$ rpki-client -vvf rpki.apnic.net/member_repository/A918C158/AE51D802673B11EA99B2E556C4F9AE02/Ok9ILhJcCNuDBRbVGkot8eCqiso.mft File: Ok9ILhJcCNuDBRbVGkot8eCqiso.mft (raw, json) Hash identifier: uc+nwo0en8rcx2liK+RUq5ufWqp1DVIGKAdc2BxxYkE= Subject key identifier: B5:33:95:64:71:08:C5:D4:EA:6E:85:43:50:B2:33:AD:C4:5A:C1:E9 Authority key identifier: 3A:4F:48:2E:12:5C:08:DB:83:05:16:D5:1A:4A:2D:F1:E0:AA:8A:CA Certificate issuer: /CN=A918C158/serialNumber=3A4F482E125C08DB830516D51A4A2DF1E0AA8ACA Certificate serial: 0B0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ok9ILhJcCNuDBRbVGkot8eCqiso.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918C158/AE51D802673B11EA99B2E556C4F9AE02/Ok9ILhJcCNuDBRbVGkot8eCqiso.mft Manifest number: 0B02 Signing time: Tue 12 May 2026 19:24:08 +0000 Manifest this update: Tue 12 May 2026 19:24:08 +0000 Manifest next update: Tue 19 May 2026 19:24:08 +0000 Files and hashes: 1: Ok9ILhJcCNuDBRbVGkot8eCqiso.crl (hash: aYw+81TtG9vwUlLbr9Tferp3OJlZVdV3LvgbgpXrl/w=) 2: F25A6266796A11EB82E0EE24C4F9AE02.roa (hash: gg5YRxm/OG8ParGdDVWKapchKMYooC3n6Om94oqfGGI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918C158/AE51D802673B11EA99B2E556C4F9AE02/Ok9ILhJcCNuDBRbVGkot8eCqiso.crl rsync://rpki.apnic.net/member_repository/A918C158/AE51D802673B11EA99B2E556C4F9AE02/Ok9ILhJcCNuDBRbVGkot8eCqiso.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ok9ILhJcCNuDBRbVGkot8eCqiso.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 19:24:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2826 (0xb0a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918C158, serialNumber=3A4F482E125C08DB830516D51A4A2DF1E0AA8ACA Validity Not Before: May 12 19:24:08 2026 GMT Not After : May 19 19:24:08 2026 GMT Subject: CN=6a037e58-9492 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:86:48:d7:cd:49:4e:f3:d9:22:2f:7a:0f:de:75: 00:0f:ff:fb:34:0b:b9:0e:0f:5a:af:03:70:6f:d2: f9:64:dc:a9:fc:b5:1a:d8:9f:2e:31:8a:28:64:11: 72:b6:b5:13:39:37:33:20:ba:81:28:64:d2:ff:6b: ae:8f:b7:01:f0:d8:18:c2:24:9f:01:57:8f:e8:31: 34:1c:6d:88:2d:e5:53:01:f5:e6:e1:f1:e2:ee:c1: ad:3b:f0:ab:96:7b:41:0c:8c:10:84:eb:33:5b:44: ef:12:5e:c3:bc:41:bb:2d:0b:35:5e:cf:26:70:80: 64:56:48:ee:41:32:ff:d3:d1:30:f1:a6:b1:71:34: 9f:07:57:59:82:ab:0c:ac:27:34:4e:0f:b2:a1:58: ec:ff:52:88:59:8a:b6:bb:27:f6:cc:30:ac:e2:c2: 8e:9c:6f:fa:4c:d0:1e:a2:b0:1a:bc:41:4a:9e:9d: 1f:29:b3:bd:a1:73:5e:5c:7d:2e:90:21:9f:36:05: 31:b4:54:01:c7:fd:72:fc:cf:3f:74:51:cf:00:e2: d8:e9:57:c6:da:fe:65:52:39:f4:19:47:49:08:ef: 62:7e:83:d5:0f:51:d0:65:42:39:17:8c:89:37:27: 64:80:77:ec:68:ad:46:5d:a9:94:5c:95:c2:c5:dc: 8b:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:33:95:64:71:08:C5:D4:EA:6E:85:43:50:B2:33:AD:C4:5A:C1:E9 X509v3 Authority Key Identifier: keyid:3A:4F:48:2E:12:5C:08:DB:83:05:16:D5:1A:4A:2D:F1:E0:AA:8A:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918C158/AE51D802673B11EA99B2E556C4F9AE02/Ok9ILhJcCNuDBRbVGkot8eCqiso.