$ rpki-client -vvf rpki.apnic.net/member_repository/A9128DE9/D0049F861BD511EA80CBCF36C4F9AE02/RiOppNLqhemPtaEaDSywgDiHjw8.mft File: RiOppNLqhemPtaEaDSywgDiHjw8.mft (raw, json) Hash identifier: xuHchoWN8TzQWzrhh81ios/1YlK+uABf8nmVE+3GTNA= Subject key identifier: 1C:11:53:6F:D3:C9:5E:79:27:C7:95:21:D4:02:14:C2:32:BD:DD:E8 Authority key identifier: 46:23:A9:A4:D2:EA:85:E9:8F:B5:A1:1A:0D:2C:B0:80:38:87:8F:0F Certificate issuer: /CN=A9128DE9/serialNumber=4623A9A4D2EA85E98FB5A11A0D2CB08038878F0F Certificate serial: 0C9C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RiOppNLqhemPtaEaDSywgDiHjw8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128DE9/D0049F861BD511EA80CBCF36C4F9AE02/RiOppNLqhemPtaEaDSywgDiHjw8.mft Manifest number: 0C93 Signing time: Fri 12 Jun 2026 18:34:59 +0000 Manifest this update: Fri 12 Jun 2026 18:34:59 +0000 Manifest next update: Fri 19 Jun 2026 18:34:59 +0000 Files and hashes: 1: RiOppNLqhemPtaEaDSywgDiHjw8.crl (hash: rUU7uInO6xRSvDvZ0pSjjUqQALil9X9ghZkPkt7Wv4s=) 2: 75E6DD481BDA11EAB3F45D44C4F9AE02.roa (hash: n9Crm/X8BIyWrbtx9XSuVfzuzzUyJa39Yk0aZo9vy/0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128DE9/D0049F861BD511EA80CBCF36C4F9AE02/RiOppNLqhemPtaEaDSywgDiHjw8.crl rsync://rpki.apnic.net/member_repository/A9128DE9/D0049F861BD511EA80CBCF36C4F9AE02/RiOppNLqhemPtaEaDSywgDiHjw8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RiOppNLqhemPtaEaDSywgDiHjw8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 18:34:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3228 (0xc9c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128DE9, serialNumber=4623A9A4D2EA85E98FB5A11A0D2CB08038878F0F Validity Not Before: Jun 12 18:34:59 2026 GMT Not After : Jun 19 18:34:59 2026 GMT Subject: CN=6a2c5153-ae02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:0e:68:6c:40:d6:e7:1d:96:e1:91:b2:76:b0: aa:04:7a:8f:ce:32:d1:37:ef:27:f7:f4:1d:36:b4: a9:58:77:c0:6d:6c:58:78:e6:f8:63:10:90:56:1b: 1e:93:9b:49:43:32:d2:c2:da:55:54:0f:b1:40:1d: c2:03:31:fc:e7:7f:1c:16:52:58:b0:e1:16:60:eb: d4:47:00:00:b2:ac:94:95:87:3f:2f:46:85:3d:62: c3:6c:c1:57:a1:cd:5d:fa:40:7e:4b:56:53:68:36: 66:1b:9e:11:94:50:17:d8:c3:9f:b2:58:95:03:c4: f5:5f:bf:78:5c:56:bb:12:63:15:40:78:03:70:99: 09:74:f9:51:97:a7:2a:26:88:95:76:1b:4e:b3:a1: 91:f0:9c:42:40:0e:12:7f:58:ca:9e:3a:20:58:9c: 62:c1:e5:74:26:99:cb:b8:1d:9e:c5:8c:af:3e:04: d8:b4:b3:f2:0e:5f:fc:77:8e:05:e2:27:86:ce:fe: eb:97:11:67:1d:a6:fe:ec:52:87:33:57:c1:ff:19: db:da:1e:e7:7b:c3:02:01:e9:f8:80:e2:56:93:d2: 83:bb:f6:bb:fc:4a:06:97:be:63:fd:cc:ce:82:9f: 71:90:2d:43:88:97:b3:a0:ef:83:cc:f8:e3:46:b8: 52:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:11:53:6F:D3:C9:5E:79:27:C7:95:21:D4:02:14:C2:32:BD:DD:E8 X509v3 Authority Key Identifier: