$ rpki-client -vvf rpki.apnic.net/member_repository/A9198267/02C86EAA78CB11EA820D7274C4F9AE02/OPsGr2SfQA9ROZSTW-335JJwyKo.mft File: OPsGr2SfQA9ROZSTW-335JJwyKo.mft (raw, json) Hash identifier: mrzVxWFLiMpC2Q2ymBfflTdag6aTC0DcjV5Ex+60fYQ= Subject key identifier: F4:DB:BF:EE:8D:49:A7:A1:C8:D7:B8:54:2A:A2:D9:14:0E:73:AA:32 Authority key identifier: 38:FB:06:AF:64:9F:40:0F:51:39:94:93:5B:ED:F7:E4:92:70:C8:AA Certificate issuer: /CN=A9198267/serialNumber=38FB06AF649F400F513994935BEDF7E49270C8AA Certificate serial: 0AD0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OPsGr2SfQA9ROZSTW-335JJwyKo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198267/02C86EAA78CB11EA820D7274C4F9AE02/OPsGr2SfQA9ROZSTW-335JJwyKo.mft Manifest number: 0ABF Signing time: Fri 12 Jun 2026 19:29:51 +0000 Manifest this update: Fri 12 Jun 2026 19:29:51 +0000 Manifest next update: Fri 19 Jun 2026 19:29:51 +0000 Files and hashes: 1: OPsGr2SfQA9ROZSTW-335JJwyKo.crl (hash: XlL28gmJbglRPKvt7fokWOZbuqJw/ZNPvxtbVkABZe8=) 2: 2F43EE7278CC11EAB69DAC75C4F9AE02.roa (hash: RCg1Rl9BMePurgmT4FLJMdQ57mTRP5HppFNnGUt/YQk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198267/02C86EAA78CB11EA820D7274C4F9AE02/OPsGr2SfQA9ROZSTW-335JJwyKo.crl rsync://rpki.apnic.net/member_repository/A9198267/02C86EAA78CB11EA820D7274C4F9AE02/OPsGr2SfQA9ROZSTW-335JJwyKo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OPsGr2SfQA9ROZSTW-335JJwyKo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 19:29:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2768 (0xad0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198267, serialNumber=38FB06AF649F400F513994935BEDF7E49270C8AA Validity Not Before: Jun 12 19:29:51 2026 GMT Not After : Jun 19 19:29:51 2026 GMT Subject: CN=6a2c5e2f-93cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:a7:b7:85:18:ab:ff:36:25:e5:6d:9f:7a:90: 18:35:6a:be:d4:1e:1e:71:68:2a:7f:ae:ba:af:13: 89:7c:8c:15:05:49:29:9a:71:2e:4b:86:f6:d8:e9: b1:bd:78:cc:8e:69:1b:cc:3b:18:84:7d:1b:93:26: 47:8e:93:34:69:e3:99:1e:c4:c0:16:9e:84:22:ac: a6:c5:9d:43:0c:6b:dd:92:ba:96:09:1a:3c:8f:ff: 9d:87:ed:a3:b2:8f:61:2d:bb:9d:54:6e:90:95:9d: f9:88:d3:f5:d2:fe:e7:82:f8:e9:33:8b:28:99:e0: 85:a7:2c:7a:a1:7e:c9:3b:4c:27:6d:c8:3e:59:3c: b7:85:a7:aa:bb:c5:e8:87:96:bf:91:06:05:78:01: 7f:89:ff:e6:af:0f:1b:83:e5:91:a5:61:7e:dd:e4: 33:b9:66:e5:e1:93:2d:fa:b7:b0:62:76:00:a0:a4: 8d:5b:a2:71:a5:7c:c5:8c:b0:62:d7:c1:bf:8d:d4: fe:1f:f0:3e:6b:33:02:fc:32:50:8f:bd:38:41:81: 82:4e:df:4c:b9:08:01:a3:bf:59:4c:f9:b2:30:dd: e5:be:22:4a:17:d7:17:ad:02:97:7d:d1:33:35:cd: ba:86:47:70:0e:3b:62:6b:40:e7:99:4c:4e:1b:fd: 85:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:DB:BF:EE:8D:49:A7:A1:C8:D7:B8:54:2A:A2:D9:14:0E:73:AA:32 X509v3 Authority Key Identifier: