$ rpki-client -vvf rpki.apnic.net/member_repository/A913284A/854C0F5C1D2B11F1B91266B5153D8C67/oQCGP_euS0zjitmLfMw3suVvSQk.mft File: oQCGP_euS0zjitmLfMw3suVvSQk.mft (raw, json) Hash identifier: +TWzNyHMae+OFQdwLHY5bfl5F7xDZ8fE9w/arxLNsys= Subject key identifier: 0F:6C:92:03:73:F8:70:EE:31:36:3B:C6:3A:6C:D3:19:09:77:A8:27 Authority key identifier: A1:00:86:3F:F7:AE:4B:4C:E3:8A:D9:8B:7C:CC:37:B2:E5:6F:49:09 Certificate issuer: /CN=A913284A/serialNumber=A100863FF7AE4B4CE38AD98B7CCC37B2E56F4909 Certificate serial: 2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oQCGP_euS0zjitmLfMw3suVvSQk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913284A/854C0F5C1D2B11F1B91266B5153D8C67/oQCGP_euS0zjitmLfMw3suVvSQk.mft Manifest number: 27 Signing time: Mon 11 May 2026 09:03:12 +0000 Manifest this update: Mon 11 May 2026 09:03:12 +0000 Manifest next update: Mon 18 May 2026 09:03:12 +0000 Files and hashes: 1: oQCGP_euS0zjitmLfMw3suVvSQk.crl (hash: qM8ll3tAx4o/sXnBflf7qao7sEPTV+tCYt29VjI/rrY=) 2: 68869A98493D11F1A62A19BFB5833773.roa (hash: G98XlGylGqD4IWLKPRkQ33JbE0HvP479vwIkVZry/iM=) 3: D1960A28493D11F1A113D1E6B5833773.roa (hash: 3ZGbdg04NB+U1p4ArMrgy7RjHgfQTqsGhjizYBFQoP0=) 4: 9EE84698489A11F1AF98834FB4833773.roa (hash: HyVMau6tP4Gxadmevajmg0fDJUTUHCH9joRR5GgFIHM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913284A/854C0F5C1D2B11F1B91266B5153D8C67/oQCGP_euS0zjitmLfMw3suVvSQk.crl rsync://rpki.apnic.net/member_repository/A913284A/854C0F5C1D2B11F1B91266B5153D8C67/oQCGP_euS0zjitmLfMw3suVvSQk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oQCGP_euS0zjitmLfMw3suVvSQk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 09:03:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44 (0x2c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913284A, serialNumber=A100863FF7AE4B4CE38AD98B7CCC37B2E56F4909 Validity Not Before: May 11 09:03:12 2026 GMT Not After : May 18 09:03:12 2026 GMT Subject: CN=6a019b50-978d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:07:24:42:1b:c5:91:97:4f:b9:63:b1:02:f4: 0c:00:fe:02:0d:85:1d:7e:cb:44:91:96:e3:27:ac: 26:69:c0:6a:76:d5:7b:3a:47:9f:ce:a3:99:e3:cf: 02:5a:b4:9c:5f:71:19:42:b4:2a:b0:0b:78:8d:25: b2:d5:d5:b8:c6:a7:79:d2:f3:53:ae:1d:60:b0:5e: eb:1e:11:00:1a:a7:ac:66:b6:a9:05:cc:2b:7f:05: d1:fc:4c:a4:dc:11:e6:ed:35:72:94:fa:05:40:7f: 0b:12:a2:02:7f:53:fc:8d:43:07:e9:e7:af:24:95: d9:e3:46:7e:87:a6:09:70:ea:78:34:cd:bc:c1:12: 2a:74:bf:0e:84:ff:38:73:3c:43:bd:9e:9f:d4:93: 55:33:5d:6b:ae:b9:cf:56:fd:95:1d:75:11:86:2c: 6d:0c:e7:f8:d3:4a:61:eb:c7:87:ef:84:f4:ca:f5: 6c:64:1c:40:95:43:20:5e:23:43:2e:e4:8d:7e:53: e4:1f:27:6e:67:3b:fe:45:82:0f:ed:70:71:c5:53: b7:85:60:17:b3:17:d3:68:42:a9:f5:9b:5d:40:dc: c5:a3:97:2e:4e:bb:7c:b1:5b:95:1f:66:20:7b:ea: 31:c3:fd:47:b3:34:8e:9a:9e:4b:0d:76:67:c0:3a: ba:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:6C:92:03:73:F8:70:EE:31:36:3B:C6:3A:6C:D3:19:09:77:A8:27 X509v3 