keyid:46:23:A9:A4:D2:EA:85:E9:8F:B5:A1:1A:0D:2C:B0:80:38:87:8F:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128DE9/D0049F861BD511EA80CBCF36C4F9AE02/RiOppNLqhemPtaEaDSywgDiHjw8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RiOppNLqhemPtaEaDSywgDiHjw8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128DE9/D0049F861BD511EA80CBCF36C4F9AE02/RiOppNLqhemPtaEaDSywgDiHjw8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b8:00:b3:38:d4:74:fc:e8:75:59:f9:76:98:6e:1e:ea:bc:59: 4e:6f:dc:94:57:bd:4d:40:b4:aa:50:70:1a:4f:59:f6:8e:08: 61:c2:a0:09:e8:d3:93:c7:48:78:9a:e4:b9:de:0d:e3:19:12: 1c:54:4b:c0:29:62:df:7a:2f:d4:a3:a4:3d:af:72:cc:7f:72: 3c:a8:d7:ec:c7:7d:21:fe:57:aa:1f:67:b6:fe:3a:ee:be:91: b4:e1:26:42:2e:c0:f3:a2:d3:b6:79:c8:be:0d:c0:ae:78:9e: 0f:c9:8c:a2:f3:dc:0a:9a:a0:54:ab:21:8e:84:8b:57:28:bc: 14:eb:6d:44:f5:81:58:10:23:af:06:06:e8:c9:2e:bb:79:f2: 21:90:48:d3:bf:9e:40:04:79:7d:15:15:6e:0b:7d:2d:c6:0f: 1a:e2:95:b9:36:23:dc:ed:8b:5b:34:c3:5e:df:6f:a5:be:85: f1:84:10:1d:0d:d8:e2:aa:98:b7:c2:8e:91:95:c0:d7:ea:bc: 7f:2c:12:34:94:5e:4c:c2:85:7d:d8:bd:7a:9b:de:d4:b8:45: 5d:ab:68:98:e7:95:7d:64:68:18:a7:75:76:b6:bb:fe:b7:bb: f8:6f:66:fe:22:0b:61:85:65:50:df:0b:b6:0a:d0:28:3b:cb: fe:f3:ee:dc -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDJwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjhERTkxMTAvBgNVBAUTKDQ2MjNBOUE0RDJFQTg1RTk4RkI1QTExQTBEMkNCMDgw Mzg4NzhGMEYwHhcNMjYwNjEyMTgzNDU5WhcNMjYwNjE5MTgzNDU5WjAYMRYwFAYD VQQDEw02YTJjNTE1My1hZTAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6g5obEDW5x2W4ZGydrCqBHqPzjLRN+8n9/QdNrSpWHfAbWxYeOb4YxCQVhse k5tJQzLSwtpVVA+xQB3CAzH8538cFlJYsOEWYOvURwAAsqyUlYc/L0aFPWLDbMFX oc1d+kB+S1ZTaDZmG54RlFAX2MOfsliVA8T1X794XFa7EmMVQHgDcJkJdPlRl6cq JoiVdhtOs6GR8JxCQA4Sf1jKnjogWJxiweV0JpnLuB2exYyvPgTYtLPyDl/8d44F 4ieGzv7rlxFnHab+7FKHM1fB/xnb2h7ne8MCAen4gOJWk9KDu/a7/EoGl75j/czO gp9xkC1DiJezoO+DzPjjRrhSQwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBwRU2/T yV55J8eVIdQCFMIyvd3oMB8GA1UdIwQYMBaAFEYjqaTS6oXpj7WhGg0ssIA4h48P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOERFOS9EMDA0OUY4NjFC RDUxMUVBODBDQkNGMzZDNEY5QUUwMi9SaU9wcE5McWhlbVB0YUVhRFN5d2dEaUhq dzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1JpT3BwTkxxaGVtUHRhRWFEU3l3Z0RpSGp3OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OERFOS9EMDA0OUY4NjFCRDUxMUVBODBDQkNGMzZDNEY5QUUwMi9SaU9wcE5McWhl bVB0YUVhRFN5d2dEaUhqdzgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAuACzONR0/Oh1Wfl2mG4e6rxZTm/clFe9TUC0qlBwGk9Z9o4IYcKgCejTk8dI eJrkud4N4xkSHFRLwCli33ov1KOkPa9yzH9yPKjX7Md9If5Xqh9ntv467r6RtOEm Qi7A86LTtnnIvg3ArnieD8mMovPcCpqgVKshjoSLVyi8FOttRPWBWBAjrwYG6Mku u3nyIZBI07+eQAR5fRUVbgt9LcYPGuKVuTYj3O2LWzTDXt9vpb6F8YQQHQ3Y4qqY t8KOkZXA1+q8fywSNJReTMKFfdi9epve1LhFXatomOeVfWRoGKd1dra7/re7+G9m /iILYYVlUN8LtgrQKDvL/vPu3A== -----END CERTIFICATE-----Generated at Sat Jun 13 19:34:06 2026 by rpki-client