$ rpki-client -vvf rpki.apnic.net/member_repository/A91CF9B0/14C9496E9F3F11EE801B1D62C4F9AE02/oqIX1KQS-1OPXJGjSzbOcYed22U.mft File: oqIX1KQS-1OPXJGjSzbOcYed22U.mft (raw, json) Hash identifier: cDCIdbM6RHbzDUHCTDSgMq6aOSgBGRGLA0HQYSg9zT8= Subject key identifier: E8:82:22:05:E7:2E:C7:7D:35:9D:CD:AB:B2:6C:A3:BF:16:19:5E:22 Authority key identifier: A2:A2:17:D4:A4:12:FB:53:8F:5C:91:A3:4B:36:CE:71:87:9D:DB:65 Certificate issuer: /CN=A91CF9B0/serialNumber=A2A217D4A412FB538F5C91A34B36CE71879DDB65 Certificate serial: 01E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oqIX1KQS-1OPXJGjSzbOcYed22U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CF9B0/14C9496E9F3F11EE801B1D62C4F9AE02/oqIX1KQS-1OPXJGjSzbOcYed22U.mft Manifest number: 01D3 Signing time: Mon 11 May 2026 03:51:40 +0000 Manifest this update: Mon 11 May 2026 03:51:39 +0000 Manifest next update: Mon 18 May 2026 03:51:39 +0000 Files and hashes: 1: oqIX1KQS-1OPXJGjSzbOcYed22U.crl (hash: DoipvcTjMDPFEd13D3Y+NwpEZMeoTJPMTLmu5mHbhSc=) 2: 84D917FC9F4911EEA0C5C856C4F9AE02.roa (hash: 7HiiQTV5zY5tbTdYcm8BulZ0FRGrmhKFMlzgoK8qTu8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CF9B0/14C9496E9F3F11EE801B1D62C4F9AE02/oqIX1KQS-1OPXJGjSzbOcYed22U.crl rsync://rpki.apnic.net/member_repository/A91CF9B0/14C9496E9F3F11EE801B1D62C4F9AE02/oqIX1KQS-1OPXJGjSzbOcYed22U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oqIX1KQS-1OPXJGjSzbOcYed22U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 03:51:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 485 (0x1e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CF9B0, serialNumber=A2A217D4A412FB538F5C91A34B36CE71879DDB65 Validity Not Before: May 11 03:51:39 2026 GMT Not After : May 18 03:51:39 2026 GMT Subject: CN=6a01524c-038e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:ca:d2:1a:a1:3d:83:95:a4:2f:06:69:18:6e: 94:cc:1f:73:31:3b:10:88:2d:70:6c:7d:9b:fa:b3: 01:97:a2:4f:c8:28:75:24:89:bd:26:0e:8b:3d:2c: 2e:c3:18:51:73:12:15:b2:4e:e4:ed:7e:0a:e5:6f: 70:a1:e1:cd:50:da:89:c5:7c:79:09:0d:d9:db:32: 0b:c5:20:76:08:e2:21:81:18:aa:07:95:eb:a5:9c: cf:ff:be:66:ff:31:db:ea:42:a2:bc:fd:69:92:b9: b2:89:41:a0:3f:63:2d:64:f5:b8:d3:14:dd:f7:fc: 5e:d2:38:09:71:a9:0b:e1:a6:ae:07:6a:ce:28:8d: bc:43:68:04:07:a4:48:88:a2:30:1c:75:b9:95:97: 77:bf:74:75:4e:b6:e5:57:de:bf:8f:d5:b4:f1:78: eb:e7:fe:6f:a7:65:8c:68:f6:3c:53:42:6b:f2:31: 38:b2:74:09:71:c9:fa:ae:c2:04:31:de:bf:9d:21: 38:53:8b:15:89:cc:e0:99:27:7f:51:79:ed:30:bb: ed:59:75:89:b3:1f:a4:fb:c5:11:e3:03:c5:ee:28: 28:b9:9c:df:6b:42:93:54:12:b2:57:3a:26:7c:15: 53:fa:b2:18:11:3a:53:0f:0f:13:9d:85:49:7e:c5: 59:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:82:22:05:E7:2E:C7:7D:35:9D:CD:AB:B2:6C:A3:BF:16:19:5E:22 X509v3 Authority Key Identifier: keyid:A2:A2:17:D4:A4:12:FB:53:8F:5C:91:A3:4B:36:CE:71:87:9D:DB:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CF9B0/14C9496E9F3F11EE801B1D62C4F9AE02/oqIX1KQS-1OPXJGjSzbOcYed22U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oqIX1KQS-1OPXJGjSzbOcYed22U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CF9B0/14C9496E9F3F11EE801B1D62C4F9AE02/oqIX1KQS-1OPXJGjSzbOcYed22U.