$ rpki-client -vvf rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.mft File: OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.mft (raw, json) Hash identifier: TXeQkwNjX4ibbEEiYRYDvqdoXLIDLcnp9grFDfP755M= Subject key identifier: 8F:B8:25:14:2E:EF:B3:E2:50:B6:05:CC:DD:6C:95:C9:C2:98:8D:C9 Authority key identifier: 39:C4:39:67:57:00:87:F5:83:E4:25:A9:FE:9B:69:B9:50:6A:59:BD Certificate issuer: /CN=A9157D67/serialNumber=39C43967570087F583E425A9FE9B69B9506A59BD Certificate serial: 0C7E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.mft Manifest number: 0A90 Signing time: Fri 12 Jun 2026 21:27:00 +0000 Manifest this update: Fri 12 Jun 2026 21:27:00 +0000 Manifest next update: Fri 19 Jun 2026 21:27:00 +0000 Files and hashes: 1: OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.crl (hash: Ak+2Lf8/r6ONeH+cEpVBqFbHSV5zvKHkAyu5TYvi1ys=) 2: 72C9BE36950211EFAC892C5EC4F9AE02.roa (hash: ye8jq88ep0wSruy1WtzE0bv/JRbtY6NOkRlK24kmsxo=) 3: 18E343FA3A3411F195AC72659C833773.roa (hash: KmC1y6Iu7HBzh2swaBdIcYsNGsBp1fh+v0hV3x9SRrk=) 4: 263DB02C4BB611EE9B959267C4F9AE02.roa (hash: w6yzFziDeBAoUWZ59xaLHwBZh42R2pzo/qzXpmN8kyk=) 5: 61EE2500936E11F091943583C4F9AE02.roa (hash: i5JUNSrOcWlIsH2C2rUbmkfpOf4M8uLqKm2ESLdCZ1Y=) 6: 3CE7D21201A311F1A14FC5D2686F56BC.roa (hash: o8Efs0Zmsyf+yPslQE6u+yFKAm4P6NONEQAjk5sGm4c=) 7: 1E01B6A0543D11F186DD736CA5833773.roa (hash: fqheN6I7fsf14qKQtGN/L3I04g+a4+1Dq/8idQw73uE=) 8: AB96EF3852CD11ECAB209C5FC4F9AE02.roa (hash: J0sAShMAS7TBXIrBTuQVLuuil+RzIlr22j/AeepAcBs=) 9: 93EE047E4BB511EE9309AA4EC4F9AE02.roa (hash: TZoK6id0rUzh56KPEUCZAm7vzhoQKcumpCyH1Z185+Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.crl rsync://rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 21:26:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3198 (0xc7e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157D67, serialNumber=39C43967570087F583E425A9FE9B69B9506A59BD Validity Not Before: Jun 12 21:27:00 2026 GMT Not After : Jun 19 21:27:00 2026 GMT Subject: CN=6a2c79a4-25b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:14:a1:ed:8e:a8:9a:a1:91:ff:40:18:2d:46: 3f:b4:e9:04:41:d4:b4:83:ab:1c:aa:c0:9e:40:38: 1c:ea:92:2e:ef:4b:70:a3:56:5c:45:4b:28:80:28: a5:f2:ef:e0:37:15:15:38:82:21:63:b5:fb:54:a9: 19:02:21:a9:56:b4:50:13:d3:c2:44:ab:c8:19:c5: ee:69:10:8f:bd:76:f3:3c:47:ff:8e:bf:70:74:68: 65:9b:44:75:b3:da:50:1b:3d:78:a0:da:e0:28:00: 34:18:a2:20:ad:48:8b:e8:35:aa:32:61:25:d5:bd: 0e:da:77:48:d6:03:77:00:dc:24:38:d3:be:e5:f2: 2e:4e:6c:84:ab:c3:0c:8a:39:39:15:82:34:12:b8: 49:a7:e9:89:87:a4:e5:2f:7d:13:f1:4e:e7:e5:b8: 77:f5:c8:ad:b5:1c:6d:fc:d1:73:5f:35:07:5c:1f: e1:c7:3c:10:a8:9a:b2:67:1c:3c:55:09:57:67:10: b6:ee:6d:33:95:a8:90:9d:41:15:ad:1b:29:be:20: bd:cd:70:0f:73:70:e0:bf:63:bc:c4:5f:65:e2:89: f7:76:4c:2c:f4:fa:dd:6a:4e:36:c6:4d:45:03:80: 0f:49:30:92:31:5d:30:15:f7:1e:03:78:e3:a8:52: dd:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:B8:25:14:2E:EF:B3:E2:50:B6:05:CC:DD:6C:95:C9:C2:98:8D:C9 X509v3 Authority Key Identifier: keyid:39:C4:39:67:57:00:87:F5:83:E4:25:A9:FE:9B:69:B9:50:6A:59:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption be:82:f8:af:d3:4d:ae:4f:43:bf:c9:9d:99:16:dd:00:a4:ce: 0e:aa:85:6e:99:9c:6e:95:c2:a3:2f:35:a8:1c:94:fb:d1:3f: 88:b1:4d:e4:5d:e9:6f:b2:7c:a8:84:07:a6:ef:71:4e:7e:2c: 06:c8:fb:2f:96:04:17:bd:e8:f0:68:fe:12:6d:99:09:37:b0: 68:43:43:90:ae:bd:6b:48:9b:7f:75:61:d1:78:40:ee:7f:03: f9:37:31:f5:6f:cf:82:c4:12:6b:1b:13:c5:f2:e4:fd:1f:38: 9c:7b:93:d8:c1:d2:21:3e:8b:20:69:32:a1:39:1f:12:02:ea: a7:94:ab:f4:92:a0:52:3c:eb:96:56:63:4c:3f:49:3b:4e:d5: 21:44:dc:32:fa:40:11:80:c7:22:75:2d:0f:92:49:0f:01:db: 91:9e:82:34:a6:1f:04:0c:3a:1e:1f:3c:e2:94:5c:0c:2f:5a: db:80:57:56:95:cc:cc:63:c6:52:dd:e1:ac:ee:52:65:a5:9a: d1:45:59:01:cf:0c:cd:63:6b:7f:cb:9d:ac:10:75:2e:de:04: 82:32:85:0c:34:74:de:04:7a:ff:67:2a:d5:2f:63:0b:70:ea: f2:33:9e:00:cc:88:ba:3f:05:bb:36:5a:66:5f:ca:da:a6:b2: 9c:27:91:e3 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDH4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdENjcxMTAvBgNVBAUTKDM5QzQzOTY3NTcwMDg3RjU4M0U0MjVBOUZFOUI2OUI5 NTA2QTU5QkQwHhcNMjYwNjEyMjEyNzAwWhcNMjYwNjE5MjEyNzAwWjAYMRYwFAYD VQQDEw02YTJjNzlhNC0yNWI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArxSh7Y6omqGR/0AYLUY/tOkEQdS0g6scqsCeQDgc6pIu70two1ZcRUsogCil 8u/gNxUVOIIhY7X7VKkZAiGpVrRQE9PCRKvIGcXuaRCPvXbzPEf/jr9wdGhlm0R1 s9pQGz14oNrgKAA0GKIgrUiL6DWqMmEl1b0O2ndI1gN3ANwkONO+5fIuTmyEq8MM ijk5FYI0ErhJp+mJh6TlL30T8U7n5bh39cittRxt/NFzXzUHXB/hxzwQqJqyZxw8 VQlXZxC27m0zlaiQnUEVrRspviC9zXAPc3Dgv2O8xF9l4on3dkws9Prdak42xk1F A4APSTCSMV0wFfceA3jjqFLdBQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFI+4JRQu 77PiULYFzN1slcnCmI3JMB8GA1UdIwQYMBaAFDnEOWdXAIf1g+Qlqf6bablQalm9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0Q2Ny82OUU2QzE2QTQ0 MkExMUVCOTU5OUFEMzhDNEY5QUUwMi9PY1E1WjFjQWhfV0Q1Q1dwX3B0cHVWQnFX YjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09jUTVaMWNBaF9XRDVDV3BfcHRwdVZCcVdiMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0Q2Ny82OUU2QzE2QTQ0MkExMUVCOTU5OUFEMzhDNEY5QUUwMi9PY1E1WjFjQWhf V0Q1Q1dwX3B0cHVWQnFXYjAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAvoL4r9NNrk9Dv8mdmRbdAKTODqqFbpmcbpXCoy81qByU+9E/iLFN5F3pb7J8 qIQHpu9xTn4sBsj7L5YEF73o8Gj+Em2ZCTewaENDkK69a0ibf3Vh0XhA7n8D+Tcx 9W/PgsQSaxsTxfLk/R84nHuT2MHSIT6LIGkyoTkfEgLqp5Sr9JKgUjzrllZjTD9J O07VIUTcMvpAEYDHInUtD5JJDwHbkZ6CNKYfBAw6Hh884pRcDC9a24BXVpXMzGPG Ut3hrO5SZaWa0UVZAc8MzWNrf8udrBB1Lt4EgjKFDDR03gR6/2cq1S9jC3Dq8jOe AMyIuj8FuzZaZl/K2qaynCeR4w== -----END CERTIFICATE-----Generated at Sat Jun 13 11:26:16 2026 by rpki-client