$ rpki-client -vvf rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft File: oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft (raw, json) Hash identifier: ccvI+6af/noh0aAz8mAUAjcM6qhUaXYoaWP8YJMy5Us= Subject key identifier: 2C:C9:72:F2:9D:A2:71:8B:63:79:F2:35:57:BC:58:97:7E:D4:B8:BC Authority key identifier: A0:7A:F0:CC:B2:98:35:CC:76:42:97:4B:AC:9E:15:02:B9:CF:82:D0 Certificate issuer: /CN=A91E29CB/serialNumber=A07AF0CCB29835CC7642974BAC9E1502B9CF82D0 Certificate serial: 0369 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oHrwzLKYNcx2QpdLrJ4VArnPgtA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft Manifest number: 0356 Signing time: Mon 01 Jun 2026 01:42:02 +0000 Manifest this update: Mon 01 Jun 2026 01:42:01 +0000 Manifest next update: Mon 08 Jun 2026 01:42:01 +0000 Files and hashes: 1: oHrwzLKYNcx2QpdLrJ4VArnPgtA.crl (hash: IBGqA1BDl+o96M+9zZZ2bnXISqYo3/ub+flNMYfbSfI=) 2: C08A3ED6E03C11EF991E147AC4F9AE02.roa (hash: sBJZeZ++/x7I1pXhx5Ucb2PyYvnG4JjYuOXlXA0qZVU=) 3: C258B0D0E03C11EF991E147AC4F9AE02.roa (hash: X4W03lfAeMlljE4GAKwUtjHV/L977l42ii4F4eQTOn8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.crl rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oHrwzLKYNcx2QpdLrJ4VArnPgtA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Jun 2026 01:42:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 873 (0x369) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E29CB, serialNumber=A07AF0CCB29835CC7642974BAC9E1502B9CF82D0 Validity Not Before: Jun 1 01:42:01 2026 GMT Not After : Jun 8 01:42:01 2026 GMT Subject: CN=6a1ce369-9a5a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:db:f4:47:52:c0:33:d7:b7:49:d0:03:5d:4b: 84:51:f0:13:ed:64:b1:c4:75:16:e9:ed:25:ed:c1: 0e:b1:38:ba:80:31:ca:b6:19:15:19:cc:25:e9:8d: ab:23:f2:c1:36:65:05:48:cf:92:c2:b7:2e:e0:47: 54:9e:51:c8:fc:a0:2b:e6:f5:f4:d6:7a:2d:37:e2: e1:17:1c:68:90:8b:f4:e7:90:2a:f8:ab:26:3c:e0: a5:39:0b:0b:29:7f:e7:00:b2:7f:3a:81:6e:0e:9c: 82:42:5e:a1:40:88:e3:4e:b6:b9:13:70:a7:b7:70: 8d:6a:33:36:d5:2c:d6:75:b8:f2:0e:b8:4c:2f:f5: 64:7c:e8:2a:a6:43:fb:b2:77:05:84:73:1f:e6:c2: 43:6c:0a:00:ed:99:bc:f1:8e:4f:50:6f:83:ef:90: 0b:66:25:ad:e6:40:e2:19:4c:85:84:0e:bc:60:23: f3:c5:dc:e2:f1:7b:b0:d2:13:7c:bd:b3:66:e9:82: 56:d8:a1:60:4c:3f:d2:75:55:18:08:eb:c6:1b:7f: bb:85:1d:1a:1c:09:c4:19:21:f4:cf:f5:28:68:55: 3a:3a:20:ab:91:ad:75:1d:1c:92:d8:c0:04:f8:7d: 1f:6b:60:dc:ce:9a:fc:96:a0:e3:5d:36:74:62:76: 39:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:C9:72:F2:9D:A2:71:8B:63:79:F2:35:57:BC:58:97:7E:D4:B8:BC X509v3 Authority Key Identifier: