$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.mft File: Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.mft (raw, json) Hash identifier: Ur05GxkGKKL3TgJYVXJ2Ie5bU/X7nOQgD13uoSk+TAU= Subject key identifier: 55:78:D4:D4:A9:90:C0:88:74:25:50:C4:DF:91:4F:D1:16:49:82:44 Authority key identifier: 3A:CC:B6:95:39:AC:9F:42:88:BC:D0:F0:A5:42:50:D5:92:F5:40:D4 Certificate issuer: /CN=A91F0EBF/serialNumber=3ACCB69539AC9F4288BCD0F0A54250D592F540D4 Certificate serial: 22AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.mft Manifest number: 2255 Signing time: Tue 12 May 2026 15:52:21 +0000 Manifest this update: Tue 12 May 2026 15:52:21 +0000 Manifest next update: Tue 19 May 2026 15:52:21 +0000 Files and hashes: 1: Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.crl (hash: IssAnbGP3k+aJjIh10F0rA+WB2YcZnVHzlPte/BTREI=) 2: 63BFE4C0292811EEAF894530C4F9AE02.roa (hash: sVanteUBCWSFVUaHrZ5yntV/JIzyhq/72ORLRX744ZU=) 3: 2D477384D9C711F098E1B70271D3641D.roa (hash: GJ6jqaxX7BHT2XHEY46Q7jZx0gkdB0fTcOfm2Nfw3us=) 4: 5480D316764D11EA8CB5C039C4F9AE02.roa (hash: mJF9eHW945FqOhcOebNZDCr93WVmTQPVaMtl9lfF/sA=) 5: A73C0BF6D93511E6B2617F7BC4F9AE02.roa (hash: 9Wh8912cu3W7SvBPurOS5rCjf4J0gjpN7uj92f3pmsg=) 6: 586B33AEF44611EBA78C117AC4F9AE02.roa (hash: fTK97vrMBpL2ZoSynxsGZ4U3KEvxzaz+0BewP/ZQJbc=) 7: 5F649D88F27E11EE8704D12FC4F9AE02.roa (hash: 9WmU8Y4ZcOpIMboLEtIMfgE7BVSSzD6O48vbK37ECCM=) 8: 11DE1CDA467611EC988CDC09C4F9AE02.roa (hash: MfV4ukOu3FWI/jsl4kHuM58dQAKJFj/LhFrUhOuLtaI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.crl rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 15:52:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8879 (0x22af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0EBF, serialNumber=3ACCB69539AC9F4288BCD0F0A54250D592F540D4 Validity Not Before: May 12 15:52:21 2026 GMT Not After : May 19 15:52:21 2026 GMT Subject: CN=6a034cb5-6547 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:2b:82:89:08:93:eb:86:9e:12:73:15:ae:da: 3d:6d:60:b5:51:7a:f0:b4:5d:7d:13:43:d6:1f:fd: 3b:21:b6:78:47:73:d0:da:84:4b:41:be:95:7c:47: f5:b6:6b:cc:e1:86:b6:69:6d:fd:6f:d4:34:5c:63: c9:18:3e:ac:b2:5a:3e:3f:9a:52:f2:8e:a7:ca:dd: 16:1a:8e:e5:31:09:67:8c:84:29:e4:24:a3:d6:58: fc:a5:ab:85:a2:c7:cf:d2:f3:fe:ce:2f:ac:aa:5a: a9:ff:a9:50:47:57:c1:66:e5:ba:fc:12:d3:b8:a5: 7e:22:c0:55:15:96:94:01:ae:3b:77:7d:16:5e:67: 1c:1b:28:dc:0f:ba:7c:39:c9:4c:50:13:84:8c:16: 21:84:6c:e2:10:f0:4a:71:65:bb:d3:0a:2a:58:5f: ba:63:8f:ff:18:93:32:20:ed:ed:35:38:81:1a:63: f4:78:c1:b6:fe:38:a0:59:07:bc:80:aa:db:49:b8: 6f:6b:d9:c8:d1:43:e2:2b:ba:88:4b:47:fd:2e:08: 30:23:5d:c9:15:15:1a:de:9c:c2:9a:c1:3f:11:bc: 6c:5b:7e:0f:7c:bc:22:52:dc:b0:25:6a:b0:8e:5e: 26:71:e5:2e:0b:51:d2:cc:a6:f7:dd:51:21:73:18: f3:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:78:D4:D4:A9:90:C0:88:74:25:50:C4:DF:91:4F:D1:16:49:82:44 X509v3 Authority Key Identifier: keyid:3A:CC:B6:95:39:AC:9F:42:88:BC:D0:F0:A5:42:50:D5:92:F5:40:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:fe:85:e4:cb:13:bf:35:c4:0a:ef:73:94:dc:0c:3c:b3:90: a9:f7:ba:01:46:39:56:43:fd:13:8c:c8:73:5f:4a:88:9c:00: da:99:d8:f0:0e:20:e8:12:8c:d2:d9:35:38:1a:e6:1f:68:8b: 26:7d:e4:6b:4d:1c:2f:f7:86:1e:ce:5b:db:d8:74:05:86:77: 97:4f:e9:2c:d2:92:b4:59:b4:e7:75:00:53:62:00:89:6e:4b: e0:6a:b4:f4:db:96:6d:fc:a2:4d:25:74:e4:8b:f5:ca:37:1d: 69:07:bf:2d:89:f7:c9:05:70:10:19:56:2d:98:36:33:26:5f: 17:5e:5d:f0:03:88:dc:e6:ef:a5:ff:92:d5:88:b1:e0:da:45: 5c:b4:d1:64:45:92:5b:e6:31:cd:2a:67:70:d9:88:0e:11:91: 77:04:98:a2:74:f6:30:09:45:b9:28:98:3a:79:a1:01:55:fe: f6:51:d6:28:c1:7f:6f:a5:6f:be:2d:96:96:0c:e5:0e:d1:eb: 2d:b1:e4:12:d2:12:60:d6:d8:0a:b6:fa:01:89:f6:bf:2f:dc: da:80:a1:b9:12:10:b0:21:ad:73:a3:7f:fb:6a:28:83:d1:2f: 93:e9:6a:c4:16:b5:1c:b2:29:f0:f8:94:a0:80:90:b5:75:e7: 38:01:48:2b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICIq8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBFQkYxMTAvBgNVBAUTKDNBQ0NCNjk1MzlBQzlGNDI4OEJDRDBGMEE1NDI1MEQ1 OTJGNTQwRDQwHhcNMjYwNTEyMTU1MjIxWhcNMjYwNTE5MTU1MjIxWjAYMRYwFAYD VQQDEw02YTAzNGNiNS02NTQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmyuCiQiT64aeEnMVrto9bWC1UXrwtF19E0PWH/07IbZ4R3PQ2oRLQb6VfEf1 tmvM4Ya2aW39b9Q0XGPJGD6sslo+P5pS8o6nyt0WGo7lMQlnjIQp5CSj1lj8pauF osfP0vP+zi+sqlqp/6lQR1fBZuW6/BLTuKV+IsBVFZaUAa47d30WXmccGyjcD7p8 OclMUBOEjBYhhGziEPBKcWW70woqWF+6Y4//GJMyIO3tNTiBGmP0eMG2/jigWQe8 gKrbSbhva9nI0UPiK7qIS0f9LggwI13JFRUa3pzCmsE/EbxsW34PfLwiUtywJWqw jl4mceUuC1HSzKb33VEhcxjzuwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFV41NSp kMCIdCVQxN+RT9EWSYJEMB8GA1UdIwQYMBaAFDrMtpU5rJ9CiLzQ8KVCUNWS9UDU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEVCRi81Rjg0RDdEOERC ODAxMUU1OUFCN0VEMUVDNEY5QUUwMi9Pc3kybFRtc24wS0l2TkR3cFVKUTFaTDFR TlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09zeTJsVG1zbjBLSXZORHdwVUpRMVpMMVFOUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MEVCRi81Rjg0RDdEOERCODAxMUU1OUFCN0VEMUVDNEY5QUUwMi9Pc3kybFRtc24w S0l2TkR3cFVKUTFaTDFRTlEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAcP6F5MsTvzXECu9zlNwMPLOQqfe6AUY5VkP9E4zIc19KiJwA2pnY8A4g6BKM 0tk1OBrmH2iLJn3ka00cL/eGHs5b29h0BYZ3l0/pLNKStFm053UAU2IAiW5L4Gq0 9NuWbfyiTSV05Iv1yjcdaQe/LYn3yQVwEBlWLZg2MyZfF15d8AOI3Obvpf+S1Yix 4NpFXLTRZEWSW+YxzSpncNmIDhGRdwSYonT2MAlFuSiYOnmhAVX+9lHWKMF/b6Vv vi2WlgzlDtHrLbHkEtISYNbYCrb6AYn2vy/c2oChuRIQsCGtc6N/+2oog9Evk+lq xBa1HLIp8PiUoICQtXXnOAFIKw== -----END CERTIFICATE-----Generated at Wed May 13 03:50:14 2026 by rpki-client