$ rpki-client -vvf rpki.apnic.net/member_repository/A911D2A3/F6AC63864EFD11E8892B8683C4F9AE02/O-7kvaWgSxBLHXLmAcMJONuktkQ.mft File: O-7kvaWgSxBLHXLmAcMJONuktkQ.mft (raw, json) Hash identifier: bzfu/83ivM7oS1lNOZNpq+vXaRxrHH+ML/c9xGM1Z84= Subject key identifier: 78:0E:DD:97:F6:32:EF:BC:0E:EF:1D:F2:79:FC:9C:DD:B0:9F:A7:17 Authority key identifier: 3B:EE:E4:BD:A5:A0:4B:10:4B:1D:72:E6:01:C3:09:38:DB:A4:B6:44 Certificate issuer: /CN=A911D2A3/serialNumber=3BEEE4BDA5A04B104B1D72E601C30938DBA4B644 Certificate serial: 15B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O-7kvaWgSxBLHXLmAcMJONuktkQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911D2A3/F6AC63864EFD11E8892B8683C4F9AE02/O-7kvaWgSxBLHXLmAcMJONuktkQ.mft Manifest number: 15A8 Signing time: Thu 16 Apr 2026 16:41:57 +0000 Manifest this update: Thu 16 Apr 2026 16:41:57 +0000 Manifest next update: Thu 23 Apr 2026 16:41:57 +0000 Files and hashes: 1: O-7kvaWgSxBLHXLmAcMJONuktkQ.crl (hash: +dcb6s95YtVJPYc60vObzBPZ6SBgO1NWpM2qSEDMYNI=) 2: D9EDB272C44C11ECA07C2D77C4F9AE02.roa (hash: FtB2tGvplGzCJWlj88NsorSrUzak1GMw1nVvvDj7yFA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911D2A3/F6AC63864EFD11E8892B8683C4F9AE02/O-7kvaWgSxBLHXLmAcMJONuktkQ.crl rsync://rpki.apnic.net/member_repository/A911D2A3/F6AC63864EFD11E8892B8683C4F9AE02/O-7kvaWgSxBLHXLmAcMJONuktkQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O-7kvaWgSxBLHXLmAcMJONuktkQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 16:41:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5557 (0x15b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911D2A3, serialNumber=3BEEE4BDA5A04B104B1D72E601C30938DBA4B644 Validity Not Before: Apr 16 16:41:57 2026 GMT Not After : Apr 23 16:41:57 2026 GMT Subject: CN=69e11155-38bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:6d:f7:67:98:91:4f:ef:5e:d2:cd:be:e2:24: f0:64:ed:ac:45:7b:d6:46:a6:ab:63:0a:52:55:ca: f8:d5:62:b1:e1:3d:87:cf:3d:fb:ee:fe:82:7a:71: 74:bb:bb:45:f0:fe:be:f0:d8:1f:2f:51:04:43:62: 85:72:3f:9f:16:17:09:5b:41:13:cc:47:56:09:84: 2a:90:e6:96:67:3c:6b:06:ad:7b:ba:8a:1b:47:bc: 48:1e:c1:19:36:11:0e:27:70:ec:79:7d:2d:d5:ad: 7c:d6:97:02:2a:de:45:dd:98:00:23:17:71:13:43: d3:a8:56:f6:e4:a8:6c:1b:47:46:16:39:fe:8b:9e: 80:4c:24:34:a2:4d:48:e4:6a:db:7a:95:e0:a6:5f: ce:1e:be:81:f1:9c:30:ca:b4:a2:91:58:37:9c:a8: 6f:c8:26:9b:46:35:37:30:63:b4:db:fe:b7:c8:83: 32:f8:1a:20:f0:5e:8e:30:b3:a9:7c:f8:c0:b4:f4: 59:44:56:fc:be:a8:af:20:fb:dc:da:85:e6:c5:32: b5:d5:4f:ec:d5:47:fd:25:31:ff:ab:cf:79:6d:2f: ba:ea:44:6e:37:57:18:c7:8a:34:01:5b:60:f4:59: cb:c9:35:03:48:1e:94:91:95:1b:89:7a:97:c3:a0: 21:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:0E:DD:97:F6:32:EF:BC:0E:EF:1D:F2:79:FC:9C:DD:B0:9F:A7:17 X509v3 Authority Key Identifier: