$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1621/35EDA92ECF0D11EF92F1EC36C4F9AE02/oCcZWkgg89cmSk1X7pqdTCoQySM.mft File: oCcZWkgg89cmSk1X7pqdTCoQySM.mft (raw, json) Hash identifier: 6wPWgzKgxoCDfiOIs3tlLa1Yzpr37fg8pNxc48U1dhQ= Subject key identifier: F6:54:93:46:86:BB:48:D0:D2:DA:97:A9:D1:1D:D2:9B:9D:10:B6:25 Authority key identifier: A0:27:19:5A:48:20:F3:D7:26:4A:4D:57:EE:9A:9D:4C:2A:10:C9:23 Certificate issuer: /CN=A91C1621/serialNumber=A027195A4820F3D7264A4D57EE9A9D4C2A10C923 Certificate serial: 010B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oCcZWkgg89cmSk1X7pqdTCoQySM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1621/35EDA92ECF0D11EF92F1EC36C4F9AE02/oCcZWkgg89cmSk1X7pqdTCoQySM.mft Manifest number: 0104 Signing time: Tue 12 May 2026 14:16:18 +0000 Manifest this update: Tue 12 May 2026 14:16:17 +0000 Manifest next update: Tue 19 May 2026 14:16:17 +0000 Files and hashes: 1: oCcZWkgg89cmSk1X7pqdTCoQySM.crl (hash: WSzZZAn9UBUbtpoys9KqW6ur6Otutx8xyQhQjCWIUm8=) 2: 8AE793B2E9E311F0A43C19FF656F56BC.roa (hash: iLjsYldebmEc4jQ39cKvj356cAs2Ip03tkyos/Cg+/w=) 3: 81E4D4A2053011F09C73001FC4F9AE02.roa (hash: DA85ff4aMzWQg5AImUfIHcT74CRXr+XSDwxZJMl53Eg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1621/35EDA92ECF0D11EF92F1EC36C4F9AE02/oCcZWkgg89cmSk1X7pqdTCoQySM.crl rsync://rpki.apnic.net/member_repository/A91C1621/35EDA92ECF0D11EF92F1EC36C4F9AE02/oCcZWkgg89cmSk1X7pqdTCoQySM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oCcZWkgg89cmSk1X7pqdTCoQySM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 14:16:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 267 (0x10b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1621, serialNumber=A027195A4820F3D7264A4D57EE9A9D4C2A10C923 Validity Not Before: May 12 14:16:17 2026 GMT Not After : May 19 14:16:17 2026 GMT Subject: CN=6a033632-c295 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:11:51:f6:48:ac:c2:d8:15:21:4b:dd:7e:4f: 77:34:09:0c:dd:1d:cb:bd:fa:4b:94:e4:42:9c:9e: 32:d1:47:04:53:8c:e0:52:6b:b4:8a:5b:ed:a1:64: 80:54:1f:a6:5b:70:56:a3:27:f7:28:4d:96:b6:03: fd:e3:14:a8:76:ce:c0:ef:d8:a0:e4:87:f2:21:b0: 0f:35:77:70:36:97:4a:e6:98:e3:a6:da:cc:f7:a8: 4d:d1:44:b8:3c:8d:dc:f5:0c:11:41:ae:97:7e:91: bf:95:ef:d8:2b:ba:d5:3a:a9:84:3c:b2:5f:93:ba: dc:90:63:e5:8d:2f:6a:3d:47:07:16:3f:76:50:07: 5a:36:6f:d8:aa:cb:40:7c:b8:e1:b6:21:27:8e:95: 6b:cb:1d:0d:d4:1a:1b:2c:9a:71:1c:9c:12:16:92: 85:85:f0:a3:80:a0:f3:e6:26:58:0b:be:db:ee:ac: 94:dc:f7:2f:d9:fb:28:11:5d:bf:40:76:20:f7:50: ba:c0:b1:3c:63:2b:7a:8d:38:c3:73:89:94:7d:ac: 8e:bf:f2:9b:e7:cd:8c:2d:7a:f7:53:b4:fc:ce:1c: 75:f8:df:e5:ff:c3:a7:91:62:6a:7f:d7:66:f2:6a: 2f:00:cb:0a:4c:41:28:9d:e8:64:40:01:8c:71:02: d5:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:54:93:46:86:BB:48:D0:D2:DA:97:A9:D1:1D:D2:9B:9D:10:B6:25 X509v3 Authority Key Identifier: keyid:A0:27:19:5A:48:20:F3:D7:26:4A:4D:57:EE:9A:9D:4C:2A:10:C9:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1621/35EDA92ECF0D11EF92F1EC36C4F9AE02/oCcZWkgg89cmSk1X7pqdTCoQySM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oCcZWkgg89cmSk1X7pqdTCoQySM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1621/35EDA92ECF0D11EF92F1EC36C4F9AE02/oCcZWkgg89cmSk1X7pqdTCoQySM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:4d:60:ab:f0:19:77:bb:ba:2c:68:b5:1d:64:2e:11:82:45: 33:a7:a3:07:fb:91:9d:1f:b6:ee:da:52:e7:04:5b:47:5a:b4: 0a:44:3e:ed:76:ef:5e:d8:6d:9b:03:3b:2a:19:d3:95:68:26: c1:52:59:70:7f:dc:57:72:a3:13:2a:ae:45:97:67:70:09:5c: 02:59:b6:73:a6:b7:c7:19:c3:56:67:4e:33:d3:73:13:61:61: ac:a3:25:46:54:7e:8a:1a:e4:b8:b3:fa:65:8f:c9:ff:e0:62: d5:09:bb:8a:40:f7:2a:33:ad:d2:43:6f:e1:32:21:41:04:fc: d4:b8:3b:05:d4:ea:57:ce:81:82:48:1c:79:dc:52:63:26:25: d3:f5:b4:69:d8:04:c5:ce:41:db:35:ec:96:2f:3e:b0:b9:c2: e5:70:a0:3e:45:ce:8f:56:c0:b8:bc:58:18:5a:3e:26:04:fe: 7e:0e:79:47:06:71:7d:68:8c:d2:35:fa:ba:d5:f4:1b:d4:1b: c1:4d:7b:79:99:b1:8d:9d:bb:b1:0d:d5:c1:81:3e:c4:49:e6: 8d:78:c8:32:c2:fe:75:41:db:e8:5f:cb:40:a2:f7:4c:42:6f: 19:95:5a:37:21:78:b5:21:8d:87:98:dd:6c:d2:c6:bb:3a:dc: 54:b5:37:75 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAQswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzE2MjExMTAvBgNVBAUTKEEwMjcxOTVBNDgyMEYzRDcyNjRBNEQ1N0VFOUE5RDRD MkExMEM5MjMwHhcNMjYwNTEyMTQxNjE3WhcNMjYwNTE5MTQxNjE3WjAYMRYwFAYD VQQDEw02YTAzMzYzMi1jMjk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxBFR9kiswtgVIUvdfk93NAkM3R3LvfpLlORCnJ4y0UcEU4zgUmu0ilvtoWSA VB+mW3BWoyf3KE2WtgP94xSods7A79ig5IfyIbAPNXdwNpdK5pjjptrM96hN0US4 PI3c9QwRQa6XfpG/le/YK7rVOqmEPLJfk7rckGPljS9qPUcHFj92UAdaNm/YqstA fLjhtiEnjpVryx0N1BobLJpxHJwSFpKFhfCjgKDz5iZYC77b7qyU3Pcv2fsoEV2/ QHYg91C6wLE8Yyt6jTjDc4mUfayOv/Kb582MLXr3U7T8zhx1+N/l/8OnkWJqf9dm 8movAMsKTEEonehkQAGMcQLVywIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPZUk0aG u0jQ0tqXqdEd0pudELYlMB8GA1UdIwQYMBaAFKAnGVpIIPPXJkpNV+6anUwqEMkj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTYyMS8zNUVEQTkyRUNG MEQxMUVGOTJGMUVDMzZDNEY5QUUwMi9vQ2NaV2tnZzg5Y21TazFYN3BxZFRDb1F5 U00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL29DY1pXa2dnODljbVNrMVg3cHFkVENvUXlTTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MTYyMS8zNUVEQTkyRUNGMEQxMUVGOTJGMUVDMzZDNEY5QUUwMi9vQ2NaV2tnZzg5 Y21TazFYN3BxZFRDb1F5U00ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAkE1gq/AZd7u6LGi1HWQuEYJFM6ejB/uRnR+27tpS5wRbR1q0CkQ+7XbvXtht mwM7KhnTlWgmwVJZcH/cV3KjEyquRZdncAlcAlm2c6a3xxnDVmdOM9NzE2FhrKMl RlR+ihrkuLP6ZY/J/+Bi1Qm7ikD3KjOt0kNv4TIhQQT81Lg7BdTqV86BgkgcedxS YyYl0/W0adgExc5B2zXsli8+sLnC5XCgPkXOj1bAuLxYGFo+JgT+fg55RwZxfWiM 0jX6utX0G9QbwU17eZmxjZ27sQ3VwYE+xEnmjXjIMsL+dUHb6F/LQKL3TEJvGZVa NyF4tSGNh5jdbNLGuzrcVLU3dQ== -----END CERTIFICATE-----Generated at Wed May 13 03:11:57 2026 by rpki-client