$ rpki-client -vvf rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.mft File: Okb7D0D2nV4dt10oUfBAwZ9m8iw.mft (raw, json) Hash identifier: FCnd+3tu/IoqJbV03XvscqVYjusxtOaqEZhZi0glP/0= Subject key identifier: 6B:4A:F0:B5:1B:D4:10:43:65:46:F8:CD:D9:8A:20:24:43:D5:A1:BB Authority key identifier: 3A:46:FB:0F:40:F6:9D:5E:1D:B7:5D:28:51:F0:40:C1:9F:66:F2:2C Certificate issuer: /CN=A91ACD4D/serialNumber=3A46FB0F40F69D5E1DB75D2851F040C19F66F22C Certificate serial: 16EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Okb7D0D2nV4dt10oUfBAwZ9m8iw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.mft Manifest number: 16D8 Signing time: Tue 12 May 2026 16:39:33 +0000 Manifest this update: Tue 12 May 2026 16:39:33 +0000 Manifest next update: Tue 19 May 2026 16:39:33 +0000 Files and hashes: 1: Okb7D0D2nV4dt10oUfBAwZ9m8iw.crl (hash: 1B6qIy/wSw4LKTb6Rn8yn7FxYBhsLdnUUjHZJgPdxUE=) 2: 3DE1DBC4D81011EC892E8A79C4F9AE02.roa (hash: axiKuwLSfY8matk7uBsk8eo5tXOq+cX6OWML8EZD+cQ=) 3: 268ECB3ED5BD11E894FFC250C4F9AE02.roa (hash: Z38B7rPVhqG6tcWO8r6+i/l0vZbjlq448NkG06qknRg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.crl rsync://rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Okb7D0D2nV4dt10oUfBAwZ9m8iw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 16:39:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5870 (0x16ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ACD4D, serialNumber=3A46FB0F40F69D5E1DB75D2851F040C19F66F22C Validity Not Before: May 12 16:39:33 2026 GMT Not After : May 19 16:39:33 2026 GMT Subject: CN=6a0357c5-314c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:63:de:f4:1d:f5:34:1a:c4:0d:2e:66:cd:04: 93:cd:a9:00:3a:fa:39:ec:ba:29:7d:64:3e:1b:a8: e4:6e:1d:94:a1:90:6c:ea:27:14:db:c8:bf:ed:ed: cb:66:27:25:9e:3b:f3:af:73:cd:a6:9a:fa:d1:dd: 2c:b3:3d:6a:c3:c4:c6:17:1d:41:8a:5a:93:b5:d4: 6f:4f:8f:68:19:90:f8:cb:20:d0:4f:40:88:2f:6d: d4:4f:1a:a2:47:6c:95:55:7c:f6:0b:5e:d7:fe:c8: 7c:da:a4:f5:6d:4f:69:d3:0e:3a:88:a3:51:1d:dc: 1f:2d:41:50:ac:3a:93:75:4d:30:6f:c1:36:7e:25: 4b:7f:88:0e:45:be:6e:b2:b1:69:5e:3b:a7:81:0b: 21:d1:2e:9f:0a:05:54:f6:11:1b:37:98:d4:a6:a0: 15:60:8b:a1:d9:49:51:8f:7c:e3:92:2a:3a:34:82: 20:9d:1a:a8:c2:5d:45:88:07:41:9d:d2:bd:89:6c: f3:58:b0:5e:ff:3e:eb:cc:05:dc:e8:e2:9b:61:68: c2:5f:1a:e0:d6:ae:91:9b:d9:96:3c:bf:2f:7e:52: 72:72:ff:70:b8:ad:38:3c:54:97:90:2a:02:0c:30: a9:54:d7:33:66:99:28:89:5e:f2:c7:2e:95:f8:67: 1e:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:4A:F0:B5:1B:D4:10:43:65:46:F8:CD:D9:8A:20:24:43:D5:A1:BB X509v3 Authority Key Identifier: keyid:3A:46:FB:0F:40:F6:9D:5E:1D:B7:5D:28:51:F0:40:C1:9F:66:F2:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Okb7D0D2nV4dt10oUfBAwZ9m8iw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:e1:33:63:e5:cc:c9:b7:7b:8a:53:e0:77:eb:ac:21:e5:4f: 27:68:9b:62:77:c4:a0:71:ee:9e:c5:73:f1:3f:7e:d6:27:8b: 34:41:1b:46:33:dd:6a:7c:76:a0:72:f1:1b:2b:19:92:72:a4: 80:bf:04:2e:d3:84:34:5b:d6:4f:5c:77:97:8f:a5:c5:32:b9: 07:71:c9:48:0b:d6:e6:6a:5a:ad:9c:05:0e:b5:27:e8:a6:28: 3f:85:47:a8:b7:c2:b6:71:0c:f3:4c:3e:11:d9:f6:66:20:d4: 62:f2:a0:fd:1e:7d:1e:4d:27:f4:08:8e:22:f1:7b:c3:fc:91: 86:de:b0:14:ab:dc:0a:93:d8:35:5b:7d:42:b0:71:52:5e:bf: 9c:c8:2b:19:46:73:16:3e:1f:22:37:20:a7:b1:88:5b:6e:29: 03:5c:e6:4d:21:d6:16:79:93:5a:a1:ff:34:0b:fb:97:1a:b4: 45:35:7e:1e:09:d4:de:f3:c3:0e:b6:ef:1c:6f:a4:f2:b3:91: 94:11:2e:13:44:e4:2d:1b:1d:a0:06:c4:d4:a6:f5:8c:47:1d: 01:a8:d0:54:3f:0e:8e:eb:05:bb:42:45:37:f0:a0:dc:27:c2: db:22:87:08:77:6c:e3:9c:b6:e5:3f:76:1e:90:99:83:11:26: c8:fa:1a:6a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICFu4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUNENEQxMTAvBgNVBAUTKDNBNDZGQjBGNDBGNjlENUUxREI3NUQyODUxRjA0MEMx OUY2NkYyMkMwHhcNMjYwNTEyMTYzOTMzWhcNMjYwNTE5MTYzOTMzWjAYMRYwFAYD VQQDEw02YTAzNTdjNS0zMTRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzWPe9B31NBrEDS5mzQSTzakAOvo57LopfWQ+G6jkbh2UoZBs6icU28i/7e3L Ziclnjvzr3PNppr60d0ssz1qw8TGFx1BilqTtdRvT49oGZD4yyDQT0CIL23UTxqi R2yVVXz2C17X/sh82qT1bU9p0w46iKNRHdwfLUFQrDqTdU0wb8E2fiVLf4gORb5u srFpXjungQsh0S6fCgVU9hEbN5jUpqAVYIuh2UlRj3zjkio6NIIgnRqowl1FiAdB ndK9iWzzWLBe/z7rzAXc6OKbYWjCXxrg1q6Rm9mWPL8vflJycv9wuK04PFSXkCoC DDCpVNczZpkoiV7yxy6V+GcefQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGtK8LUb 1BBDZUb4zdmKICRD1aG7MB8GA1UdIwQYMBaAFDpG+w9A9p1eHbddKFHwQMGfZvIs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQ0Q0RC8xMzdEMDBENDE2 MEUxMUU4ODUyQzQzN0VDNEY5QUUwMi9Pa2I3RDBEMm5WNGR0MTBvVWZCQXdaOW04 aXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09rYjdEMEQyblY0ZHQxMG9VZkJBd1o5bThpdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Q0Q0RC8xMzdEMDBENDE2MEUxMUU4ODUyQzQzN0VDNEY5QUUwMi9Pa2I3RDBEMm5W NGR0MTBvVWZCQXdaOW04aXcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAi+EzY+XMybd7ilPgd+usIeVPJ2ibYnfEoHHunsVz8T9+1ieLNEEbRjPdanx2 oHLxGysZknKkgL8ELtOENFvWT1x3l4+lxTK5B3HJSAvW5mparZwFDrUn6KYoP4VH qLfCtnEM80w+Edn2ZiDUYvKg/R59Hk0n9AiOIvF7w/yRht6wFKvcCpPYNVt9QrBx Ul6/nMgrGUZzFj4fIjcgp7GIW24pA1zmTSHWFnmTWqH/NAv7lxq0RTV+HgnU3vPD DrbvHG+k8rORlBEuE0TkLRsdoAbE1Kb1jEcdAajQVD8OjusFu0JFN/Cg3CfC2yKH CHds45y25T92HpCZgxEmyPoaag== -----END CERTIFICATE-----Generated at Wed May 13 07:30:01 2026 by rpki-client