$ rpki-client -vvf rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.mft File: OxaIpfe3JKr754IKLGPZey6o5SI.mft (raw, json) Hash identifier: kZkZHxmvNwXYD9wTilBahXQL4xmR0qPta+erwWQDK1Y= Subject key identifier: FC:39:38:0A:71:21:F4:93:31:77:1D:12:4D:60:10:B7:14:AC:47:4F Authority key identifier: 3B:16:88:A5:F7:B7:24:AA:FB:E7:82:0A:2C:63:D9:7B:2E:A8:E5:22 Certificate issuer: /CN=A91772FA/serialNumber=3B1688A5F7B724AAFBE7820A2C63D97B2EA8E522 Certificate serial: 03EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OxaIpfe3JKr754IKLGPZey6o5SI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.mft Manifest number: 03E0 Signing time: Sat 13 Jun 2026 00:34:09 +0000 Manifest this update: Sat 13 Jun 2026 00:34:08 +0000 Manifest next update: Sat 20 Jun 2026 00:34:08 +0000 Files and hashes: 1: OxaIpfe3JKr754IKLGPZey6o5SI.crl (hash: ykS+tOGSmkgd8uWloBl9c0ri7ee3/DhZqgEAOjTGl1s=) 2: 2D613294CD7611EC83259862C4F9AE02.roa (hash: wIyzsjW5BRzmcndW2dr3tP73GPQanoCiUm2iVewXNHc=) 3: EF8CB49CD78F11EC91680D49C4F9AE02.roa (hash: hsXlGwRGvGPxUguulNF29dR42fVylbNtBhEHVdKJ8n0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.crl rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OxaIpfe3JKr754IKLGPZey6o5SI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Jun 2026 00:34:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1004 (0x3ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91772FA, serialNumber=3B1688A5F7B724AAFBE7820A2C63D97B2EA8E522 Validity Not Before: Jun 13 00:34:08 2026 GMT Not After : Jun 20 00:34:08 2026 GMT Subject: CN=6a2ca580-71b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:32:7b:87:78:bb:eb:19:df:bd:60:18:15:66: 4e:31:3c:59:95:52:77:66:2c:4b:2a:80:8d:7f:b3: d7:d3:69:f6:1e:b2:f2:ac:4c:88:25:a2:0f:3d:2f: ff:2d:05:9c:20:30:2d:cf:ce:a6:74:ef:79:29:8a: 83:a4:63:2a:36:d9:f9:15:51:e3:1e:02:c6:b6:62: 21:56:b5:e0:76:19:39:da:c7:37:8c:5c:24:28:0e: 61:1a:2a:77:ef:8f:b3:2c:56:5a:b2:6c:a5:e2:97: 3c:cb:87:b5:43:04:da:e5:7c:d1:5b:66:fe:bd:d0: 71:e2:59:c9:88:ad:e5:fd:10:a4:85:68:ff:8e:a1: 3e:9f:d1:36:41:8e:43:f7:f4:b8:77:68:0d:15:fe: 95:7b:f7:fa:3a:12:53:17:a5:fd:ef:ea:eb:cb:10: 48:d1:24:e7:04:ba:ec:96:d1:12:cc:1b:85:71:d3: 10:95:0f:1c:bf:7e:ed:78:71:74:5d:72:f5:b4:f2: 96:90:83:bf:6a:8e:a9:6e:7e:c1:77:71:bd:d7:73: 77:9f:c6:23:1a:a1:ea:0d:b9:db:3b:73:1a:82:9b: 6c:dc:f3:75:80:63:ec:91:dc:4e:08:16:df:d2:19: f0:8b:cf:df:ee:6c:82:33:4c:f9:41:f6:ac:1d:70: 17:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:39:38:0A:71:21:F4:93:31:77:1D:12:4D:60:10:B7:14:AC:47:4F X509v3 Authority Key Identifier: keyid:3B:16:88:A5:F7:B7:24:AA:FB:E7:82:0A:2C:63:D9:7B:2E:A8:E5:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OxaIpfe3JKr754IKLGPZey6o5SI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:10:c4:03:b0:b7:d0:49:aa:f7:27:b9:f1:bb:6e:66:83:7d: ed:e5:08:6b:33:e1:21:bd:3b:82:36:d6:f4:14:ea:e4:a2:98: 6f:ee:e0:3e:95:a4:5f:7f:25:77:ed:80:f4:4b:7f:64:57:18: 03:f8:ef:b1:6b:8b:44:83:7c:fa:c7:50:3b:47:b9:d6:94:f2: c7:f3:14:4d:e1:dd:ab:66:98:84:43:ed:f6:0d:93:3b:b6:28: ef:cc:6a:65:80:f2:03:26:3e:aa:1d:96:e4:7e:6c:40:82:8e: 37:e5:ea:9d:ee:2b:93:46:e8:db:8b:d5:52:39:54:ec:14:8d: 40:eb:4b:b8:a2:53:13:a9:2e:8b:42:fc:95:6f:7a:1a:3c:75: f6:63:4b:b8:18:46:50:62:ef:70:91:85:b8:d9:43:5c:5b:2e: 3b:1f:d6:d1:0d:0c:4f:ce:46:68:c5:01:7a:a1:7d:73:26:72: 3e:30:d9:e4:bc:06:67:f8:75:a7:63:fd:76:fa:05:7a:1f:97: f8:d5:f8:11:18:58:c7:c3:08:a5:d0:13:93:23:39:cb:40:66: 26:93:bc:2b:58:c1:cd:aa:47:98:58:ea:78:ed:55:cf:a8:b8: 9d:a3:46:7e:47:35:14:da:49:16:1b:a6:13:02:f2:8e:a7:fd: 57:6f:dc:4e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA+wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzcyRkExMTAvBgNVBAUTKDNCMTY4OEE1RjdCNzI0QUFGQkU3ODIwQTJDNjNEOTdC MkVBOEU1MjIwHhcNMjYwNjEzMDAzNDA4WhcNMjYwNjIwMDAzNDA4WjAYMRYwFAYD VQQDEw02YTJjYTU4MC03MWIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsjJ7h3i76xnfvWAYFWZOMTxZlVJ3ZixLKoCNf7PX02n2HrLyrEyIJaIPPS// LQWcIDAtz86mdO95KYqDpGMqNtn5FVHjHgLGtmIhVrXgdhk52sc3jFwkKA5hGip3 74+zLFZasmyl4pc8y4e1QwTa5XzRW2b+vdBx4lnJiK3l/RCkhWj/jqE+n9E2QY5D 9/S4d2gNFf6Ve/f6OhJTF6X97+rryxBI0STnBLrsltESzBuFcdMQlQ8cv37teHF0 XXL1tPKWkIO/ao6pbn7Bd3G913N3n8YjGqHqDbnbO3Magpts3PN1gGPskdxOCBbf 0hnwi8/f7myCM0z5QfasHXAX9QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPw5OApx IfSTMXcdEk1gELcUrEdPMB8GA1UdIwQYMBaAFDsWiKX3tySq++eCCixj2XsuqOUi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NzJGQS9ENzI0NDU2MkNE NzMxMUVDQTBBQTgwNjFDNEY5QUUwMi9PeGFJcGZlM0pLcjc1NElLTEdQWmV5Nm81 U0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL094YUlwZmUzSktyNzU0SUtMR1BaZXk2bzVTSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NzJGQS9ENzI0NDU2MkNENzMxMUVDQTBBQTgwNjFDNEY5QUUwMi9PeGFJcGZlM0pL cjc1NElLTEdQWmV5Nm81U0kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAhxDEA7C30Emq9ye58btuZoN97eUIazPhIb07gjbW9BTq5KKYb+7gPpWkX38l d+2A9Et/ZFcYA/jvsWuLRIN8+sdQO0e51pTyx/MUTeHdq2aYhEPt9g2TO7Yo78xq ZYDyAyY+qh2W5H5sQIKON+Xqne4rk0bo24vVUjlU7BSNQOtLuKJTE6kui0L8lW96 Gjx19mNLuBhGUGLvcJGFuNlDXFsuOx/W0Q0MT85GaMUBeqF9cyZyPjDZ5LwGZ/h1 p2P9dvoFeh+X+NX4ERhYx8MIpdATkyM5y0BmJpO8K1jBzapHmFjqeO1Vz6i4naNG fkc1FNpJFhumEwLyjqf9V2/cTg== -----END CERTIFICATE-----Generated at Sat Jun 13 20:11:56 2026 by rpki-client