keyid:A0:7A:F0:CC:B2:98:35:CC:76:42:97:4B:AC:9E:15:02:B9:CF:82:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oHrwzLKYNcx2QpdLrJ4VArnPgtA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:cd:1c:1c:b4:76:39:58:66:df:38:f5:d4:b7:af:fa:7f:fe: c6:4f:a8:58:d8:dd:d4:8b:8c:58:27:0f:d9:7e:19:e8:66:fe: 08:92:e2:cb:dd:e8:f2:e2:2c:d1:5d:7e:93:cb:7d:b7:ec:e5: 24:93:8d:91:74:e1:c5:fe:6a:46:74:e7:cb:7d:be:9f:44:04: 95:fa:04:4d:ee:4f:c1:b7:5c:01:e0:b5:0a:1d:6e:53:d6:26: 5e:4b:3f:22:c8:7e:04:1f:7d:97:bc:08:8a:ff:81:41:1c:57: 3d:73:d3:d3:8c:23:20:6b:a8:cb:d7:97:4b:ef:79:9c:11:68: 2a:49:1c:68:f0:71:1d:2e:19:af:4d:d5:cb:c1:01:e7:1f:cd: 3f:ab:21:1e:32:39:bc:64:30:66:37:8b:ee:03:8c:85:c2:76: 65:14:9f:2b:dc:90:96:1c:f3:58:99:20:9d:8b:da:6e:c7:99: bf:6b:81:fc:92:6e:9c:95:d5:0d:b8:fb:48:f8:48:18:e3:44: 32:be:36:de:b9:56:2c:be:50:90:49:d8:2b:7b:9c:78:7e:39: a1:eb:20:fe:67:33:b7:e3:2c:b3:aa:6d:ab:00:cc:f2:ba:e3: 96:22:0b:0a:7f:8f:8c:77:33:ad:04:de:76:c4:8b:2f:3b:dc: eb:5d:df:60 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA2kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI5Q0IxMTAvBgNVBAUTKEEwN0FGMENDQjI5ODM1Q0M3NjQyOTc0QkFDOUUxNTAy QjlDRjgyRDAwHhcNMjYwNjAxMDE0MjAxWhcNMjYwNjA4MDE0MjAxWjAYMRYwFAYD VQQDEw02YTFjZTM2OS05YTVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3Nv0R1LAM9e3SdADXUuEUfAT7WSxxHUW6e0l7cEOsTi6gDHKthkVGcwl6Y2r I/LBNmUFSM+Swrcu4EdUnlHI/KAr5vX01notN+LhFxxokIv055Aq+KsmPOClOQsL KX/nALJ/OoFuDpyCQl6hQIjjTra5E3Cnt3CNajM21SzWdbjyDrhML/VkfOgqpkP7 sncFhHMf5sJDbAoA7Zm88Y5PUG+D75ALZiWt5kDiGUyFhA68YCPzxdzi8Xuw0hN8 vbNm6YJW2KFgTD/SdVUYCOvGG3+7hR0aHAnEGSH0z/UoaFU6OiCrka11HRyS2MAE +H0fa2Dczpr8lqDjXTZ0YnY5nQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCzJcvKd onGLY3nyNVe8WJd+1Li8MB8GA1UdIwQYMBaAFKB68MyymDXMdkKXS6yeFQK5z4LQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjlDQi8xRjkwMkIwRTA1 QUYxMUVEQTcxNzY0MkJDNEY5QUUwMi9vSHJ3ekxLWU5jeDJRcGRMcko0VkFyblBn dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29Icnd6TEtZTmN4MlFwZExySjRWQXJuUGd0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MjlDQi8xRjkwMkIwRTA1QUYxMUVEQTcxNzY0MkJDNEY5QUUwMi9vSHJ3ekxLWU5j eDJRcGRMcko0VkFyblBndEEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEArc0cHLR2OVhm3zj11Lev+n/+xk+oWNjd1IuMWCcP2X4Z6Gb+CJLiy93o8uIs 0V1+k8t9t+zlJJONkXThxf5qRnTny32+n0QElfoETe5PwbdcAeC1Ch1uU9YmXks/ Ish+BB99l7wIiv+BQRxXPXPT04wjIGuoy9eXS+95nBFoKkkcaPBxHS4Zr03Vy8EB 5x/NP6shHjI5vGQwZjeL7gOMhcJ2ZRSfK9yQlhzzWJkgnYvabseZv2uB/JJunJXV Dbj7SPhIGONEMr423rlWLL5QkEnYK3uceH45oesg/mczt+Mss6ptqwDM8rrjliIL Cn+PjHczrQTedsSLLzvc613fYA== -----END CERTIFICATE-----Generated at Tue Jun 2 22:17:24 2026 by rpki-client