$ rpki-client -vvf rpki.apnic.net/member_repository/A9128DE9/D0049F861BD511EA80CBCF36C4F9AE02/RiOppNLqhemPtaEaDSywgDiHjw8.mft File: RiOppNLqhemPtaEaDSywgDiHjw8.mft (raw, json) Hash identifier: VxLHU9m4YTJDPGm4UaPLYmOaRTUJlEUQA2z4rZ38Z/w= Subject key identifier: 69:3C:F8:CB:5A:47:FD:58:50:A1:0C:74:67:E8:E0:CC:2E:74:AC:77 Authority key identifier: 46:23:A9:A4:D2:EA:85:E9:8F:B5:A1:1A:0D:2C:B0:80:38:87:8F:0F Certificate issuer: /CN=A9128DE9/serialNumber=4623A9A4D2EA85E98FB5A11A0D2CB08038878F0F Certificate serial: 0C8C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RiOppNLqhemPtaEaDSywgDiHjw8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128DE9/D0049F861BD511EA80CBCF36C4F9AE02/RiOppNLqhemPtaEaDSywgDiHjw8.mft Manifest number: 0C83 Signing time: Tue 12 May 2026 18:38:49 +0000 Manifest this update: Tue 12 May 2026 18:38:48 +0000 Manifest next update: Tue 19 May 2026 18:38:48 +0000 Files and hashes: 1: RiOppNLqhemPtaEaDSywgDiHjw8.crl (hash: Pe+d+V42edg6NKUH/ri8eJiteJQoyWjKaCANOQWGSqw=) 2: 75E6DD481BDA11EAB3F45D44C4F9AE02.roa (hash: n9Crm/X8BIyWrbtx9XSuVfzuzzUyJa39Yk0aZo9vy/0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128DE9/D0049F861BD511EA80CBCF36C4F9AE02/RiOppNLqhemPtaEaDSywgDiHjw8.crl rsync://rpki.apnic.net/member_repository/A9128DE9/D0049F861BD511EA80CBCF36C4F9AE02/RiOppNLqhemPtaEaDSywgDiHjw8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RiOppNLqhemPtaEaDSywgDiHjw8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 18:38:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3212 (0xc8c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128DE9, serialNumber=4623A9A4D2EA85E98FB5A11A0D2CB08038878F0F Validity Not Before: May 12 18:38:48 2026 GMT Not After : May 19 18:38:48 2026 GMT Subject: CN=6a0373b8-54c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:45:cc:4a:7d:7f:10:dc:34:8f:e7:cf:b6:ec: 47:e0:5a:45:55:41:bb:43:86:67:c4:db:8e:7d:81: 22:db:25:4d:09:82:71:a8:ee:52:23:86:ee:a0:64: d1:82:da:7f:71:29:58:aa:c8:91:1f:55:47:fc:bc: 0b:a9:41:11:a3:1a:1b:0e:a7:71:3e:1a:df:88:f0: 77:93:98:24:2d:09:ed:51:89:4d:e4:07:cb:4b:15: 68:0a:41:14:94:5b:da:f2:ba:42:44:86:af:f8:e0: ac:db:df:20:7d:88:50:f3:2e:63:94:56:5f:7f:98: b3:4b:e6:39:8b:f3:85:d7:71:55:7e:88:7c:cb:e3: 8b:8c:86:f5:6d:ab:34:85:63:72:70:06:ab:de:55: a4:44:91:91:59:33:73:f2:9f:78:df:66:5a:c0:74: 24:c4:9b:8c:5d:ef:6b:55:a2:60:60:ec:08:19:08: 4d:c2:00:69:9f:13:24:4d:15:7c:b1:89:1b:7c:25: 1f:1e:ed:9e:78:0d:9a:af:aa:9d:1f:e0:ce:eb:c4: 3e:5f:0c:da:db:8e:74:51:bb:2c:40:b7:fd:f3:79: de:0a:0e:11:c4:d4:d4:d6:86:de:3f:02:81:35:f5: b7:b0:30:74:29:45:fd:e1:0a:c2:ed:4a:26:bb:69: e2:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:3C:F8:CB:5A:47:FD:58:50:A1:0C:74:67:E8:E0:CC:2E:74:AC:77 X509v3 Authority Key Identifier: keyid:46:23:A9:A4:D2:EA:85:E9:8F:B5:A1:1A:0D:2C:B0:80:38:87:8F:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128DE9/D0049F861BD511EA80CBCF36C4F9AE02/RiOppNLqhemPtaEaDSywgDiHjw8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RiOppNLqhemPtaEaDSywgDiHjw8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128DE9/D0049F861BD511EA80CBCF36C4F9AE02/RiOppNLqhemPtaEaDSywgDiHjw8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:97:22:bf:1f:c4:95:a0:a0:2b:ef:57:2b:69:51:60:58:e5: b5:3c:05:ed:12:67:64:e4:5d:cd:b8:c8:5c:79:8b:6d:5a:24: c2:d7:9f:09:6e:3c:ad:1a:0d:4d:3e:df:e8:a6:86:59:71:72: aa:c6:a8:0d:bf:b8:80:d9:4d:ab:bf:ed:8e:fc:3f:4e:67:56: 89:ea:27:7b:08:4e:75:fc:c2:2e:51:75:4f:0f:22:b6:b9:67: 2e:49:0e:32:a1:21:c8:28:be:59:af:1d:3b:5d:e8:dd:d8:40: 11:97:81:cc:1e:77:01:81:ee:1a:5c:6d:99:89:2f:82:52:73: 72:55:39:95:64:de:7e:12:b4:33:a0:e8:80:dc:3e:c0:41:db: f0:8b:d5:b7:40:5d:e5:44:b8:9e:d4:25:08:2a:65:6e:7c:2f: 10:bf:62:b3:26:aa:ab:23:1b:66:52:d1:2d:47:53:52:98:20: b4:72:e3:13:9e:3a:33:1e:59:ff:57:55:72:1a:45:9e:96:fb: 47:26:27:af:2e:31:87:2d:5b:10:25:3c:2a:ad:d0:4d:72:8e: 6d:d3:e8:3e:87:84:50:00:e5:d3:70:2f:73:ca:07:bc:85:8c: fa:03:1c:06:c2:57:ae:3c:b3:90:92:31:fd:8b:2c:56:d9:97: 89:51:0a:14 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDIwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjhERTkxMTAvBgNVBAUTKDQ2MjNBOUE0RDJFQTg1RTk4RkI1QTExQTBEMkNCMDgw Mzg4NzhGMEYwHhcNMjYwNTEyMTgzODQ4WhcNMjYwNTE5MTgzODQ4WjAYMRYwFAYD VQQDEw02YTAzNzNiOC01NGM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmkXMSn1/ENw0j+fPtuxH4FpFVUG7Q4ZnxNuOfYEi2yVNCYJxqO5SI4buoGTR gtp/cSlYqsiRH1VH/LwLqUERoxobDqdxPhrfiPB3k5gkLQntUYlN5AfLSxVoCkEU lFva8rpCRIav+OCs298gfYhQ8y5jlFZff5izS+Y5i/OF13FVfoh8y+OLjIb1bas0 hWNycAar3lWkRJGRWTNz8p9432ZawHQkxJuMXe9rVaJgYOwIGQhNwgBpnxMkTRV8 sYkbfCUfHu2eeA2ar6qdH+DO68Q+Xwza2450UbssQLf983neCg4RxNTU1obePwKB NfW3sDB0KUX94QrC7Uomu2ni7QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGk8+Mta R/1YUKEMdGfo4MwudKx3MB8GA1UdIwQYMBaAFEYjqaTS6oXpj7WhGg0ssIA4h48P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOERFOS9EMDA0OUY4NjFC RDUxMUVBODBDQkNGMzZDNEY5QUUwMi9SaU9wcE5McWhlbVB0YUVhRFN5d2dEaUhq dzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1JpT3BwTkxxaGVtUHRhRWFEU3l3Z0RpSGp3OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OERFOS9EMDA0OUY4NjFCRDUxMUVBODBDQkNGMzZDNEY5QUUwMi9SaU9wcE5McWhl bVB0YUVhRFN5d2dEaUhqdzgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAAZcivx/ElaCgK+9XK2lRYFjltTwF7RJnZORdzbjIXHmLbVokwtefCW48rRoN TT7f6KaGWXFyqsaoDb+4gNlNq7/tjvw/TmdWieonewhOdfzCLlF1Tw8itrlnLkkO MqEhyCi+Wa8dO13o3dhAEZeBzB53AYHuGlxtmYkvglJzclU5lWTefhK0M6DogNw+ wEHb8IvVt0Bd5US4ntQlCCplbnwvEL9isyaqqyMbZlLRLUdTUpggtHLjE546Mx5Z /1dVchpFnpb7RyYnry4xhy1bECU8Kq3QTXKObdPoPoeEUADl03Avc8oHvIWM+gMc BsJXrjyzkJIx/YssVtmXiVEKFA== -----END CERTIFICATE-----Generated at Wed May 13 09:02:30 2026 by rpki-client