$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.mft File: oZOMkSrC9KlYuT2vj0snIBWw2Ng.mft (raw, json) Hash identifier: KotHrx/6QMVSqh4cEzo07OuDqYwXQcy6vkzkNO62HGM= Subject key identifier: 4D:79:05:14:B6:D4:0C:EE:49:77:B5:02:71:94:86:A3:74:5C:E9:C8 Authority key identifier: A1:93:8C:91:2A:C2:F4:A9:58:B9:3D:AF:8F:4B:27:20:15:B0:D8:D8 Certificate issuer: /CN=A91D9D8B/serialNumber=A1938C912AC2F4A958B93DAF8F4B272015B0D8D8 Certificate serial: 0296 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oZOMkSrC9KlYuT2vj0snIBWw2Ng.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.mft Manifest number: 028E Signing time: Sat 13 Jun 2026 01:48:21 +0000 Manifest this update: Sat 13 Jun 2026 01:48:21 +0000 Manifest next update: Sat 20 Jun 2026 01:48:21 +0000 Files and hashes: 1: oZOMkSrC9KlYuT2vj0snIBWw2Ng.crl (hash: 2IQ0oTtn34xZLUawt5yeJuD2Aiiqwj346yEhhI7wqj4=) 2: 95C4C7AA7F7911ED9C1EAE19C4F9AE02.roa (hash: Ouit03LRtJZqOFfBSglxXn5xGezeH2cCBVrluC7GA64=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.crl rsync://rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oZOMkSrC9KlYuT2vj0snIBWw2Ng.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Jun 2026 01:48:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 662 (0x296) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9D8B, serialNumber=A1938C912AC2F4A958B93DAF8F4B272015B0D8D8 Validity Not Before: Jun 13 01:48:21 2026 GMT Not After : Jun 20 01:48:21 2026 GMT Subject: CN=6a2cb6e5-1b28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:72:4f:26:09:e9:f7:32:6d:c9:82:b2:c6:38: 32:10:f1:c5:38:ed:e0:6e:fa:b9:8c:d4:59:55:8b: 12:8c:70:e0:9e:51:77:21:bb:55:9b:4b:79:6c:25: 49:98:59:c7:25:3d:19:82:d7:a1:3e:40:9e:f0:a3: 74:70:58:64:fe:8f:a1:f0:e1:76:6e:a7:50:f3:47: de:a5:4a:56:f5:f8:21:30:49:10:74:64:45:70:46: 69:f6:6a:39:54:a0:82:cf:f7:bd:0e:6f:b2:67:c7: 2e:c7:32:cb:65:10:d1:81:17:98:71:83:fc:92:d0: 78:cc:1e:8b:af:4c:b0:62:70:cb:33:44:d4:2b:1e: 12:32:db:b5:a6:fc:61:b6:1f:28:e3:8f:f8:12:d1: c0:5d:3f:df:9e:79:87:c6:b9:48:81:15:74:ee:5d: fe:3f:ec:aa:f6:69:76:f4:00:ec:bd:2b:55:77:e8: db:dd:50:e4:42:70:09:41:c9:1d:5e:36:d3:1d:da: bd:61:2a:68:71:df:1b:14:c8:63:c5:03:c7:ce:50: 49:cc:39:69:86:d8:1e:1f:cf:12:09:8c:41:19:a4: 0c:7a:dc:0d:22:bd:4a:32:b3:3a:19:2c:f5:22:67: 1b:e1:89:66:d9:23:03:5f:67:2d:51:2c:5f:6d:8c: 02:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:79:05:14:B6:D4:0C:EE:49:77:B5:02:71:94:86:A3:74:5C:E9:C8 X509v3 Authority Key Identifier: keyid:A1:93:8C:91:2A:C2:F4:A9:58:B9:3D:AF:8F:4B:27:20:15:B0:D8:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oZOMkSrC9KlYuT2vj0snIBWw2Ng.