$ rpki-client -vvf rpki.apnic.net/member_repository/A9144CB7/8C93F76CE17611EFB7981B19C4F9AE02/opgFnwZTffjAi4klX3lZQaMcGAA.mft File: opgFnwZTffjAi4klX3lZQaMcGAA.mft (raw, json) Hash identifier: XaWUdsByXlQDAkz8W1sjRmt3VlEAP0Gviohq8+WeUt0= Subject key identifier: ED:1E:D6:28:4F:7B:93:B5:1A:18:B1:AD:91:00:42:F4:67:98:EB:21 Authority key identifier: A2:98:05:9F:06:53:7D:F8:C0:8B:89:25:5F:79:59:41:A3:1C:18:00 Certificate issuer: /CN=A9144CB7/serialNumber=A298059F06537DF8C08B89255F795941A31C1800 Certificate serial: 0109 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/opgFnwZTffjAi4klX3lZQaMcGAA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144CB7/8C93F76CE17611EFB7981B19C4F9AE02/opgFnwZTffjAi4klX3lZQaMcGAA.mft Manifest number: 0101 Signing time: Thu 11 Jun 2026 08:29:52 +0000 Manifest this update: Thu 11 Jun 2026 08:29:51 +0000 Manifest next update: Thu 18 Jun 2026 08:29:51 +0000 Files and hashes: 1: opgFnwZTffjAi4klX3lZQaMcGAA.crl (hash: lffG4buIhXPJFAwnRRtu++JAI4aSwlBRmlJakRoJA7o=) 2: 903E0F1652BD11F0A9261F57C4F9AE02.roa (hash: dmB1cr7byswXq/X1M5OhCF6oVNLPlMisHj2PV9sIXP0=) 3: E8716FD4EA3511EF89116C52C4F9AE02.roa (hash: 0FCY4nM/xiPTvsko2lPHjPRBl+NB5R5liczHspFuXXU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144CB7/8C93F76CE17611EFB7981B19C4F9AE02/opgFnwZTffjAi4klX3lZQaMcGAA.crl rsync://rpki.apnic.net/member_repository/A9144CB7/8C93F76CE17611EFB7981B19C4F9AE02/opgFnwZTffjAi4klX3lZQaMcGAA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/opgFnwZTffjAi4klX3lZQaMcGAA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 18 Jun 2026 08:29:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 265 (0x109) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144CB7, serialNumber=A298059F06537DF8C08B89255F795941A31C1800 Validity Not Before: Jun 11 08:29:51 2026 GMT Not After : Jun 18 08:29:51 2026 GMT Subject: CN=6a2a7200-a54d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:a1:19:c7:c3:17:23:9e:53:80:9d:7a:94:3d: 62:c1:e3:92:75:ee:58:43:a2:06:30:96:13:1f:ec: 25:a6:5a:97:5f:24:c2:ad:9b:40:a0:96:51:34:f5: b6:52:a3:37:51:b3:d8:3f:0c:02:3e:1a:ad:76:02: ab:4b:6e:13:df:00:1e:9c:aa:2c:83:86:f0:3a:32: d1:cf:56:0b:57:02:48:9b:51:4f:42:d6:70:87:20: 1a:c7:86:ee:52:78:32:b0:71:55:38:da:8d:e7:6a: 6c:e7:95:43:6e:2c:cc:10:91:f8:dc:54:fa:df:ab: d6:35:4d:ee:4f:6f:88:09:c4:ef:9a:ba:38:02:1b: 1d:40:d7:b1:3b:ac:5e:61:dc:21:1d:9f:89:55:8f: b2:95:ea:7e:a0:34:00:d4:4e:63:47:e4:71:53:f7: 59:63:dd:04:36:e1:a4:65:00:84:e7:f4:02:d9:a0: 1a:05:47:4a:47:04:ad:45:f7:b4:9e:10:d7:ba:d0: 59:26:b1:2d:df:08:34:24:e2:f0:85:82:72:b9:5a: ff:20:ff:99:a7:49:2d:a2:11:4d:f7:f1:47:c4:05: ca:66:38:68:ef:0b:ed:88:80:7c:dc:9e:d3:3e:d0: 19:9e:2e:a7:7b:fa:83:f5:df:ad:f6:31:57:83:7e: 51:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:1E:D6:28:4F:7B:93:B5:1A:18:B1:AD:91:00:42:F4:67:98:EB:21 X509v3 Authority Key Identifier: keyid:A2:98:05:9F:06:53:7D:F8:C0:8B:89:25:5F:79:59:41:A3:1C:18:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144CB7/8C93F76CE17611EFB7981B19C4F9AE02/opgFnwZTffjAi4klX3lZQaMcGAA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/opgFnwZTffjAi4klX3lZQaMcGAA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144CB7/8C93F76CE17611EFB7981B19C4F9AE02/opgFnwZTffjAi4klX3lZQaMcGAA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:39:d6:54:35:cb:1d:9f:87:bf:bc:c3:4c:f5:17:41:36:cc: 65:5d:b6:5d:11:0b:b0:6c:b5:cc:fc:87:b0:29:88:91:95:4a: 50:54:5a:35:4d:e4:4b:ba:90:6b:98:24:20:06:d4:f6:21:aa: 08:f3:74:c5:00:c9:e9:07:d5:84:0d:e5:0d:ff:67:81:14:be: f5:b7:91:b4:00:59:4e:77:f3:22:6e:49:bd:8c:81:d0:e7:e1: ac:41:ad:10:e3:a5:f9:12:45:c8:ef:23:a8:70:a6:94:86:88: 67:65:36:59:9c:75:ef:62:61:86:d3:3a:9a:94:1e:39:b4:c3: c9:e8:d9:b9:bf:14:b1:65:d3:25:99:63:96:21:c7:4e:f2:e4: 43:5e:32:ea:5d:78:77:d3:b1:04:a9:23:ad:cf:56:d5:54:24: 52:3b:03:4d:5c:38:cc:b7:81:c4:15:10:92:20:82:83:24:d2: d6:15:7e:7f:79:96:7b:30:be:9c:aa:af:d4:b3:5b:9b:0e:a7: cc:de:e6:9c:f9:dc:47:18:3e:79:ac:68:dd:db:4f:c8:26:40: 80:c6:3a:7c:8a:68:15:3a:bb:5b:20:db:02:b6:c3:ab:8a:00: ea:97:e3:da:1b:b4:6c:15:5e:8f:03:71:3e:16:94:40:17:f1: 55:fb:49:eb -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAQkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDRDQjcxMTAvBgNVBAUTKEEyOTgwNTlGMDY1MzdERjhDMDhCODkyNTVGNzk1OTQx QTMxQzE4MDAwHhcNMjYwNjExMDgyOTUxWhcNMjYwNjE4MDgyOTUxWjAYMRYwFAYD VQQDEw02YTJhNzIwMC1hNTRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5qEZx8MXI55TgJ16lD1iweOSde5YQ6IGMJYTH+wlplqXXyTCrZtAoJZRNPW2 UqM3UbPYPwwCPhqtdgKrS24T3wAenKosg4bwOjLRz1YLVwJIm1FPQtZwhyAax4bu UngysHFVONqN52ps55VDbizMEJH43FT636vWNU3uT2+ICcTvmro4AhsdQNexO6xe YdwhHZ+JVY+ylep+oDQA1E5jR+RxU/dZY90ENuGkZQCE5/QC2aAaBUdKRwStRfe0 nhDXutBZJrEt3wg0JOLwhYJyuVr/IP+Zp0ktohFN9/FHxAXKZjho7wvtiIB83J7T PtAZni6ne/qD9d+t9jFXg35RlwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFO0e1ihP e5O1GhixrZEAQvRnmOshMB8GA1UdIwQYMBaAFKKYBZ8GU334wIuJJV95WUGjHBgA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NENCNy84QzkzRjc2Q0Ux NzYxMUVGQjc5ODFCMTlDNEY5QUUwMi9vcGdGbndaVGZmakFpNGtsWDNsWlFhTWNH QUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29wZ0Zud1pUZmZqQWk0a2xYM2xaUWFNY0dBQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NENCNy84QzkzRjc2Q0UxNzYxMUVGQjc5ODFCMTlDNEY5QUUwMi9vcGdGbndaVGZm akFpNGtsWDNsWlFhTWNHQUEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAKDnWVDXLHZ+Hv7zDTPUXQTbMZV22XRELsGy1zPyHsCmIkZVKUFRaNU3kS7qQ a5gkIAbU9iGqCPN0xQDJ6QfVhA3lDf9ngRS+9beRtABZTnfzIm5JvYyB0OfhrEGt EOOl+RJFyO8jqHCmlIaIZ2U2WZx172JhhtM6mpQeObTDyejZub8UsWXTJZljliHH TvLkQ14y6l14d9OxBKkjrc9W1VQkUjsDTVw4zLeBxBUQkiCCgyTS1hV+f3mWezC+ nKqv1LNbmw6nzN7mnPncRxg+eaxo3dtPyCZAgMY6fIpoFTq7WyDbArbDq4oA6pfj 2hu0bBVejwNxPhaUQBfxVftJ6w== -----END CERTIFICATE-----Generated at Sat Jun 13 07:31:18 2026 by rpki-client