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:83:1c:39:c9:64:3f:4a:e3:0d:16:ef:3a:95:e6:fe:47:ee: 43:91:4e:0c:50:40:8a:08:e3:be:37:1d:73:09:1a:2b:f3:b6: 2d:f1:0a:36:f4:04:41:03:d4:e7:36:14:c1:36:9a:f3:b6:84: 6c:9a:5f:bb:62:92:36:46:ee:b8:38:25:82:73:af:3a:81:b2: 7f:47:bd:02:c6:9e:e1:00:b1:59:69:bf:0c:74:fb:da:76:64: b4:17:01:09:54:ca:53:12:09:42:fe:be:5e:0f:52:83:71:15: 72:1f:25:27:95:b6:13:71:8e:bb:f8:77:f1:7d:8e:65:94:0e: 59:b5:ca:3c:2b:dd:ab:97:71:fe:9e:4f:fc:5b:20:4e:68:54: f1:78:48:00:bf:5c:15:00:cb:ad:ce:66:97:b4:60:aa:c7:72: 50:06:e7:25:76:ab:78:bc:76:55:af:3e:d2:ec:d2:b4:74:32: 05:04:34:a0:9d:5c:da:56:b5:66:3e:c9:68:94:05:45:af:7b: 72:3b:a2:10:19:29:0a:8a:55:fd:fd:c3:62:96:52:d5:36:d2: 9d:6a:3f:e9:b8:44:d6:bc:a9:58:ce:34:45:ec:c7:28:dd:29: 17:b1:91:4b:af:68:82:64:80:48:24:77:4d:dd:40:1c:65:19: 86:39:09:6d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAeUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0Y5QjAxMTAvBgNVBAUTKEEyQTIxN0Q0QTQxMkZCNTM4RjVDOTFBMzRCMzZDRTcx ODc5RERCNjUwHhcNMjYwNTExMDM1MTM5WhcNMjYwNTE4MDM1MTM5WjAYMRYwFAYD VQQDEw02YTAxNTI0Yy0wMzhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv8rSGqE9g5WkLwZpGG6UzB9zMTsQiC1wbH2b+rMBl6JPyCh1JIm9Jg6LPSwu wxhRcxIVsk7k7X4K5W9woeHNUNqJxXx5CQ3Z2zILxSB2COIhgRiqB5XrpZzP/75m /zHb6kKivP1pkrmyiUGgP2MtZPW40xTd9/xe0jgJcakL4aauB2rOKI28Q2gEB6RI iKIwHHW5lZd3v3R1TrblV96/j9W08Xjr5/5vp2WMaPY8U0Jr8jE4snQJccn6rsIE Md6/nSE4U4sViczgmSd/UXntMLvtWXWJsx+k+8UR4wPF7igouZzfa0KTVBKyVzom fBVT+rIYETpTDw8TnYVJfsVZgwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOiCIgXn Lsd9NZ3Nq7Jso78WGV4iMB8GA1UdIwQYMBaAFKKiF9SkEvtTj1yRo0s2znGHndtl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRjlCMC8xNEM5NDk2RTlG M0YxMUVFODAxQjFENjJDNEY5QUUwMi9vcUlYMUtRUy0xT1BYSkdqU3piT2NZZWQy MlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29xSVgxS1FTLTFPUFhKR2pTemJPY1llZDIyVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RjlCMC8xNEM5NDk2RTlGM0YxMUVFODAxQjFENjJDNEY5QUUwMi9vcUlYMUtRUy0x T1BYSkdqU3piT2NZZWQyMlUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEATYMcOclkP0rjDRbvOpXm/kfuQ5FODFBAigjjvjcdcwkaK/O2LfEKNvQEQQPU 5zYUwTaa87aEbJpfu2KSNkbuuDglgnOvOoGyf0e9Asae4QCxWWm/DHT72nZktBcB CVTKUxIJQv6+Xg9Sg3EVch8lJ5W2E3GOu/h38X2OZZQOWbXKPCvdq5dx/p5P/Fsg TmhU8XhIAL9cFQDLrc5ml7RgqsdyUAbnJXareLx2Va8+0uzStHQyBQQ0oJ1c2la1 Zj7JaJQFRa97cjuiEBkpCopV/f3DYpZS1TbSnWo/6bhE1rypWM40RezHKN0pF7GR S69ogmSASCR3Td1AHGUZhjkJbQ== -----END CERTIFICATE-----Generated at Wed May 13 04:40:49 2026 by rpki-client