$ rpki-client -vvf rpki.apnic.net/member_repository/A91673ED/4D8FA20E7D4911EBA165737BC4F9AE02/OTVm9EF4bZWNinkRjo71b8hy5cU.mft File: OTVm9EF4bZWNinkRjo71b8hy5cU.mft (raw, json) Hash identifier: ImYcZP8me7OSuTBDzEsX1dYd1abk18WknqLrBlMWIfI= Subject key identifier: AF:FE:53:6E:A0:C5:E1:EC:C8:1F:F5:BB:33:23:7B:2B:36:F4:34:2D Authority key identifier: 39:35:66:F4:41:78:6D:95:8D:8A:79:11:8E:8E:F5:6F:C8:72:E5:C5 Certificate issuer: /CN=A91673ED/serialNumber=393566F441786D958D8A79118E8EF56FC872E5C5 Certificate serial: 0734 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OTVm9EF4bZWNinkRjo71b8hy5cU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91673ED/4D8FA20E7D4911EBA165737BC4F9AE02/OTVm9EF4bZWNinkRjo71b8hy5cU.mft Manifest number: 0724 Signing time: Tue 12 May 2026 21:56:27 +0000 Manifest this update: Tue 12 May 2026 21:56:27 +0000 Manifest next update: Tue 19 May 2026 21:56:27 +0000 Files and hashes: 1: OTVm9EF4bZWNinkRjo71b8hy5cU.crl (hash: 0RZu9nHSHKDy399SMWK80sNSKkP8xRaKMTh7wgrH6XU=) 2: BDBFFB867D5411EB8CBE5B57C4F9AE02.roa (hash: 411MyxEd4SUlAxnDC0f/mu2L3C2aQqpG7IJEEqtjBBs=) 3: CD1F0EC07D4D11EBAE81AF83C4F9AE02.roa (hash: htsQTL9h1dFStX/S8fGPhD/iB1SnRc1hDGyCcwP3e/U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91673ED/4D8FA20E7D4911EBA165737BC4F9AE02/OTVm9EF4bZWNinkRjo71b8hy5cU.crl rsync://rpki.apnic.net/member_repository/A91673ED/4D8FA20E7D4911EBA165737BC4F9AE02/OTVm9EF4bZWNinkRjo71b8hy5cU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OTVm9EF4bZWNinkRjo71b8hy5cU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 21:56:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1844 (0x734) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91673ED, serialNumber=393566F441786D958D8A79118E8EF56FC872E5C5 Validity Not Before: May 12 21:56:27 2026 GMT Not After : May 19 21:56:27 2026 GMT Subject: CN=6a03a20b-a3de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:8b:4b:e7:26:64:d5:b8:61:65:5f:74:ca:fe: cf:e4:df:9c:a9:ed:0a:39:41:31:a8:a2:18:d5:04: 1e:de:f1:68:ca:0e:6d:ba:da:48:ba:ea:b1:23:ca: 86:05:2d:a2:2c:90:0e:60:0a:4e:8f:44:5e:4c:0f: 5f:c8:e0:3c:c1:18:5b:c1:54:4c:09:c2:c6:14:59: 8b:c4:3f:71:f4:e4:0f:f6:bd:f0:16:6e:f7:b9:4c: e1:87:8d:b9:1a:6c:5c:be:6b:d9:23:1c:78:eb:a3: 8d:b9:f7:1c:d0:41:0e:72:aa:97:c5:4c:c6:5b:99: 2a:1e:26:cb:49:ff:6c:3e:c0:12:c9:89:9a:9e:6c: 7c:29:d4:04:44:97:a5:d5:3e:af:f8:dc:9a:47:29: 9b:c8:f0:3a:8b:05:dc:54:26:49:67:94:da:d4:b8: 3a:54:ec:1e:95:72:72:f7:54:e3:43:55:84:c3:a9: 71:dd:86:ed:a5:94:18:45:91:9c:cc:27:e3:9a:ee: 0a:69:7c:95:71:89:8f:42:a3:d9:2c:21:84:44:ac: b5:43:58:4f:d8:96:15:d7:74:20:c7:7a:34:1f:94: 00:c5:b2:8e:ef:41:78:47:83:e4:17:37:20:35:97: 40:cd:0f:90:f0:d3:66:92:73:99:b1:1b:03:78:df: 58:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:FE:53:6E:A0:C5:E1:EC:C8:1F:F5:BB:33:23:7B:2B:36:F4:34:2D X509v3 Authority Key Identifier: keyid:39:35:66:F4:41:78:6D:95:8D:8A:79:11:8E:8E:F5:6F:C8:72:E5:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91673ED/4D8FA20E7D4911EBA165737BC4F9AE02/OTVm9EF4bZWNinkRjo71b8hy5cU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OTVm9EF4bZWNinkRjo71b8hy5cU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91673ED/4D8FA20E7D4911EBA165737BC4F9AE02/OTVm9EF4bZWNinkRjo71b8hy5cU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:e1:af:61:4f:6e:1e:69:ba:cf:1b:c1:24:c8:c7:28:e4:59: 3e:4f:fb:ab:26:5f:19:3f:7b:3f:a8:7c:ec:e4:7e:f4:02:e5: bd:36:9b:3b:02:86:c2:6e:9b:91:14:28:f5:5a:be:ab:38:fd: 21:b5:38:a9:81:80:93:89:83:53:e7:fe:f4:db:b0:6d:60:bb: 54:15:66:25:01:0c:53:33:e9:ac:d3:9d:82:5d:11:42:17:18: f2:4b:ac:87:c7:74:e6:df:31:67:52:5b:35:b5:e4:6a:4e:99: 26:23:e4:76:e9:32:f7:5f:84:33:64:b4:35:a6:40:30:dd:34: 1b:4f:82:0f:ed:c8:ac:49:4a:d8:33:ec:32:40:ad:d4:35:37: c7:bf:30:19:16:4e:20:cd:0d:94:32:b6:da:19:90:b9:88:2a: ba:5b:d4:6c:de:19:66:5f:65:8d:a6:93:c0:b7:15:87:ea:ca: 40:f5:e7:e4:68:0d:9f:bf:23:d2:f1:3e:df:fa:1f:47:a1:ef: 1a:40:4a:9a:8f:1c:31:4a:29:f6:93:ca:aa:70:81:00:d3:6d: 43:e4:2f:bc:2b:e0:71:9a:41:be:10:d0:b6:8f:ba:16:7e:c9: d5:97:f6:28:89:2e:b7:7f:14:16:5e:d8:1f:c7:e5:15:39:08: a1:96:f4:16 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBzQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjczRUQxMTAvBgNVBAUTKDM5MzU2NkY0NDE3ODZEOTU4RDhBNzkxMThFOEVGNTZG Qzg3MkU1QzUwHhcNMjYwNTEyMjE1NjI3WhcNMjYwNTE5MjE1NjI3WjAYMRYwFAYD VQQDEw02YTAzYTIwYi1hM2RlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnItL5yZk1bhhZV90yv7P5N+cqe0KOUExqKIY1QQe3vFoyg5tutpIuuqxI8qG BS2iLJAOYApOj0ReTA9fyOA8wRhbwVRMCcLGFFmLxD9x9OQP9r3wFm73uUzhh425 GmxcvmvZIxx466ONufcc0EEOcqqXxUzGW5kqHibLSf9sPsASyYmanmx8KdQERJel 1T6v+NyaRymbyPA6iwXcVCZJZ5Ta1Lg6VOwelXJy91TjQ1WEw6lx3YbtpZQYRZGc zCfjmu4KaXyVcYmPQqPZLCGERKy1Q1hP2JYV13Qgx3o0H5QAxbKO70F4R4PkFzcg NZdAzQ+Q8NNmknOZsRsDeN9YnQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFK/+U26g xeHsyB/1uzMjeys29DQtMB8GA1UdIwQYMBaAFDk1ZvRBeG2VjYp5EY6O9W/IcuXF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NzNFRC80RDhGQTIwRTdE NDkxMUVCQTE2NTczN0JDNEY5QUUwMi9PVFZtOUVGNGJaV05pbmtSam83MWI4aHk1 Y1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09UVm05RUY0YlpXTmlua1JqbzcxYjhoeTVjVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NzNFRC80RDhGQTIwRTdENDkxMUVCQTE2NTczN0JDNEY5QUUwMi9PVFZtOUVGNGJa V05pbmtSam83MWI4aHk1Y1UubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAm+GvYU9uHmm6zxvBJMjHKORZPk/7qyZfGT97P6h87OR+9ALlvTabOwKGwm6b kRQo9Vq+qzj9IbU4qYGAk4mDU+f+9NuwbWC7VBVmJQEMUzPprNOdgl0RQhcY8kus h8d05t8xZ1JbNbXkak6ZJiPkduky91+EM2S0NaZAMN00G0+CD+3IrElK2DPsMkCt 1DU3x78wGRZOIM0NlDK22hmQuYgqulvUbN4ZZl9ljaaTwLcVh+rKQPXn5GgNn78j 0vE+3/ofR6HvGkBKmo8cMUop9pPKqnCBANNtQ+QvvCvgcZpBvhDQto+6Fn7J1Zf2 KIkut38UFl7YH8flFTkIoZb0Fg== -----END CERTIFICATE-----Generated at Wed May 13 09:42:22 2026 by rpki-client