$ rpki-client -vvf rpki.apnic.net/member_repository/A91454F3/1EF7866805DC11EA9743BA5FC4F9AE02/bOklSpy_oHBCJDc13OT79-VGEWY.mft File: bOklSpy_oHBCJDc13OT79-VGEWY.mft (raw, json) Hash identifier: 3FuaU/P9rtEru9bo/I5q50snvjWA52PFcRYYsla/Mi0= Subject key identifier: 65:81:E0:76:0B:26:59:43:97:2A:46:32:3B:4C:50:7A:7C:0B:64:5B Authority key identifier: 6C:E9:25:4A:9C:BF:A0:70:42:24:37:35:DC:E4:FB:F7:E5:46:11:66 Certificate issuer: /CN=A91454F3/serialNumber=6CE9254A9CBFA07042243735DCE4FBF7E5461166 Certificate serial: 0D0B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bOklSpy_oHBCJDc13OT79-VGEWY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91454F3/1EF7866805DC11EA9743BA5FC4F9AE02/bOklSpy_oHBCJDc13OT79-VGEWY.mft Manifest number: 0D02 Signing time: Fri 12 Jun 2026 18:13:11 +0000 Manifest this update: Fri 12 Jun 2026 18:13:10 +0000 Manifest next update: Fri 19 Jun 2026 18:13:10 +0000 Files and hashes: 1: bOklSpy_oHBCJDc13OT79-VGEWY.crl (hash: nXNvlCi7OlFR8k91/536+ree2bfTyqORYEvPLifZqSo=) 2: 9DDA09EC05DC11EA9B6B0560C4F9AE02.roa (hash: jOASJy08cQtiHT2anaDk0d4CR9FN0kGkmWrO2dstaFQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91454F3/1EF7866805DC11EA9743BA5FC4F9AE02/bOklSpy_oHBCJDc13OT79-VGEWY.crl rsync://rpki.apnic.net/member_repository/A91454F3/1EF7866805DC11EA9743BA5FC4F9AE02/bOklSpy_oHBCJDc13OT79-VGEWY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bOklSpy_oHBCJDc13OT79-VGEWY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 18:13:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3339 (0xd0b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91454F3, serialNumber=6CE9254A9CBFA07042243735DCE4FBF7E5461166 Validity Not Before: Jun 12 18:13:10 2026 GMT Not After : Jun 19 18:13:10 2026 GMT Subject: CN=6a2c4c36-52c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:74:81:db:8d:a7:03:22:25:a2:df:9f:15:29: b5:5a:54:e4:41:d7:60:96:aa:3a:c3:e6:ea:a6:ce: b0:bc:8d:0b:0c:e9:53:f8:4a:61:3b:f7:9b:7d:16: 30:06:7d:2a:07:00:20:98:95:14:6a:79:ea:8f:b6: 64:d1:ba:bc:0a:64:b7:21:34:57:b2:2a:04:8a:bb: 98:7f:86:6d:ad:c0:ca:9c:07:58:7f:24:60:34:29: 9a:35:d5:7d:fc:3a:60:47:94:41:65:62:dd:81:b6: 90:a1:1f:60:12:74:67:89:f8:b0:b8:ed:f1:e0:ae: 19:f0:12:69:13:17:2d:6e:45:0a:16:de:ce:56:95: 81:7f:8c:df:63:df:6f:9f:94:38:64:17:02:5c:b4: 47:11:57:f5:1d:d2:6f:75:e0:3d:2d:30:84:8f:0a: d7:71:7e:29:ff:75:02:15:e3:d1:2e:79:1d:96:0f: 90:9e:8b:b6:54:ec:1d:4a:e7:4a:af:d7:84:c3:a4: 44:1a:cb:55:38:80:3a:e7:4e:19:11:af:4a:99:fe: d5:70:24:e5:c3:1e:ea:4e:52:a5:bf:87:e1:c3:f3: 1a:60:5f:dd:2e:5d:e1:06:fe:30:0e:96:7d:62:b7: 25:03:5e:b9:ec:37:62:11:6f:f5:12:f0:63:07:b4: c4:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:81:E0:76:0B:26:59:43:97:2A:46:32:3B:4C:50:7A:7C:0B:64:5B X509v3 Authority Key Identifier: keyid:6C:E9:25:4A:9C:BF:A0:70:42:24:37:35:DC:E4:FB:F7:E5:46:11:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91454F3/1EF7866805DC11EA9743BA5FC4F9AE02/bOklSpy_oHBCJDc13OT79-VGEWY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bOklSpy_oHBCJDc13OT79-VGEWY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91454F3/1EF7866805DC11EA9743BA5FC4F9AE02/bOklSpy_oHBCJDc13OT79-VGEWY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:68:b0:46:29:62:b2:a3:86:59:a3:91:bd:2e:7e:ff:86:8d: 44:74:b9:ae:40:7d:c1:7f:6a:bb:90:5a:ce:4d:0f:ce:69:c9: a4:05:2a:72:7b:16:87:d9:63:6b:f1:cf:76:b5:1d:d6:05:83: 6b:df:db:ee:ef:22:ce:a0:a1:e6:24:48:e8:c1:92:f4:1f:ac: 12:b1:13:5b:64:73:e5:75:16:f8:d1:91:ca:4a:42:ea:f8:99: 75:c2:04:19:0c:73:b1:00:e2:b2:78:c1:54:53:79:99:21:d4: 8d:58:0a:f9:c8:55:76:05:bf:a0:ec:d7:dc:00:66:af:39:25: 97:44:ea:23:f6:c2:91:04:44:39:3b:1b:2d:d6:53:54:be:37: 3a:3d:90:43:27:6a:cb:76:1e:d2:ef:7c:2f:ec:7f:82:c8:e9: f2:97:74:a8:9f:20:a7:ae:3a:3e:af:e8:fd:f3:cc:53:c7:b2: 58:4a:69:c4:92:bf:bb:ca:ca:28:08:40:95:b9:9a:37:23:b9: ba:8b:82:b7:f2:d9:0b:ed:0c:f2:49:4c:8c:6b:96:6d:92:d8: eb:2b:d8:dc:33:09:56:52:62:1c:5b:0f:de:78:82:fe:72:a1: 47:84:1f:86:8d:08:a0:60:03:f8:8d:f6:7b:8a:c6:68:b9:82: 69:04:d3:37 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDQswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDU0RjMxMTAvBgNVBAUTKDZDRTkyNTRBOUNCRkEwNzA0MjI0MzczNURDRTRGQkY3 RTU0NjExNjYwHhcNMjYwNjEyMTgxMzEwWhcNMjYwNjE5MTgxMzEwWjAYMRYwFAYD VQQDEw02YTJjNGMzNi01MmMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoHSB242nAyIlot+fFSm1WlTkQddglqo6w+bqps6wvI0LDOlT+EphO/ebfRYw Bn0qBwAgmJUUannqj7Zk0bq8CmS3ITRXsioEiruYf4ZtrcDKnAdYfyRgNCmaNdV9 /DpgR5RBZWLdgbaQoR9gEnRnifiwuO3x4K4Z8BJpExctbkUKFt7OVpWBf4zfY99v n5Q4ZBcCXLRHEVf1HdJvdeA9LTCEjwrXcX4p/3UCFePRLnkdlg+Qnou2VOwdSudK r9eEw6REGstVOIA6504ZEa9Kmf7VcCTlwx7qTlKlv4fhw/MaYF/dLl3hBv4wDpZ9 YrclA1657DdiEW/1EvBjB7TEAQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGWB4HYL JllDlypGMjtMUHp8C2RbMB8GA1UdIwQYMBaAFGzpJUqcv6BwQiQ3Ndzk+/flRhFm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NTRGMy8xRUY3ODY2ODA1 REMxMUVBOTc0M0JBNUZDNEY5QUUwMi9iT2tsU3B5X29IQkNKRGMxM09UNzktVkdF V1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JPa2xTcHlfb0hCQ0pEYzEzT1Q3OS1WR0VXWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NTRGMy8xRUY3ODY2ODA1REMxMUVBOTc0M0JBNUZDNEY5QUUwMi9iT2tsU3B5X29I QkNKRGMxM09UNzktVkdFV1kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAKmiwRilisqOGWaORvS5+/4aNRHS5rkB9wX9qu5Bazk0PzmnJpAUqcnsWh9lj a/HPdrUd1gWDa9/b7u8izqCh5iRI6MGS9B+sErETW2Rz5XUW+NGRykpC6viZdcIE GQxzsQDisnjBVFN5mSHUjVgK+chVdgW/oOzX3ABmrzkll0TqI/bCkQREOTsbLdZT VL43Oj2QQydqy3Ye0u98L+x/gsjp8pd0qJ8gp646Pq/o/fPMU8eyWEppxJK/u8rK KAhAlbmaNyO5uouCt/LZC+0M8klMjGuWbZLY6yvY3DMJVlJiHFsP3niC/nKhR4Qf ho0IoGAD+I32e4rGaLmCaQTTNw== -----END CERTIFICATE-----Generated at Sat Jun 13 10:00:20 2026 by rpki-client