$ rpki-client -vvf rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.mft File: oKMiStDIKz-aYvNHrKP5RdsI8rA.mft (raw, json) Hash identifier: 0MQqUSSJ2lieGmQz4LrCJ1LTxo4yIXBd6cFRV9BJP1M= Subject key identifier: 23:5B:40:60:CE:B3:31:9F:89:F2:BE:80:56:39:16:34:E8:D8:63:3E Authority key identifier: A0:A3:22:4A:D0:C8:2B:3F:9A:62:F3:47:AC:A3:F9:45:DB:08:F2:B0 Certificate issuer: /CN=A91B80BD/serialNumber=A0A3224AD0C82B3F9A62F347ACA3F945DB08F2B0 Certificate serial: 313A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKMiStDIKz-aYvNHrKP5RdsI8rA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.mft Manifest number: 30DF Signing time: Tue 12 May 2026 15:27:22 +0000 Manifest this update: Tue 12 May 2026 15:27:21 +0000 Manifest next update: Tue 19 May 2026 15:27:21 +0000 Files and hashes: 1: oKMiStDIKz-aYvNHrKP5RdsI8rA.crl (hash: /luuB/Ug6n27bKLN5V8qa0sDJQuIY/amBDNK4UNwUu8=) 2: 583C1F6854F611E79DF7E643C4F9AE02.roa (hash: M6QpwrrsCEg6uS0XBq+MJGbdVX3IkfmFKf0zFhM8Oec=) 3: 915E51B8F3BE11ED8B9B1450C4F9AE02.roa (hash: jY72D9kM4ZreV4v43viz3/fEA3o/FMiAaeH7fUiUeSs=) 4: 4C72E61CB0EC11E5A6934B42C4F9AE02.roa (hash: ot76bD4Fe2eGS+QL+OB7ESET88ZeiKoIEOY/MT5QHrY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.crl rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKMiStDIKz-aYvNHrKP5RdsI8rA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 15:27:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12602 (0x313a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B80BD, serialNumber=A0A3224AD0C82B3F9A62F347ACA3F945DB08F2B0 Validity Not Before: May 12 15:27:21 2026 GMT Not After : May 19 15:27:21 2026 GMT Subject: CN=6a0346da-67d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:73:62:a7:e3:da:e7:d1:84:08:9c:2c:68:03: 43:e5:4b:52:82:8d:4b:26:f1:fd:5b:52:f1:07:48: f6:c8:cd:07:d4:5b:d8:5c:f0:4f:3b:18:2c:3b:f9: 7e:e9:fc:87:30:74:67:9f:41:6e:89:a5:67:6f:41: a7:4d:35:ac:b8:1f:14:a6:fd:6c:83:41:1e:1d:c8: b6:99:db:86:4a:30:90:73:10:8a:13:ca:28:17:25: c0:fb:f1:35:68:54:a0:6c:36:83:77:4f:a6:36:9b: fc:61:71:35:1e:d7:f7:ec:89:95:bb:3a:33:14:65: 6e:be:f9:b1:7b:4d:c2:6b:35:e1:8b:62:8d:33:dd: 3e:d0:6a:ea:56:cb:60:11:a4:8e:a5:cc:f1:ee:54: a2:fa:c7:dc:c8:94:cb:c9:35:27:30:0e:21:fe:c6: 33:17:2f:bb:22:a7:dc:e9:42:3d:7f:d0:54:c7:78: a2:2e:4b:be:1b:91:77:87:ed:2d:27:03:2a:48:7a: 44:52:0e:e9:53:cd:93:a2:db:a6:2f:d5:71:d6:58: 63:03:4b:c9:5b:1c:0c:2c:f8:19:87:89:a3:a6:d8: f9:c5:1d:05:88:6a:5f:b4:f6:71:0d:84:7c:5e:99: b1:a4:08:c4:1a:6d:7a:ba:20:ba:0f:00:09:d5:94: 67:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:5B:40:60:CE:B3:31:9F:89:F2:BE:80:56:39:16:34:E8:D8:63:3E X509v3 Authority Key Identifier: keyid:A0:A3:22:4A:D0:C8:2B:3F:9A:62:F3:47:AC:A3:F9:45:DB:08:F2:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKMiStDIKz-aYvNHrKP5RdsI8rA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:4e:59:f0:4c:3b:a0:e7:ac:b8:4d:64:85:6f:3b:99:fe:5f: ed:41:2c:a0:8a:1a:d3:96:ad:62:c4:f7:45:b6:b7:ca:8f:be: 8a:93:11:28:3a:a4:36:0e:b0:5c:bf:3e:40:80:0d:1f:c6:54: 6a:f0:c3:88:54:8b:a2:0d:c8:88:d6:09:72:13:4f:41:d3:e6: 03:e8:e6:9e:ca:00:c9:6a:97:37:a0:ed:80:f0:cc:99:89:d8: e4:97:f7:6b:62:7c:eb:af:e0:d4:90:0f:78:45:fe:2e:6d:c7: f6:70:8e:aa:b0:dc:65:aa:1a:19:7d:11:eb:d3:43:3e:17:c1: f4:19:80:5a:41:32:df:4d:53:77:b2:bc:de:a3:80:2c:0d:da: d5:db:ff:80:d7:b3:5b:7a:ae:09:46:6a:dc:62:5b:15:8b:aa: 0f:6d:ed:13:89:cf:f3:7d:82:dd:79:8e:ae:e0:83:14:7a:0d: f0:a6:d6:42:da:62:65:0f:50:70:ca:62:9e:8e:48:b8:1a:c5: 2a:92:c1:d6:11:90:33:e5:9b:b8:4b:fc:f9:66:1d:de:62:79: 3c:07:3b:46:2a:3f:b1:6a:50:fd:ea:e9:01:aa:46:72:1a:c0: 91:08:1e:82:09:ef:74:12:ac:60:b9:0f:7f:05:eb:94:e2:65: 4e:b4:c7:8b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICMTowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjgwQkQxMTAvBgNVBAUTKEEwQTMyMjRBRDBDODJCM0Y5QTYyRjM0N0FDQTNGOTQ1 REIwOEYyQjAwHhcNMjYwNTEyMTUyNzIxWhcNMjYwNTE5MTUyNzIxWjAYMRYwFAYD VQQDEw02YTAzNDZkYS02N2QxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw3Nip+Pa59GECJwsaAND5UtSgo1LJvH9W1LxB0j2yM0H1FvYXPBPOxgsO/l+ 6fyHMHRnn0FuiaVnb0GnTTWsuB8Upv1sg0EeHci2mduGSjCQcxCKE8ooFyXA+/E1 aFSgbDaDd0+mNpv8YXE1Htf37ImVuzozFGVuvvmxe03CazXhi2KNM90+0GrqVstg EaSOpczx7lSi+sfcyJTLyTUnMA4h/sYzFy+7Iqfc6UI9f9BUx3iiLku+G5F3h+0t JwMqSHpEUg7pU82TotumL9Vx1lhjA0vJWxwMLPgZh4mjptj5xR0FiGpftPZxDYR8 XpmxpAjEGm16uiC6DwAJ1ZRndwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCNbQGDO szGfifK+gFY5FjTo2GM+MB8GA1UdIwQYMBaAFKCjIkrQyCs/mmLzR6yj+UXbCPKw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCODBCRC9CNUE2MzZEOEZF NUMxMUUyQUVDMDQyNTA1OTExRUEzMi9vS01pU3RESUt6LWFZdk5IcktQNVJkc0k4 ckEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29LTWlTdERJS3otYVl2TkhyS1A1UmRzSThyQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC ODBCRC9CNUE2MzZEOEZFNUMxMUUyQUVDMDQyNTA1OTExRUEzMi9vS01pU3RESUt6 LWFZdk5IcktQNVJkc0k4ckEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAhU5Z8Ew7oOesuE1khW87mf5f7UEsoIoa05atYsT3Rba3yo++ipMRKDqkNg6w XL8+QIANH8ZUavDDiFSLog3IiNYJchNPQdPmA+jmnsoAyWqXN6DtgPDMmYnY5Jf3 a2J866/g1JAPeEX+Lm3H9nCOqrDcZaoaGX0R69NDPhfB9BmAWkEy301Td7K83qOA LA3a1dv/gNezW3quCUZq3GJbFYuqD23tE4nP832C3XmOruCDFHoN8KbWQtpiZQ9Q cMpino5IuBrFKpLB1hGQM+WbuEv8+WYd3mJ5PAc7Rio/sWpQ/erpAapGchrAkQge ggnvdBKsYLkPfwXrlOJlTrTHiw== -----END CERTIFICATE-----Generated at Wed May 13 14:06:24 2026 by rpki-client