$ rpki-client -vvf rpki.apnic.net/member_repository/A911750B/64D07748468C11F084B6A539C4F9AE02/O4NYU1vGKFZK9W8x2HWGSOHQQwQ.mft File: O4NYU1vGKFZK9W8x2HWGSOHQQwQ.mft (raw, json) Hash identifier: NtBli3tPwbQWtT9n71NJ+rgcTJONhUm63damHXaRqwc= Subject key identifier: BF:0B:BC:4D:C3:94:BF:F3:E2:03:EE:F8:10:37:8D:59:F4:94:A9:8F Authority key identifier: 3B:83:58:53:5B:C6:28:56:4A:F5:6F:31:D8:75:86:48:E1:D0:43:04 Certificate issuer: /CN=A911750B/serialNumber=3B8358535BC628564AF56F31D8758648E1D04304 Certificate serial: B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O4NYU1vGKFZK9W8x2HWGSOHQQwQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911750B/64D07748468C11F084B6A539C4F9AE02/O4NYU1vGKFZK9W8x2HWGSOHQQwQ.mft Manifest number: AE Signing time: Wed 13 May 2026 07:16:56 +0000 Manifest this update: Wed 13 May 2026 07:16:56 +0000 Manifest next update: Wed 20 May 2026 07:16:56 +0000 Files and hashes: 1: O4NYU1vGKFZK9W8x2HWGSOHQQwQ.crl (hash: wsmmtqpJ8YzhK/aPHWCeOHBPrVztPoPMWiTHu3TCOMU=) 2: D922E45E468D11F0B5D0835EC4F9AE02.roa (hash: 5L0n0AuaZsG9RN1VkF1qu4foHDeiS87d8mBxLuyWIUg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911750B/64D07748468C11F084B6A539C4F9AE02/O4NYU1vGKFZK9W8x2HWGSOHQQwQ.crl rsync://rpki.apnic.net/member_repository/A911750B/64D07748468C11F084B6A539C4F9AE02/O4NYU1vGKFZK9W8x2HWGSOHQQwQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O4NYU1vGKFZK9W8x2HWGSOHQQwQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 07:16:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 176 (0xb0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911750B, serialNumber=3B8358535BC628564AF56F31D8758648E1D04304 Validity Not Before: May 13 07:16:56 2026 GMT Not After : May 20 07:16:56 2026 GMT Subject: CN=6a042568-8b7e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:d6:b8:de:ed:01:d4:57:2c:37:7b:31:a0:ae: 9c:4b:2a:10:1d:f8:d8:d6:7b:28:24:b9:15:fc:7b: 34:c0:e9:42:ab:7c:ff:65:0b:f9:66:4b:bc:43:d3: 2f:aa:9a:3a:d8:63:7f:bb:89:5d:f4:88:ae:a6:52: 11:38:f7:b5:95:53:12:12:ae:0f:7b:7e:13:bf:ce: 68:c4:33:da:19:73:2b:50:24:14:bc:c0:a4:62:37: 89:d9:72:b3:90:46:d1:62:b2:77:36:2c:92:81:b4: e3:3c:93:48:e8:68:25:23:bb:d8:e2:93:fe:b7:f3: 7f:e0:35:f0:05:a3:52:6e:05:fb:94:f5:e1:c0:f1: 62:08:55:67:44:36:f0:f4:36:70:d5:92:fd:b3:2b: 52:be:9a:12:7c:d8:2e:1b:aa:85:2d:31:e5:c9:88: 93:f3:3d:46:05:5d:ee:5f:bf:d4:f6:5b:1f:32:f9: b2:62:4e:18:a0:03:21:88:e4:22:3a:ec:6b:c7:2e: f6:3b:15:de:d6:3f:9c:4b:4c:7b:71:68:f6:29:80: 03:75:c1:b9:08:4b:9d:93:53:3e:51:bf:95:3e:b8: 56:a4:38:ec:d0:2a:64:7d:e2:e6:27:a7:8b:2f:c9: 66:79:1d:b9:c4:76:e9:f5:c6:5c:ca:6e:07:4e:d5: 00:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:0B:BC:4D:C3:94:BF:F3:E2:03:EE:F8:10:37:8D:59:F4:94:A9:8F X509v3 Authority Key Identifier: