$ rpki-client -vvf rpki.apnic.net/member_repository/A917E27F/769D2D6672B711F09C04690DC4F9AE02/2OexX5y5FnTlEn_UBtfZ5xjgirA.mft File: 2OexX5y5FnTlEn_UBtfZ5xjgirA.mft (raw, json) Hash identifier: v8ts84l/5yHzzR8Wf6GPXjIbh+6K+QgnAcLpOAEb0rA= Subject key identifier: 1A:2E:29:AA:8C:06:38:04:9A:34:8F:80:F6:9A:D7:1F:17:17:46:53 Authority key identifier: D8:E7:B1:5F:9C:B9:16:74:E5:12:7F:D4:06:D7:D9:E7:18:E0:8A:B0 Certificate issuer: /CN=A917E27F/serialNumber=D8E7B15F9CB91674E5127FD406D7D9E718E08AB0 Certificate serial: 94 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2OexX5y5FnTlEn_UBtfZ5xjgirA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E27F/769D2D6672B711F09C04690DC4F9AE02/2OexX5y5FnTlEn_UBtfZ5xjgirA.mft Manifest number: 92 Signing time: Mon 11 May 2026 07:39:17 +0000 Manifest this update: Mon 11 May 2026 07:39:17 +0000 Manifest next update: Mon 18 May 2026 07:39:17 +0000 Files and hashes: 1: 2OexX5y5FnTlEn_UBtfZ5xjgirA.crl (hash: f9sEQQ3ZoipybBcLrftV8kHnY0qCglTl7BCgjXs4V9s=) 2: 4197AB74735611F080D68151C4F9AE02.roa (hash: KJWSfbOSquMIKpz7QMLAGjevQAyuwiO61hki9DtvT9A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E27F/769D2D6672B711F09C04690DC4F9AE02/2OexX5y5FnTlEn_UBtfZ5xjgirA.crl rsync://rpki.apnic.net/member_repository/A917E27F/769D2D6672B711F09C04690DC4F9AE02/2OexX5y5FnTlEn_UBtfZ5xjgirA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2OexX5y5FnTlEn_UBtfZ5xjgirA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 07:39:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 148 (0x94) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E27F, serialNumber=D8E7B15F9CB91674E5127FD406D7D9E718E08AB0 Validity Not Before: May 11 07:39:17 2026 GMT Not After : May 18 07:39:17 2026 GMT Subject: CN=6a0187a5-9cd4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:cd:d5:01:20:4f:87:d2:14:1d:d5:17:dd:e3: 9a:3a:40:a3:77:a2:ea:09:d1:e6:68:77:52:ee:a7: 95:b4:b2:df:b7:24:e9:58:21:f6:fd:ba:da:df:f9: 5c:da:62:f4:6c:88:4e:99:00:1f:b9:37:71:49:78: 9b:90:2c:34:b9:fe:9c:7d:f8:c7:09:80:d6:7f:27: 4b:8e:55:c7:8b:8f:5a:7e:1d:f8:4d:b0:c0:1e:44: 10:5c:e8:2b:49:ca:8e:8f:8e:fb:8e:57:7e:bb:d6: fc:2e:46:fc:76:b6:5b:4f:ca:23:97:3a:82:f9:61: 73:d4:a5:1d:3b:69:2b:09:e5:67:a0:71:bf:77:6f: ce:b6:02:a3:11:dc:c1:ef:66:22:d7:46:8d:ed:dd: 7b:f4:0c:7e:98:24:6e:06:0b:e6:80:d7:aa:61:26: 8a:ff:20:5e:81:83:8a:49:d0:9b:58:39:9a:4d:34: f2:28:ff:dd:a8:0f:05:88:f4:12:62:b4:aa:68:d1: 12:19:0f:b9:97:8b:17:a2:eb:f6:36:b1:f4:85:21: 60:92:ac:5d:bb:87:d9:a6:3f:a4:bd:05:fd:24:a7: 40:26:41:6a:32:40:78:9d:65:f3:33:9d:71:3b:2a: b3:ad:9d:79:b5:17:83:94:57:e6:c9:d4:ef:10:44: ac:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:2E:29:AA:8C:06:38:04:9A:34:8F:80:F6:9A:D7:1F:17:17:46:53 X509v3 Authority Key Identifier: keyid:D8:E7:B1:5F:9C:B9:16:74:E5:12:7F:D4:06:D7:D9:E7:18:E0:8A:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E27F/769D2D6672B711F09C04690DC4F9AE02/2OexX5y5FnTlEn_UBtfZ5xjgirA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2OexX5y5FnTlEn_UBtfZ5xjgirA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E27F/769D2D6672B711F09C04690DC4F9AE02/2OexX5y5FnTlEn_UBtfZ5xjgirA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:99:6b:0a:e3:53:b3:fb:bb:d4:da:78:1a:69:5c:2a:7f:99: 17:9f:f9:f2:da:d4:d2:d2:c2:eb:fb:f3:c2:7e:19:93:1c:b6: d2:97:8e:60:cd:04:ee:34:d8:1d:93:6c:87:73:7b:b2:80:d3: c7:de:b1:2f:38:a8:8d:77:9d:c1:a8:3e:99:d5:36:b3:94:0a: 6c:b2:93:99:41:80:d9:33:a4:1a:b7:dc:53:5a:5a:7a:1d:46: 43:f3:64:29:40:0e:d4:ec:76:20:45:a8:15:fc:e1:50:83:fb: b9:41:12:ea:0f:c6:92:a7:c5:91:34:df:b4:8d:87:09:40:e7: d5:52:fb:8a:a1:30:86:1c:2f:21:94:61:78:19:4d:96:b1:99: 15:a3:4b:f0:cf:47:fb:9b:a3:f2:8e:66:0d:57:81:dd:03:a9: fd:4a:45:ff:db:8d:92:10:54:60:f1:5a:97:11:a3:ad:37:65: e8:f2:12:7c:3e:ca:ce:89:88:9c:bf:21:28:18:fd:b5:a8:4e: d8:cd:0b:4c:87:33:24:ff:b8:74:1b:af:cc:2e:46:be:ba:eb: 86:ef:98:58:ac:fa:db:f7:5b:66:dc:76:f0:f8:c6:85:15:0a: 8d:49:28:8c:86:98:95:d2:91:93:79:48:51:4a:48:d0:5b:65: d9:7c:e7:a8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAJQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UyN0YxMTAvBgNVBAUTKEQ4RTdCMTVGOUNCOTE2NzRFNTEyN0ZENDA2RDdEOUU3 MThFMDhBQjAwHhcNMjYwNTExMDczOTE3WhcNMjYwNTE4MDczOTE3WjAYMRYwFAYD VQQDEw02YTAxODdhNS05Y2Q0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0c3VASBPh9IUHdUX3eOaOkCjd6LqCdHmaHdS7qeVtLLftyTpWCH2/bra3/lc 2mL0bIhOmQAfuTdxSXibkCw0uf6cffjHCYDWfydLjlXHi49afh34TbDAHkQQXOgr ScqOj477jld+u9b8Lkb8drZbT8ojlzqC+WFz1KUdO2krCeVnoHG/d2/OtgKjEdzB 72Yi10aN7d179Ax+mCRuBgvmgNeqYSaK/yBegYOKSdCbWDmaTTTyKP/dqA8FiPQS YrSqaNESGQ+5l4sXouv2NrH0hSFgkqxdu4fZpj+kvQX9JKdAJkFqMkB4nWXzM51x OyqzrZ15tReDlFfmydTvEESsLwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBouKaqM BjgEmjSPgPaa1x8XF0ZTMB8GA1UdIwQYMBaAFNjnsV+cuRZ05RJ/1AbX2ecY4Iqw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTI3Ri83NjlEMkQ2Njcy QjcxMUYwOUMwNDY5MERDNEY5QUUwMi8yT2V4WDV5NUZuVGxFbl9VQnRmWjV4amdp ckEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJPZXhYNXk1Rm5UbEVuX1VCdGZaNXhqZ2lyQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTI3Ri83NjlEMkQ2NjcyQjcxMUYwOUMwNDY5MERDNEY5QUUwMi8yT2V4WDV5NUZu VGxFbl9VQnRmWjV4amdpckEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAmZlrCuNTs/u71Np4GmlcKn+ZF5/58trU0tLC6/vzwn4Zkxy20peOYM0E7jTY HZNsh3N7soDTx96xLziojXedwag+mdU2s5QKbLKTmUGA2TOkGrfcU1paeh1GQ/Nk KUAO1Ox2IEWoFfzhUIP7uUES6g/GkqfFkTTftI2HCUDn1VL7iqEwhhwvIZRheBlN lrGZFaNL8M9H+5uj8o5mDVeB3QOp/UpF/9uNkhBUYPFalxGjrTdl6PISfD7KzomI nL8hKBj9tahO2M0LTIczJP+4dBuvzC5Gvrrrhu+YWKz62/dbZtx28PjGhRUKjUko jIaYldKRk3lIUUpI0Ftl2XznqA== -----END CERTIFICATE-----Generated at Wed May 13 06:52:05 2026 by rpki-client