Authority Key Identifier: keyid:A1:00:86:3F:F7:AE:4B:4C:E3:8A:D9:8B:7C:CC:37:B2:E5:6F:49:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913284A/854C0F5C1D2B11F1B91266B5153D8C67/oQCGP_euS0zjitmLfMw3suVvSQk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oQCGP_euS0zjitmLfMw3suVvSQk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913284A/854C0F5C1D2B11F1B91266B5153D8C67/oQCGP_euS0zjitmLfMw3suVvSQk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:c2:93:7c:f0:1e:90:7a:9d:dc:f1:78:e4:9e:1b:77:3d:59: f1:15:de:cc:50:c7:de:bd:07:98:c0:56:28:9e:d9:98:b5:33: 92:c7:17:82:88:26:44:4f:38:27:17:df:b8:00:b4:f4:d8:e7: 14:c7:78:3f:90:3f:98:8f:20:34:7f:f6:48:0a:2c:c8:d9:34: eb:b0:83:b0:45:01:d8:8e:a2:ec:71:d9:9f:a6:e3:a1:d0:f2: 28:e2:35:11:fd:fb:4e:71:3b:da:c7:d3:31:65:b5:cd:7f:98: a0:f3:c7:c8:17:a7:65:1f:f3:28:70:4b:ee:82:c2:06:df:41: b8:f8:88:30:40:69:f0:a4:37:76:55:a2:84:62:cc:59:12:dd: d9:b4:e0:1a:8c:ce:4d:ae:98:b2:93:7c:9b:ff:8b:8b:53:f3: 2f:c4:1a:93:89:6d:fc:3a:43:7e:ac:34:3c:40:37:de:b4:0f: 16:24:71:28:4d:64:6f:d8:21:23:a1:09:32:3f:9d:9f:5e:17: 63:b3:cc:b0:1d:b8:a4:79:c7:32:61:cd:7c:94:38:2c:b6:10: dc:aa:67:93:7a:66:65:ad:4b:46:1d:64:76:1b:20:2b:40:35: 82:5f:03:b3:cf:d4:2f:93:9e:54:dc:4f:12:17:60:cf:53:66: 3f:d0:2e:18 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBLDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz Mjg0QTExMC8GA1UEBRMoQTEwMDg2M0ZGN0FFNEI0Q0UzOEFEOThCN0NDQzM3QjJF NTZGNDkwOTAeFw0yNjA1MTEwOTAzMTJaFw0yNjA1MTgwOTAzMTJaMBgxFjAUBgNV BAMTDTZhMDE5YjUwLTk3OGQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC7ByRCG8WRl0+5Y7EC9AwA/gINhR1+y0SRluMnrCZpwGp21Xs6R5/Oo5njzwJa tJxfcRlCtCqwC3iNJbLV1bjGp3nS81OuHWCwXuseEQAap6xmtqkFzCt/BdH8TKTc EebtNXKU+gVAfwsSogJ/U/yNQwfp568kldnjRn6Hpglw6ng0zbzBEip0vw6E/zhz PEO9np/Uk1UzXWuuuc9W/ZUddRGGLG0M5/jTSmHrx4fvhPTK9WxkHECVQyBeI0Mu 5I1+U+QfJ25nO/5Fgg/tcHHFU7eFYBezF9NoQqn1m11A3MWjly5Ou3yxW5UfZiB7 6jHD/UezNI6anksNdmfAOrqfAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUD2ySA3P4 cO4xNjvGOmzTGQl3qCcwHwYDVR0jBBgwFoAUoQCGP/euS0zjitmLfMw3suVvSQkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTMyODRBLzg1NEMwRjVDMUQy QjExRjFCOTEyNjZCNTE1M0Q4QzY3L29RQ0dQX2V1UzB6aml0bUxmTXczc3VWdlNR ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvb1FDR1BfZXVTMHpqaXRtTGZNdzNzdVZ2U1FrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTMy ODRBLzg1NEMwRjVDMUQyQjExRjFCOTEyNjZCNTE1M0Q4QzY3L29RQ0dQX2V1UzB6 aml0bUxmTXczc3VWdlNRay5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQASwpN88B6Qep3c8Xjknht3PVnxFd7MUMfevQeYwFYontmYtTOSxxeCiCZETzgn F9+4ALT02OcUx3g/kD+YjyA0f/ZICizI2TTrsIOwRQHYjqLscdmfpuOh0PIo4jUR /ftOcTvax9MxZbXNf5ig88fIF6dlH/MocEvugsIG30G4+IgwQGnwpDd2VaKEYsxZ Et3ZtOAajM5Nrpiyk3yb/4uLU/MvxBqTiW38OkN+rDQ8QDfetA8WJHEoTWRv2CEj oQkyP52fXhdjs8ywHbikeccyYc18lDgsthDcqmeTemZlrUtGHWR2GyArQDWCXwOz z9Qvk55U3E8SF2DPU2Y/0C4Y -----END CERTIFICATE-----Generated at Wed May 13 10:49:45 2026 by rpki-client