$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.mft File: Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.mft (raw, json) Hash identifier: VRZX/YAHog+li1KdcIiz1oOPLMJw7bNFp+n4NyNBA8M= Subject key identifier: 15:45:D9:73:6A:EF:C4:FE:D3:D6:77:B8:EA:9A:77:AC:37:81:91:FE Authority key identifier: 3A:CC:B6:95:39:AC:9F:42:88:BC:D0:F0:A5:42:50:D5:92:F5:40:D4 Certificate issuer: /CN=A91F0EBF/serialNumber=3ACCB69539AC9F4288BCD0F0A54250D592F540D4 Certificate serial: 22B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.mft Manifest number: 2259 Signing time: Wed 20 May 2026 15:52:12 +0000 Manifest this update: Wed 20 May 2026 15:52:11 +0000 Manifest next update: Wed 27 May 2026 15:52:11 +0000 Files and hashes: 1: Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.crl (hash: KbOian2+9cOVlRoroDpHwd7t+EfH/d445p+GuwTLP1M=) 2: 586B33AEF44611EBA78C117AC4F9AE02.roa (hash: fTK97vrMBpL2ZoSynxsGZ4U3KEvxzaz+0BewP/ZQJbc=) 3: 5F649D88F27E11EE8704D12FC4F9AE02.roa (hash: 9WmU8Y4ZcOpIMboLEtIMfgE7BVSSzD6O48vbK37ECCM=) 4: 63BFE4C0292811EEAF894530C4F9AE02.roa (hash: sVanteUBCWSFVUaHrZ5yntV/JIzyhq/72ORLRX744ZU=) 5: 2D477384D9C711F098E1B70271D3641D.roa (hash: GJ6jqaxX7BHT2XHEY46Q7jZx0gkdB0fTcOfm2Nfw3us=) 6: 5480D316764D11EA8CB5C039C4F9AE02.roa (hash: mJF9eHW945FqOhcOebNZDCr93WVmTQPVaMtl9lfF/sA=) 7: 11DE1CDA467611EC988CDC09C4F9AE02.roa (hash: MfV4ukOu3FWI/jsl4kHuM58dQAKJFj/LhFrUhOuLtaI=) 8: A73C0BF6D93511E6B2617F7BC4F9AE02.roa (hash: 9Wh8912cu3W7SvBPurOS5rCjf4J0gjpN7uj92f3pmsg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.crl rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 15:52:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8883 (0x22b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0EBF, serialNumber=3ACCB69539AC9F4288BCD0F0A54250D592F540D4 Validity Not Before: May 20 15:52:11 2026 GMT Not After : May 27 15:52:11 2026 GMT Subject: CN=6a0dd8ac-4cdd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:e1:95:9c:b3:fe:09:08:f8:58:18:0a:6e:c1: a3:d6:12:c7:7e:b7:79:86:81:2b:9b:1f:84:c7:c4: 7f:a7:77:4d:f2:7f:a4:ff:09:57:0e:2f:4d:b9:0b: f5:b6:03:ca:ed:38:2b:fc:0e:3f:a8:30:02:30:0e: 5a:8d:4e:dc:f0:1c:41:58:58:b2:c8:10:d4:58:9b: 77:59:04:cb:94:27:e3:f7:27:76:48:7c:4e:12:52: d0:64:c1:1c:db:6e:73:7e:05:d4:e1:60:0d:45:18: 61:32:31:1a:1e:b9:6f:77:19:56:fd:c1:a5:66:e9: b1:fc:04:1f:d5:2e:21:5c:cc:b2:46:ea:fe:87:40: e9:54:ed:5d:32:f7:73:43:5a:5c:a6:50:cd:6a:3e: 29:34:6d:2d:f2:7c:cb:71:6b:c5:7d:ff:75:e3:44: 56:ee:65:d0:e0:2a:a4:2d:c0:ed:33:02:6a:a9:d8: 75:9f:a0:a7:b8:80:a8:c1:b2:8f:94:ca:48:3c:dc: 7d:c0:63:90:bf:db:03:86:0f:c9:96:40:f9:5a:59: 09:58:00:d5:7d:7e:fa:b7:48:25:32:72:9a:3a:b3: 3b:c2:7e:f3:cc:df:11:e8:4e:84:bf:56:ce:0b:d4: b8:6e:43:2a:c4:42:99:a6:6e:cd:41:20:78:7d:84: a7:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:45:D9:73:6A:EF:C4:FE:D3:D6:77:B8:EA:9A:77:AC:37:81:91:FE X509v3 Authority Key Identifier: keyid:3A:CC:B6:95:39:AC:9F:42:88:BC:D0:F0:A5:42:50:D5:92:F5:40:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:a1:23:b6:7f:fa:4d:96:b3:b2:6e:b1:f4:11:5d:ec:d5:0d: 68:97:a5:b0:2f:ca:62:69:fc:e6:17:53:d2:b4:5e:10:26:43: a7:f0:d9:05:96:93:f7:70:8a:75:57:5f:e8:cb:28:02:39:9f: ef:7e:c2:de:92:cb:e1:39:47:59:e7:5b:2e:26:54:4f:61:4c: 0e:ab:86:c7:74:2c:8f:00:d0:93:38:c7:ef:20:8a:66:3f:ea: c1:cc:ff:33:14:6f:a9:7e:d1:fd:56:a7:e0:94:86:ca:49:bf: 73:8f:c3:c6:df:9c:34:38:0d:6a:f8:43:c2:68:6d:ad:e7:27: 09:dd:28:ad:67:36:d5:6d:ae:5f:1a:b1:d7:a6:79:d6:8e:19: f7:67:af:be:49:8c:3b:b2:60:af:af:0e:84:6c:04:ca:61:43: 00:d8:9d:c3:f8:07:d4:1d:f9:8b:d9:4d:7d:04:14:ea:5d:ed: 8e:7a:1f:29:2b:a0:9a:61:94:c0:18:55:d2:6a:73:ca:60:04: 38:aa:0c:78:7c:f8:eb:16:00:4e:a2:a0:6e:08:e6:ac:55:08: 3f:00:fa:21:08:ca:37:c2:a9:25:a4:44:33:05:bf:f7:ac:7e: 10:31:77:ce:dc:d9:88:fa:e5:7e:b4:1f:0d:85:bc:e6:65:bd: 94:d5:18:0f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICIrMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBFQkYxMTAvBgNVBAUTKDNBQ0NCNjk1MzlBQzlGNDI4OEJDRDBGMEE1NDI1MEQ1 OTJGNTQwRDQwHhcNMjYwNTIwMTU1MjExWhcNMjYwNTI3MTU1MjExWjAYMRYwFAYD VQQDEw02YTBkZDhhYy00Y2RkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2eGVnLP+CQj4WBgKbsGj1hLHfrd5hoErmx+Ex8R/p3dN8n+k/wlXDi9NuQv1 tgPK7Tgr/A4/qDACMA5ajU7c8BxBWFiyyBDUWJt3WQTLlCfj9yd2SHxOElLQZMEc 225zfgXU4WANRRhhMjEaHrlvdxlW/cGlZumx/AQf1S4hXMyyRur+h0DpVO1dMvdz Q1pcplDNaj4pNG0t8nzLcWvFff9140RW7mXQ4CqkLcDtMwJqqdh1n6CnuICowbKP lMpIPNx9wGOQv9sDhg/JlkD5WlkJWADVfX76t0glMnKaOrM7wn7zzN8R6E6Ev1bO C9S4bkMqxEKZpm7NQSB4fYSnvQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBVF2XNq 78T+09Z3uOqad6w3gZH+MB8GA1UdIwQYMBaAFDrMtpU5rJ9CiLzQ8KVCUNWS9UDU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEVCRi81Rjg0RDdEOERC ODAxMUU1OUFCN0VEMUVDNEY5QUUwMi9Pc3kybFRtc24wS0l2TkR3cFVKUTFaTDFR TlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09zeTJsVG1zbjBLSXZORHdwVUpRMVpMMVFOUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MEVCRi81Rjg0RDdEOERCODAxMUU1OUFCN0VEMUVDNEY5QUUwMi9Pc3kybFRtc24w S0l2TkR3cFVKUTFaTDFRTlEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEABKEjtn/6TZazsm6x9BFd7NUNaJelsC/KYmn85hdT0rReECZDp/DZBZaT93CK dVdf6MsoAjmf737C3pLL4TlHWedbLiZUT2FMDquGx3QsjwDQkzjH7yCKZj/qwcz/ MxRvqX7R/Van4JSGykm/c4/Dxt+cNDgNavhDwmhtrecnCd0orWc21W2uXxqx16Z5 1o4Z92evvkmMO7Jgr68OhGwEymFDANidw/gH1B35i9lNfQQU6l3tjnofKSugmmGU wBhV0mpzymAEOKoMeHz46xYATqKgbgjmrFUIPwD6IQjKN8KpJaREMwW/96x+EDF3 ztzZiPrlfrQfDYW85mW9lNUYDw== -----END CERTIFICATE-----Generated at Thu May 21 10:17:43 2026 by rpki-client