keyid:38:FB:06:AF:64:9F:40:0F:51:39:94:93:5B:ED:F7:E4:92:70:C8:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198267/02C86EAA78CB11EA820D7274C4F9AE02/OPsGr2SfQA9ROZSTW-335JJwyKo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OPsGr2SfQA9ROZSTW-335JJwyKo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198267/02C86EAA78CB11EA820D7274C4F9AE02/OPsGr2SfQA9ROZSTW-335JJwyKo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:cc:42:3c:2f:93:63:eb:59:98:02:ec:c1:7a:03:eb:2e:b6: 5d:12:64:ba:b8:7f:45:68:70:c3:fc:95:61:e9:6c:c3:a5:0c: 24:7c:7b:99:1b:bc:4b:2b:95:6a:de:09:33:14:58:09:b2:dd: 86:61:b7:87:ee:04:ea:47:ee:6c:06:55:52:14:a6:4d:3b:d7: a7:d2:8b:63:d5:8c:e9:44:85:98:51:9b:92:2c:ff:40:62:a5: a3:38:83:ed:82:9b:a8:d5:b2:13:0c:8b:26:6c:93:e8:00:56: 11:f8:c4:51:f4:a9:75:30:14:4a:02:e7:39:4c:9b:3f:0b:ff: 18:d9:54:17:1c:b7:0f:42:4a:35:92:0a:7e:d3:10:16:d8:c3: 2b:f6:8b:6b:5b:53:fb:43:77:21:01:b7:0e:65:cc:f1:f0:0f: d4:fa:53:07:b2:77:74:ed:26:3a:3c:03:12:2e:d9:5d:cc:51: a1:a0:fc:99:b2:ad:19:38:e9:40:de:a4:c1:2c:b0:06:e0:85: ee:8e:ce:c6:14:16:93:eb:48:5f:c0:9c:24:4e:3e:f8:43:96: 46:0b:c5:b6:fb:98:7e:b0:65:93:fd:44:74:20:fa:d1:af:a8: 65:fe:9d:0b:d8:e6:54:ef:e3:78:6c:ed:2b:95:7f:ab:26:9d: 19:91:30:63 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCtAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTgyNjcxMTAvBgNVBAUTKDM4RkIwNkFGNjQ5RjQwMEY1MTM5OTQ5MzVCRURGN0U0 OTI3MEM4QUEwHhcNMjYwNjEyMTkyOTUxWhcNMjYwNjE5MTkyOTUxWjAYMRYwFAYD VQQDEw02YTJjNWUyZi05M2NjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApae3hRir/zYl5W2fepAYNWq+1B4ecWgqf666rxOJfIwVBUkpmnEuS4b22Omx vXjMjmkbzDsYhH0bkyZHjpM0aeOZHsTAFp6EIqymxZ1DDGvdkrqWCRo8j/+dh+2j so9hLbudVG6QlZ35iNP10v7ngvjpM4someCFpyx6oX7JO0wnbcg+WTy3haequ8Xo h5a/kQYFeAF/if/mrw8bg+WRpWF+3eQzuWbl4ZMt+rewYnYAoKSNW6JxpXzFjLBi 18G/jdT+H/A+azMC/DJQj704QYGCTt9MuQgBo79ZTPmyMN3lviJKF9cXrQKXfdEz Nc26hkdwDjtia0DnmUxOG/2FrwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPTbv+6N SaehyNe4VCqi2RQOc6oyMB8GA1UdIwQYMBaAFDj7Bq9kn0APUTmUk1vt9+SScMiq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5ODI2Ny8wMkM4NkVBQTc4 Q0IxMUVBODIwRDcyNzRDNEY5QUUwMi9PUHNHcjJTZlFBOVJPWlNUVy0zMzVKSnd5 S28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09Qc0dyMlNmUUE5Uk9aU1RXLTMzNUpKd3lLby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 ODI2Ny8wMkM4NkVBQTc4Q0IxMUVBODIwRDcyNzRDNEY5QUUwMi9PUHNHcjJTZlFB OVJPWlNUVy0zMzVKSnd5S28ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAUsxCPC+TY+tZmALswXoD6y62XRJkurh/RWhww/yVYelsw6UMJHx7mRu8SyuV at4JMxRYCbLdhmG3h+4E6kfubAZVUhSmTTvXp9KLY9WM6USFmFGbkiz/QGKloziD 7YKbqNWyEwyLJmyT6ABWEfjEUfSpdTAUSgLnOUybPwv/GNlUFxy3D0JKNZIKftMQ FtjDK/aLa1tT+0N3IQG3DmXM8fAP1PpTB7J3dO0mOjwDEi7ZXcxRoaD8mbKtGTjp QN6kwSywBuCF7o7OxhQWk+tIX8CcJE4++EOWRgvFtvuYfrBlk/1EdCD60a+oZf6d C9jmVO/jeGztK5V/qyadGZEwYw== -----END CERTIFICATE-----Generated at Sun Jun 14 00:14:12 2026 by rpki-client