$ rpki-client -vvf rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/OtjA2kteE0OjhFRLZEARiFJg_wc.mft File: OtjA2kteE0OjhFRLZEARiFJg_wc.mft (raw, json) Hash identifier: fWMAOpYJHXQcLHpSO0jaCs1nnA6kk3exS2iz7KhZj2U= Subject key identifier: 2C:02:8C:EE:BC:A2:22:CD:94:AB:77:B4:F5:5F:FC:6A:90:2E:E9:B0 Authority key identifier: 3A:D8:C0:DA:4B:5E:13:43:A3:84:54:4B:64:40:11:88:52:60:FF:07 Certificate issuer: /CN=A916022F/serialNumber=3AD8C0DA4B5E1343A384544B644011885260FF07 Certificate serial: 13D3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OtjA2kteE0OjhFRLZEARiFJg_wc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/OtjA2kteE0OjhFRLZEARiFJg_wc.mft Manifest number: 253F Signing time: Tue 12 May 2026 16:57:03 +0000 Manifest this update: Tue 12 May 2026 16:57:03 +0000 Manifest next update: Tue 19 May 2026 16:57:03 +0000 Files and hashes: 1: OtjA2kteE0OjhFRLZEARiFJg_wc.crl (hash: NRgCzLUc2H80rCyvD3HzwL2bRWQ21nlADPiepeJLWXg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/OtjA2kteE0OjhFRLZEARiFJg_wc.crl rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/OtjA2kteE0OjhFRLZEARiFJg_wc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OtjA2kteE0OjhFRLZEARiFJg_wc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 16:57:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5075 (0x13d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916022F, serialNumber=3AD8C0DA4B5E1343A384544B644011885260FF07 Validity Not Before: May 12 16:57:03 2026 GMT Not After : May 19 16:57:03 2026 GMT Subject: CN=6a035bdf-05e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:43:28:ce:3e:7f:b6:02:23:fe:ce:d7:c7:4b: 52:ed:63:64:fd:2e:c7:b6:a8:93:7d:fb:c5:83:b3: 3d:74:5e:e5:02:94:0d:51:60:68:56:b7:0f:6a:81: 78:4a:7e:e5:d7:6b:3a:95:95:2d:6c:a3:38:5f:14: 6d:24:c9:37:04:0a:6c:87:85:ca:0e:2b:f1:1d:41: 2a:25:f1:39:98:40:cc:22:60:04:cd:f4:65:7b:61: 73:20:be:df:d9:4f:ca:5a:fe:7f:d2:a4:27:75:c8: d7:be:07:72:e6:6d:0b:ed:30:6b:a9:44:18:f8:79: a2:30:92:14:be:cc:3c:4a:5c:99:ae:6d:09:aa:3a: 25:b0:54:44:9b:1b:2c:37:c7:8b:ca:2e:d1:8a:f3: 02:96:7d:dd:8d:71:7c:3b:6e:ac:f3:83:52:0d:a3: 7d:c3:5c:4a:77:83:84:5f:7f:9e:e2:cf:18:a3:c8: cb:79:f2:5e:31:f9:37:af:91:ea:6e:47:df:c4:a9: 19:63:c0:0d:b8:5e:ad:fb:9e:ad:a2:1f:a7:76:2e: 6f:5b:13:3e:6f:d5:00:17:fd:d5:9b:a6:af:b9:e8: 7f:4a:45:72:a0:da:ae:03:f7:3d:72:b3:4d:06:ad: b5:c9:88:43:3b:c2:6f:1f:f7:13:36:45:be:71:ab: 3c:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:02:8C:EE:BC:A2:22:CD:94:AB:77:B4:F5:5F:FC:6A:90:2E:E9:B0 X509v3 Authority Key Identifier: keyid:3A:D8:C0:DA:4B:5E:13:43:A3:84:54:4B:64:40:11:88:52:60:FF:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/OtjA2kteE0OjhFRLZEARiFJg_wc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OtjA2kteE0OjhFRLZEARiFJg_wc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/OtjA2kteE0OjhFRLZEARiFJg_wc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:36:2a:c1:02:98:25:57:cc:6e:00:a2:99:29:0a:79:23:92: ea:57:e5:60:f5:c6:3b:85:7d:e1:7f:3d:1c:99:e8:19:e1:e2: b0:63:71:70:32:96:f0:0d:10:cc:d5:16:16:53:2e:55:b2:b1: 3a:d8:3b:5a:0a:5c:a5:d5:e9:35:62:5e:4c:0c:46:1f:a4:c2: 44:06:93:1b:8d:d6:30:d1:ed:ac:d0:3a:13:1c:6b:e9:e4:8d: c6:fa:0c:c3:01:da:28:30:37:80:0c:3d:db:72:62:de:f0:58: 95:3e:8a:46:42:e9:4e:d4:22:16:1a:dc:26:45:3a:55:4d:25: d6:f0:99:f6:7a:b6:af:4b:d1:e7:95:9a:1f:da:40:cd:4d:54: b0:f2:a7:18:96:31:96:05:a4:01:01:2e:86:55:65:79:17:1f: 62:86:67:6e:35:82:bd:5d:7a:86:8a:ad:6a:07:a3:96:b5:2d: 7b:50:43:26:2d:51:c2:84:4c:e6:05:0f:2e:eb:e3:d3:9b:1a: 6d:a0:7a:0f:93:73:01:b7:57:67:b6:97:9e:5e:9b:68:61:e6: 3e:f3:7f:d4:88:3b:0d:bf:0b:1f:2f:51:77:a6:67:75:0e:28: 12:ac:e2:ed:c6:ad:df:ce:a4:82:2c:1f:af:28:9c:df:92:d0: d2:0e:5a:3e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICE9MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjAyMkYxMTAvBgNVBAUTKDNBRDhDMERBNEI1RTEzNDNBMzg0NTQ0QjY0NDAxMTg4 NTI2MEZGMDcwHhcNMjYwNTEyMTY1NzAzWhcNMjYwNTE5MTY1NzAzWjAYMRYwFAYD VQQDEw02YTAzNWJkZi0wNWU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA60Mozj5/tgIj/s7Xx0tS7WNk/S7HtqiTffvFg7M9dF7lApQNUWBoVrcPaoF4 Sn7l12s6lZUtbKM4XxRtJMk3BApsh4XKDivxHUEqJfE5mEDMImAEzfRle2FzIL7f 2U/KWv5/0qQndcjXvgdy5m0L7TBrqUQY+HmiMJIUvsw8SlyZrm0JqjolsFREmxss N8eLyi7RivMCln3djXF8O26s84NSDaN9w1xKd4OEX3+e4s8Yo8jLefJeMfk3r5Hq bkffxKkZY8ANuF6t+56toh+ndi5vWxM+b9UAF/3Vm6avueh/SkVyoNquA/c9crNN Bq21yYhDO8JvH/cTNkW+cas8DwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCwCjO68 oiLNlKt3tPVf/GqQLumwMB8GA1UdIwQYMBaAFDrYwNpLXhNDo4RUS2RAEYhSYP8H MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDIyRi85RUM3QUZCNEFB N0QxMUU4ODYxNDQ1MjRDNEY5QUUwMi9PdGpBMmt0ZUUwT2poRlJMWkVBUmlGSmdf d2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL090akEya3RlRTBPamhGUkxaRUFSaUZKZ193Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDIyRi85RUM3QUZCNEFBN0QxMUU4ODYxNDQ1MjRDNEY5QUUwMi9PdGpBMmt0ZUUw T2poRlJMWkVBUmlGSmdfd2MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAWDYqwQKYJVfMbgCimSkKeSOS6lflYPXGO4V94X89HJnoGeHisGNxcDKW8A0Q zNUWFlMuVbKxOtg7WgpcpdXpNWJeTAxGH6TCRAaTG43WMNHtrNA6Exxr6eSNxvoM wwHaKDA3gAw923Ji3vBYlT6KRkLpTtQiFhrcJkU6VU0l1vCZ9nq2r0vR55WaH9pA zU1UsPKnGJYxlgWkAQEuhlVleRcfYoZnbjWCvV16hoqtagejlrUte1BDJi1RwoRM 5gUPLuvj05sabaB6D5NzAbdXZ7aXnl6baGHmPvN/1Ig7Db8LHy9Rd6ZndQ4oEqzi 7cat386kgiwfryic35LQ0g5aPg== -----END CERTIFICATE-----Generated at Wed May 13 05:21:35 2026 by rpki-client