$ rpki-client -vvf rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.mft File: OxaIpfe3JKr754IKLGPZey6o5SI.mft (raw, json) Hash identifier: 9jD5EPejy2tA+wGl4qZhlNuhkTEivMWumDZJqAwrjhw= Subject key identifier: FB:8F:74:0D:89:6B:D6:12:F2:3D:22:9C:1B:49:3B:7A:98:EB:C5:7D Authority key identifier: 3B:16:88:A5:F7:B7:24:AA:FB:E7:82:0A:2C:63:D9:7B:2E:A8:E5:22 Certificate issuer: /CN=A91772FA/serialNumber=3B1688A5F7B724AAFBE7820A2C63D97B2EA8E522 Certificate serial: 03D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OxaIpfe3JKr754IKLGPZey6o5SI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.mft Manifest number: 03CE Signing time: Wed 13 May 2026 00:43:09 +0000 Manifest this update: Wed 13 May 2026 00:43:09 +0000 Manifest next update: Wed 20 May 2026 00:43:09 +0000 Files and hashes: 1: OxaIpfe3JKr754IKLGPZey6o5SI.crl (hash: 9eD5TfPOt4QooRA7eB7iqmD97Zvczf65Xs6DVgDSD5c=) 2: EF8CB49CD78F11EC91680D49C4F9AE02.roa (hash: M2pvQ304fe+2dKpg+pZivkjVtCyNRoxTwvcWntgc488=) 3: 2D613294CD7611EC83259862C4F9AE02.roa (hash: 6eoyUSOvVZ6K062G+XqAjy4oqU5ot0onLxElkewTe48=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.crl rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OxaIpfe3JKr754IKLGPZey6o5SI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 00:43:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 984 (0x3d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91772FA, serialNumber=3B1688A5F7B724AAFBE7820A2C63D97B2EA8E522 Validity Not Before: May 13 00:43:09 2026 GMT Not After : May 20 00:43:09 2026 GMT Subject: CN=6a03c91d-f77e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:0a:b4:85:ca:b4:1b:3a:91:c8:57:fa:62:37: 26:5d:16:3c:b4:93:86:e8:d8:87:35:33:f6:8a:5e: 0f:f2:4d:19:5e:ec:8f:53:9c:d1:96:19:47:14:f2: 8a:96:bf:7d:d7:ae:18:c3:33:65:6c:b1:b5:a1:00: b8:b8:ed:e4:d9:41:f3:7a:d2:61:1c:af:c8:38:d6: b0:c6:98:db:b8:b1:6f:6a:a6:c2:55:a6:2d:0f:85: 6d:6d:a1:17:95:4e:a5:92:e1:1d:2b:0d:ae:22:76: c1:68:ca:a0:97:41:4f:62:35:10:d2:b2:02:7e:01: 8e:91:80:88:74:2f:d5:57:10:da:b8:1c:fe:77:12: 63:77:e1:5c:7d:89:da:ff:6d:87:d7:66:72:e1:95: 19:0e:1f:18:9b:06:f4:c2:5e:37:e4:5a:aa:b4:34: 72:24:0f:b8:ed:d6:f6:83:3f:0d:86:b7:82:a9:4c: bf:58:99:a6:ba:dd:5d:c5:41:76:3b:d0:89:2c:20: 3d:0a:dd:9e:a4:5c:3f:f0:07:8a:96:7d:ac:9c:ed: 46:ba:56:93:43:d1:02:3d:e0:8f:6f:c9:8f:87:8e: ce:1a:a3:34:37:85:5a:db:0c:5d:52:1f:1c:9e:21: 56:a6:d5:96:cd:3a:d2:d9:df:22:a6:9f:71:ab:24: 34:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:8F:74:0D:89:6B:D6:12:F2:3D:22:9C:1B:49:3B:7A:98:EB:C5:7D X509v3 Authority Key Identifier: keyid:3B:16:88:A5:F7:B7:24:AA:FB:E7:82:0A:2C:63:D9:7B:2E:A8:E5:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OxaIpfe3JKr754IKLGPZey6o5SI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:5e:06:60:aa:b6:19:f9:d3:69:74:87:b5:78:a0:f9:27:57: 9d:13:f1:f7:71:1f:90:69:38:b9:9f:d7:cb:8b:68:0f:96:c9: 0a:e8:39:da:58:cb:79:4d:54:b4:8e:8a:fa:38:4f:7b:7d:28: 31:75:62:3f:6c:8b:0b:28:86:ec:db:47:e1:07:c5:ee:e1:00: ec:f8:96:f0:09:86:9d:6c:99:06:4d:40:9b:fd:0a:32:2e:b4: 80:3f:72:96:43:9a:ed:af:79:76:72:68:8b:a7:c2:5d:39:9f: 98:75:f6:5f:16:89:7d:c2:a5:81:67:02:3a:fa:f5:4b:71:d1: 89:74:1d:4c:c7:33:82:fa:d0:11:39:37:8a:29:9a:cd:10:9c: c4:77:9f:49:2a:4b:01:a2:37:84:cb:8f:ca:1d:c5:bb:0c:00: 77:e2:25:a3:db:bf:55:bc:4a:c9:ae:bb:ff:3f:a0:23:ef:ac: 86:58:58:95:43:d2:45:5f:26:a0:c5:d3:e8:41:ea:8d:8a:65: 63:56:66:eb:5f:4e:91:03:80:cf:36:76:90:36:c0:94:93:7d: 4d:19:1a:a6:f9:1c:3e:14:0c:24:2d:0d:0d:fe:67:50:ea:c5: 71:9f:46:c0:2f:01:59:97:0e:cc:14:1e:6f:a0:05:56:c4:e6: 51:e3:43:89 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA9gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzcyRkExMTAvBgNVBAUTKDNCMTY4OEE1RjdCNzI0QUFGQkU3ODIwQTJDNjNEOTdC MkVBOEU1MjIwHhcNMjYwNTEzMDA0MzA5WhcNMjYwNTIwMDA0MzA5WjAYMRYwFAYD VQQDEw02YTAzYzkxZC1mNzdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzAq0hcq0GzqRyFf6YjcmXRY8tJOG6NiHNTP2il4P8k0ZXuyPU5zRlhlHFPKK lr99164YwzNlbLG1oQC4uO3k2UHzetJhHK/IONawxpjbuLFvaqbCVaYtD4VtbaEX lU6lkuEdKw2uInbBaMqgl0FPYjUQ0rICfgGOkYCIdC/VVxDauBz+dxJjd+FcfYna /22H12Zy4ZUZDh8Ymwb0wl435FqqtDRyJA+47db2gz8NhreCqUy/WJmmut1dxUF2 O9CJLCA9Ct2epFw/8AeKln2snO1GulaTQ9ECPeCPb8mPh47OGqM0N4Va2wxdUh8c niFWptWWzTrS2d8ipp9xqyQ0IQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPuPdA2J a9YS8j0inBtJO3qY68V9MB8GA1UdIwQYMBaAFDsWiKX3tySq++eCCixj2XsuqOUi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NzJGQS9ENzI0NDU2MkNE NzMxMUVDQTBBQTgwNjFDNEY5QUUwMi9PeGFJcGZlM0pLcjc1NElLTEdQWmV5Nm81 U0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL094YUlwZmUzSktyNzU0SUtMR1BaZXk2bzVTSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NzJGQS9ENzI0NDU2MkNENzMxMUVDQTBBQTgwNjFDNEY5QUUwMi9PeGFJcGZlM0pL cjc1NElLTEdQWmV5Nm81U0kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAZF4GYKq2GfnTaXSHtXig+SdXnRPx93EfkGk4uZ/Xy4toD5bJCug52ljLeU1U tI6K+jhPe30oMXViP2yLCyiG7NtH4QfF7uEA7PiW8AmGnWyZBk1Am/0KMi60gD9y lkOa7a95dnJoi6fCXTmfmHX2XxaJfcKlgWcCOvr1S3HRiXQdTMczgvrQETk3iima zRCcxHefSSpLAaI3hMuPyh3FuwwAd+Ilo9u/VbxKya67/z+gI++shlhYlUPSRV8m oMXT6EHqjYplY1Zm619OkQOAzzZ2kDbAlJN9TRkapvkcPhQMJC0NDf5nUOrFcZ9G wC8BWZcOzBQeb6AFVsTmUeNDiQ== -----END CERTIFICATE-----Generated at Wed May 13 07:50:54 2026 by rpki-client