$ rpki-client -vvf rpki.apnic.net/member_repository/A91FB297/BBF28DDAD99511F09A18623B64D3641D/oPy-m8tDKKnovMofXhSWrMLOLtk.mft File: oPy-m8tDKKnovMofXhSWrMLOLtk.mft (raw, json) Hash identifier: /CSvpc3T6rJFEjDi0sWYXyEzoSIMVDWdHsbl0pXTNo0= Subject key identifier: C9:05:B2:88:7F:A2:59:C5:6F:DA:D0:91:1E:92:D9:45:FC:4F:57:4E Authority key identifier: A0:FC:BE:9B:CB:43:28:A9:E8:BC:CA:1F:5E:14:96:AC:C2:CE:2E:D9 Certificate issuer: /CN=A91FB297/serialNumber=A0FCBE9BCB4328A9E8BCCA1F5E1496ACC2CE2ED9 Certificate serial: 64 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oPy-m8tDKKnovMofXhSWrMLOLtk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FB297/BBF28DDAD99511F09A18623B64D3641D/oPy-m8tDKKnovMofXhSWrMLOLtk.mft Manifest number: 63 Signing time: Wed 17 Jun 2026 03:55:18 +0000 Manifest this update: Wed 17 Jun 2026 03:55:18 +0000 Manifest next update: Wed 24 Jun 2026 03:55:18 +0000 Files and hashes: 1: oPy-m8tDKKnovMofXhSWrMLOLtk.crl (hash: cZO51sjyaqM2fnCS7w9n6Cz8gXfYYzanzOfjA71huDs=) 2: 7D6CF15E299511F1AB285139C2833773.roa (hash: zrVJVWy7b99+fAaJlDs/efiLXBbFoQUYnwnxhru+Sag=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FB297/BBF28DDAD99511F09A18623B64D3641D/oPy-m8tDKKnovMofXhSWrMLOLtk.crl rsync://rpki.apnic.net/member_repository/A91FB297/BBF28DDAD99511F09A18623B64D3641D/oPy-m8tDKKnovMofXhSWrMLOLtk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oPy-m8tDKKnovMofXhSWrMLOLtk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Jun 2026 01:32:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 100 (0x64) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FB297, serialNumber=A0FCBE9BCB4328A9E8BCCA1F5E1496ACC2CE2ED9 Validity Not Before: Jun 17 03:55:18 2026 GMT Not After : Jun 24 03:55:18 2026 GMT Subject: CN=6a321aa6-c67d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:b6:57:94:1e:71:84:03:8a:d3:7a:70:df:ed: 07:5a:a4:74:de:2f:95:7f:14:2f:42:0e:61:e3:66: 9c:df:ac:a4:53:cf:c3:ea:6e:c1:b7:7e:9e:b8:ae: 7e:2b:e8:74:07:c4:99:c1:2f:e7:8a:1c:c1:8a:a7: 33:f0:9a:ee:f8:dc:3a:9d:8c:7f:a4:62:71:82:86: 3e:5e:f3:b9:cd:2b:91:a3:9f:06:87:eb:32:e2:07: d6:9c:6f:45:9d:98:69:1c:89:9f:47:68:d1:4e:49: d4:0e:8d:f4:3f:61:f1:50:4b:4f:7a:69:5a:d9:db: 5d:13:ea:21:48:b1:f4:2e:bf:8d:8d:fe:d3:bb:e4: d8:d1:0a:24:fa:37:d9:24:dd:b2:2a:44:6d:43:bd: 11:d4:13:52:d4:5d:80:76:e6:82:cb:f5:a8:81:f7: 2e:d8:9c:f1:8e:98:3d:79:90:e0:bd:30:e1:b6:b8: 2a:73:10:68:17:ae:2c:aa:63:85:bb:1f:3b:01:dc: 92:dd:77:16:85:06:c3:0c:33:02:8c:6b:67:c7:e9: 58:6f:cb:e8:44:b9:6b:36:92:b9:2c:f1:2c:bd:11: 66:46:13:18:65:b9:22:48:08:06:d7:f1:0f:71:d1: 21:c4:69:4c:5c:94:36:c6:04:1a:1f:f8:5a:64:3b: 8c:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:05:B2:88:7F:A2:59:C5:6F:DA:D0:91:1E:92:D9:45:FC:4F:57:4E X509v3 Authority Key Identifier: keyid:A0:FC:BE:9B:CB:43:28:A9:E8:BC:CA:1F:5E:14:96:AC:C2:CE:2E:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FB297/BBF28DDAD99511F09A18623B64D3641D/oPy-m8tDKKnovMofXhSWrMLOLtk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oPy-m8tDKKnovMofXhSWrMLOLtk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FB297/BBF28DDAD99511F09A18623B64D3641D/oPy-m8tDKKnovMofXhSWrMLOLtk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:4c:c2:79:f9:c1:69:05:a6:7b:7a:dc:7a:9a:fa:45:56:5b: 94:5c:f1:13:f0:67:96:a8:cb:86:41:28:8a:20:c1:5b:84:93: c3:ac:46:20:00:40:ed:b2:30:fd:54:b2:e7:77:aa:32:85:0f: 81:d1:fa:0c:35:a1:f0:a0:72:62:e9:3c:0e:40:14:4f:c2:70: d0:2c:b1:8a:f8:f7:73:39:48:4f:08:28:6e:11:bb:43:6d:96: 2d:2f:b9:ec:d8:77:05:fb:4d:0e:e4:e9:71:6b:c0:06:b6:2b: f8:c2:57:b4:89:4a:48:fb:be:34:c0:88:ba:ca:7f:99:06:91: a8:72:85:f4:0f:2f:2a:84:90:c4:5c:71:11:6e:2c:56:6d:a5: 9f:14:1d:12:7d:50:a5:b1:5a:82:d8:53:19:55:99:69:40:b2: 5c:41:0e:94:06:c2:2f:42:66:10:d3:d8:2e:c1:2a:46:cf:06: f1:27:0e:68:3f:b7:b4:01:a8:65:4e:1d:23:63:18:a7:85:71: 4b:3e:57:3f:6a:db:7b:1c:82:18:3f:5c:77:6d:63:0b:73:73: f8:75:c4:8f:c9:e1:34:82:7a:7d:d7:fa:46:23:7e:21:5c:8a: 35:02:e6:54:f1:37:ce:8d:50:c8:a3:5e:ed:cc:c0:25:45:8c: 22:11:f9:6a -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBZDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG QjI5NzExMC8GA1UEBRMoQTBGQ0JFOUJDQjQzMjhBOUU4QkNDQTFGNUUxNDk2QUND MkNFMkVEOTAeFw0yNjA2MTcwMzU1MThaFw0yNjA2MjQwMzU1MThaMBgxFjAUBgNV BAMTDTZhMzIxYWE2LWM2N2QwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDbtleUHnGEA4rTenDf7QdapHTeL5V/FC9CDmHjZpzfrKRTz8PqbsG3fp64rn4r 6HQHxJnBL+eKHMGKpzPwmu743DqdjH+kYnGChj5e87nNK5GjnwaH6zLiB9acb0Wd mGkciZ9HaNFOSdQOjfQ/YfFQS096aVrZ210T6iFIsfQuv42N/tO75NjRCiT6N9kk 3bIqRG1DvRHUE1LUXYB25oLL9aiB9y7YnPGOmD15kOC9MOG2uCpzEGgXriyqY4W7 HzsB3JLddxaFBsMMMwKMa2fH6Vhvy+hEuWs2krks8Sy9EWZGExhluSJICAbX8Q9x 0SHEaUxclDbGBBof+FpkO4wvAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUyQWyiH+i WcVv2tCRHpLZRfxPV04wHwYDVR0jBBgwFoAUoPy+m8tDKKnovMofXhSWrMLOLtkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZCMjk3L0JCRjI4RERBRDk5 NTExRjA5QTE4NjIzQjY0RDM2NDFEL29QeS1tOHRES0tub3ZNb2ZYaFNXck1MT0x0 ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvb1B5LW04dERLS25vdk1vZlhoU1dyTUxPTHRrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZC Mjk3L0JCRjI4RERBRDk5NTExRjA5QTE4NjIzQjY0RDM2NDFEL29QeS1tOHRES0tu b3ZNb2ZYaFNXck1MT0x0ay5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQAGTMJ5+cFpBaZ7etx6mvpFVluUXPET8GeWqMuGQSiKIMFbhJPDrEYgAEDtsjD9 VLLnd6oyhQ+B0foMNaHwoHJi6TwOQBRPwnDQLLGK+PdzOUhPCChuEbtDbZYtL7ns 2HcF+00O5Olxa8AGtiv4wle0iUpI+740wIi6yn+ZBpGocoX0Dy8qhJDEXHERbixW baWfFB0SfVClsVqC2FMZVZlpQLJcQQ6UBsIvQmYQ09guwSpGzwbxJw5oP7e0Aahl Th0jYxinhXFLPlc/att7HIIYP1x3bWMLc3P4dcSPyeE0gnp91/pGI34hXIo1AuZU 8TfOjVDIo17tzMAlRYwiEflq -----END CERTIFICATE-----Generated at Wed Jun 17 10:22:45 2026 by rpki-client