keyid:3B:EE:E4:BD:A5:A0:4B:10:4B:1D:72:E6:01:C3:09:38:DB:A4:B6:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911D2A3/F6AC63864EFD11E8892B8683C4F9AE02/O-7kvaWgSxBLHXLmAcMJONuktkQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O-7kvaWgSxBLHXLmAcMJONuktkQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D2A3/F6AC63864EFD11E8892B8683C4F9AE02/O-7kvaWgSxBLHXLmAcMJONuktkQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:e8:9c:b1:17:25:79:6d:eb:68:49:5c:68:89:77:f9:e3:77: ae:ff:07:46:67:f7:cd:60:73:f9:68:e3:e8:7c:9c:79:ed:8e: 21:27:d9:90:1a:bd:48:b6:ec:c4:ad:5d:83:8e:ca:47:ba:80: e0:16:44:c3:c5:3f:42:3d:b8:66:c1:02:ed:0a:98:a4:da:56: 1b:2d:b4:2a:d1:ef:04:fa:ed:46:8c:39:f5:8a:96:25:d7:f3: 96:17:bf:e4:52:8e:a9:16:78:09:9d:a4:58:8a:6b:78:b4:fd: 68:9c:72:9e:7f:44:ed:17:8f:69:71:5e:37:08:5e:9e:84:c5: 1e:c5:b6:2f:07:26:b4:de:19:a6:54:86:f4:11:7d:ca:ab:74: 7c:d0:53:55:ab:47:0e:bb:c4:76:9b:47:e4:10:f8:ac:13:8d: 53:a3:6a:84:4d:f9:4e:03:c9:cd:46:4d:04:f6:63:56:2b:66: 34:1e:62:c5:81:94:d6:b8:33:53:6a:32:72:ab:7c:04:59:fb: 5e:ac:a5:81:03:9b:b5:89:e8:29:03:03:a7:4a:8a:37:06:d2: 61:59:a5:63:07:ee:06:69:91:ef:ba:b3:d4:4f:f6:cf:5c:0b: df:ef:d8:41:2d:6f:c4:3b:6f:b5:ff:26:d1:11:ba:2d:22:22: 19:52:74:a9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICFbUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUQyQTMxMTAvBgNVBAUTKDNCRUVFNEJEQTVBMDRCMTA0QjFENzJFNjAxQzMwOTM4 REJBNEI2NDQwHhcNMjYwNDE2MTY0MTU3WhcNMjYwNDIzMTY0MTU3WjAYMRYwFAYD VQQDEw02OWUxMTE1NS0zOGJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAi233Z5iRT+9e0s2+4iTwZO2sRXvWRqarYwpSVcr41WKx4T2Hzz377v6CenF0 u7tF8P6+8NgfL1EEQ2KFcj+fFhcJW0ETzEdWCYQqkOaWZzxrBq17uoobR7xIHsEZ NhEOJ3DseX0t1a181pcCKt5F3ZgAIxdxE0PTqFb25KhsG0dGFjn+i56ATCQ0ok1I 5GrbepXgpl/OHr6B8ZwwyrSikVg3nKhvyCabRjU3MGO02/63yIMy+Bog8F6OMLOp fPjAtPRZRFb8vqivIPvc2oXmxTK11U/s1Uf9JTH/q895bS+66kRuN1cYx4o0AVtg 9FnLyTUDSB6UkZUbiXqXw6AhRwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHgO3Zf2 Mu+8Du8d8nn8nN2wn6cXMB8GA1UdIwQYMBaAFDvu5L2loEsQSx1y5gHDCTjbpLZE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRDJBMy9GNkFDNjM4NjRF RkQxMUU4ODkyQjg2ODNDNEY5QUUwMi9PLTdrdmFXZ1N4QkxIWExtQWNNSk9OdWt0 a1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL08tN2t2YVdnU3hCTEhYTG1BY01KT051a3RrUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RDJBMy9GNkFDNjM4NjRFRkQxMUU4ODkyQjg2ODNDNEY5QUUwMi9PLTdrdmFXZ1N4 QkxIWExtQWNNSk9OdWt0a1EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAYOicsRcleW3raElcaIl3+eN3rv8HRmf3zWBz+Wjj6Hycee2OISfZkBq9SLbs xK1dg47KR7qA4BZEw8U/Qj24ZsEC7QqYpNpWGy20KtHvBPrtRow59YqWJdfzlhe/ 5FKOqRZ4CZ2kWIpreLT9aJxynn9E7RePaXFeNwhenoTFHsW2LwcmtN4ZplSG9BF9 yqt0fNBTVatHDrvEdptH5BD4rBONU6NqhE35TgPJzUZNBPZjVitmNB5ixYGU1rgz U2oycqt8BFn7XqylgQObtYnoKQMDp0qKNwbSYVmlYwfuBmmR77qz1E/2z1wL3+/Y QS1vxDtvtf8m0RG6LSIiGVJ0qQ== -----END CERTIFICATE-----Generated at Fri Apr 17 11:30:53 2026 by rpki-client