$ rpki-client -vvf rpki.apnic.net/member_repository/A91FB297/BBF28DDAD99511F09A18623B64D3641D/oPy-m8tDKKnovMofXhSWrMLOLtk.mft File: oPy-m8tDKKnovMofXhSWrMLOLtk.mft (raw, json) Hash identifier: K3VNN+Hdl6lvALo6J8uhtrIMAjMNfczXpEy0HKeBy8Y= Subject key identifier: DC:DD:7C:22:D4:C8:6D:86:AD:CC:10:90:D3:06:AD:4C:34:1B:B6:49 Authority key identifier: A0:FC:BE:9B:CB:43:28:A9:E8:BC:CA:1F:5E:14:96:AC:C2:CE:2E:D9 Certificate issuer: /CN=A91FB297/serialNumber=A0FCBE9BCB4328A9E8BCCA1F5E1496ACC2CE2ED9 Certificate serial: 52 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oPy-m8tDKKnovMofXhSWrMLOLtk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FB297/BBF28DDAD99511F09A18623B64D3641D/oPy-m8tDKKnovMofXhSWrMLOLtk.mft Manifest number: 51 Signing time: Mon 11 May 2026 04:00:54 +0000 Manifest this update: Mon 11 May 2026 04:00:54 +0000 Manifest next update: Mon 18 May 2026 04:00:54 +0000 Files and hashes: 1: oPy-m8tDKKnovMofXhSWrMLOLtk.crl (hash: mNHN/y18Ve+l+VMPAJ8QdTu+UIzRB0dQledOw/kA7p8=) 2: 7D6CF15E299511F1AB285139C2833773.roa (hash: zrVJVWy7b99+fAaJlDs/efiLXBbFoQUYnwnxhru+Sag=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FB297/BBF28DDAD99511F09A18623B64D3641D/oPy-m8tDKKnovMofXhSWrMLOLtk.crl rsync://rpki.apnic.net/member_repository/A91FB297/BBF28DDAD99511F09A18623B64D3641D/oPy-m8tDKKnovMofXhSWrMLOLtk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oPy-m8tDKKnovMofXhSWrMLOLtk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 04:00:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 82 (0x52) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FB297, serialNumber=A0FCBE9BCB4328A9E8BCCA1F5E1496ACC2CE2ED9 Validity Not Before: May 11 04:00:54 2026 GMT Not After : May 18 04:00:54 2026 GMT Subject: CN=6a015476-cb57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:b8:8a:b8:4f:8e:96:f4:40:11:83:5b:bc:12: 92:81:c9:ae:6e:22:56:b8:cf:2c:89:01:fc:38:42: 3d:c7:df:68:36:51:30:68:1b:1c:76:3a:16:31:64: 11:1f:ff:41:fa:a5:21:0f:17:28:37:7f:3f:4b:a8: 9f:5c:7b:4c:a0:cd:94:7c:ed:a3:e7:3d:a3:bf:95: 3b:10:8e:bc:a4:4a:d2:12:c3:68:ba:09:a1:d9:7c: 0b:04:b6:aa:50:32:d1:d6:77:ef:5f:15:51:e7:73: f1:6e:2e:76:c8:bd:c0:3a:8f:8d:76:03:a0:f2:f4: 75:ab:18:6f:03:f6:71:36:6b:93:10:65:0c:a8:46: ef:f4:04:e0:49:ae:c0:a3:b4:f7:53:72:ad:38:52: ab:af:59:fe:a0:41:5e:ef:9b:28:2b:2f:1f:61:f5: d4:fc:8a:aa:8d:18:48:3d:93:a2:fb:65:f5:c7:02: 3a:4f:a0:24:23:2b:30:b1:2d:dd:b8:a1:ce:ec:96: b9:72:bd:12:58:14:b9:f2:50:47:76:12:65:23:f0: 3a:a2:38:47:b3:b6:4c:10:8c:44:61:35:e3:cf:b1: 8b:7b:65:7c:c0:ed:c9:20:d8:31:26:fa:d0:b6:e4: f1:98:2f:20:d0:5b:8c:29:6d:e4:4b:30:d9:83:36: a1:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:DD:7C:22:D4:C8:6D:86:AD:CC:10:90:D3:06:AD:4C:34:1B:B6:49 X509v3 Authority Key Identifier: keyid:A0:FC:BE:9B:CB:43:28:A9:E8:BC:CA:1F:5E:14:96:AC:C2:CE:2E:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FB297/BBF28DDAD99511F09A18623B64D3641D/oPy-m8tDKKnovMofXhSWrMLOLtk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oPy-m8tDKKnovMofXhSWrMLOLtk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FB297/BBF28DDAD99511F09A18623B64D3641D/oPy-m8tDKKnovMofXhSWrMLOLtk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:cb:4c:60:db:c6:cf:56:f8:33:bf:bf:c6:30:51:9c:70:e7: f8:f9:ff:64:32:77:87:14:66:6a:8c:63:d2:da:6c:7c:82:43: f1:29:b2:db:99:73:58:3f:4c:df:45:43:c2:cf:26:c8:7e:e6: 43:b4:58:a2:a0:f9:2d:03:e6:3d:1c:88:12:3d:8a:4f:33:2b: df:89:1c:76:30:8d:1d:ff:8c:cd:c4:f6:52:4c:6d:2b:e3:99: 83:ca:68:4d:8d:69:9c:60:a1:eb:92:bb:64:28:d3:90:7e:8a: 7b:13:b9:9e:45:07:26:e9:4e:6c:43:e7:76:ab:07:9d:a2:74: f0:ed:66:f7:b0:9a:5e:cb:93:f4:fa:1d:07:64:4a:65:08:f2: 17:48:21:e5:f8:12:b8:2f:e0:0d:e4:a4:3f:75:a4:c0:25:78: 77:7e:a3:bc:7a:cc:98:12:06:40:88:9d:5d:a6:02:c7:2f:17: 6f:45:d6:7e:18:81:56:6d:06:bb:3c:cb:c3:01:03:f4:c1:5c: 87:9a:e0:6f:b6:8d:2e:55:0f:3a:53:32:ff:ba:80:4a:ad:fa: 0b:c3:ea:14:42:7a:5c:59:08:4d:bb:7d:c2:cc:8c:6f:48:01: 40:f0:02:7d:52:19:41:41:83:8a:01:ad:48:2b:dd:63:ff:79: 97:bb:1e:00 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBUjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG QjI5NzExMC8GA1UEBRMoQTBGQ0JFOUJDQjQzMjhBOUU4QkNDQTFGNUUxNDk2QUND MkNFMkVEOTAeFw0yNjA1MTEwNDAwNTRaFw0yNjA1MTgwNDAwNTRaMBgxFjAUBgNV BAMTDTZhMDE1NDc2LWNiNTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCpuIq4T46W9EARg1u8EpKBya5uIla4zyyJAfw4Qj3H32g2UTBoGxx2OhYxZBEf /0H6pSEPFyg3fz9LqJ9ce0ygzZR87aPnPaO/lTsQjrykStISw2i6CaHZfAsEtqpQ MtHWd+9fFVHnc/FuLnbIvcA6j412A6Dy9HWrGG8D9nE2a5MQZQyoRu/0BOBJrsCj tPdTcq04UquvWf6gQV7vmygrLx9h9dT8iqqNGEg9k6L7ZfXHAjpPoCQjKzCxLd24 oc7slrlyvRJYFLnyUEd2EmUj8DqiOEeztkwQjERhNePPsYt7ZXzA7ckg2DEm+tC2 5PGYLyDQW4wpbeRLMNmDNqG/AgMBAAGjggJzMIICbzAdBgNVHQ4EFgQU3N18ItTI bYatzBCQ0watTDQbtkkwHwYDVR0jBBgwFoAUoPy+m8tDKKnovMofXhSWrMLOLtkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZCMjk3L0JCRjI4RERBRDk5 NTExRjA5QTE4NjIzQjY0RDM2NDFEL29QeS1tOHRES0tub3ZNb2ZYaFNXck1MT0x0 ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvb1B5LW04dERLS25vdk1vZlhoU1dyTUxPTHRrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZC Mjk3L0JCRjI4RERBRDk5NTExRjA5QTE4NjIzQjY0RDM2NDFEL29QeS1tOHRES0tu b3ZNb2ZYaFNXck1MT0x0ay5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQCdy0xg28bPVvgzv7/GMFGccOf4+f9kMneHFGZqjGPS2mx8gkPxKbLbmXNYP0zf RUPCzybIfuZDtFiioPktA+Y9HIgSPYpPMyvfiRx2MI0d/4zNxPZSTG0r45mDymhN jWmcYKHrkrtkKNOQfop7E7meRQcm6U5sQ+d2qwedonTw7Wb3sJpey5P0+h0HZEpl CPIXSCHl+BK4L+AN5KQ/daTAJXh3fqO8esyYEgZAiJ1dpgLHLxdvRdZ+GIFWbQa7 PMvDAQP0wVyHmuBvto0uVQ86UzL/uoBKrfoLw+oUQnpcWQhNu33CzIxvSAFA8AJ9 UhlBQYOKAa1IK91j/3mXux4A -----END CERTIFICATE-----Generated at Wed May 13 02:43:51 2026 by rpki-client