$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEC72/3F71FF883B9111EEAC617E6AC4F9AE02/oNGf1mnyVeFici98GdiGS7Brc5k.mft File: oNGf1mnyVeFici98GdiGS7Brc5k.mft (raw, json) Hash identifier: IS9Arr9lpp+Lz3keSzVWDvOqg8csRMYe1B2coXsY4Sk= Subject key identifier: 8C:23:89:69:47:D5:3E:36:5B:9D:3E:0C:79:87:86:AF:D4:12:52:F1 Authority key identifier: A0:D1:9F:D6:69:F2:55:E1:62:72:2F:7C:19:D8:86:4B:B0:6B:73:99 Certificate issuer: /CN=A91DEC72/serialNumber=A0D19FD669F255E162722F7C19D8864BB06B7399 Certificate serial: 0209 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oNGf1mnyVeFici98GdiGS7Brc5k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DEC72/3F71FF883B9111EEAC617E6AC4F9AE02/oNGf1mnyVeFici98GdiGS7Brc5k.mft Manifest number: 0208 Signing time: Thu 21 May 2026 03:04:35 +0000 Manifest this update: Thu 21 May 2026 03:04:34 +0000 Manifest next update: Thu 28 May 2026 03:04:34 +0000 Files and hashes: 1: oNGf1mnyVeFici98GdiGS7Brc5k.crl (hash: u8SEx/fLnQ7RGKF5E6O7o4ZS6LdOcA2lvQuJ1w0uZHM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DEC72/3F71FF883B9111EEAC617E6AC4F9AE02/oNGf1mnyVeFici98GdiGS7Brc5k.crl rsync://rpki.apnic.net/member_repository/A91DEC72/3F71FF883B9111EEAC617E6AC4F9AE02/oNGf1mnyVeFici98GdiGS7Brc5k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oNGf1mnyVeFici98GdiGS7Brc5k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 03:04:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 521 (0x209) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DEC72, serialNumber=A0D19FD669F255E162722F7C19D8864BB06B7399 Validity Not Before: May 21 03:04:34 2026 GMT Not After : May 28 03:04:34 2026 GMT Subject: CN=6a0e7643-9dbd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:6a:ef:bb:23:5d:b2:17:5a:5c:ae:11:ef:f5: 36:04:89:b0:6a:19:39:62:b8:86:d1:48:db:0a:48: 79:f1:77:b1:79:ab:e4:67:a6:bf:c3:74:ed:2b:a4: 2c:d9:aa:d5:36:95:19:92:ef:df:21:83:67:5a:4b: b5:c2:3b:4d:d4:dc:7d:44:8c:a5:1a:01:10:02:a6: 4b:5c:77:bb:14:ad:08:dd:97:19:99:66:ad:ed:76: dd:4b:00:ec:2e:29:d1:d5:70:fb:8f:2f:d6:64:6c: e4:f6:87:05:88:27:a6:ba:36:ef:e7:f1:69:79:26: e8:af:95:53:a2:77:fb:d3:1e:25:5f:b5:4d:8d:c8: 29:03:cd:f7:45:f7:55:53:17:69:12:95:4e:da:89: 17:bb:8b:fd:41:b8:24:c6:fd:2a:fb:d8:4b:24:80: 8f:d1:e3:d5:18:c1:60:a6:a2:cc:30:28:b2:72:86: 1e:ef:bd:b3:b9:29:b7:d3:66:11:5b:98:21:d8:16: ce:22:29:a3:03:68:5d:b3:19:94:25:1b:c2:bd:3c: 72:3a:56:3f:60:bd:b8:f0:9d:e3:fc:e1:fb:b2:14: fa:b7:31:76:80:53:c5:b3:4c:16:e5:0e:79:1e:b8: ca:ce:3b:2d:56:47:2b:0f:1a:d1:7e:fc:81:a0:5e: 9b:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:23:89:69:47:D5:3E:36:5B:9D:3E:0C:79:87:86:AF:D4:12:52:F1 X509v3 Authority Key Identifier: keyid:A0:D1:9F:D6:69:F2:55:E1:62:72:2F:7C:19:D8:86:4B:B0:6B:73:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DEC72/3F71FF883B9111EEAC617E6AC4F9AE02/oNGf1mnyVeFici98GdiGS7Brc5k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oNGf1mnyVeFici98GdiGS7Brc5k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEC72/3F71FF883B9111EEAC617E6AC4F9AE02/oNGf1mnyVeFici98GdiGS7Brc5k.