$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6856/2DDB426E486311EEBC0BD213C4F9AE02/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.mft File: OmgjoQ8Dv6ykBo0zmERPNkEIVIU.mft (raw, json) Hash identifier: KkVtYwF2l6SeJVx1GXaboDbfOU0DmfsajHrvD6trc6Q= Subject key identifier: 10:00:06:AA:D8:35:6C:46:19:F7:CA:9C:F2:9F:97:23:F4:EB:33:40 Authority key identifier: 3A:68:23:A1:0F:03:BF:AC:A4:06:8D:33:98:44:4F:36:41:08:54:85 Certificate issuer: /CN=A91E6856/serialNumber=3A6823A10F03BFACA4068D3398444F3641085485 Certificate serial: 0211 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6856/2DDB426E486311EEBC0BD213C4F9AE02/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.mft Manifest number: 020B Signing time: Tue 02 Jun 2026 17:36:57 +0000 Manifest this update: Tue 02 Jun 2026 17:36:57 +0000 Manifest next update: Tue 09 Jun 2026 17:36:57 +0000 Files and hashes: 1: OmgjoQ8Dv6ykBo0zmERPNkEIVIU.crl (hash: kZPlrMgfwS5B39svCGx/OLlnQIn6LHq2LhtPTrRQ2MA=) 2: B2C9B10A881311EE8CFB5C43C4F9AE02.roa (hash: oB4kxasRgRq+GKJ70NUc/sJMH3q5nYfTRjnemmCHnis=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6856/2DDB426E486311EEBC0BD213C4F9AE02/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.crl rsync://rpki.apnic.net/member_repository/A91E6856/2DDB426E486311EEBC0BD213C4F9AE02/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Jun 2026 15:18:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 529 (0x211) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6856, serialNumber=3A6823A10F03BFACA4068D3398444F3641085485 Validity Not Before: Jun 2 17:36:57 2026 GMT Not After : Jun 9 17:36:57 2026 GMT Subject: CN=6a1f14b9-b65d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:49:6c:26:b0:e9:4c:e4:b5:16:6c:ba:9d:21: 44:74:c7:ec:57:25:69:ed:6b:78:c4:84:2d:d1:5e: 13:f0:bf:7d:fb:c7:9e:d6:63:96:70:2e:e6:06:30: 6e:2c:37:80:6c:ec:fe:ac:50:01:3f:eb:68:6d:5a: dd:06:4b:d3:f0:73:61:77:8a:c8:af:6b:79:94:5d: 4e:7f:71:67:50:f0:22:ba:27:ac:06:b4:ea:28:45: 89:18:07:bd:1b:09:33:30:b1:af:3c:5b:3f:94:0c: 84:79:51:28:dc:8e:36:9a:20:43:41:08:8f:9c:fd: f3:90:c6:d2:7f:e9:b0:80:a1:66:b4:63:bf:43:e4: 34:1a:ef:02:43:77:34:14:b6:6c:e7:6c:7c:3b:c4: ef:c0:d2:b3:cf:99:83:f8:9f:61:49:0f:41:68:e4: 19:c2:00:dd:90:b2:7e:29:70:24:ce:11:5e:d1:c3: a4:c2:45:63:42:d5:cf:15:b0:2d:9e:51:59:92:53: 90:20:5a:30:63:17:33:85:05:96:af:56:f2:ce:cf: 56:3e:25:d1:31:99:2b:1e:96:af:00:1e:d5:0a:20: 91:4d:b9:f8:fa:38:e8:d3:ef:9b:56:12:e8:af:b1: 6e:21:71:c6:3b:dc:10:dd:5a:54:8e:ba:b1:f1:04: b2:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:00:06:AA:D8:35:6C:46:19:F7:CA:9C:F2:9F:97:23:F4:EB:33:40 X509v3 Authority Key Identifier: keyid:3A:68:23:A1:0F:03:BF:AC:A4:06:8D:33:98:44:4F:36:41:08:54:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6856/2DDB426E486311EEBC0BD213C4F9AE02/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6856/2DDB426E486311EEBC0BD213C4F9AE02/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:e1:f4:db:2d:7f:02:46:15:c7:7f:e7:73:fb:e2:35:13:f2: 32:b8:58:c7:c5:93:96:e6:ed:6a:3e:f2:8e:74:3a:cb:2b:7d: 6d:8f:28:fd:80:ff:60:db:1e:81:8e:cd:55:a0:5f:16:af:ce: 52:21:33:d3:9d:28:8c:40:6e:43:ed:8e:73:68:8c:95:60:6c: 1c:d7:cb:1b:ec:77:2d:ed:3f:d0:0f:09:4d:45:28:74:2a:94: 03:e6:ff:38:37:fc:e9:3b:f3:c7:36:36:70:ee:43:bc:dd:d6: 68:ea:41:e9:ee:3d:9c:a4:b7:61:e3:85:b3:f5:5b:9b:bd:2b: a2:0e:7b:72:27:0f:96:d0:2a:0a:91:26:77:c4:cb:b5:9d:a1: e6:58:c0:8f:9f:ca:f8:39:97:dd:96:39:48:17:04:ec:e6:86: c9:44:3c:c8:cd:e2:e5:e8:40:9f:8e:50:b7:95:a4:8e:92:5a: aa:17:0d:bd:bd:7c:88:a2:1a:f1:26:71:50:07:c2:df:ed:64: 6c:af:f0:06:db:06:5d:5d:b9:73:7e:99:c6:81:8e:4f:ff:d1: 01:8f:20:a2:df:6a:ec:0a:e6:08:54:6d:7f:07:14:d8:5d:7d: 4a:fd:45:f0:77:50:a9:af:ab:9b:d9:f4:14:80:f0:85:a7:0e: 11:e5:4c:ec -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAhEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTY4NTYxMTAvBgNVBAUTKDNBNjgyM0ExMEYwM0JGQUNBNDA2OEQzMzk4NDQ0RjM2 NDEwODU0ODUwHhcNMjYwNjAyMTczNjU3WhcNMjYwNjA5MTczNjU3WjAYMRYwFAYD VQQDEw02YTFmMTRiOS1iNjVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1UlsJrDpTOS1Fmy6nSFEdMfsVyVp7Wt4xIQt0V4T8L99+8ee1mOWcC7mBjBu LDeAbOz+rFABP+tobVrdBkvT8HNhd4rIr2t5lF1Of3FnUPAiuiesBrTqKEWJGAe9 GwkzMLGvPFs/lAyEeVEo3I42miBDQQiPnP3zkMbSf+mwgKFmtGO/Q+Q0Gu8CQ3c0 FLZs52x8O8TvwNKzz5mD+J9hSQ9BaOQZwgDdkLJ+KXAkzhFe0cOkwkVjQtXPFbAt nlFZklOQIFowYxczhQWWr1byzs9WPiXRMZkrHpavAB7VCiCRTbn4+jjo0++bVhLo r7FuIXHGO9wQ3VpUjrqx8QSyiQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBAABqrY NWxGGffKnPKflyP06zNAMB8GA1UdIwQYMBaAFDpoI6EPA7+spAaNM5hETzZBCFSF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjg1Ni8yRERCNDI2RTQ4 NjMxMUVFQkMwQkQyMTNDNEY5QUUwMi9PbWdqb1E4RHY2eWtCbzB6bUVSUE5rRUlW SVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL09tZ2pvUThEdjZ5a0JvMHptRVJQTmtFSVZJVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF Njg1Ni8yRERCNDI2RTQ4NjMxMUVFQkMwQkQyMTNDNEY5QUUwMi9PbWdqb1E4RHY2 eWtCbzB6bUVSUE5rRUlWSVUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAK+H02y1/AkYVx3/nc/viNRPyMrhYx8WTlubtaj7yjnQ6yyt9bY8o/YD/YNse gY7NVaBfFq/OUiEz050ojEBuQ+2Oc2iMlWBsHNfLG+x3Le0/0A8JTUUodCqUA+b/ ODf86TvzxzY2cO5DvN3WaOpB6e49nKS3YeOFs/Vbm70rog57cicPltAqCpEmd8TL tZ2h5ljAj5/K+DmX3ZY5SBcE7OaGyUQ8yM3i5ehAn45Qt5WkjpJaqhcNvb18iKIa 8SZxUAfC3+1kbK/wBtsGXV25c36ZxoGOT//RAY8got9q7ArmCFRtfwcU2F19Sv1F 8HdQqa+rm9n0FIDwhacOEeVM7A== -----END CERTIFICATE-----Generated at Tue Jun 2 21:41:19 2026 by rpki-client