$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9C03/37D18A1639A311F0BAD72C3CC4F9AE02/ok2WODNZy0lmoVuakGkT61RWZXs.mft File: ok2WODNZy0lmoVuakGkT61RWZXs.mft (raw, json) Hash identifier: /JITJjKyk5eHjmvSLiySPpK9pkR8PnSbZej2a9JDgSE= Subject key identifier: C7:D7:C6:4D:0F:4A:99:54:02:05:A6:0A:D7:C3:4E:29:06:38:71:E5 Authority key identifier: A2:4D:96:38:33:59:CB:49:66:A1:5B:9A:90:69:13:EB:54:56:65:7B Certificate issuer: /CN=A91C9C03/serialNumber=A24D96383359CB4966A15B9A906913EB5456657B Certificate serial: C6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ok2WODNZy0lmoVuakGkT61RWZXs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9C03/37D18A1639A311F0BAD72C3CC4F9AE02/ok2WODNZy0lmoVuakGkT61RWZXs.mft Manifest number: BE Signing time: Mon 11 May 2026 07:12:43 +0000 Manifest this update: Mon 11 May 2026 07:12:42 +0000 Manifest next update: Mon 18 May 2026 07:12:42 +0000 Files and hashes: 1: ok2WODNZy0lmoVuakGkT61RWZXs.crl (hash: aQRor7CnVt9ph36qpdaMEf5Z8KHG+zwGZX4wEM3EY+s=) 2: 19088D04716211F0A531A51FC4F9AE02.roa (hash: YQ9P3hZSVyByvwWvHjcvm6ovGJgl+C3bbNJ0X0PJR6g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9C03/37D18A1639A311F0BAD72C3CC4F9AE02/ok2WODNZy0lmoVuakGkT61RWZXs.crl rsync://rpki.apnic.net/member_repository/A91C9C03/37D18A1639A311F0BAD72C3CC4F9AE02/ok2WODNZy0lmoVuakGkT61RWZXs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ok2WODNZy0lmoVuakGkT61RWZXs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 07:12:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 198 (0xc6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9C03, serialNumber=A24D96383359CB4966A15B9A906913EB5456657B Validity Not Before: May 11 07:12:42 2026 GMT Not After : May 18 07:12:42 2026 GMT Subject: CN=6a01816b-d1a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:53:a6:9b:f0:26:11:75:a9:e3:29:de:ed:a9: b9:ac:03:ef:14:41:d3:bd:7c:8e:2f:ca:56:63:e7: 65:c4:7e:c0:4a:d6:d1:97:d1:5c:3f:26:f4:e6:73: d9:c4:eb:d2:82:20:bf:26:33:85:76:9c:ce:bd:7e: 9c:8c:6d:2e:53:da:d5:a7:23:bb:89:db:77:55:28: ad:65:66:6d:4f:41:8a:f6:c0:2b:57:4d:2a:f4:fb: b0:29:7c:6e:a3:af:fe:5b:10:f5:d5:1f:50:b1:18: 21:49:42:46:85:67:3b:f5:a4:53:cf:b1:8e:22:84: ed:e8:a6:22:7d:12:ec:68:da:b6:72:66:c0:17:de: 1b:bf:81:a7:da:af:0c:4b:e8:66:01:1d:63:f4:ca: 82:38:b5:3e:f5:36:37:57:8a:f8:61:54:93:7f:f7: 70:c3:11:93:ae:05:11:08:f4:69:35:06:08:aa:0d: c7:3b:9a:69:c2:67:1c:d6:86:c3:90:79:f9:bb:00: c4:58:f1:61:ac:2e:14:11:53:42:62:a5:c5:4e:b9: b8:63:27:b0:f3:70:f5:46:0a:26:42:a9:60:5f:5d: 0f:8e:7a:99:1d:28:08:05:ec:64:91:fd:49:ea:32: b7:13:9c:0e:a6:c0:50:8c:54:5a:29:b2:21:66:84: 88:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:D7:C6:4D:0F:4A:99:54:02:05:A6:0A:D7:C3:4E:29:06:38:71:E5 X509v3 Authority Key Identifier: