$ rpki-client -vvf rpki.apnic.net/member_repository/A91E953B/C8D039226C9A11EE85BFDF4FC4F9AE02/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.mft File: oiQ2hCI9LCXGrxdqXwL6ArJPaAs.mft (raw, json) Hash identifier: nLLUE0cJY/Yru6i1zbn8uqhJ1fp7NNOY4d9RdZgcew0= Subject key identifier: 40:1F:94:F1:5D:6A:8C:4D:28:C2:46:0F:75:F5:EC:78:6D:C9:8F:3B Authority key identifier: A2:24:36:84:22:3D:2C:25:C6:AF:17:6A:5F:02:FA:02:B2:4F:68:0B Certificate issuer: /CN=A91E953B/serialNumber=A2243684223D2C25C6AF176A5F02FA02B24F680B Certificate serial: 01ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E953B/C8D039226C9A11EE85BFDF4FC4F9AE02/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.mft Manifest number: 01E8 Signing time: Thu 21 May 2026 03:25:49 +0000 Manifest this update: Thu 21 May 2026 03:25:49 +0000 Manifest next update: Thu 28 May 2026 03:25:49 +0000 Files and hashes: 1: oiQ2hCI9LCXGrxdqXwL6ArJPaAs.crl (hash: EskVkXsdU8Iq1+6/ERV8Ees4TIXgGH7I05IFOWK9B5k=) 2: 12E1FD886C9C11EE9F3C5653C4F9AE02.roa (hash: 5SIEytqj/kUtficVvfQzNkbf84VZDuhF0/ee1j7nlyY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E953B/C8D039226C9A11EE85BFDF4FC4F9AE02/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.crl rsync://rpki.apnic.net/member_repository/A91E953B/C8D039226C9A11EE85BFDF4FC4F9AE02/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 03:25:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 493 (0x1ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E953B, serialNumber=A2243684223D2C25C6AF176A5F02FA02B24F680B Validity Not Before: May 21 03:25:49 2026 GMT Not After : May 28 03:25:49 2026 GMT Subject: CN=6a0e7b3d-55b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:c5:8f:77:1a:26:3f:44:f7:4a:5c:d2:4a:a0: 07:44:c0:aa:57:34:6d:e7:38:5f:fb:71:79:3d:e5: 4d:6e:ee:bf:61:5f:2d:7a:67:3d:33:45:c9:44:b2: 74:cb:16:30:0c:85:e4:c3:bd:e1:e9:fd:37:08:92: 01:27:da:88:0f:2a:a4:7b:db:19:48:39:65:15:40: 91:05:09:66:6f:b9:11:eb:f1:fb:0f:fd:3d:6c:cc: 86:af:1b:5d:27:ef:30:9d:35:a9:9a:27:23:6b:40: fa:c6:52:72:14:d0:46:33:47:21:d7:67:aa:33:3b: ad:9e:a2:56:70:58:1e:97:e2:b8:8e:18:4e:3e:35: 68:26:3f:b9:8c:98:de:68:9a:22:a1:2e:d5:5f:c1: 1b:36:fa:1d:80:3b:9f:01:4e:b3:16:8c:db:2e:a6: 60:5e:fa:9c:01:07:d2:6c:b5:46:68:f3:00:b2:4e: 77:ba:0d:13:3a:4c:83:a6:1a:67:d1:ca:1c:93:c0: 5b:fb:01:fc:de:48:7f:4c:d8:9d:b8:8c:ff:0e:fe: 83:56:67:b9:b7:f8:c2:ae:66:b9:65:b5:40:b4:87: 80:10:a5:9d:cd:75:3a:eb:92:26:10:9c:98:e7:4d: db:ea:17:0c:5b:4d:02:e2:1a:8d:90:d2:22:57:fc: 46:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:1F:94:F1:5D:6A:8C:4D:28:C2:46:0F:75:F5:EC:78:6D:C9:8F:3B X509v3 Authority Key Identifier: keyid:A2:24:36:84:22:3D:2C:25:C6:AF:17:6A:5F:02:FA:02:B2:4F:68:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E953B/C8D039226C9A11EE85BFDF4FC4F9AE02/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E953B/C8D039226C9A11EE85BFDF4FC4F9AE02/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:2d:8e:27:d1:88:e7:12:00:2f:f8:b4:10:c3:1d:53:f0:9b: c8:10:0a:d8:85:8d:0f:77:13:d8:5f:25:2f:28:36:26:3c:5b: 1c:c3:2e:fc:b7:7f:40:7e:cd:d5:16:78:ef:ae:bd:e3:7f:c5: f7:12:0b:e6:dc:7d:f6:59:4c:6e:52:00:58:4d:db:80:b6:93: 61:9e:99:86:cb:c9:c1:c2:71:9e:7f:cd:63:4b:c5:e7:9e:89: 22:97:88:42:4d:87:82:35:92:c6:7e:3c:fc:82:66:f5:03:47: 54:87:34:65:5a:46:5b:ba:74:b2:7c:58:7c:9f:6e:f7:bb:7a: 81:77:84:f1:fd:78:c0:d7:46:fe:73:48:8d:9e:c7:6a:4a:e3: c7:74:6e:bd:2e:6b:f7:79:07:7b:c5:07:da:77:8f:84:19:60: 9b:c9:5e:9e:b6:7b:84:61:b8:3e:9a:b6:7c:a1:e7:d0:d0:f9: 09:d9:1b:56:9e:b2:f7:7c:5e:0f:f9:f4:53:91:67:96:09:7a: 94:96:3f:04:65:c2:86:52:24:2d:9f:b7:1f:87:7b:73:cc:3a: b8:fd:e7:ed:56:c8:ab:91:7b:bf:d3:d4:f0:0b:0f:9f:99:47: 7f:bf:ed:9c:3c:3d:40:e5:02:51:08:f2:2f:db:b9:ba:ab:aa: 4e:ea:8b:5c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAe0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTk1M0IxMTAvBgNVBAUTKEEyMjQzNjg0MjIzRDJDMjVDNkFGMTc2QTVGMDJGQTAy QjI0RjY4MEIwHhcNMjYwNTIxMDMyNTQ5WhcNMjYwNTI4MDMyNTQ5WjAYMRYwFAYD VQQDEw02YTBlN2IzZC01NWIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3sWPdxomP0T3SlzSSqAHRMCqVzRt5zhf+3F5PeVNbu6/YV8temc9M0XJRLJ0 yxYwDIXkw73h6f03CJIBJ9qIDyqke9sZSDllFUCRBQlmb7kR6/H7D/09bMyGrxtd J+8wnTWpmicja0D6xlJyFNBGM0ch12eqMzutnqJWcFgel+K4jhhOPjVoJj+5jJje aJoioS7VX8EbNvodgDufAU6zFozbLqZgXvqcAQfSbLVGaPMAsk53ug0TOkyDphpn 0cock8Bb+wH83kh/TNiduIz/Dv6DVme5t/jCrma5ZbVAtIeAEKWdzXU665ImEJyY 503b6hcMW00C4hqNkNIiV/xGtwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEAflPFd aoxNKMJGD3X17HhtyY87MB8GA1UdIwQYMBaAFKIkNoQiPSwlxq8Xal8C+gKyT2gL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOTUzQi9DOEQwMzkyMjZD OUExMUVFODVCRkRGNEZDNEY5QUUwMi9vaVEyaENJOUxDWEdyeGRxWHdMNkFySlBh QXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29pUTJoQ0k5TENYR3J4ZHFYd0w2QXJKUGFBcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OTUzQi9DOEQwMzkyMjZDOUExMUVFODVCRkRGNEZDNEY5QUUwMi9vaVEyaENJOUxD WEdyeGRxWHdMNkFySlBhQXMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAji2OJ9GI5xIAL/i0EMMdU/CbyBAK2IWND3cT2F8lLyg2JjxbHMMu/Ld/QH7N 1RZ4766943/F9xIL5tx99llMblIAWE3bgLaTYZ6ZhsvJwcJxnn/NY0vF556JIpeI Qk2HgjWSxn48/IJm9QNHVIc0ZVpGW7p0snxYfJ9u97t6gXeE8f14wNdG/nNIjZ7H akrjx3RuvS5r93kHe8UH2nePhBlgm8lenrZ7hGG4Ppq2fKHn0ND5CdkbVp6y93xe D/n0U5Fnlgl6lJY/BGXChlIkLZ+3H4d7c8w6uP3n7VbIq5F7v9PU8AsPn5lHf7/t nDw9QOUCUQjyL9u5uquqTuqLXA== -----END CERTIFICATE-----Generated at Thu May 21 14:13:38 2026 by rpki-client