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:91:56:87:48:92:8b:a8:0f:8f:91:f0:6f:c8:24:41:13:bb: 7f:fa:c8:fb:6a:9d:06:42:c0:a7:3f:37:dc:75:45:a9:cc:58: ce:5d:8a:d9:8c:69:a8:ea:8b:c7:d6:38:b4:01:66:44:34:5c: 55:c7:49:44:95:3b:4c:4b:38:83:05:d5:d1:3e:2f:6a:8b:94: 5f:b5:74:80:2b:fb:60:98:3f:86:f1:14:96:ed:df:20:22:46: 05:84:9b:9b:65:2c:23:d1:d1:00:e6:65:33:2e:b5:7a:39:e4: cb:cf:e3:b2:7a:98:6f:4b:f9:a2:e3:23:41:a3:4e:06:76:97: f2:07:62:d3:82:22:0a:15:09:17:77:c7:e4:ef:a9:dc:83:0f: 73:7d:e0:d4:1c:18:82:36:80:81:a6:6b:01:cb:26:c3:16:dc: 13:8c:f9:78:e5:01:f4:26:8c:11:a4:69:89:63:1c:36:c7:4f: 23:22:62:a7:f1:29:ed:0a:d8:7b:ed:7d:8e:df:66:1e:e1:27: e0:6a:94:4d:42:f7:b0:7c:21:91:a7:b1:9b:d6:bf:35:56:14: ed:83:2f:60:d7:16:18:21:57:4e:f7:d8:84:2b:ba:1d:e4:b3: 1c:7b:d5:38:c0:01:97:d9:6f:26:3d:b3:78:79:87:da:d6:76: 84:b0:5f:e9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAgkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REVDNzIxMTAvBgNVBAUTKEEwRDE5RkQ2NjlGMjU1RTE2MjcyMkY3QzE5RDg4NjRC QjA2QjczOTkwHhcNMjYwNTIxMDMwNDM0WhcNMjYwNTI4MDMwNDM0WjAYMRYwFAYD VQQDEw02YTBlNzY0My05ZGJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAi2rvuyNdshdaXK4R7/U2BImwahk5YriG0UjbCkh58XexeavkZ6a/w3TtK6Qs 2arVNpUZku/fIYNnWku1wjtN1Nx9RIylGgEQAqZLXHe7FK0I3ZcZmWat7XbdSwDs LinR1XD7jy/WZGzk9ocFiCemujbv5/FpeSbor5VTonf70x4lX7VNjcgpA833RfdV UxdpEpVO2okXu4v9Qbgkxv0q+9hLJICP0ePVGMFgpqLMMCiycoYe772zuSm302YR W5gh2BbOIimjA2hdsxmUJRvCvTxyOlY/YL248J3j/OH7shT6tzF2gFPFs0wW5Q55 HrjKzjstVkcrDxrRfvyBoF6bRwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIwjiWlH 1T42W50+DHmHhq/UElLxMB8GA1UdIwQYMBaAFKDRn9Zp8lXhYnIvfBnYhkuwa3OZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERUM3Mi8zRjcxRkY4ODNC OTExMUVFQUM2MTdFNkFDNEY5QUUwMi9vTkdmMW1ueVZlRmljaTk4R2RpR1M3QnJj NWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29OR2YxbW55VmVGaWNpOThHZGlHUzdCcmM1ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RUM3Mi8zRjcxRkY4ODNCOTExMUVFQUM2MTdFNkFDNEY5QUUwMi9vTkdmMW1ueVZl RmljaTk4R2RpR1M3QnJjNWsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEADZFWh0iSi6gPj5Hwb8gkQRO7f/rI+2qdBkLApz833HVFqcxYzl2K2YxpqOqL x9Y4tAFmRDRcVcdJRJU7TEs4gwXV0T4vaouUX7V0gCv7YJg/hvEUlu3fICJGBYSb m2UsI9HRAOZlMy61ejnky8/jsnqYb0v5ouMjQaNOBnaX8gdi04IiChUJF3fH5O+p 3IMPc33g1BwYgjaAgaZrAcsmwxbcE4z5eOUB9CaMEaRpiWMcNsdPIyJip/Ep7QrY e+19jt9mHuEn4GqUTUL3sHwhkaexm9a/NVYU7YMvYNcWGCFXTvfYhCu6HeSzHHvV OMABl9lvJj2zeHmH2tZ2hLBf6Q== -----END CERTIFICATE-----Generated at Thu May 21 10:18:07 2026 by rpki-client