$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft File: oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft (raw, json) Hash identifier: uTNLnS09mQzICjtmwuhM2eXbY8f5IkNzxze6HyeF8s4= Subject key identifier: D7:27:D3:54:82:BE:BC:66:F2:44:7D:34:82:91:34:BE:3C:6E:48:8C Authority key identifier: A0:AC:42:7E:95:7B:37:4D:02:67:FA:76:48:DD:3F:F8:57:02:DA:B1 Certificate issuer: /CN=A91FA024/serialNumber=A0AC427E957B374D0267FA7648DD3FF85702DAB1 Certificate serial: 0897 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKxCfpV7N00CZ_p2SN0_-FcC2rE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft Manifest number: 088D Signing time: Tue 12 May 2026 20:40:03 +0000 Manifest this update: Tue 12 May 2026 20:40:02 +0000 Manifest next update: Tue 19 May 2026 20:40:02 +0000 Files and hashes: 1: oKxCfpV7N00CZ_p2SN0_-FcC2rE.crl (hash: l2MqjM8mUjSk1qCaX+6/kdXmtdZ4BvjHY1r9LUDKxNE=) 2: FE1FDB12BCD011EC8283681EC4F9AE02.roa (hash: D7POOiqxGTRBfPXL5kT6B+2budcwWwPlgdAg9UBfD4U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.crl rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKxCfpV7N00CZ_p2SN0_-FcC2rE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 20:40:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2199 (0x897) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA024, serialNumber=A0AC427E957B374D0267FA7648DD3FF85702DAB1 Validity Not Before: May 12 20:40:02 2026 GMT Not After : May 19 20:40:02 2026 GMT Subject: CN=6a039023-1aa8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:db:3f:b6:3f:00:72:0a:2f:f7:71:04:06:67: d6:2e:f5:84:18:95:a4:96:e5:42:72:b1:cc:7b:24: 84:55:91:f8:9e:7b:c1:c0:49:5c:bc:26:a2:45:9a: 43:4b:4b:0d:51:8a:0b:dc:81:6e:a9:48:c8:13:e7: a7:b0:e5:31:ed:85:35:0e:28:43:f8:5e:87:d5:e6: fa:d1:cf:51:6b:e5:ce:e3:00:26:84:e6:15:4c:21: 68:f9:8f:27:a5:b0:4a:dd:3a:09:29:36:35:a6:75: 12:53:91:8f:37:e2:c6:a1:36:84:e0:4f:93:cc:06: 69:8b:06:d9:2a:d6:86:61:51:75:d6:70:07:c5:97: f2:03:5c:3e:dc:fd:52:6b:8e:92:a2:4c:9d:cb:43: 80:f3:e8:2f:e6:20:19:47:6c:dc:fb:ae:87:60:c2: 20:56:36:3e:af:b2:e8:b9:d7:94:0e:b6:48:db:ad: 8a:d4:9a:bc:8d:17:47:0c:32:bb:c5:76:2d:21:b0: 86:d9:35:5a:35:e3:5d:0c:e8:82:06:7b:eb:53:3d: be:d4:6a:37:61:58:af:85:f9:49:1e:14:5c:24:3d: df:f5:ea:ea:b9:62:cf:f2:c8:23:e1:ba:bb:95:ff: 40:60:d4:22:46:3f:df:42:2e:a7:65:f9:82:1b:93: c0:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:27:D3:54:82:BE:BC:66:F2:44:7D:34:82:91:34:BE:3C:6E:48:8C X509v3 Authority Key Identifier: keyid:A0:AC:42:7E:95:7B:37:4D:02:67:FA:76:48:DD:3F:F8:57:02:DA:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKxCfpV7N00CZ_p2SN0_-FcC2rE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:64:87:1c:5e:8a:4e:b3:cb:e8:42:c7:4d:a7:6f:f6:fd:db: 88:36:07:12:66:ec:ad:3d:96:d4:f6:93:dc:bc:06:c6:4c:50: bb:98:b2:04:45:cc:08:ba:e3:ee:97:2b:c3:22:2a:c7:ac:24: 4d:f8:20:bf:5e:15:c9:64:51:a0:4d:c6:b8:b5:5e:5c:c8:31: b5:6f:c3:17:06:b3:b0:3e:84:e6:57:f1:c0:42:84:58:b2:96: 2e:e6:9e:02:39:75:9d:1b:4e:3e:f8:79:e9:3d:85:34:af:13: 1d:24:e5:94:d7:40:3c:bd:7f:8e:45:dc:83:43:5d:ee:5f:18: 5d:8a:81:0e:7e:bc:fe:ad:5e:39:7a:bf:ed:89:66:3b:88:cd: 43:f8:9d:2c:10:f9:b6:e8:fa:a3:36:d6:3a:54:88:da:80:e1: 42:67:78:17:f8:ed:be:a7:23:ee:e4:c1:ab:fe:4c:cc:ea:83: 40:9f:ae:ac:5e:0f:d0:9a:0d:f3:c6:3b:9b:8a:cf:e2:18:49: 23:9f:c0:1a:8d:fb:f1:84:ac:31:94:fc:5b:a4:02:c2:d5:e4: fa:fa:cb:98:0e:89:3b:a5:93:a8:d2:45:3d:cf:e2:8d:e7:a2: c3:d4:d7:91:cb:f7:7d:da:a6:21:68:a4:35:31:47:42:4f:bb: 25:6a:88:c2 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCJcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkEwMjQxMTAvBgNVBAUTKEEwQUM0MjdFOTU3QjM3NEQwMjY3RkE3NjQ4REQzRkY4 NTcwMkRBQjEwHhcNMjYwNTEyMjA0MDAyWhcNMjYwNTE5MjA0MDAyWjAYMRYwFAYD VQQDEw02YTAzOTAyMy0xYWE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqts/tj8Acgov93EEBmfWLvWEGJWkluVCcrHMeySEVZH4nnvBwElcvCaiRZpD S0sNUYoL3IFuqUjIE+ensOUx7YU1DihD+F6H1eb60c9Ra+XO4wAmhOYVTCFo+Y8n pbBK3ToJKTY1pnUSU5GPN+LGoTaE4E+TzAZpiwbZKtaGYVF11nAHxZfyA1w+3P1S a46Sokydy0OA8+gv5iAZR2zc+66HYMIgVjY+r7LoudeUDrZI262K1Jq8jRdHDDK7 xXYtIbCG2TVaNeNdDOiCBnvrUz2+1Go3YVivhflJHhRcJD3f9erquWLP8sgj4bq7 lf9AYNQiRj/fQi6nZfmCG5PAewIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNcn01SC vrxm8kR9NIKRNL48bkiMMB8GA1UdIwQYMBaAFKCsQn6VezdNAmf6dkjdP/hXAtqx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTAyNC9EMzNBNDc5NEYx ODgxMUVBOUU4MEY3MUVDNEY5QUUwMi9vS3hDZnBWN04wMENaX3AyU04wXy1GY0My ckUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29LeENmcFY3TjAwQ1pfcDJTTjBfLUZjQzJyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QTAyNC9EMzNBNDc5NEYxODgxMUVBOUU4MEY3MUVDNEY5QUUwMi9vS3hDZnBWN04w MENaX3AyU04wXy1GY0MyckUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAcWSHHF6KTrPL6ELHTadv9v3biDYHEmbsrT2W1PaT3LwGxkxQu5iyBEXMCLrj 7pcrwyIqx6wkTfggv14VyWRRoE3GuLVeXMgxtW/DFwazsD6E5lfxwEKEWLKWLuae Ajl1nRtOPvh56T2FNK8THSTllNdAPL1/jkXcg0Nd7l8YXYqBDn68/q1eOXq/7Ylm O4jNQ/idLBD5tuj6ozbWOlSI2oDhQmd4F/jtvqcj7uTBq/5MzOqDQJ+urF4P0JoN 88Y7m4rP4hhJI5/AGo378YSsMZT8W6QCwtXk+vrLmA6JO6WTqNJFPc/ijeeiw9TX kcv3fdqmIWikNTFHQk+7JWqIwg== -----END CERTIFICATE-----Generated at Wed May 13 04:11:46 2026 by rpki-client