$ rpki-client -vvf rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft File: oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft (raw, json) Hash identifier: 57Rzla/eLfyLEXk4oIEx5sCpLhfMkQg+sP+ybpFqzGs= Subject key identifier: 25:BF:D4:B0:37:0F:88:C7:1F:07:83:91:A0:A7:DF:E0:91:C7:94:CD Authority key identifier: A0:7A:F0:CC:B2:98:35:CC:76:42:97:4B:AC:9E:15:02:B9:CF:82:D0 Certificate issuer: /CN=A91E29CB/serialNumber=A07AF0CCB29835CC7642974BAC9E1502B9CF82D0 Certificate serial: 036F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oHrwzLKYNcx2QpdLrJ4VArnPgtA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft Manifest number: 035C Signing time: Sat 13 Jun 2026 00:57:53 +0000 Manifest this update: Sat 13 Jun 2026 00:57:52 +0000 Manifest next update: Sat 20 Jun 2026 00:57:52 +0000 Files and hashes: 1: oHrwzLKYNcx2QpdLrJ4VArnPgtA.crl (hash: hfWBnimNADBgTjUHo+Xe7Ef6xIz4M8Gus/ZW9bMAeAE=) 2: C258B0D0E03C11EF991E147AC4F9AE02.roa (hash: X4W03lfAeMlljE4GAKwUtjHV/L977l42ii4F4eQTOn8=) 3: C08A3ED6E03C11EF991E147AC4F9AE02.roa (hash: sBJZeZ++/x7I1pXhx5Ucb2PyYvnG4JjYuOXlXA0qZVU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.crl rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oHrwzLKYNcx2QpdLrJ4VArnPgtA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Jun 2026 00:57:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 879 (0x36f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E29CB, serialNumber=A07AF0CCB29835CC7642974BAC9E1502B9CF82D0 Validity Not Before: Jun 13 00:57:52 2026 GMT Not After : Jun 20 00:57:52 2026 GMT Subject: CN=6a2cab11-865a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:5d:38:0f:ee:a4:a6:c3:7d:68:e8:e6:3c:c2: 0f:fd:2f:52:f6:e1:67:0c:c1:6d:c0:36:b2:78:b5: e7:dc:03:76:c1:0a:f5:67:7a:6f:99:80:49:6f:84: 85:71:04:88:6b:32:fb:2e:29:30:30:e8:c2:d6:34: aa:23:38:de:2d:8d:d5:e5:57:05:d0:ce:df:13:f5: e8:35:8a:5a:f2:c1:b4:4f:6a:8a:cb:89:d3:bf:f0: b1:58:3e:86:04:5d:13:b0:2c:9b:5b:fa:e6:02:ba: 6a:fa:c4:3c:02:65:e4:5b:8d:02:92:35:30:c5:1c: 16:29:92:da:9e:77:77:10:61:09:d6:ec:93:cc:7b: 77:1f:c8:27:17:45:00:ee:6d:84:d6:fc:d7:dc:a9: ee:f4:7b:89:36:49:13:a7:00:d7:00:84:e1:ec:8a: b1:09:d2:d2:ee:4e:6f:2c:af:34:8a:5b:66:70:7d: ff:42:8e:87:14:42:af:69:d0:a6:67:34:1c:d8:f8: 5b:f9:bc:0d:ea:7f:e8:7a:f1:a6:e6:c6:4f:59:c8: 8d:fd:2c:b8:7a:e3:e5:57:f1:c7:b8:38:5e:ed:aa: ad:3c:c9:ff:89:da:99:5e:87:87:ad:32:31:16:dd: b9:2b:ab:af:c0:e7:a7:7e:f3:d5:92:25:ca:b7:95: 3c:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:BF:D4:B0:37:0F:88:C7:1F:07:83:91:A0:A7:DF:E0:91:C7:94:CD X509v3 Authority Key Identifier: keyid:A0:7A:F0:CC:B2:98:35:CC:76:42:97:4B:AC:9E:15:02:B9:CF:82:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oHrwzLKYNcx2QpdLrJ4VArnPgtA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:7c:27:ca:0a:d3:9d:f5:2a:d5:a8:43:b2:c2:5f:91:a8:a3: 54:98:e5:a4:4c:50:20:47:57:60:8e:fb:14:e5:01:ea:10:04: d0:3c:56:22:4b:d1:e5:b4:18:94:29:a6:c1:f7:c8:f5:c4:fd: 31:d0:04:60:23:0e:fc:ad:8b:cd:90:49:3e:42:8c:8c:45:72: 91:3d:ec:e4:21:eb:5b:19:19:fa:42:d4:b2:88:8c:79:74:fd: 34:97:1d:8f:12:00:83:66:5d:95:99:b4:f4:32:86:93:c4:2c: 21:e0:24:17:69:d5:f4:a2:07:7b:3f:ef:b6:bf:50:73:72:5a: 69:78:a5:cc:96:e3:4c:2e:60:f3:48:e9:6e:83:53:66:23:14: e7:e9:43:e5:c6:43:17:f1:af:f7:32:9b:bc:b7:70:c7:50:75: 92:d2:d3:a6:cd:66:29:63:eb:41:e1:84:06:86:4e:c3:b3:ac: d1:61:94:98:8a:d2:72:60:f4:28:65:02:7d:1c:bd:78:75:5a: 20:28:72:00:3e:26:3b:84:3c:c2:87:e8:df:a9:e0:45:51:f2: af:6c:80:1c:bd:04:45:98:dd:75:51:b0:7a:85:2a:10:79:6b: ed:bf:f7:8b:02:be:4b:1c:5b:e8:46:a4:76:34:40:ac:3f:3b: c9:81:54:16 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA28wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI5Q0IxMTAvBgNVBAUTKEEwN0FGMENDQjI5ODM1Q0M3NjQyOTc0QkFDOUUxNTAy QjlDRjgyRDAwHhcNMjYwNjEzMDA1NzUyWhcNMjYwNjIwMDA1NzUyWjAYMRYwFAYD VQQDEw02YTJjYWIxMS04NjVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtF04D+6kpsN9aOjmPMIP/S9S9uFnDMFtwDayeLXn3AN2wQr1Z3pvmYBJb4SF cQSIazL7LikwMOjC1jSqIzjeLY3V5VcF0M7fE/XoNYpa8sG0T2qKy4nTv/CxWD6G BF0TsCybW/rmArpq+sQ8AmXkW40CkjUwxRwWKZLannd3EGEJ1uyTzHt3H8gnF0UA 7m2E1vzX3Knu9HuJNkkTpwDXAITh7IqxCdLS7k5vLK80iltmcH3/Qo6HFEKvadCm ZzQc2Phb+bwN6n/oevGm5sZPWciN/Sy4euPlV/HHuDhe7aqtPMn/idqZXoeHrTIx Ft25K6uvwOenfvPVkiXKt5U8JwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCW/1LA3 D4jHHweDkaCn3+CRx5TNMB8GA1UdIwQYMBaAFKB68MyymDXMdkKXS6yeFQK5z4LQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjlDQi8xRjkwMkIwRTA1 QUYxMUVEQTcxNzY0MkJDNEY5QUUwMi9vSHJ3ekxLWU5jeDJRcGRMcko0VkFyblBn dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29Icnd6TEtZTmN4MlFwZExySjRWQXJuUGd0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MjlDQi8xRjkwMkIwRTA1QUYxMUVEQTcxNzY0MkJDNEY5QUUwMi9vSHJ3ekxLWU5j eDJRcGRMcko0VkFyblBndEEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEApnwnygrTnfUq1ahDssJfkaijVJjlpExQIEdXYI77FOUB6hAE0DxWIkvR5bQY lCmmwffI9cT9MdAEYCMO/K2LzZBJPkKMjEVykT3s5CHrWxkZ+kLUsoiMeXT9NJcd jxIAg2ZdlZm09DKGk8QsIeAkF2nV9KIHez/vtr9Qc3JaaXilzJbjTC5g80jpboNT ZiMU5+lD5cZDF/Gv9zKbvLdwx1B1ktLTps1mKWPrQeGEBoZOw7Os0WGUmIrScmD0 KGUCfRy9eHVaIChyAD4mO4Q8wofo36ngRVHyr2yAHL0ERZjddVGweoUqEHlr7b/3 iwK+Sxxb6EakdjRArD87yYFUFg== -----END CERTIFICATE-----Generated at Sat Jun 13 21:29:31 2026 by rpki-client