$ rpki-client -vvf rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.mft File: 2DuT4x6TmTfYyxX-Ocpebo_q-ps.mft (raw, json) Hash identifier: xklz3CaVLC49VRxOltTbAD4QHYeI6G2ALqrWG50SQrA= Subject key identifier: F8:D7:E2:4B:6A:1F:2A:E2:31:5D:48:E5:2F:A0:C3:7F:21:12:92:66 Authority key identifier: D8:3B:93:E3:1E:93:99:37:D8:CB:15:FE:39:CA:5E:6E:8F:EA:FA:9B Certificate issuer: /CN=A9197277/serialNumber=D83B93E31E939937D8CB15FE39CA5E6E8FEAFA9B Certificate serial: 01DE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2DuT4x6TmTfYyxX-Ocpebo_q-ps.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.mft Manifest number: 01B7 Signing time: Wed 13 May 2026 04:02:10 +0000 Manifest this update: Wed 13 May 2026 04:02:09 +0000 Manifest next update: Wed 20 May 2026 04:02:09 +0000 Files and hashes: 1: 2DuT4x6TmTfYyxX-Ocpebo_q-ps.crl (hash: o9XzLhhFoJL1zCwrXxJU4oT5xqchUGzRBv3MJGhRu8o=) 2: 2E31B8FCB57211EEBB68526DC4F9AE02.roa (hash: KgiFn2JDnQbMiTSP1itjG4XdcrHVh1Ue7B/XnPt0zdY=) 3: 2DCC0688B57211EEBB68526DC4F9AE02.roa (hash: NmZuwfe+5iCEAPBHvUzD6sfa6o4YMsY1q8dOeYPy2vQ=) 4: 6F5F30B8B56111EE91C72951C4F9AE02.roa (hash: dah/3/ypf+hEWNUOIDeyyUD/b92XWbsj2RzQqTtYlqg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.crl rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2DuT4x6TmTfYyxX-Ocpebo_q-ps.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 04:02:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 478 (0x1de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197277, serialNumber=D83B93E31E939937D8CB15FE39CA5E6E8FEAFA9B Validity Not Before: May 13 04:02:09 2026 GMT Not After : May 20 04:02:09 2026 GMT Subject: CN=6a03f7c1-c2fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:e1:c9:18:22:2f:f1:e6:70:65:ea:1c:a5:de: d8:18:d6:de:a3:e9:90:9a:43:f6:9b:d8:97:33:b0: 62:b9:d5:8c:fb:c7:a8:a7:4f:19:28:eb:78:b0:ef: 16:87:ff:c9:f0:93:00:61:3d:eb:e6:bb:75:93:87: 7d:dc:1a:ba:45:65:1c:74:e0:ca:59:55:d6:03:d8: ec:9a:28:32:b0:01:68:50:de:75:8d:75:4c:42:36: ff:a7:4a:9e:0d:fb:8f:47:50:d7:8c:55:f0:08:8a: 0f:2c:b1:78:c7:7f:97:3b:7a:f8:d0:b8:2f:e3:c1: d9:22:5d:d3:19:a6:cd:26:7c:7f:ac:8b:af:b0:ce: d8:69:80:0d:2f:21:9e:58:a9:e9:5c:01:79:86:1f: 39:92:3e:e5:35:d2:33:d3:df:d5:89:c9:35:a0:d3: 86:8d:39:5a:23:a4:9e:4c:0b:f6:d0:c3:a9:1d:82: 44:60:09:c9:d1:1d:10:4e:00:ac:6b:ae:75:90:c9: 77:44:40:e0:14:6e:88:62:f0:e7:a6:c5:0a:44:4e: d9:8b:8e:60:46:d0:c0:49:1f:a5:7e:fd:52:6a:57: da:85:9e:dc:9f:83:aa:8f:d8:45:bb:1c:c9:ad:16: 8b:ec:5e:de:7a:20:99:ba:36:74:76:fb:2b:a8:bd: da:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:D7:E2:4B:6A:1F:2A:E2:31:5D:48:E5:2F:A0:C3:7F:21:12:92:66 X509v3 Authority Key Identifier: keyid:D8:3B:93:E3:1E:93:99:37:D8:CB:15:FE:39:CA:5E:6E:8F:EA:FA:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2DuT4x6TmTfYyxX-Ocpebo_q-ps.