$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/ozdjPjWRmUC9cp2RLzZjFYwmfDY.mft File: ozdjPjWRmUC9cp2RLzZjFYwmfDY.mft (raw, json) Hash identifier: 5AIjf6UfV2WiKJZ/ESqTP+dGDFY23VnordmuH9cgfO0= Subject key identifier: A9:2B:F1:81:2A:54:9A:E5:D3:FF:CD:DD:4F:93:14:2A:D9:9A:A9:FB Authority key identifier: A3:37:63:3E:35:91:99:40:BD:72:9D:91:2F:36:63:15:8C:26:7C:36 Certificate issuer: /CN=A91F8AC4/serialNumber=A337633E35919940BD729D912F3663158C267C36 Certificate serial: 02A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ozdjPjWRmUC9cp2RLzZjFYwmfDY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/ozdjPjWRmUC9cp2RLzZjFYwmfDY.mft Manifest number: 029D Signing time: Wed 13 May 2026 01:42:32 +0000 Manifest this update: Wed 13 May 2026 01:42:32 +0000 Manifest next update: Wed 20 May 2026 01:42:32 +0000 Files and hashes: 1: ozdjPjWRmUC9cp2RLzZjFYwmfDY.crl (hash: vqeJpw/JzoMkBO/kPGM1ffRHuIFVk1X8x4rTMzCFsh0=) 2: 0AFFF078577811ED959AC36FC4F9AE02.roa (hash: pGBNoZVQ4x9HykZ/w/nfYdiBRr1XcTrcOsgRSH1bWes=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/ozdjPjWRmUC9cp2RLzZjFYwmfDY.crl rsync://rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/ozdjPjWRmUC9cp2RLzZjFYwmfDY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ozdjPjWRmUC9cp2RLzZjFYwmfDY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 01:42:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 677 (0x2a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8AC4, serialNumber=A337633E35919940BD729D912F3663158C267C36 Validity Not Before: May 13 01:42:32 2026 GMT Not After : May 20 01:42:32 2026 GMT Subject: CN=6a03d708-959c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:23:b3:e5:0f:08:e2:4c:74:ec:47:37:33:1a: bc:a2:33:dd:cb:d5:51:55:97:81:e9:91:46:79:c0: da:2f:f5:91:69:28:3d:1b:41:9c:16:54:97:93:a8: 61:04:b4:07:b7:e5:b8:0c:a2:e8:d0:83:91:c4:c8: 1c:52:ca:c7:4a:96:95:58:44:e8:b8:2f:93:16:df: 1e:a8:b2:b1:a6:ba:d2:bd:45:e9:9e:ed:91:30:24: e5:fa:92:4c:23:f5:6e:65:01:6c:9a:29:81:8d:d6: 09:af:4a:d4:2f:1c:0d:e5:6c:5a:e8:3e:ca:3a:96: c3:a6:a3:1d:b1:d2:19:1a:c1:b6:0e:fc:22:9d:6c: e1:b7:cc:e8:1f:85:3c:10:69:f5:05:fb:a0:35:18: e2:20:25:4b:0c:5c:fc:8d:28:81:61:7a:8e:70:73: 55:59:3d:95:bf:62:8c:71:04:7d:98:03:16:40:6e: 59:46:ad:63:ed:88:e5:41:72:19:91:49:26:9d:70: f0:54:10:89:e8:0e:89:0d:56:2c:41:06:f4:bf:76: be:be:d6:46:85:84:70:b1:a5:9f:36:c0:51:59:c6: 4d:43:1c:90:ca:74:6e:fe:c5:e6:c0:df:8d:10:bc: 58:d4:54:3f:3d:94:c5:97:df:0c:56:8e:b3:a5:c7: 3a:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:2B:F1:81:2A:54:9A:E5:D3:FF:CD:DD:4F:93:14:2A:D9:9A:A9:FB X509v3 Authority Key Identifier: keyid:A3:37:63:3E:35:91:99:40:BD:72:9D:91:2F:36:63:15:8C:26:7C:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/ozdjPjWRmUC9cp2RLzZjFYwmfDY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ozdjPjWRmUC9cp2RLzZjFYwmfDY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/ozdjPjWRmUC9cp2RLzZjFYwmfDY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:7a:bd:f3:c5:9c:45:98:40:4d:03:8f:b8:1b:82:02:ef:78: 5e:4c:44:25:5a:f8:a3:8c:ba:04:8b:e5:2e:5f:68:35:18:8a: c5:24:01:02:89:b9:32:b3:5e:1a:3c:46:41:63:e8:ee:21:6c: 6c:87:fc:d7:39:ad:ff:1e:46:93:79:2b:30:49:10:16:9e:24: 1b:5a:ec:ec:a8:8c:66:43:23:c1:dd:cd:8f:2c:26:7a:27:f7: 39:63:41:02:f1:e8:d1:bb:7f:1f:fb:40:35:8e:f6:a2:b5:dc: 94:b8:28:f6:f1:af:cb:22:49:13:9c:0d:6f:71:f3:d6:bb:76: af:1e:c8:6d:79:9a:93:25:bd:40:05:06:cf:ec:d5:99:6f:68: b3:ca:f1:12:f0:10:f2:4b:7c:58:5f:6d:cf:a9:fb:eb:7d:fb: de:8f:cb:7a:fa:71:11:37:c5:cc:b4:9e:05:57:b7:17:a0:ad: ac:98:52:6d:60:cb:0d:30:c8:d1:46:90:25:5d:fe:78:5c:4b: 4b:45:b0:b4:79:e7:6b:e5:f6:48:81:4c:9b:8b:57:5d:6d:8a: 8e:7b:8a:b9:fe:18:0f:73:ca:3c:5e:56:18:38:bb:55:47:1b: 2f:74:ec:f5:a7:3d:9c:60:c2:b7:9a:f2:cb:ec:b8:75:7c:a5: d5:35:ce:12 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAqUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjhBQzQxMTAvBgNVBAUTKEEzMzc2MzNFMzU5MTk5NDBCRDcyOUQ5MTJGMzY2MzE1 OEMyNjdDMzYwHhcNMjYwNTEzMDE0MjMyWhcNMjYwNTIwMDE0MjMyWjAYMRYwFAYD VQQDEw02YTAzZDcwOC05NTljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3SOz5Q8I4kx07Ec3Mxq8ojPdy9VRVZeB6ZFGecDaL/WRaSg9G0GcFlSXk6hh BLQHt+W4DKLo0IORxMgcUsrHSpaVWETouC+TFt8eqLKxprrSvUXpnu2RMCTl+pJM I/VuZQFsmimBjdYJr0rULxwN5Wxa6D7KOpbDpqMdsdIZGsG2DvwinWzht8zoH4U8 EGn1BfugNRjiICVLDFz8jSiBYXqOcHNVWT2Vv2KMcQR9mAMWQG5ZRq1j7YjlQXIZ kUkmnXDwVBCJ6A6JDVYsQQb0v3a+vtZGhYRwsaWfNsBRWcZNQxyQynRu/sXmwN+N ELxY1FQ/PZTFl98MVo6zpcc6CQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKkr8YEq VJrl0//N3U+TFCrZmqn7MB8GA1UdIwQYMBaAFKM3Yz41kZlAvXKdkS82YxWMJnw2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOEFDNC9DOEZFMTc0QzU3 NzUxMUVEODFGMTNCNkZDNEY5QUUwMi9vemRqUGpXUm1VQzljcDJSTHpaakZZd21m RFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL296ZGpQaldSbVVDOWNwMlJMelpqRll3bWZEWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OEFDNC9DOEZFMTc0QzU3NzUxMUVEODFGMTNCNkZDNEY5QUUwMi9vemRqUGpXUm1V QzljcDJSTHpaakZZd21mRFkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAAnq988WcRZhATQOPuBuCAu94XkxEJVr4o4y6BIvlLl9oNRiKxSQBAom5MrNe GjxGQWPo7iFsbIf81zmt/x5Gk3krMEkQFp4kG1rs7KiMZkMjwd3Njywmeif3OWNB AvHo0bt/H/tANY72orXclLgo9vGvyyJJE5wNb3Hz1rt2rx7IbXmakyW9QAUGz+zV mW9os8rxEvAQ8kt8WF9tz6n763373o/LevpxETfFzLSeBVe3F6CtrJhSbWDLDTDI 0UaQJV3+eFxLS0WwtHnna+X2SIFMm4tXXW2KjnuKuf4YD3PKPF5WGDi7VUcbL3Ts 9ac9nGDCt5ryy+y4dXyl1TXOEg== -----END CERTIFICATE-----Generated at Wed May 13 13:52:27 2026 by rpki-client