$ rpki-client -vvf rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.mft File: _ONoVUVgesO8wzQNA5shaIJxJ74.mft (raw, json) Hash identifier: PQJ07g15S8JiYl1J+9jmdnnrcIbxWp6WREjMJyN68qk= Subject key identifier: 69:9F:2D:2C:83:5A:49:BF:5C:E7:B2:BF:67:60:3A:29:E8:C1:03:6A Authority key identifier: FC:E3:68:55:45:60:7A:C3:BC:C3:34:0D:03:9B:21:68:82:71:27:BE Certificate issuer: /CN=A9198D02/serialNumber=FCE3685545607AC3BCC3340D039B2168827127BE Certificate serial: 08F6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_ONoVUVgesO8wzQNA5shaIJxJ74.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.mft Manifest number: 08D7 Signing time: Tue 12 May 2026 20:27:44 +0000 Manifest this update: Tue 12 May 2026 20:27:44 +0000 Manifest next update: Tue 19 May 2026 20:27:44 +0000 Files and hashes: 1: _ONoVUVgesO8wzQNA5shaIJxJ74.crl (hash: mH/PKn3Ztxwkt1Pjte1mbMk/rmK1VGNBSzuFo5UNNJ8=) 2: 3BF0A4D868F511ECAB15DE18C4F9AE02.roa (hash: d8G/TfpNpL6HX37ocKvM5TsVlVjVR76JD7mZYT1iKdk=) 3: 51A7E3C28EB711EBB8A7B01DC4F9AE02.roa (hash: +lxeSugWEuY86E4w4UGBy7QvT+6uw0dBO3CLwKjhb3k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.crl rsync://rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_ONoVUVgesO8wzQNA5shaIJxJ74.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 20:27:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2294 (0x8f6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198D02, serialNumber=FCE3685545607AC3BCC3340D039B2168827127BE Validity Not Before: May 12 20:27:44 2026 GMT Not After : May 19 20:27:44 2026 GMT Subject: CN=6a038d40-bd93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:3d:fc:a0:34:71:af:5d:80:61:25:20:12:85: 8b:fb:2a:41:f0:e2:8a:8d:37:fe:ca:d5:b1:41:4e: 31:d8:ce:76:d4:7f:25:d1:c5:dd:ab:e8:5e:2d:e2: 93:fd:63:38:4c:d6:3d:c7:5c:62:18:ea:f9:cf:da: dd:fc:9f:84:10:61:a1:7c:e7:a6:4b:bf:14:0c:8c: 13:1b:04:9d:4a:00:8d:e3:45:d5:24:b4:62:75:a1: 25:52:b5:7a:6c:a8:e2:fc:c7:b5:a5:2d:3b:03:7d: 50:3d:d3:d3:33:8e:15:1a:b5:bd:df:63:2a:64:c6: 30:fa:c2:73:db:fa:41:74:d2:4d:71:c9:b5:f4:a7: 2e:11:65:7c:a7:8c:bc:b3:3d:c3:f6:7a:da:61:82: 6f:76:ec:32:97:b4:9b:a3:58:39:a9:e2:80:82:18: d8:90:37:6d:74:b9:32:ce:dc:5a:58:bd:2f:18:ac: bd:d9:84:9e:8a:fc:16:7d:07:89:18:cb:03:80:64: d6:63:72:54:d3:77:c6:94:d0:95:c2:32:3f:16:74: 0c:1d:0c:d8:57:6a:8b:80:20:23:b1:90:07:3f:a2: 23:c5:d6:49:60:0f:57:c0:d5:76:f3:b5:20:9d:b4: 86:be:26:8e:6d:70:75:0d:cd:34:96:34:15:33:92: 82:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:9F:2D:2C:83:5A:49:BF:5C:E7:B2:BF:67:60:3A:29:E8:C1:03:6A X509v3 Authority Key Identifier: keyid:FC:E3:68:55:45:60:7A:C3:BC:C3:34:0D:03:9B:21:68:82:71:27:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_ONoVUVgesO8wzQNA5shaIJxJ74.