$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA944/796C9D7436B911E9984B765CC4F9AE02/O407UYT_W0gbWw5ZsLIpzAbWCR4.mft File: O407UYT_W0gbWw5ZsLIpzAbWCR4.mft (raw, json) Hash identifier: 0RpZgF+g7fOQLZQrdjiYv2qnNNWUWRgjN2gNo215iyA= Subject key identifier: 3A:0C:9B:35:FC:1D:B8:22:F6:2F:E8:AA:0B:FA:93:3A:FC:8D:BC:AC Authority key identifier: 3B:8D:3B:51:84:FF:5B:48:1B:5B:0E:59:B0:B2:29:CC:06:D6:09:1E Certificate issuer: /CN=A91EA944/serialNumber=3B8D3B5184FF5B481B5B0E59B0B229CC06D6091E Certificate serial: 1121 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O407UYT_W0gbWw5ZsLIpzAbWCR4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA944/796C9D7436B911E9984B765CC4F9AE02/O407UYT_W0gbWw5ZsLIpzAbWCR4.mft Manifest number: 1116 Signing time: Wed 20 May 2026 17:16:09 +0000 Manifest this update: Wed 20 May 2026 17:16:09 +0000 Manifest next update: Wed 27 May 2026 17:16:09 +0000 Files and hashes: 1: O407UYT_W0gbWw5ZsLIpzAbWCR4.crl (hash: MWd71ebALcOO2bNLZuX9+QW1h/jVGwp7m/7vORJiDAk=) 2: E3272FE036B911E99F4D9A5CC4F9AE02.roa (hash: Qlspkhh8uor8ecMraj5PR2UqS4cARaGBWVRKRXzt500=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA944/796C9D7436B911E9984B765CC4F9AE02/O407UYT_W0gbWw5ZsLIpzAbWCR4.crl rsync://rpki.apnic.net/member_repository/A91EA944/796C9D7436B911E9984B765CC4F9AE02/O407UYT_W0gbWw5ZsLIpzAbWCR4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O407UYT_W0gbWw5ZsLIpzAbWCR4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 17:16:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4385 (0x1121) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA944, serialNumber=3B8D3B5184FF5B481B5B0E59B0B229CC06D6091E Validity Not Before: May 20 17:16:09 2026 GMT Not After : May 27 17:16:09 2026 GMT Subject: CN=6a0dec59-7d42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:ff:ec:34:42:5e:27:9b:6b:e1:38:e0:0b:f5: db:c1:be:52:a5:73:9e:7b:65:1b:6b:83:9b:16:76: c3:95:32:20:99:74:4e:2a:7a:d8:68:3b:01:0d:9c: 08:89:e9:cc:56:05:2d:79:7a:4e:84:83:0f:1c:d2: 97:a2:9c:3f:50:2e:9a:cf:e3:32:d3:38:79:09:1e: 44:34:11:51:d7:72:4a:13:6d:df:2b:45:13:c6:e9: bf:33:f6:eb:6f:2d:ca:36:44:be:23:dd:61:7a:a5: 48:b3:c8:56:07:91:11:8b:78:9a:d2:6e:20:aa:06: 50:83:86:7a:a5:5f:65:46:c1:d4:49:33:39:d7:e3: cb:77:c7:98:bf:bf:d3:98:a6:83:ef:9f:0e:11:cb: c1:7d:22:88:a1:0b:e3:22:fb:04:ef:18:36:2a:ce: a8:58:03:99:49:5b:5a:a9:d8:27:f5:c7:f7:72:4f: 3b:f7:28:66:46:07:98:06:f2:0e:f7:16:48:88:0a: 96:ef:7d:ff:33:60:b2:83:80:49:0f:94:41:f5:22: 59:72:e9:f7:b8:90:f3:14:9b:53:67:1c:80:52:6d: ea:ef:22:ea:4c:a4:d0:a0:d5:52:08:9a:7c:20:ba: 31:16:1b:35:0f:8b:3e:0f:65:03:16:2d:cb:6f:49: dd:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:0C:9B:35:FC:1D:B8:22:F6:2F:E8:AA:0B:FA:93:3A:FC:8D:BC:AC X509v3 Authority Key Identifier: keyid:3B:8D:3B:51:84:FF:5B:48:1B:5B:0E:59:B0:B2:29:CC:06:D6:09:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA944/796C9D7436B911E9984B765CC4F9AE02/O407UYT_W0gbWw5ZsLIpzAbWCR4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O407UYT_W0gbWw5ZsLIpzAbWCR4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA944/796C9D7436B911E9984B765CC4F9AE02/O407UYT_W0gbWw5ZsLIpzAbWCR4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:23:a9:d1:c8:89:b6:54:a9:50:70:e0:b9:b9:59:b9:e9:15: f0:12:3c:05:75:6b:bf:b9:15:93:56:28:19:b8:bc:fc:9f:84: 2c:3f:b4:03:e2:84:c1:ac:8e:05:54:5b:ef:10:d4:ef:f1:97: 65:10:a0:50:34:8a:2c:7f:45:28:c8:c2:5f:df:66:33:fe:d0: 72:37:79:0f:31:59:42:16:9c:23:f6:56:0c:c9:1b:8e:69:89: 28:12:e9:00:50:d0:ef:90:8f:3d:4b:b7:2f:87:8f:3d:04:1f: fa:3e:7f:93:f8:5a:f0:81:c5:69:f5:b3:d6:3e:a9:2a:35:20: d5:26:ec:e5:27:d5:e2:56:c8:8d:8b:c8:5b:83:a3:24:b9:d9: 30:da:0d:85:db:d7:f8:e9:69:0e:c6:1d:26:b0:e0:8d:68:15: 57:1b:14:31:4a:72:c2:08:ce:13:5d:3a:87:4b:c2:67:58:62: 67:68:e9:6d:b4:40:71:bb:c2:c0:51:5e:b1:cb:d6:74:c0:89: be:78:3e:84:59:c6:02:2b:f9:f7:62:07:d6:38:13:69:03:b3: 1c:38:1a:98:17:4c:a2:94:73:81:c1:40:d2:a3:6e:d5:ac:0c: 8a:1b:78:cd:00:3b:1a:70:2f:17:72:fa:7d:65:fe:65:84:c7: 57:67:09:66 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICESEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE5NDQxMTAvBgNVBAUTKDNCOEQzQjUxODRGRjVCNDgxQjVCMEU1OUIwQjIyOUND MDZENjA5MUUwHhcNMjYwNTIwMTcxNjA5WhcNMjYwNTI3MTcxNjA5WjAYMRYwFAYD VQQDEw02YTBkZWM1OS03ZDQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnv/sNEJeJ5tr4TjgC/Xbwb5SpXOee2Uba4ObFnbDlTIgmXROKnrYaDsBDZwI ienMVgUteXpOhIMPHNKXopw/UC6az+My0zh5CR5ENBFR13JKE23fK0UTxum/M/br by3KNkS+I91heqVIs8hWB5ERi3ia0m4gqgZQg4Z6pV9lRsHUSTM51+PLd8eYv7/T mKaD758OEcvBfSKIoQvjIvsE7xg2Ks6oWAOZSVtaqdgn9cf3ck879yhmRgeYBvIO 9xZIiAqW733/M2Cyg4BJD5RB9SJZcun3uJDzFJtTZxyAUm3q7yLqTKTQoNVSCJp8 ILoxFhs1D4s+D2UDFi3Lb0nd4wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDoMmzX8 Hbgi9i/oqgv6kzr8jbysMB8GA1UdIwQYMBaAFDuNO1GE/1tIG1sOWbCyKcwG1gke MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTk0NC83OTZDOUQ3NDM2 QjkxMUU5OTg0Qjc2NUNDNEY5QUUwMi9PNDA3VVlUX1cwZ2JXdzVac0xJcHpBYldD UjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL080MDdVWVRfVzBnYld3NVpzTElwekFiV0NSNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTk0NC83OTZDOUQ3NDM2QjkxMUU5OTg0Qjc2NUNDNEY5QUUwMi9PNDA3VVlUX1cw Z2JXdzVac0xJcHpBYldDUjQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAbiOp0ciJtlSpUHDgublZuekV8BI8BXVrv7kVk1YoGbi8/J+ELD+0A+KEwayO BVRb7xDU7/GXZRCgUDSKLH9FKMjCX99mM/7Qcjd5DzFZQhacI/ZWDMkbjmmJKBLp AFDQ75CPPUu3L4ePPQQf+j5/k/ha8IHFafWz1j6pKjUg1Sbs5SfV4lbIjYvIW4Oj JLnZMNoNhdvX+OlpDsYdJrDgjWgVVxsUMUpywgjOE106h0vCZ1hiZ2jpbbRAcbvC wFFescvWdMCJvng+hFnGAiv592IH1jgTaQOzHDgamBdMopRzgcFA0qNu1awMiht4 zQA7GnAvF3L6fWX+ZYTHV2cJZg== -----END CERTIFICATE-----Generated at Thu May 21 11:05:15 2026 by rpki-client