$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.mft File: Oq-A6pfpm5UlszvBM1uwlcLSeKc.mft (raw, json) Hash identifier: QEsTbcn84uc6BqgTVrWzqCARzixrVu00PV1WBNsL77U= Subject key identifier: AE:F1:D0:52:3C:34:1D:31:5C:66:70:EF:C9:B7:52:8F:E4:D5:5A:2E Authority key identifier: 3A:AF:80:EA:97:E9:9B:95:25:B3:3B:C1:33:5B:B0:95:C2:D2:78:A7 Certificate issuer: /CN=A91C4F06/serialNumber=3AAF80EA97E99B9525B33BC1335BB095C2D278A7 Certificate serial: 3630 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.mft Manifest number: 35BA Signing time: Tue 12 May 2026 14:49:50 +0000 Manifest this update: Tue 12 May 2026 14:49:49 +0000 Manifest next update: Tue 19 May 2026 14:49:49 +0000 Files and hashes: 1: Oq-A6pfpm5UlszvBM1uwlcLSeKc.crl (hash: Nf+oXNcGaOxeGLVQdTbU1G5qlrFE9XxpogkS/9m+Jdk=) 2: 1600DBF659C311E9A04B846FC4F9AE02.roa (hash: bGRZ0FpspSCf0cAveUKjR/NLCR8lXup6exlYiK4KDOA=) 3: 5A318E06F6A111EBB6318B7EC4F9AE02.roa (hash: Kcd6XpOFaQiuuRL3zl2swXULLS6KNUXvk+RMSSrL0Fo=) 4: 6F1612BE562511EB9470B150C4F9AE02.roa (hash: VN3fbgbN+VB5jjHGJ778LsC3bD0h86H1GfKAiCzDGbA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.crl rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 14:49:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13872 (0x3630) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C4F06, serialNumber=3AAF80EA97E99B9525B33BC1335BB095C2D278A7 Validity Not Before: May 12 14:49:49 2026 GMT Not After : May 19 14:49:49 2026 GMT Subject: CN=6a033e0e-aba6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:7e:7d:a5:a4:eb:91:47:07:df:2b:bb:fe:da: ed:89:5f:54:76:25:ad:a9:fa:2d:12:52:de:ec:d2: 07:8d:1a:8b:aa:ff:98:98:fd:51:92:cd:24:13:86: a5:31:4c:86:ff:12:76:58:7f:f4:2c:1d:52:cb:0d: 95:cc:5b:bc:e5:77:e8:df:87:7d:c1:84:c8:b2:b7: d3:0c:26:bb:76:fb:d9:ce:a1:15:3c:2d:ff:52:c6: 78:41:10:15:4e:9b:c2:84:84:72:74:91:91:90:68: 9c:55:80:1c:83:65:7d:73:0a:bf:08:34:3a:8e:16: 3c:30:f2:4d:0b:1e:a5:e1:16:85:28:ce:24:9f:47: 87:00:29:e0:17:78:01:58:88:dc:aa:fc:2e:8d:71: a8:75:23:1c:d9:a5:9c:a8:f2:a4:bb:b3:20:0b:78: e6:86:a7:15:69:6c:29:9e:0d:e9:a3:8c:1a:b1:ae: 0a:67:93:6c:03:81:23:e0:ca:70:0b:53:d4:45:ef: e5:11:d1:67:83:f3:15:7d:41:88:d3:d0:3c:43:50: 68:7d:14:5b:b5:f5:f1:90:74:e8:d7:b5:84:e1:37: 76:d5:63:14:ff:5f:cb:15:0b:2a:93:ee:f8:b7:86: d9:0a:12:8b:8f:84:16:77:63:2a:fc:a9:d1:f9:93: 2d:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:F1:D0:52:3C:34:1D:31:5C:66:70:EF:C9:B7:52:8F:E4:D5:5A:2E X509v3 Authority Key Identifier: keyid:3A:AF:80:EA:97:E9:9B:95:25:B3:3B:C1:33:5B:B0:95:C2:D2:78:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:43:2f:35:32:41:db:c8:70:8f:8c:a3:fa:6b:0d:f5:c9:a6: a9:bd:79:61:09:64:eb:81:c1:4a:90:ff:f4:0b:e3:d7:58:c6: 9b:4b:7b:e1:35:e0:bd:1c:4e:ba:79:e7:e9:23:af:85:6f:21: c1:3b:20:0d:ed:3b:4b:31:b4:29:ca:4f:02:f0:16:3a:c5:81: 22:c1:44:4d:9b:ca:24:45:98:0c:7d:77:c7:44:ef:32:1d:7e: 2f:be:43:f6:b7:6d:41:3d:d9:31:34:ce:2f:31:a6:40:a8:e8: 59:8d:9c:4d:1d:d2:ed:e9:f0:35:78:dc:a6:59:d8:9b:59:2c: a2:df:ee:47:8d:f1:b9:07:09:2b:22:2a:0f:f3:77:55:d4:0d: a3:40:c4:76:8c:d5:b6:95:1e:19:8e:fc:89:2c:d5:db:21:e8: b3:94:8c:15:a8:eb:5c:4f:ac:cc:44:bc:34:b4:06:07:4d:57: 08:e5:2e:bb:91:e9:04:45:0b:8d:79:4c:bd:9d:d1:97:51:58: de:84:a9:1d:e8:da:37:0f:c2:7d:37:60:73:05:55:55:73:00: 15:71:17:31:ba:af:84:f2:41:71:be:33:dd:81:f1:eb:6d:b3: 23:53:72:fc:56:b7:16:cc:d7:07:b0:6a:27:fa:5b:6f:d3:c0: 8c:84:77:23 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNjAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzRGMDYxMTAvBgNVBAUTKDNBQUY4MEVBOTdFOTlCOTUyNUIzM0JDMTMzNUJCMDk1 QzJEMjc4QTcwHhcNMjYwNTEyMTQ0OTQ5WhcNMjYwNTE5MTQ0OTQ5WjAYMRYwFAYD VQQDEw02YTAzM2UwZS1hYmE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAun59paTrkUcH3yu7/trtiV9UdiWtqfotElLe7NIHjRqLqv+YmP1Rks0kE4al MUyG/xJ2WH/0LB1Syw2VzFu85Xfo34d9wYTIsrfTDCa7dvvZzqEVPC3/UsZ4QRAV TpvChIRydJGRkGicVYAcg2V9cwq/CDQ6jhY8MPJNCx6l4RaFKM4kn0eHACngF3gB WIjcqvwujXGodSMc2aWcqPKku7MgC3jmhqcVaWwpng3po4wasa4KZ5NsA4Ej4Mpw C1PURe/lEdFng/MVfUGI09A8Q1BofRRbtfXxkHTo17WE4Td21WMU/1/LFQsqk+74 t4bZChKLj4QWd2Mq/KnR+ZMt6wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFK7x0FI8 NB0xXGZw78m3Uo/k1VouMB8GA1UdIwQYMBaAFDqvgOqX6ZuVJbM7wTNbsJXC0nin MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNEYwNi83NkUxQzQ3RTFE OTUxMUUyQkU1OTVFN0QwOEIwMkNEMi9PcS1BNnBmcG01VWxzenZCTTF1d2xjTFNl S2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09xLUE2cGZwbTVVbHN6dkJNMXV3bGNMU2VLYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NEYwNi83NkUxQzQ3RTFEOTUxMUUyQkU1OTVFN0QwOEIwMkNEMi9PcS1BNnBmcG01 VWxzenZCTTF1d2xjTFNlS2MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEASkMvNTJB28hwj4yj+msN9cmmqb15YQlk64HBSpD/9Avj11jGm0t74TXgvRxO unnn6SOvhW8hwTsgDe07SzG0KcpPAvAWOsWBIsFETZvKJEWYDH13x0TvMh1+L75D 9rdtQT3ZMTTOLzGmQKjoWY2cTR3S7enwNXjcplnYm1ksot/uR43xuQcJKyIqD/N3 VdQNo0DEdozVtpUeGY78iSzV2yHos5SMFajrXE+szES8NLQGB01XCOUuu5HpBEUL jXlMvZ3Rl1FY3oSpHejaNw/CfTdgcwVVVXMAFXEXMbqvhPJBcb4z3YHx622zI1Ny /Fa3FszXB7BqJ/pbb9PAjIR3Iw== -----END CERTIFICATE-----Generated at Wed May 13 03:37:28 2026 by rpki-client