$ rpki-client -vvf rpki.apnic.net/member_repository/A91FB68C/17D103A8EAB211EF846F1337C4F9AE02/oiiPiWTWFpqHlfL07wXg1ebhOwk.mft File: oiiPiWTWFpqHlfL07wXg1ebhOwk.mft (raw, json) Hash identifier: jtz+JEiI2zer6feSep+kMgNWBgAVJA3JUfZ8QAlviQA= Subject key identifier: 61:34:62:8F:BF:8E:EC:F8:40:67:A8:E9:E5:FC:DE:F4:53:50:6B:94 Authority key identifier: A2:28:8F:89:64:D6:16:9A:87:95:F2:F4:EF:05:E0:D5:E6:E1:3B:09 Certificate issuer: /CN=A91FB68C/serialNumber=A2288F8964D6169A8795F2F4EF05E0D5E6E13B09 Certificate serial: 0108 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiiPiWTWFpqHlfL07wXg1ebhOwk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FB68C/17D103A8EAB211EF846F1337C4F9AE02/oiiPiWTWFpqHlfL07wXg1ebhOwk.mft Manifest number: FA Signing time: Mon 11 May 2026 06:33:41 +0000 Manifest this update: Mon 11 May 2026 06:33:41 +0000 Manifest next update: Mon 18 May 2026 06:33:41 +0000 Files and hashes: 1: oiiPiWTWFpqHlfL07wXg1ebhOwk.crl (hash: YItfU+mRQ3cwyGGt1r/2Jj+S7k+8XCVwsQnwN8stowY=) 2: 965254F8278811F09217002CC4F9AE02.roa (hash: 0RhsOifNGasCmCxCAJFq65+7Iqu3gbPwoj7AcEDMVxI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FB68C/17D103A8EAB211EF846F1337C4F9AE02/oiiPiWTWFpqHlfL07wXg1ebhOwk.crl rsync://rpki.apnic.net/member_repository/A91FB68C/17D103A8EAB211EF846F1337C4F9AE02/oiiPiWTWFpqHlfL07wXg1ebhOwk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiiPiWTWFpqHlfL07wXg1ebhOwk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 06:33:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 264 (0x108) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FB68C, serialNumber=A2288F8964D6169A8795F2F4EF05E0D5E6E13B09 Validity Not Before: May 11 06:33:41 2026 GMT Not After : May 18 06:33:41 2026 GMT Subject: CN=6a017845-d1ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:d0:f8:ba:38:ed:87:67:e8:ac:05:05:94:8f: 60:f4:fb:a4:48:af:d9:f5:91:76:e2:77:bc:dd:f1: 01:3a:04:01:bb:94:31:55:f2:1b:6a:4a:3d:b4:29: d6:79:d0:33:76:64:6c:c3:47:ea:84:e2:30:8b:55: bd:b1:06:78:c7:9a:f4:c6:85:71:4d:21:24:92:30: 22:7d:7b:27:7b:fb:b6:f4:e4:94:ae:3d:73:4a:d4: db:27:bd:40:ca:b2:4b:0f:09:95:ce:02:72:f9:14: c8:95:c0:90:b6:0e:a3:ec:8f:4e:55:cf:50:2d:7a: cb:96:d5:a9:9f:7e:ae:87:9b:44:12:b0:b5:9b:c3: 46:df:d2:6b:71:21:8d:e2:61:53:dd:cc:27:73:13: 78:f7:e2:83:ed:26:32:f8:81:e4:0b:84:8f:da:b0: 09:1f:8b:2e:4b:05:c6:bb:03:a0:ce:26:6c:ed:50: 29:4b:5a:69:3c:be:b4:c9:76:3c:04:7e:7c:d6:80: 18:f4:ec:fb:c9:9b:91:9f:91:3b:f8:e9:4d:b3:c2: 2a:cc:08:7b:4a:78:19:2d:82:c0:50:a2:04:99:03: 9f:63:6b:93:0d:8b:ee:53:00:e9:db:07:db:46:c4: 3c:8e:59:16:bf:77:5b:ec:8c:8e:3d:1d:68:c4:1a: 22:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:34:62:8F:BF:8E:EC:F8:40:67:A8:E9:E5:FC:DE:F4:53:50:6B:94 X509v3 Authority Key Identifier: keyid:A2:28:8F:89:64:D6:16:9A:87:95:F2:F4:EF:05:E0:D5:E6:E1:3B:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FB68C/17D103A8EAB211EF846F1337C4F9AE02/oiiPiWTWFpqHlfL07wXg1ebhOwk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiiPiWTWFpqHlfL07wXg1ebhOwk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FB68C/17D103A8EAB211EF846F1337C4F9AE02/oiiPiWTWFpqHlfL07wXg1ebhOwk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:79:96:56:6c:42:ee:97:0a:8f:14:11:7e:67:f7:c0:74:e4: ab:c3:ed:78:c9:2a:a1:49:f6:9e:8b:7b:82:a3:df:4e:d2:5d: dc:6d:ef:29:ef:5f:b8:e5:f0:d6:18:c8:f3:ec:f8:40:ad:1e: 0e:27:d8:d0:c8:18:db:e3:5f:76:0d:76:59:f4:dc:fd:97:55: 90:ff:df:93:9f:81:6e:76:e3:7d:2a:19:b9:b9:bd:05:3d:fd: 09:0d:55:62:96:6b:e3:2c:10:cd:94:65:82:d0:5e:5b:f9:e5: ce:9f:5f:fb:d1:6d:58:ba:c1:80:18:24:be:ac:d5:8e:1e:53: f3:b5:4b:5e:b4:1b:3d:94:0c:a3:23:30:ef:f4:de:d2:6b:47: 82:a8:61:5a:c8:96:b9:53:f1:14:f9:ac:f6:db:96:8a:d9:c5: 81:7e:a2:51:29:a0:b5:a8:74:29:c9:de:90:b7:ff:73:73:eb: 23:18:f8:bb:cc:9b:71:5e:ee:f4:74:49:54:d3:88:d5:2a:51: a1:cb:14:00:d4:b6:7f:d0:84:9b:91:2b:7d:df:62:23:67:e6: 96:e6:61:af:d4:15:fa:71:23:c4:60:a3:c6:5b:3c:1d:5e:7e: 93:be:7d:ae:99:67:9b:a0:da:45:0a:2a:64:c8:f9:3f:8e:b5: d1:9b:14:23 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAQgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkI2OEMxMTAvBgNVBAUTKEEyMjg4Rjg5NjRENjE2OUE4Nzk1RjJGNEVGMDVFMEQ1 RTZFMTNCMDkwHhcNMjYwNTExMDYzMzQxWhcNMjYwNTE4MDYzMzQxWjAYMRYwFAYD VQQDEw02YTAxNzg0NS1kMWNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAntD4ujjth2forAUFlI9g9PukSK/Z9ZF24ne83fEBOgQBu5QxVfIbako9tCnW edAzdmRsw0fqhOIwi1W9sQZ4x5r0xoVxTSEkkjAifXsne/u29OSUrj1zStTbJ71A yrJLDwmVzgJy+RTIlcCQtg6j7I9OVc9QLXrLltWpn36uh5tEErC1m8NG39JrcSGN 4mFT3cwncxN49+KD7SYy+IHkC4SP2rAJH4suSwXGuwOgziZs7VApS1ppPL60yXY8 BH581oAY9Oz7yZuRn5E7+OlNs8IqzAh7SngZLYLAUKIEmQOfY2uTDYvuUwDp2wfb RsQ8jlkWv3db7IyOPR1oxBoiTwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGE0Yo+/ juz4QGeo6eX83vRTUGuUMB8GA1UdIwQYMBaAFKIoj4lk1haah5Xy9O8F4NXm4TsJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQjY4Qy8xN0QxMDNBOEVB QjIxMUVGODQ2RjEzMzdDNEY5QUUwMi9vaWlQaVdUV0ZwcUhsZkwwN3dYZzFlYmhP d2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29paVBpV1RXRnBxSGxmTDA3d1hnMWViaE93ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QjY4Qy8xN0QxMDNBOEVBQjIxMUVGODQ2RjEzMzdDNEY5QUUwMi9vaWlQaVdUV0Zw cUhsZkwwN3dYZzFlYmhPd2subWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAXnmWVmxC7pcKjxQRfmf3wHTkq8PteMkqoUn2not7gqPfTtJd3G3vKe9fuOXw 1hjI8+z4QK0eDifY0MgY2+Nfdg12WfTc/ZdVkP/fk5+BbnbjfSoZubm9BT39CQ1V YpZr4ywQzZRlgtBeW/nlzp9f+9FtWLrBgBgkvqzVjh5T87VLXrQbPZQMoyMw7/Te 0mtHgqhhWsiWuVPxFPms9tuWitnFgX6iUSmgtah0KcnekLf/c3PrIxj4u8ybcV7u 9HRJVNOI1SpRocsUANS2f9CEm5Erfd9iI2fmluZhr9QV+nEjxGCjxls8HV5+k759 rplnm6DaRQoqZMj5P4610ZsUIw== -----END CERTIFICATE-----Generated at Wed May 13 08:13:15 2026 by rpki-client