keyid:3B:83:58:53:5B:C6:28:56:4A:F5:6F:31:D8:75:86:48:E1:D0:43:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911750B/64D07748468C11F084B6A539C4F9AE02/O4NYU1vGKFZK9W8x2HWGSOHQQwQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O4NYU1vGKFZK9W8x2HWGSOHQQwQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911750B/64D07748468C11F084B6A539C4F9AE02/O4NYU1vGKFZK9W8x2HWGSOHQQwQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:2e:7c:7a:7b:76:47:a3:f5:ec:85:f1:90:de:84:7c:ca:a6: b2:41:18:24:b0:31:7b:91:84:bd:1d:31:51:7b:44:8d:fb:06: 28:d5:76:ec:4f:8b:71:c4:fa:a3:df:78:fe:7a:e0:9e:3b:8f: 0c:28:a7:54:8f:a2:4d:89:a8:08:37:e9:93:e7:4b:ce:ae:00: 4a:c7:80:c5:5d:53:2d:ba:cb:8e:3c:7d:cc:bf:75:41:36:ba: 5c:d5:a2:2a:aa:70:7d:f3:0c:d5:f9:18:b7:14:f3:87:92:8c: e3:d7:b7:66:b1:99:58:44:c7:e5:e7:42:52:16:f4:0e:fe:ed: ac:c8:2d:d3:65:f6:b0:30:99:f4:c0:de:75:d1:59:a0:3f:08: 0e:c2:27:c4:db:2a:4f:a3:71:30:2e:28:21:0f:0c:97:24:6b: 17:61:27:8d:a0:50:21:63:ed:f0:7e:0a:75:62:49:5a:ee:93: 00:14:fe:b8:ec:93:9d:2d:0c:5a:f5:af:a0:c8:a1:75:45:0d: a0:87:d3:ed:69:71:32:3e:75:b9:09:9e:1c:02:dd:75:30:af: 45:6f:e6:ca:dd:f5:d6:f5:b3:f5:db:9d:6e:c5:38:5f:5c:24: 68:d0:9e:b0:8c:65:72:6c:27:d7:79:aa:50:2d:ec:47:15:e3: 8a:21:4c:8f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICALAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTc1MEIxMTAvBgNVBAUTKDNCODM1ODUzNUJDNjI4NTY0QUY1NkYzMUQ4NzU4NjQ4 RTFEMDQzMDQwHhcNMjYwNTEzMDcxNjU2WhcNMjYwNTIwMDcxNjU2WjAYMRYwFAYD VQQDEw02YTA0MjU2OC04YjdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA29a43u0B1FcsN3sxoK6cSyoQHfjY1nsoJLkV/Hs0wOlCq3z/ZQv5Zku8Q9Mv qpo62GN/u4ld9IiuplIROPe1lVMSEq4Pe34Tv85oxDPaGXMrUCQUvMCkYjeJ2XKz kEbRYrJ3NiySgbTjPJNI6GglI7vY4pP+t/N/4DXwBaNSbgX7lPXhwPFiCFVnRDbw 9DZw1ZL9sytSvpoSfNguG6qFLTHlyYiT8z1GBV3uX7/U9lsfMvmyYk4YoAMhiOQi Ouxrxy72OxXe1j+cS0x7cWj2KYADdcG5CEudk1M+Ub+VPrhWpDjs0CpkfeLmJ6eL L8lmeR25xHbp9cZcym4HTtUAUwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFL8LvE3D lL/z4gPu+BA3jVn0lKmPMB8GA1UdIwQYMBaAFDuDWFNbxihWSvVvMdh1hkjh0EME MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNzUwQi82NEQwNzc0ODQ2 OEMxMUYwODRCNkE1MzlDNEY5QUUwMi9PNE5ZVTF2R0tGWks5Vzh4MkhXR1NPSFFR d1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL080TllVMXZHS0ZaSzlXOHgySFdHU09IUVF3US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NzUwQi82NEQwNzc0ODQ2OEMxMUYwODRCNkE1MzlDNEY5QUUwMi9PNE5ZVTF2R0tG Wks5Vzh4MkhXR1NPSFFRd1EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAFC58ent2R6P17IXxkN6EfMqmskEYJLAxe5GEvR0xUXtEjfsGKNV27E+LccT6 o994/nrgnjuPDCinVI+iTYmoCDfpk+dLzq4ASseAxV1TLbrLjjx9zL91QTa6XNWi KqpwffMM1fkYtxTzh5KM49e3ZrGZWETH5edCUhb0Dv7trMgt02X2sDCZ9MDeddFZ oD8IDsInxNsqT6NxMC4oIQ8MlyRrF2EnjaBQIWPt8H4KdWJJWu6TABT+uOyTnS0M WvWvoMihdUUNoIfT7WlxMj51uQmeHALddTCvRW/myt311vWz9dudbsU4X1wkaNCe sIxlcmwn13mqUC3sRxXjiiFMjw== -----END CERTIFICATE-----Generated at Wed May 13 12:27:12 2026 by rpki-client