keyid:A2:4D:96:38:33:59:CB:49:66:A1:5B:9A:90:69:13:EB:54:56:65:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9C03/37D18A1639A311F0BAD72C3CC4F9AE02/ok2WODNZy0lmoVuakGkT61RWZXs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ok2WODNZy0lmoVuakGkT61RWZXs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9C03/37D18A1639A311F0BAD72C3CC4F9AE02/ok2WODNZy0lmoVuakGkT61RWZXs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:81:4c:c6:05:02:28:4a:50:b4:8f:0d:ef:75:98:43:fb:53: 4c:c6:77:5e:58:2a:31:f4:38:c4:ad:95:20:a6:f7:67:c5:e0: 9e:77:11:7a:ad:f3:54:d9:41:02:c8:2a:9a:c0:a6:fd:3f:f0: a8:2b:64:c9:d5:39:06:75:f9:ab:b8:9e:43:05:9a:f6:b4:88: 2b:9c:25:6a:47:9f:11:d6:42:cf:1d:47:59:15:9f:88:f0:09: 88:cd:66:d1:d3:ef:da:0f:4f:19:b0:99:49:e7:0a:f6:34:71: dd:6b:4f:71:07:93:14:27:3a:4b:cc:50:3a:79:92:63:8e:d7: 4b:43:3f:3d:96:ec:fc:39:1a:e9:a9:13:2e:6e:72:40:24:40: e6:cd:c7:bf:65:b8:dc:66:3a:0e:15:b2:2a:c7:44:44:6d:00: 19:05:f9:d2:b3:d2:f4:68:ed:2c:b2:aa:d4:1e:75:f9:1c:3e: 52:7d:13:c3:c1:c7:46:24:43:38:76:14:4b:19:c6:60:f1:ad: 2f:bd:e3:8c:8b:ff:3e:de:89:dc:9f:f8:48:79:b7:03:6a:22: 3e:81:0a:e5:51:be:7e:50:d1:bb:4b:a1:59:bc:f9:53:a6:9e: 84:7f:c9:57:fe:2b:60:c5:e8:5e:b3:5a:14:9b:09:5b:f9:d4: 06:d2:8f:a5 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAMYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzlDMDMxMTAvBgNVBAUTKEEyNEQ5NjM4MzM1OUNCNDk2NkExNUI5QTkwNjkxM0VC NTQ1NjY1N0IwHhcNMjYwNTExMDcxMjQyWhcNMjYwNTE4MDcxMjQyWjAYMRYwFAYD VQQDEw02YTAxODE2Yi1kMWE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtVOmm/AmEXWp4yne7am5rAPvFEHTvXyOL8pWY+dlxH7AStbRl9FcPyb05nPZ xOvSgiC/JjOFdpzOvX6cjG0uU9rVpyO7idt3VSitZWZtT0GK9sArV00q9PuwKXxu o6/+WxD11R9QsRghSUJGhWc79aRTz7GOIoTt6KYifRLsaNq2cmbAF94bv4Gn2q8M S+hmAR1j9MqCOLU+9TY3V4r4YVSTf/dwwxGTrgURCPRpNQYIqg3HO5ppwmcc1obD kHn5uwDEWPFhrC4UEVNCYqXFTrm4Yyew83D1RgomQqlgX10PjnqZHSgIBexkkf1J 6jK3E5wOpsBQjFRaKbIhZoSITQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMfXxk0P SplUAgWmCtfDTikGOHHlMB8GA1UdIwQYMBaAFKJNljgzWctJZqFbmpBpE+tUVmV7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOUMwMy8zN0QxOEExNjM5 QTMxMUYwQkFENzJDM0NDNEY5QUUwMi9vazJXT0ROWnkwbG1vVnVha0drVDYxUlda WHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29rMldPRE5aeTBsbW9WdWFrR2tUNjFSV1pYcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OUMwMy8zN0QxOEExNjM5QTMxMUYwQkFENzJDM0NDNEY5QUUwMi9vazJXT0ROWnkw bG1vVnVha0drVDYxUldaWHMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAdIFMxgUCKEpQtI8N73WYQ/tTTMZ3XlgqMfQ4xK2VIKb3Z8XgnncReq3zVNlB AsgqmsCm/T/wqCtkydU5BnX5q7ieQwWa9rSIK5wlakefEdZCzx1HWRWfiPAJiM1m 0dPv2g9PGbCZSecK9jRx3WtPcQeTFCc6S8xQOnmSY47XS0M/PZbs/Dka6akTLm5y QCRA5s3Hv2W43GY6DhWyKsdERG0AGQX50rPS9GjtLLKq1B51+Rw+Un0Tw8HHRiRD OHYUSxnGYPGtL73jjIv/Pt6J3J/4SHm3A2oiPoEK5VG+flDRu0uhWbz5U6aehH/J V/4rYMXoXrNaFJsJW/nUBtKPpQ== -----END CERTIFICATE-----Generated at Wed May 13 04:18:05 2026 by rpki-client