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:53:dc:04:bc:89:f1:ea:7f:a2:42:df:c1:96:56:d3:fe:a3: d9:80:61:07:92:79:f2:fc:ef:2d:48:66:f0:f9:8c:50:59:1c: b0:4a:e7:40:9d:f8:67:58:2d:de:59:cc:9e:bd:22:06:a3:9c: 77:77:54:a2:d1:53:0e:1e:35:de:2a:31:34:22:1b:6e:42:32: 56:35:f6:18:59:3a:ee:b8:59:85:15:3b:2c:fd:4e:90:aa:ce: bf:48:fd:01:04:37:62:80:4c:b1:2d:e9:b9:ed:4e:62:b8:c9: 3d:d8:bf:9f:fe:ad:b7:bc:1f:80:e0:05:b2:18:25:37:b8:3c: f3:ff:f0:9a:44:73:c6:a6:be:40:b9:f2:2b:d1:bd:3f:0c:24: 5d:7c:ea:4f:ad:84:15:23:5d:e0:06:53:c2:1b:a9:23:5b:a8: 3b:34:a0:f4:65:8e:73:90:fe:db:74:c9:b5:69:1f:10:e3:db: c0:be:3c:e7:3f:41:35:b9:f8:e6:04:65:87:d6:5c:8b:d1:c4: 8d:6d:fe:98:a8:34:49:c7:74:14:38:fd:ee:04:24:c6:f7:4c: 86:eb:fa:06:e9:8d:a2:d4:7b:05:63:37:48:73:74:01:61:1b: 48:0a:42:94:cf:61:f7:ff:eb:02:46:12:07:07:e5:80:e2:20: ff:5d:38:ed -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAd4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcyNzcxMTAvBgNVBAUTKEQ4M0I5M0UzMUU5Mzk5MzdEOENCMTVGRTM5Q0E1RTZF OEZFQUZBOUIwHhcNMjYwNTEzMDQwMjA5WhcNMjYwNTIwMDQwMjA5WjAYMRYwFAYD VQQDEw02YTAzZjdjMS1jMmZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqOHJGCIv8eZwZeocpd7YGNbeo+mQmkP2m9iXM7BiudWM+8eop08ZKOt4sO8W h//J8JMAYT3r5rt1k4d93Bq6RWUcdODKWVXWA9jsmigysAFoUN51jXVMQjb/p0qe DfuPR1DXjFXwCIoPLLF4x3+XO3r40Lgv48HZIl3TGabNJnx/rIuvsM7YaYANLyGe WKnpXAF5hh85kj7lNdIz09/Vick1oNOGjTlaI6SeTAv20MOpHYJEYAnJ0R0QTgCs a651kMl3REDgFG6IYvDnpsUKRE7Zi45gRtDASR+lfv1SalfahZ7cn4Oqj9hFuxzJ rRaL7F7eeiCZujZ0dvsrqL3a8wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPjX4ktq HyriMV1I5S+gw38hEpJmMB8GA1UdIwQYMBaAFNg7k+Mek5k32MsV/jnKXm6P6vqb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzI3Ny80M0E3RTg5NEI1 NjAxMUVFOTExQzVENEZDNEY5QUUwMi8yRHVUNHg2VG1UZll5eFgtT2NwZWJvX3Et cHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJEdVQ0eDZUbVRmWXl4WC1PY3BlYm9fcS1wcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzI3Ny80M0E3RTg5NEI1NjAxMUVFOTExQzVENEZDNEY5QUUwMi8yRHVUNHg2VG1U Zll5eFgtT2NwZWJvX3EtcHMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAZlPcBLyJ8ep/okLfwZZW0/6j2YBhB5J58vzvLUhm8PmMUFkcsErnQJ34Z1gt 3lnMnr0iBqOcd3dUotFTDh413ioxNCIbbkIyVjX2GFk67rhZhRU7LP1OkKrOv0j9 AQQ3YoBMsS3pue1OYrjJPdi/n/6tt7wfgOAFshglN7g88//wmkRzxqa+QLnyK9G9 PwwkXXzqT62EFSNd4AZTwhupI1uoOzSg9GWOc5D+23TJtWkfEOPbwL485z9BNbn4 5gRlh9Zci9HEjW3+mKg0Scd0FDj97gQkxvdMhuv6BumNotR7BWM3SHN0AWEbSApC lM9h9//rAkYSBwflgOIg/1047Q== -----END CERTIFICATE-----Generated at Wed May 13 08:38:33 2026 by rpki-client