$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8E3D/0AB4386A584E11EC9FCF1779C4F9AE02/Oq_7t-pKYNd7tEKErL8lw5i6mm0.mft File: Oq_7t-pKYNd7tEKErL8lw5i6mm0.mft (raw, json) Hash identifier: aGro3VIQ/gNcMXRspnk76FHYdD6n/OQpMbWHj8zuUgQ= Subject key identifier: 44:DE:C8:BB:AE:D9:EC:C3:45:43:8A:CE:FC:44:B4:83:FF:6B:D2:BD Authority key identifier: 3A:AF:FB:B7:EA:4A:60:D7:7B:B4:42:84:AC:BF:25:C3:98:BA:9A:6D Certificate issuer: /CN=A91F8E3D/serialNumber=3AAFFBB7EA4A60D77BB44284ACBF25C398BA9A6D Certificate serial: 0530 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oq_7t-pKYNd7tEKErL8lw5i6mm0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8E3D/0AB4386A584E11EC9FCF1779C4F9AE02/Oq_7t-pKYNd7tEKErL8lw5i6mm0.mft Manifest number: 0517 Signing time: Tue 12 May 2026 23:48:34 +0000 Manifest this update: Tue 12 May 2026 23:48:33 +0000 Manifest next update: Tue 19 May 2026 23:48:33 +0000 Files and hashes: 1: Oq_7t-pKYNd7tEKErL8lw5i6mm0.crl (hash: ASp2OX+GCrBXQiYf2OiegapRWdNXEiQ7MW9xhuH7IDE=) 2: 23AF59F0EC5E11F0BAE87BA74C6F56BC.roa (hash: nAW7sLq/u3ibmVv8IggrLJMCC/imIfpqlXLWRrpvrN8=) 3: FF9D89B6AB4C11ECB0C94F67C4F9AE02.roa (hash: SKiH7V+tod/z4lBCc83CPJIwiI1zwMJD2gQincrwEEU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8E3D/0AB4386A584E11EC9FCF1779C4F9AE02/Oq_7t-pKYNd7tEKErL8lw5i6mm0.crl rsync://rpki.apnic.net/member_repository/A91F8E3D/0AB4386A584E11EC9FCF1779C4F9AE02/Oq_7t-pKYNd7tEKErL8lw5i6mm0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oq_7t-pKYNd7tEKErL8lw5i6mm0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 23:48:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1328 (0x530) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8E3D, serialNumber=3AAFFBB7EA4A60D77BB44284ACBF25C398BA9A6D Validity Not Before: May 12 23:48:33 2026 GMT Not After : May 19 23:48:33 2026 GMT Subject: CN=6a03bc52-ec14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:59:3d:52:1a:26:cf:36:cb:a6:85:a4:0a:a9: 8c:62:1f:cd:d5:6d:3d:3c:08:13:ad:e0:02:1c:be: 5a:fe:b4:f0:7b:6e:45:76:ad:64:d1:8a:16:ff:9e: 21:c5:f3:a2:75:e2:87:95:c9:f6:b4:1b:6e:ea:86: 1d:47:e7:be:fa:49:d7:bb:9e:07:07:fe:a2:e0:bf: af:3f:10:da:98:65:f5:a1:4a:55:fa:53:2d:d0:c3: 10:77:dd:82:b9:43:de:da:59:7f:79:65:26:6b:50: 09:db:54:39:af:cf:9e:b3:fd:09:6f:83:25:32:e0: 34:ea:da:f0:13:6d:a7:95:83:0d:bf:d6:f9:1a:5f: f1:cc:9f:28:9d:cc:23:c4:6b:47:bb:98:94:1c:8b: 66:73:0d:e6:0e:47:d0:a9:e4:0d:10:e9:03:75:bc: cd:ac:3e:62:71:af:13:26:0a:42:df:62:6d:e2:63: 14:77:bb:df:e7:94:3a:39:e0:94:77:0d:64:7c:72: 76:97:4f:d0:6e:2a:71:43:e2:0d:fb:82:72:79:f0: 43:f0:6a:05:fd:3d:5c:86:e9:73:8c:05:dc:da:95: f7:8a:66:1a:eb:ef:b5:c3:d4:66:8f:ef:02:a0:2d: 66:75:80:fe:89:4d:5b:f2:21:5d:4c:ed:56:e1:8d: 5b:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:DE:C8:BB:AE:D9:EC:C3:45:43:8A:CE:FC:44:B4:83:FF:6B:D2:BD X509v3 Authority Key Identifier: