$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1621/35EDA92ECF0D11EF92F1EC36C4F9AE02/oCcZWkgg89cmSk1X7pqdTCoQySM.mft File: oCcZWkgg89cmSk1X7pqdTCoQySM.mft (raw, json) Hash identifier: uj84CXTckrUA7kPxjkJnBZfI6kMo7iia6/buLMWbn18= Subject key identifier: F2:CE:20:D6:CA:6D:EC:6E:01:F8:65:0E:0D:05:2B:DF:3A:92:A8:B3 Authority key identifier: A0:27:19:5A:48:20:F3:D7:26:4A:4D:57:EE:9A:9D:4C:2A:10:C9:23 Certificate issuer: /CN=A91C1621/serialNumber=A027195A4820F3D7264A4D57EE9A9D4C2A10C923 Certificate serial: 011B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oCcZWkgg89cmSk1X7pqdTCoQySM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1621/35EDA92ECF0D11EF92F1EC36C4F9AE02/oCcZWkgg89cmSk1X7pqdTCoQySM.mft Manifest number: 0114 Signing time: Fri 12 Jun 2026 14:16:17 +0000 Manifest this update: Fri 12 Jun 2026 14:16:16 +0000 Manifest next update: Fri 19 Jun 2026 14:16:16 +0000 Files and hashes: 1: oCcZWkgg89cmSk1X7pqdTCoQySM.crl (hash: /ypZtpKedyJjAOKXJaktbyJ6FOidw9sEOEN86fZY7tU=) 2: 8AE793B2E9E311F0A43C19FF656F56BC.roa (hash: iLjsYldebmEc4jQ39cKvj356cAs2Ip03tkyos/Cg+/w=) 3: 81E4D4A2053011F09C73001FC4F9AE02.roa (hash: DA85ff4aMzWQg5AImUfIHcT74CRXr+XSDwxZJMl53Eg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1621/35EDA92ECF0D11EF92F1EC36C4F9AE02/oCcZWkgg89cmSk1X7pqdTCoQySM.crl rsync://rpki.apnic.net/member_repository/A91C1621/35EDA92ECF0D11EF92F1EC36C4F9AE02/oCcZWkgg89cmSk1X7pqdTCoQySM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oCcZWkgg89cmSk1X7pqdTCoQySM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 14:16:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 283 (0x11b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1621, serialNumber=A027195A4820F3D7264A4D57EE9A9D4C2A10C923 Validity Not Before: Jun 12 14:16:16 2026 GMT Not After : Jun 19 14:16:16 2026 GMT Subject: CN=6a2c14b1-6803 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:ef:52:0b:70:44:bc:43:85:29:57:6c:ef:79: 70:4d:56:29:58:1b:5b:27:a5:95:6c:bb:54:3e:47: 4f:16:0a:66:35:6b:f4:74:c0:ea:74:36:74:b8:c9: 08:69:67:3b:55:d7:a6:46:bb:6c:49:fb:f7:bd:d1: 72:13:77:34:1b:ab:47:46:08:03:00:b8:9e:28:84: cf:c7:40:eb:5e:07:38:bc:5b:e7:e4:45:df:67:7d: 4e:0a:20:07:a8:21:13:70:e6:6d:1b:2e:16:69:1f: 73:31:e7:9a:f5:1c:34:74:47:83:5d:a3:66:49:02: 56:57:b2:16:1c:e9:67:2a:4a:6a:df:f9:d1:26:a3: 42:56:5d:92:c8:93:16:54:ea:4d:e2:d3:f6:9c:d5: 67:e0:f5:4d:e2:fb:36:99:9a:cb:50:92:c8:8c:7f: d9:11:08:f2:b7:e4:84:a3:1f:39:b1:c1:5a:25:c8: e2:b6:96:31:cc:89:b6:f3:99:98:95:3f:64:75:e7: 32:c2:3f:42:15:e1:4e:26:34:09:eb:fc:72:04:d7: 5d:7c:1b:18:af:b6:df:48:1e:64:87:24:5d:81:0b: af:6b:fd:30:dd:8d:19:50:f0:b8:dc:fb:c0:27:cf: a7:c6:9c:31:c6:fd:59:00:2d:46:ed:d1:87:cb:74: c8:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:CE:20:D6:CA:6D:EC:6E:01:F8:65:0E:0D:05:2B:DF:3A:92:A8:B3 X509v3 Authority Key Identifier: keyid:A0:27:19:5A:48:20:F3:D7:26:4A:4D:57:EE:9A:9D:4C:2A:10:C9:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1621/35EDA92ECF0D11EF92F1EC36C4F9AE02/oCcZWkgg89cmSk1X7pqdTCoQySM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oCcZWkgg89cmSk1X7pqdTCoQySM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1621/35EDA92ECF0D11EF92F1EC36C4F9AE02/oCcZWkgg89cmSk1X7pqdTCoQySM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:98:f0:91:d0:58:6b:1d:51:d5:b1:47:b2:7a:93:5f:9f:aa: 1d:88:e9:4c:04:37:f3:47:f0:49:db:55:ee:97:06:d2:6f:01: 67:d4:58:f9:ea:de:67:28:15:a3:60:c2:fa:c6:f5:58:23:d2: 56:df:da:c6:85:30:2e:77:b9:23:7a:f7:44:1d:25:06:94:2f: ac:a7:ae:c3:6f:78:ca:e7:30:f8:15:d0:92:cf:68:42:fc:99: c8:a7:f1:f4:63:5f:3a:73:d2:e0:7e:df:72:d0:f3:88:f8:70: 79:d1:f6:a4:e8:a9:95:38:d6:29:6a:c5:9a:09:c0:47:13:e8: 55:ca:d5:6e:5b:86:f7:4e:f7:77:f8:5c:7b:78:0c:4b:3b:68: bb:86:ee:a2:5b:79:7b:16:d1:78:0e:b3:47:ab:87:a8:cc:ca: 01:c3:aa:1d:9a:b8:17:80:ee:46:c7:89:00:f6:1a:90:e4:8e: b0:fb:cb:bc:1f:ae:9f:bb:4f:2a:6d:8b:28:9b:a6:07:0f:cf: 0a:9f:fc:39:69:30:ff:33:66:0c:c9:3a:49:03:e9:84:4e:76: b6:d8:07:5d:1a:a7:8f:e1:0a:bd:05:60:cb:60:1c:89:89:63: 7d:aa:33:7e:93:70:a6:b7:3a:24:9b:38:5b:c8:a8:32:5d:11: af:ac:68:d3 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICARswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzE2MjExMTAvBgNVBAUTKEEwMjcxOTVBNDgyMEYzRDcyNjRBNEQ1N0VFOUE5RDRD MkExMEM5MjMwHhcNMjYwNjEyMTQxNjE2WhcNMjYwNjE5MTQxNjE2WjAYMRYwFAYD VQQDEw02YTJjMTRiMS02ODAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsu9SC3BEvEOFKVds73lwTVYpWBtbJ6WVbLtUPkdPFgpmNWv0dMDqdDZ0uMkI aWc7VdemRrtsSfv3vdFyE3c0G6tHRggDALieKITPx0DrXgc4vFvn5EXfZ31OCiAH qCETcOZtGy4WaR9zMeea9Rw0dEeDXaNmSQJWV7IWHOlnKkpq3/nRJqNCVl2SyJMW VOpN4tP2nNVn4PVN4vs2mZrLUJLIjH/ZEQjyt+SEox85scFaJcjitpYxzIm285mY lT9kdecywj9CFeFOJjQJ6/xyBNddfBsYr7bfSB5khyRdgQuva/0w3Y0ZUPC43PvA J8+nxpwxxv1ZAC1G7dGHy3TIXQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPLOINbK bexuAfhlDg0FK986kqizMB8GA1UdIwQYMBaAFKAnGVpIIPPXJkpNV+6anUwqEMkj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTYyMS8zNUVEQTkyRUNG MEQxMUVGOTJGMUVDMzZDNEY5QUUwMi9vQ2NaV2tnZzg5Y21TazFYN3BxZFRDb1F5 U00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL29DY1pXa2dnODljbVNrMVg3cHFkVENvUXlTTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MTYyMS8zNUVEQTkyRUNGMEQxMUVGOTJGMUVDMzZDNEY5QUUwMi9vQ2NaV2tnZzg5 Y21TazFYN3BxZFRDb1F5U00ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAnZjwkdBYax1R1bFHsnqTX5+qHYjpTAQ380fwSdtV7pcG0m8BZ9RY+ereZygV o2DC+sb1WCPSVt/axoUwLne5I3r3RB0lBpQvrKeuw294yucw+BXQks9oQvyZyKfx 9GNfOnPS4H7fctDziPhwedH2pOiplTjWKWrFmgnARxPoVcrVbluG9073d/hce3gM Sztou4buolt5exbReA6zR6uHqMzKAcOqHZq4F4DuRseJAPYakOSOsPvLvB+un7tP Km2LKJumBw/PCp/8OWkw/zNmDMk6SQPphE52ttgHXRqnj+EKvQVgy2AciYljfaoz fpNwprc6JJs4W8ioMl0Rr6xo0w== -----END CERTIFICATE-----Generated at Sat Jun 13 14:48:03 2026 by rpki-client