$ rpki-client -vvf rpki.apnic.net/member_repository/A91454F3/1EF7866805DC11EA9743BA5FC4F9AE02/bOklSpy_oHBCJDc13OT79-VGEWY.mft File: bOklSpy_oHBCJDc13OT79-VGEWY.mft (raw, json) Hash identifier: 7MsPVB6R3AXxKBbPijdlszV7U8vYI0TEixqPh73NwFc= Subject key identifier: 10:21:B4:4A:45:F0:11:88:80:7B:10:C2:D2:AF:D3:50:62:12:02:E0 Authority key identifier: 6C:E9:25:4A:9C:BF:A0:70:42:24:37:35:DC:E4:FB:F7:E5:46:11:66 Certificate issuer: /CN=A91454F3/serialNumber=6CE9254A9CBFA07042243735DCE4FBF7E5461166 Certificate serial: 0CFB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bOklSpy_oHBCJDc13OT79-VGEWY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91454F3/1EF7866805DC11EA9743BA5FC4F9AE02/bOklSpy_oHBCJDc13OT79-VGEWY.mft Manifest number: 0CF2 Signing time: Tue 12 May 2026 18:17:42 +0000 Manifest this update: Tue 12 May 2026 18:17:42 +0000 Manifest next update: Tue 19 May 2026 18:17:42 +0000 Files and hashes: 1: bOklSpy_oHBCJDc13OT79-VGEWY.crl (hash: k70520sdb0MV9FYq8LcWXKQhTaD7Hn6Pe8/mgjTzw8s=) 2: 9DDA09EC05DC11EA9B6B0560C4F9AE02.roa (hash: jOASJy08cQtiHT2anaDk0d4CR9FN0kGkmWrO2dstaFQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91454F3/1EF7866805DC11EA9743BA5FC4F9AE02/bOklSpy_oHBCJDc13OT79-VGEWY.crl rsync://rpki.apnic.net/member_repository/A91454F3/1EF7866805DC11EA9743BA5FC4F9AE02/bOklSpy_oHBCJDc13OT79-VGEWY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bOklSpy_oHBCJDc13OT79-VGEWY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 18:17:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3323 (0xcfb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91454F3, serialNumber=6CE9254A9CBFA07042243735DCE4FBF7E5461166 Validity Not Before: May 12 18:17:42 2026 GMT Not After : May 19 18:17:42 2026 GMT Subject: CN=6a036ec6-a828 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:90:a2:8d:d9:47:5d:e0:27:06:27:f6:01:83: 5c:66:f7:43:cf:ac:cb:b0:d2:91:ea:b9:06:83:1e: 69:d7:b8:68:4f:ae:ac:f4:e1:05:87:35:cd:eb:40: 8e:b3:d2:aa:c6:b2:da:b2:75:b9:f0:ec:62:e2:ed: c0:bc:44:d5:0b:59:cc:34:e1:e8:3e:ba:c0:69:67: 16:20:09:a2:92:ec:36:08:47:9f:b1:05:42:6d:f3: f0:78:db:4b:0c:50:c7:3d:c2:bf:ac:79:02:f7:c6: 22:cb:de:15:3b:84:6c:9b:5e:29:70:46:8e:e3:cf: 71:96:24:c6:db:5e:a5:64:2f:fa:ad:ba:8b:ab:1a: 1c:b3:a4:56:30:3f:ce:c4:3e:49:c1:c3:53:ac:fe: 09:18:af:ac:32:2e:9f:9e:25:8d:58:5b:97:a9:f2: 80:69:7a:91:cb:85:09:52:c4:78:9a:9d:31:91:60: 7d:c0:bb:65:9d:91:2a:61:3b:d8:da:17:e1:3d:66: 01:8d:2e:a2:f2:f2:db:36:e7:10:a1:79:d2:80:4e: 71:3e:bc:45:2e:98:f1:9e:9d:68:d2:b8:d3:00:c1: 9a:fb:90:e3:09:ad:90:b7:f6:b8:b9:3a:f6:54:29: 74:7b:58:17:88:b0:50:ac:4b:91:18:84:61:73:76: aa:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:21:B4:4A:45:F0:11:88:80:7B:10:C2:D2:AF:D3:50:62:12:02:E0 X509v3 Authority Key Identifier: keyid:6C:E9:25:4A:9C:BF:A0:70:42:24:37:35:DC:E4:FB:F7:E5:46:11:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91454F3/1EF7866805DC11EA9743BA5FC4F9AE02/bOklSpy_oHBCJDc13OT79-VGEWY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bOklSpy_oHBCJDc13OT79-VGEWY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91454F3/1EF7866805DC11EA9743BA5FC4F9AE02/bOklSpy_oHBCJDc13OT79-VGEWY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:01:b1:e7:1a:2f:05:92:62:c4:1c:44:63:77:51:a1:4f:a1: 78:ff:95:ae:45:3e:d5:cb:24:d8:b4:8b:89:fc:7c:0b:73:86: 5e:61:ab:48:95:78:01:90:7c:3c:e4:41:34:c7:a4:0a:dd:f8: e3:a7:4d:09:4b:f3:d6:0c:c0:c1:ec:19:f8:a3:51:de:61:ff: 2b:a2:0b:0a:3f:22:01:94:3a:db:48:c9:5d:76:fd:fa:79:43: 56:78:10:9b:a0:48:79:29:7a:6f:c8:68:8e:eb:24:8c:70:63: 9e:7a:e7:58:77:1d:4e:71:9d:34:e6:b8:c5:69:02:9a:f0:d9: eb:af:66:79:57:f2:81:02:32:ac:e0:ae:3c:c6:91:1f:bd:bd: 00:56:22:b2:95:1e:3a:d1:8c:f9:9a:21:8d:a9:7d:2e:b6:08: c7:33:21:74:1c:f9:af:ef:53:db:cb:f5:71:ca:36:cd:a9:44: 10:e5:5d:c3:3b:3d:78:ef:7b:8f:11:cd:ac:96:f9:dc:d9:14: 3c:ce:d4:35:36:87:4c:7a:a8:72:f4:26:1a:e8:dc:3c:20:68: b5:e7:39:2d:05:48:a2:26:61:0c:76:14:1c:49:46:b9:ca:5f: 31:16:23:5d:fc:44:fc:d4:a7:91:92:5d:fc:7f:ac:24:15:2f: ab:74:5c:a0 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDPswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDU0RjMxMTAvBgNVBAUTKDZDRTkyNTRBOUNCRkEwNzA0MjI0MzczNURDRTRGQkY3 RTU0NjExNjYwHhcNMjYwNTEyMTgxNzQyWhcNMjYwNTE5MTgxNzQyWjAYMRYwFAYD VQQDEw02YTAzNmVjNi1hODI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqZCijdlHXeAnBif2AYNcZvdDz6zLsNKR6rkGgx5p17hoT66s9OEFhzXN60CO s9KqxrLasnW58Oxi4u3AvETVC1nMNOHoPrrAaWcWIAmikuw2CEefsQVCbfPweNtL DFDHPcK/rHkC98Yiy94VO4Rsm14pcEaO489xliTG216lZC/6rbqLqxocs6RWMD/O xD5JwcNTrP4JGK+sMi6fniWNWFuXqfKAaXqRy4UJUsR4mp0xkWB9wLtlnZEqYTvY 2hfhPWYBjS6i8vLbNucQoXnSgE5xPrxFLpjxnp1o0rjTAMGa+5DjCa2Qt/a4uTr2 VCl0e1gXiLBQrEuRGIRhc3aqOwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBAhtEpF 8BGIgHsQwtKv01BiEgLgMB8GA1UdIwQYMBaAFGzpJUqcv6BwQiQ3Ndzk+/flRhFm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NTRGMy8xRUY3ODY2ODA1 REMxMUVBOTc0M0JBNUZDNEY5QUUwMi9iT2tsU3B5X29IQkNKRGMxM09UNzktVkdF V1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JPa2xTcHlfb0hCQ0pEYzEzT1Q3OS1WR0VXWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NTRGMy8xRUY3ODY2ODA1REMxMUVBOTc0M0JBNUZDNEY5QUUwMi9iT2tsU3B5X29I QkNKRGMxM09UNzktVkdFV1kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAPQGx5xovBZJixBxEY3dRoU+heP+VrkU+1csk2LSLifx8C3OGXmGrSJV4AZB8 PORBNMekCt3446dNCUvz1gzAwewZ+KNR3mH/K6ILCj8iAZQ620jJXXb9+nlDVngQ m6BIeSl6b8hojuskjHBjnnrnWHcdTnGdNOa4xWkCmvDZ669meVfygQIyrOCuPMaR H729AFYispUeOtGM+Zohjal9LrYIxzMhdBz5r+9T28v1cco2zalEEOVdwzs9eO97 jxHNrJb53NkUPM7UNTaHTHqocvQmGujcPCBotec5LQVIoiZhDHYUHElGucpfMRYj XfxE/NSnkZJd/H+sJBUvq3RcoA== -----END CERTIFICATE-----Generated at Wed May 13 05:07:24 2026 by rpki-client