keyid:3A:AF:FB:B7:EA:4A:60:D7:7B:B4:42:84:AC:BF:25:C3:98:BA:9A:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8E3D/0AB4386A584E11EC9FCF1779C4F9AE02/Oq_7t-pKYNd7tEKErL8lw5i6mm0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oq_7t-pKYNd7tEKErL8lw5i6mm0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8E3D/0AB4386A584E11EC9FCF1779C4F9AE02/Oq_7t-pKYNd7tEKErL8lw5i6mm0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:ea:67:6b:a4:d7:55:1a:1d:f2:54:b8:c6:d6:a2:96:25:49: 7b:d2:fc:71:ee:bf:21:ca:ca:86:df:2a:b0:7d:68:14:2a:38: 0f:05:d1:8c:79:bd:8e:cb:0b:1d:0a:68:1b:dd:f3:cc:47:9e: 0a:4f:63:02:39:9b:c0:b7:85:76:70:d3:50:56:6f:13:c1:ed: 4a:4c:6a:31:e4:4d:b6:92:72:55:cc:0a:a4:0c:e2:73:50:6f: 70:a8:23:67:b2:b8:f3:93:b2:78:08:1d:8f:ec:70:1a:74:4e: 44:9c:e6:cd:b9:44:10:1b:e9:8b:52:23:85:f2:f6:5b:94:c9: 87:fd:e2:e0:f0:de:8d:5a:b1:45:7c:eb:a5:d8:41:47:51:8d: 1e:f8:e2:87:0a:82:f8:6f:7f:ce:04:5d:c8:36:ed:a0:91:1c: a7:0f:65:1d:ce:4c:bd:e4:46:45:a1:ce:78:4f:fb:76:26:e5: 3e:d2:41:5b:46:fa:90:0a:a9:53:f3:6a:80:6f:9e:1f:60:07: 30:90:76:79:4a:24:36:e4:1a:13:af:84:8b:ba:d9:85:cc:8e: 39:5f:02:ed:01:dc:61:d2:94:9a:aa:90:c6:a3:5d:52:c7:e2: 9f:c1:dd:ae:3a:33:8a:5a:e6:ec:b9:d4:ce:25:f0:21:57:51: 9a:9d:b8:e8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBTAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjhFM0QxMTAvBgNVBAUTKDNBQUZGQkI3RUE0QTYwRDc3QkI0NDI4NEFDQkYyNUMz OThCQTlBNkQwHhcNMjYwNTEyMjM0ODMzWhcNMjYwNTE5MjM0ODMzWjAYMRYwFAYD VQQDEw02YTAzYmM1Mi1lYzE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnFk9UhomzzbLpoWkCqmMYh/N1W09PAgTreACHL5a/rTwe25Fdq1k0YoW/54h xfOideKHlcn2tBtu6oYdR+e++knXu54HB/6i4L+vPxDamGX1oUpV+lMt0MMQd92C uUPe2ll/eWUma1AJ21Q5r8+es/0Jb4MlMuA06trwE22nlYMNv9b5Gl/xzJ8oncwj xGtHu5iUHItmcw3mDkfQqeQNEOkDdbzNrD5ica8TJgpC32Jt4mMUd7vf55Q6OeCU dw1kfHJ2l0/QbipxQ+IN+4JyefBD8GoF/T1chulzjAXc2pX3imYa6++1w9Rmj+8C oC1mdYD+iU1b8iFdTO1W4Y1b2QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFETeyLuu 2ezDRUOKzvxEtIP/a9K9MB8GA1UdIwQYMBaAFDqv+7fqSmDXe7RChKy/JcOYuppt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOEUzRC8wQUI0Mzg2QTU4 NEUxMUVDOUZDRjE3NzlDNEY5QUUwMi9PcV83dC1wS1lOZDd0RUtFckw4bHc1aTZt bTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09xXzd0LXBLWU5kN3RFS0VyTDhsdzVpNm1tMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OEUzRC8wQUI0Mzg2QTU4NEUxMUVDOUZDRjE3NzlDNEY5QUUwMi9PcV83dC1wS1lO ZDd0RUtFckw4bHc1aTZtbTAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAGepna6TXVRod8lS4xtailiVJe9L8ce6/IcrKht8qsH1oFCo4DwXRjHm9jssL HQpoG93zzEeeCk9jAjmbwLeFdnDTUFZvE8HtSkxqMeRNtpJyVcwKpAzic1BvcKgj Z7K485OyeAgdj+xwGnRORJzmzblEEBvpi1IjhfL2W5TJh/3i4PDejVqxRXzrpdhB R1GNHvjihwqC+G9/zgRdyDbtoJEcpw9lHc5MveRGRaHOeE/7diblPtJBW0b6kAqp U/NqgG+eH2AHMJB2eUokNuQaE6+Ei7rZhcyOOV8C7QHcYdKUmqqQxqNdUsfin8Hd rjozilrm7LnUziXwIVdRmp246A== -----END CERTIFICATE-----Generated at Wed May 13 15:52:47 2026 by rpki-client