$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6856/2DDB426E486311EEBC0BD213C4F9AE02/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.mft File: OmgjoQ8Dv6ykBo0zmERPNkEIVIU.mft (raw, json) Hash identifier: CiWhDeHwLncQs8nUQsaS2ZHXcOVVeQS3P7hMWrjjy28= Subject key identifier: 2B:27:18:00:36:33:5B:5F:9B:66:46:9F:28:B3:D8:A6:FB:B1:66:14 Authority key identifier: 3A:68:23:A1:0F:03:BF:AC:A4:06:8D:33:98:44:4F:36:41:08:54:85 Certificate issuer: /CN=A91E6856/serialNumber=3A6823A10F03BFACA4068D3398444F3641085485 Certificate serial: 0206 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6856/2DDB426E486311EEBC0BD213C4F9AE02/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.mft Manifest number: 0200 Signing time: Tue 12 May 2026 17:38:42 +0000 Manifest this update: Tue 12 May 2026 17:38:42 +0000 Manifest next update: Tue 19 May 2026 17:38:42 +0000 Files and hashes: 1: OmgjoQ8Dv6ykBo0zmERPNkEIVIU.crl (hash: lnMb7odK2jNgHOaDQKnKdOFzcWPS3i4ZDKtYl9ZOat4=) 2: B2C9B10A881311EE8CFB5C43C4F9AE02.roa (hash: oB4kxasRgRq+GKJ70NUc/sJMH3q5nYfTRjnemmCHnis=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6856/2DDB426E486311EEBC0BD213C4F9AE02/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.crl rsync://rpki.apnic.net/member_repository/A91E6856/2DDB426E486311EEBC0BD213C4F9AE02/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 17:38:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 518 (0x206) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6856, serialNumber=3A6823A10F03BFACA4068D3398444F3641085485 Validity Not Before: May 12 17:38:42 2026 GMT Not After : May 19 17:38:42 2026 GMT Subject: CN=6a0365a2-5f88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:37:55:c8:56:31:a9:bc:ea:39:b3:cf:ad:8d: 98:79:ef:a2:9f:ad:2b:80:b3:a1:8c:64:44:db:b3: 2f:2c:7a:a7:da:8a:28:71:a6:65:89:74:1a:c8:87: c6:36:02:92:9f:63:83:40:dc:91:f0:8f:c5:3c:a8: c6:b5:6d:98:6c:88:03:23:71:de:7a:a4:7f:34:1e: 0b:e5:1a:f7:b3:95:a6:44:a3:d7:81:d4:9c:e5:d5: ee:f2:f1:21:b7:92:ec:32:5c:31:67:59:d8:69:35: e7:2f:40:ae:c9:f2:e4:c3:d5:b0:df:a1:cb:77:53: 60:30:58:ef:b4:3f:10:e0:90:5a:d8:c7:e5:8b:4b: 6d:5e:e5:76:43:ab:aa:e9:52:c8:be:ca:28:8b:75: 7e:2d:5e:44:e0:73:99:5b:5b:06:ba:04:8f:7a:80: 68:45:bd:35:87:29:40:16:50:7a:35:5c:d9:2e:fa: 1a:2f:c0:fb:c9:bd:49:53:92:b9:e3:3f:e0:5a:0b: e3:06:ea:d9:9a:3b:ca:32:06:2f:1f:42:2d:70:78: 46:9d:8a:eb:7d:99:d7:62:24:17:57:d6:52:94:93: 21:02:96:b2:16:c3:c8:74:0f:c1:7b:2f:84:ee:df: 7f:36:57:15:f4:7d:ea:b4:49:24:d7:2b:60:c4:26: 3f:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:27:18:00:36:33:5B:5F:9B:66:46:9F:28:B3:D8:A6:FB:B1:66:14 X509v3 Authority Key Identifier: keyid:3A:68:23:A1:0F:03:BF:AC:A4:06:8D:33:98:44:4F:36:41:08:54:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6856/2DDB426E486311EEBC0BD213C4F9AE02/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6856/2DDB426E486311EEBC0BD213C4F9AE02/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c4:21:1e:b4:12:96:a0:1f:7a:d3:5c:27:64:32:85:e5:c8:ea: db:f2:7e:68:c8:d5:ef:88:18:c0:8a:b5:8d:c9:69:f0:73:6f: 48:aa:c4:e1:66:2c:d9:b5:69:23:72:cd:f1:ca:9c:33:8f:87: 70:87:56:ec:3a:91:e0:aa:d6:03:50:a1:16:92:b9:18:55:db: 9a:98:e2:bc:40:ec:58:a4:64:b8:dc:38:d8:c3:bd:aa:f5:26: 19:ea:a2:2f:ea:a6:a1:0e:a5:15:41:61:b0:80:ff:ef:41:7f: dc:1a:5d:1f:8f:cb:3c:88:d6:ec:ca:07:67:09:8d:60:e4:5b: d7:77:d6:d3:a9:7a:26:81:45:45:6d:d8:a7:13:24:13:e0:17: c9:99:de:65:57:4e:7e:a1:de:f4:55:15:f1:e3:00:c0:27:15: 0f:53:1d:eb:10:b1:91:78:45:17:45:ec:54:cf:2f:d9:02:36: 2f:bf:ff:ba:dc:2d:de:4f:85:00:cd:55:49:c5:1f:68:06:94: 7d:2a:63:0a:42:e8:8c:6d:02:e3:3e:b1:a7:2d:8a:71:17:22: ec:b6:74:01:fb:cb:1d:fb:15:56:f9:5d:e0:8c:85:27:e0:b7: 42:64:23:1f:49:60:fd:23:f8:3a:0b:2e:a4:f8:41:ac:b3:85: 38:10:34:e1 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAgYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTY4NTYxMTAvBgNVBAUTKDNBNjgyM0ExMEYwM0JGQUNBNDA2OEQzMzk4NDQ0RjM2 NDEwODU0ODUwHhcNMjYwNTEyMTczODQyWhcNMjYwNTE5MTczODQyWjAYMRYwFAYD VQQDEw02YTAzNjVhMi01Zjg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwzdVyFYxqbzqObPPrY2Yee+in60rgLOhjGRE27MvLHqn2ooocaZliXQayIfG NgKSn2ODQNyR8I/FPKjGtW2YbIgDI3HeeqR/NB4L5Rr3s5WmRKPXgdSc5dXu8vEh t5LsMlwxZ1nYaTXnL0CuyfLkw9Ww36HLd1NgMFjvtD8Q4JBa2Mfli0ttXuV2Q6uq 6VLIvsooi3V+LV5E4HOZW1sGugSPeoBoRb01hylAFlB6NVzZLvoaL8D7yb1JU5K5 4z/gWgvjBurZmjvKMgYvH0ItcHhGnYrrfZnXYiQXV9ZSlJMhApayFsPIdA/Bey+E 7t9/NlcV9H3qtEkk1ytgxCY/OwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCsnGAA2 M1tfm2ZGnyiz2Kb7sWYUMB8GA1UdIwQYMBaAFDpoI6EPA7+spAaNM5hETzZBCFSF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjg1Ni8yRERCNDI2RTQ4 NjMxMUVFQkMwQkQyMTNDNEY5QUUwMi9PbWdqb1E4RHY2eWtCbzB6bUVSUE5rRUlW SVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL09tZ2pvUThEdjZ5a0JvMHptRVJQTmtFSVZJVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF Njg1Ni8yRERCNDI2RTQ4NjMxMUVFQkMwQkQyMTNDNEY5QUUwMi9PbWdqb1E4RHY2 eWtCbzB6bUVSUE5rRUlWSVUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAxCEetBKWoB9601wnZDKF5cjq2/J+aMjV74gYwIq1jclp8HNvSKrE4WYs2bVp I3LN8cqcM4+HcIdW7DqR4KrWA1ChFpK5GFXbmpjivEDsWKRkuNw42MO9qvUmGeqi L+qmoQ6lFUFhsID/70F/3BpdH4/LPIjW7MoHZwmNYORb13fW06l6JoFFRW3YpxMk E+AXyZneZVdOfqHe9FUV8eMAwCcVD1Md6xCxkXhFF0XsVM8v2QI2L7//utwt3k+F AM1VScUfaAaUfSpjCkLojG0C4z6xpy2KcRci7LZ0AfvLHfsVVvld4IyFJ+C3QmQj H0lg/SP4OgsupPhBrLOFOBA04Q== -----END CERTIFICATE-----Generated at Wed May 13 11:43:01 2026 by rpki-client