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ok9ILhJcCNuDBRbVGkot8eCqiso.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918C158/AE51D802673B11EA99B2E556C4F9AE02/Ok9ILhJcCNuDBRbVGkot8eCqiso.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:5c:69:32:15:09:07:fa:0e:6e:7e:0f:ca:ff:81:88:eb:b2: 1a:86:5b:79:43:9e:e0:a6:59:cb:f7:b4:2e:e7:bd:62:78:06: ea:05:63:19:48:14:04:25:c0:b8:c3:4c:b0:48:99:eb:1a:37: 6a:97:83:63:43:5f:2e:c9:ee:2a:9b:32:d5:25:0d:fc:7c:e0: cb:d1:ef:3a:c4:70:30:ce:41:d9:e4:42:f5:a8:71:30:f8:e4: 90:83:20:dd:00:de:21:b6:f6:99:3a:ba:2e:13:7a:56:5d:19: 3b:b0:4d:7b:49:eb:14:b1:ca:9e:35:f2:aa:41:2e:7b:e6:b4: 4e:1c:84:2b:8c:15:af:f2:36:b1:5e:47:1a:9b:1b:e0:bd:d9: 67:da:27:c4:5c:a5:c0:2f:35:cd:77:31:76:79:5c:1f:53:f7: 89:66:76:4e:a7:08:2c:df:24:16:5f:7b:28:64:5a:e3:68:f5: 71:23:cb:47:c9:00:8d:d7:5a:61:4c:ab:ea:24:86:d7:00:70: 6e:87:ba:6e:51:51:d0:a2:a4:f4:93:5b:c4:8a:16:65:a4:8a: d6:62:b7:b9:f0:d7:0b:98:8c:d3:29:41:d3:cc:fd:bb:d0:71: 2b:19:8d:05:93:01:e6:43:16:40:ca:2f:2b:2b:2f:41:9b:ec: 33:9e:70:d8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCwowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEMxNTgxMTAvBgNVBAUTKDNBNEY0ODJFMTI1QzA4REI4MzA1MTZENTFBNEEyREYx RTBBQThBQ0EwHhcNMjYwNTEyMTkyNDA4WhcNMjYwNTE5MTkyNDA4WjAYMRYwFAYD VQQDEw02YTAzN2U1OC05NDkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAhkjXzUlO89kiL3oP3nUAD//7NAu5Dg9arwNwb9L5ZNyp/LUa2J8uMYooZBFy trUTOTczILqBKGTS/2uuj7cB8NgYwiSfAVeP6DE0HG2ILeVTAfXm4fHi7sGtO/Cr lntBDIwQhOszW0TvEl7DvEG7LQs1Xs8mcIBkVkjuQTL/09Ew8aaxcTSfB1dZgqsM rCc0Tg+yoVjs/1KIWYq2uyf2zDCs4sKOnG/6TNAeorAavEFKnp0fKbO9oXNeXH0u kCGfNgUxtFQBx/1y/M8/dFHPAOLY6VfG2v5lUjn0GUdJCO9ifoPVD1HQZUI5F4yJ NydkgHfsaK1GXamUXJXCxdyLVwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLUzlWRx CMXU6m6FQ1CyM63EWsHpMB8GA1UdIwQYMBaAFDpPSC4SXAjbgwUW1RpKLfHgqorK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QzE1OC9BRTUxRDgwMjY3 M0IxMUVBOTlCMkU1NTZDNEY5QUUwMi9PazlJTGhKY0NOdURCUmJWR2tvdDhlQ3Fp c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09rOUlMaEpjQ051REJSYlZHa290OGVDcWlzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QzE1OC9BRTUxRDgwMjY3M0IxMUVBOTlCMkU1NTZDNEY5QUUwMi9PazlJTGhKY0NO dURCUmJWR2tvdDhlQ3Fpc28ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAB1xpMhUJB/oObn4Pyv+BiOuyGoZbeUOe4KZZy/e0Lue9YngG6gVjGUgUBCXA uMNMsEiZ6xo3apeDY0NfLsnuKpsy1SUN/Hzgy9HvOsRwMM5B2eRC9ahxMPjkkIMg 3QDeIbb2mTq6LhN6Vl0ZO7BNe0nrFLHKnjXyqkEue+a0ThyEK4wVr/I2sV5HGpsb 4L3ZZ9onxFylwC81zXcxdnlcH1P3iWZ2TqcILN8kFl97KGRa42j1cSPLR8kAjdda YUyr6iSG1wBwboe6blFR0KKk9JNbxIoWZaSK1mK3ufDXC5iM0ylB08z9u9BxKxmN BZMB5kMWQMovKysvQZvsM55w2A== -----END CERTIFICATE-----Generated at Wed May 13 06:46:28 2026 by rpki-client