZqMHNuSUJXdzJOZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OUQ4Qi81RjExRTAyQTdGNzUxMUVEOEFGQkU2NzNDNEY5QUUwMi9vWk9Na1NyQzlL bFl1VDJ2ajBzbklCV3cyTmcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAP35C617FGXf6YkMsmW5yZHGVE0kUPDAj+kIp/WsjOfX0hnRZlvXWhBUqjfUh 83Lk00GC5KzKh472ss/bhpO4jqN3KBXG0d8dIh6+BElKzBbx9SHwTab4TzO9p8Eo vDV9qiC2RsCGmcyjhMMhF7963Cfy4YLddIlLWGReoqv+xD2SRxqB8QErWQuwLYH9 PtIkjOZUbYW0je1uU2KACMKPawrqPVPMd/A7P07T1j77wReblK+NkN9RRE2b6QZp A9wIj/keua9dcyWn9UtyhkXIpTuY/EBDz6r0m0xy/jIfen2qLgv3IQ/MNK9661de hmTAplmwQAcj4wt1Y7vNaVpV9A== -----END CERTIFICATE-----Generated at Thu May 21 09:36:53 2026 by rpki-client