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:b4:e2:1e:78:ed:3f:82:c4:d4:a4:4a:ce:ad:ab:0a:65:f2: 2e:11:65:66:2c:44:cf:fd:8b:c9:23:74:0d:21:43:08:7c:63: 39:d2:23:81:91:5b:b6:3e:51:cb:b3:4a:72:2a:c9:ca:21:28: a5:f7:a5:3c:39:c1:13:d0:b6:0b:39:09:c8:d5:fe:bf:2d:a4: d4:30:cd:e2:c4:0d:d8:a2:ee:f6:f5:86:cb:7b:3f:4e:6c:52: 40:a4:19:6a:4e:6f:51:c1:34:e9:6e:fd:f1:da:5d:65:ae:c0: 83:b0:5b:4b:39:da:d0:34:be:c7:45:70:af:61:88:28:cd:18: 86:a6:cb:14:34:fb:d6:1e:79:97:cb:0d:8c:a5:82:1a:fb:1d: 9f:86:63:3c:e4:ba:23:3c:04:ea:88:d4:e1:ba:17:69:6f:bb: 12:a0:09:3d:8c:32:cf:ca:bc:71:41:eb:62:83:c9:c1:81:82: dd:38:fe:af:64:9f:7d:ec:8d:ec:82:d8:df:8d:df:ad:12:5c: 5d:3e:ec:6e:fd:3d:0d:1c:6b:9c:ac:5d:a2:7b:3b:3b:08:fa: 0b:05:6d:ca:c9:32:99:d6:51:eb:4d:dc:a0:f7:41:cf:67:ed: 0f:ff:7c:25:71:37:ef:da:28:2d:ba:0d:40:56:a0:5d:e4:e3: 36:96:a4:c4 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICApYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDlEOEIxMTAvBgNVBAUTKEExOTM4QzkxMkFDMkY0QTk1OEI5M0RBRjhGNEIyNzIw MTVCMEQ4RDgwHhcNMjYwNjEzMDE0ODIxWhcNMjYwNjIwMDE0ODIxWjAYMRYwFAYD VQQDEw02YTJjYjZlNS0xYjI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqXJPJgnp9zJtyYKyxjgyEPHFOO3gbvq5jNRZVYsSjHDgnlF3IbtVm0t5bCVJ mFnHJT0ZgtehPkCe8KN0cFhk/o+h8OF2bqdQ80fepUpW9fghMEkQdGRFcEZp9mo5 VKCCz/e9Dm+yZ8cuxzLLZRDRgReYcYP8ktB4zB6Lr0ywYnDLM0TUKx4SMtu1pvxh th8o44/4EtHAXT/fnnmHxrlIgRV07l3+P+yq9ml29ADsvStVd+jb3VDkQnAJQckd XjbTHdq9YSpocd8bFMhjxQPHzlBJzDlphtgeH88SCYxBGaQMetwNIr1KMrM6GSz1 Imcb4Ylm2SMDX2ctUSxfbYwCNwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFE15BRS2 1AzuSXe1AnGUhqN0XOnIMB8GA1UdIwQYMBaAFKGTjJEqwvSpWLk9r49LJyAVsNjY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOUQ4Qi81RjExRTAyQTdG NzUxMUVEOEFGQkU2NzNDNEY5QUUwMi9vWk9Na1NyQzlLbFl1VDJ2ajBzbklCV3cy TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29aT01rU3JDOUtsWXVUMnZqMHNuSUJXdzJOZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OUQ4Qi81RjExRTAyQTdGNzUxMUVEOEFGQkU2NzNDNEY5QUUwMi9vWk9Na1NyQzlL bFl1VDJ2ajBzbklCV3cyTmcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAeLTiHnjtP4LE1KRKzq2rCmXyLhFlZixEz/2LySN0DSFDCHxjOdIjgZFbtj5R y7NKcirJyiEopfelPDnBE9C2CzkJyNX+vy2k1DDN4sQN2KLu9vWGy3s/TmxSQKQZ ak5vUcE06W798dpdZa7Ag7BbSzna0DS+x0Vwr2GIKM0YhqbLFDT71h55l8sNjKWC Gvsdn4ZjPOS6IzwE6ojU4boXaW+7EqAJPYwyz8q8cUHrYoPJwYGC3Tj+r2SffeyN 7ILY343frRJcXT7sbv09DRxrnKxdons7Owj6CwVtyskymdZR603coPdBz2ftD/98 JXE379ooLboNQFagXeTjNpakxA== -----END CERTIFICATE-----Generated at Sat Jun 13 08:31:54 2026 by rpki-client