$ rpki-client -vvf rpki.apnic.net/member_repository/A918377D/9F7C8152B4B111EEB0ADE352C4F9AE02/ofrVQukeAX0lfVGxT_XDW4lCnvU.mft File: ofrVQukeAX0lfVGxT_XDW4lCnvU.mft (raw, json) Hash identifier: DYn7jfRblHSpU20Woc9Z3aE4Gcp17TCoxaPCy2yGjbg= Subject key identifier: 05:20:20:FC:D8:38:D4:29:BC:FD:47:61:B1:24:E0:6A:04:B0:F5:3E Authority key identifier: A1:FA:D5:42:E9:1E:01:7D:25:7D:51:B1:4F:F5:C3:5B:89:42:9E:F5 Certificate issuer: /CN=A918377D/serialNumber=A1FAD542E91E017D257D51B14FF5C35B89429EF5 Certificate serial: 01B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ofrVQukeAX0lfVGxT_XDW4lCnvU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918377D/9F7C8152B4B111EEB0ADE352C4F9AE02/ofrVQukeAX0lfVGxT_XDW4lCnvU.mft Manifest number: 01B3 Signing time: Mon 11 May 2026 03:59:27 +0000 Manifest this update: Mon 11 May 2026 03:59:26 +0000 Manifest next update: Mon 18 May 2026 03:59:26 +0000 Files and hashes: 1: ofrVQukeAX0lfVGxT_XDW4lCnvU.crl (hash: sGirohPSX8XpTp9CwHfsMF+THWhIEv3ELEn/XFa5Plg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918377D/9F7C8152B4B111EEB0ADE352C4F9AE02/ofrVQukeAX0lfVGxT_XDW4lCnvU.crl rsync://rpki.apnic.net/member_repository/A918377D/9F7C8152B4B111EEB0ADE352C4F9AE02/ofrVQukeAX0lfVGxT_XDW4lCnvU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ofrVQukeAX0lfVGxT_XDW4lCnvU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 03:59:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 435 (0x1b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918377D, serialNumber=A1FAD542E91E017D257D51B14FF5C35B89429EF5 Validity Not Before: May 11 03:59:26 2026 GMT Not After : May 18 03:59:26 2026 GMT Subject: CN=6a01541f-e169 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:fd:d8:cb:4b:9b:3d:5e:39:77:66:b5:b5:48: d8:3a:65:d2:c9:25:77:90:f6:91:1c:b6:17:55:21: d0:6d:dd:3a:50:8d:ac:6f:b9:58:a8:92:ca:68:8d: c3:28:7f:00:28:82:7d:ce:a5:e4:1f:a1:57:3a:80: e1:d7:3a:ea:55:cc:eb:33:c2:01:84:5a:47:e0:08: 78:5d:d3:8f:0b:05:f4:6d:1b:d8:f4:c0:b7:e6:12: ee:8d:40:02:3a:e2:49:4c:97:81:65:53:86:05:fd: 44:96:17:1a:df:ed:35:59:66:98:e5:32:c1:1e:be: 14:d6:72:4c:1b:fb:73:de:32:72:74:5a:33:e3:1d: 14:cd:7f:16:51:fd:da:e7:91:56:ee:d6:26:e9:29: f4:36:68:90:57:bb:d4:b5:5d:c3:d7:12:7e:9b:b7: bd:9d:63:0c:90:eb:5f:3b:ec:0c:3d:ba:f8:72:0b: e3:94:7a:27:81:4f:5a:d5:dc:01:6d:01:c2:73:02: 3b:f2:c1:3f:1c:34:1e:6c:bf:0c:79:31:a4:3b:c7: 91:3d:e1:df:01:23:ee:39:2a:c3:05:bb:e7:ef:a8: b0:e6:2b:c8:54:d6:b7:eb:23:48:12:2b:3b:49:2e: 07:c8:e0:a1:fa:6f:5e:96:65:74:62:7b:7f:e2:e2: e5:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:20:20:FC:D8:38:D4:29:BC:FD:47:61:B1:24:E0:6A:04:B0:F5:3E X509v3 Authority Key Identifier: keyid:A1:FA:D5:42:E9:1E:01:7D:25:7D:51:B1:4F:F5:C3:5B:89:42:9E:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918377D/9F7C8152B4B111EEB0ADE352C4F9AE02/ofrVQukeAX0lfVGxT_XDW4lCnvU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ofrVQukeAX0lfVGxT_XDW4lCnvU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918377D/9F7C8152B4B111EEB0ADE352C4F9AE02/ofrVQukeAX0lfVGxT_XDW4lCnvU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:73:d1:cb:e7:5b:e5:78:0b:01:f6:23:c7:3d:83:25:5d:ca: ce:eb:6b:4a:c1:30:b6:c5:39:e0:84:d1:66:ab:93:db:9f:11: c4:41:a2:d0:13:9f:ae:95:68:a2:47:4d:53:9c:12:06:39:63: 2f:86:3a:01:8c:36:f4:47:d7:87:51:a7:63:1a:59:f1:77:70: 22:ef:f3:e6:47:c2:b0:40:19:6e:01:f1:18:a6:3f:1d:a8:98: fa:ee:67:59:17:3b:a7:83:e7:c2:6c:01:66:9e:1b:51:9e:bc: a4:1f:f4:e9:17:21:c8:62:80:ed:00:2d:ac:78:42:08:52:78: 1f:5c:28:35:c1:09:7c:aa:f2:57:8d:01:2e:d7:fe:79:3b:a9: c1:a1:61:f1:7a:00:66:75:83:0d:1f:ab:23:79:63:7e:18:15: 9d:a7:b3:cc:a5:fd:91:ef:5b:b9:2a:e7:d5:bc:31:67:0f:15: 42:c4:c9:df:6c:d6:81:ed:52:5f:e7:d8:4a:7f:d4:57:f4:ec: 3a:9f:bf:37:33:f9:21:f7:05:fe:31:57:76:45:17:61:d5:52: e6:95:70:01:99:0e:8d:8f:42:1e:36:39:61:d4:64:91:0b:4b: b3:05:1e:8c:9e:ce:19:83:7b:91:ad:a0:9b:bd:21:1c:40:05: a0:da:81:d8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAbMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODM3N0QxMTAvBgNVBAUTKEExRkFENTQyRTkxRTAxN0QyNTdENTFCMTRGRjVDMzVC ODk0MjlFRjUwHhcNMjYwNTExMDM1OTI2WhcNMjYwNTE4MDM1OTI2WjAYMRYwFAYD VQQDEw02YTAxNTQxZi1lMTY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApf3Yy0ubPV45d2a1tUjYOmXSySV3kPaRHLYXVSHQbd06UI2sb7lYqJLKaI3D KH8AKIJ9zqXkH6FXOoDh1zrqVczrM8IBhFpH4Ah4XdOPCwX0bRvY9MC35hLujUAC OuJJTJeBZVOGBf1Elhca3+01WWaY5TLBHr4U1nJMG/tz3jJydFoz4x0UzX8WUf3a 55FW7tYm6Sn0NmiQV7vUtV3D1xJ+m7e9nWMMkOtfO+wMPbr4cgvjlHongU9a1dwB bQHCcwI78sE/HDQebL8MeTGkO8eRPeHfASPuOSrDBbvn76iw5ivIVNa36yNIEis7 SS4HyOCh+m9elmV0Ynt/4uLlFwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAUgIPzY ONQpvP1HYbEk4GoEsPU+MB8GA1UdIwQYMBaAFKH61ULpHgF9JX1RsU/1w1uJQp71 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Mzc3RC85RjdDODE1MkI0 QjExMUVFQjBBREUzNTJDNEY5QUUwMi9vZnJWUXVrZUFYMGxmVkd4VF9YRFc0bENu dlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29mclZRdWtlQVgwbGZWR3hUX1hEVzRsQ252VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Mzc3RC85RjdDODE1MkI0QjExMUVFQjBBREUzNTJDNEY5QUUwMi9vZnJWUXVrZUFY MGxmVkd4VF9YRFc0bENudlUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAXXPRy+db5XgLAfYjxz2DJV3KzutrSsEwtsU54ITRZquT258RxEGi0BOfrpVo okdNU5wSBjljL4Y6AYw29EfXh1GnYxpZ8XdwIu/z5kfCsEAZbgHxGKY/HaiY+u5n WRc7p4PnwmwBZp4bUZ68pB/06RchyGKA7QAtrHhCCFJ4H1woNcEJfKryV40BLtf+ eTupwaFh8XoAZnWDDR+rI3ljfhgVnaezzKX9ke9buSrn1bwxZw8VQsTJ32zWge1S X+fYSn/UV/TsOp+/NzP5IfcF/jFXdkUXYdVS5pVwAZkOjY9CHjY5YdRkkQtLswUe jJ7OGYN7ka2gm70hHEAFoNqB2A== -----END CERTIFICATE-----Generated at Wed May 13 00:22:16 2026 by rpki-client