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:24:47:1f:f7:69:a0:2b:ea:f5:45:ea:da:dd:a2:ac:63:ca: 54:d7:16:64:db:03:45:d9:5e:ef:68:94:a5:ae:68:a6:29:ae: 00:23:12:18:db:6b:b4:58:55:d2:60:25:33:5b:c4:3d:7e:4e: cd:47:dd:60:bb:c0:12:12:a7:13:7f:11:ae:56:88:2c:8d:89: a0:1e:35:8f:9f:8d:bf:0c:96:5e:75:d4:ed:a1:b7:d6:c4:2c: b0:11:4e:c3:e5:bc:a1:9b:dd:38:6c:99:78:82:82:90:b8:6d: 31:65:f9:5a:69:27:8f:c6:e6:f9:4a:a3:42:55:27:54:96:31: b7:78:62:c1:16:a5:96:5f:e3:2d:18:e8:8e:b6:2d:bc:b2:6f: d2:dc:43:6e:57:eb:26:38:1b:60:e1:af:94:10:32:0b:b7:26: a5:87:c1:1c:1f:5a:a4:b3:e9:cd:97:3b:f1:83:3c:57:84:7e: b8:31:11:aa:0f:77:3e:70:69:b1:9d:5b:13:ca:a8:37:f6:bc: e6:1b:f7:56:2a:b6:cd:84:ff:0a:75:c4:96:c3:97:5b:13:78: 5b:a7:44:2f:46:7d:72:47:3f:5d:40:47:7a:6d:ca:51:b5:0e: 44:8a:dd:ed:46:c1:68:aa:d2:fd:1a:04:72:89:f5:c1:69:14: 99:62:f8:a8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCPYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OThEMDIxMTAvBgNVBAUTKEZDRTM2ODU1NDU2MDdBQzNCQ0MzMzQwRDAzOUIyMTY4 ODI3MTI3QkUwHhcNMjYwNTEyMjAyNzQ0WhcNMjYwNTE5MjAyNzQ0WjAYMRYwFAYD VQQDEw02YTAzOGQ0MC1iZDkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlj38oDRxr12AYSUgEoWL+ypB8OKKjTf+ytWxQU4x2M521H8l0cXdq+heLeKT /WM4TNY9x1xiGOr5z9rd/J+EEGGhfOemS78UDIwTGwSdSgCN40XVJLRidaElUrV6 bKji/Me1pS07A31QPdPTM44VGrW932MqZMYw+sJz2/pBdNJNccm19KcuEWV8p4y8 sz3D9nraYYJvduwyl7Sbo1g5qeKAghjYkDdtdLkyztxaWL0vGKy92YSeivwWfQeJ GMsDgGTWY3JU03fGlNCVwjI/FnQMHQzYV2qLgCAjsZAHP6IjxdZJYA9XwNV287Ug nbSGviaObXB1Dc00ljQVM5KCqQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGmfLSyD Wkm/XOeyv2dgOinowQNqMB8GA1UdIwQYMBaAFPzjaFVFYHrDvMM0DQObIWiCcSe+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OEQwMi8yOEE1MDZGQUQ4 NjcxMUVBOEI1MTYyMERDNEY5QUUwMi9fT05vVlVWZ2VzTzh3elFOQTVzaGFJSnhK NzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19PTm9WVVZnZXNPOHd6UU5BNXNoYUlKeEo3NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OEQwMi8yOEE1MDZGQUQ4NjcxMUVBOEI1MTYyMERDNEY5QUUwMi9fT05vVlVWZ2Vz Tzh3elFOQTVzaGFJSnhKNzQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAjSRHH/dpoCvq9UXq2t2irGPKVNcWZNsDRdle72iUpa5opimuACMSGNtrtFhV 0mAlM1vEPX5OzUfdYLvAEhKnE38RrlaILI2JoB41j5+NvwyWXnXU7aG31sQssBFO w+W8oZvdOGyZeIKCkLhtMWX5Wmknj8bm+UqjQlUnVJYxt3hiwRalll/jLRjojrYt vLJv0txDblfrJjgbYOGvlBAyC7cmpYfBHB9apLPpzZc78YM8V4R+uDERqg93PnBp sZ1bE8qoN/a85hv3Viq2zYT/CnXElsOXWxN4W6dEL0Z9ckc/XUBHem3KUbUORIrd 7UbBaKrS/RoEcon1wWkUmWL4qA== -----END CERTIFICATE-----Generated at Wed May 13 11:49:16 2026 by rpki-client