$ rpki-client -vvf rpki.apnic.net/member_repository/A9123AB4/1FB040A0B17411E68EC88518C4F9AE02/OGxcstbg7GFBrrc_STUhsFIKPPo.mft File: OGxcstbg7GFBrrc_STUhsFIKPPo.mft (raw, json) Hash identifier: RRgJ//oHI48TbmwINLedjPbYPsjRC8Cf2q/P3gxHPSs= Subject key identifier: 6D:0B:CF:0A:73:2B:29:5D:59:3D:31:DE:D9:73:0D:BB:D5:F7:5A:90 Authority key identifier: 38:6C:5C:B2:D6:E0:EC:61:41:AE:B7:3F:49:35:21:B0:52:0A:3C:FA Certificate issuer: /CN=A9123AB4/serialNumber=386C5CB2D6E0EC6141AEB73F493521B0520A3CFA Certificate serial: 1DEC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OGxcstbg7GFBrrc_STUhsFIKPPo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123AB4/1FB040A0B17411E68EC88518C4F9AE02/OGxcstbg7GFBrrc_STUhsFIKPPo.mft Manifest number: 1DDB Signing time: Thu 16 Apr 2026 16:03:25 +0000 Manifest this update: Thu 16 Apr 2026 16:03:25 +0000 Manifest next update: Thu 23 Apr 2026 16:03:24 +0000 Files and hashes: 1: OGxcstbg7GFBrrc_STUhsFIKPPo.crl (hash: uUHwKtujrgEiaVCA/UHfdRfp6HArl81eEO1B5hwerBA=) 2: DD9C07828D8B11EBB959991DC4F9AE02.roa (hash: k6CtfEJwOIjqwI8wE1ffbbr6dcu91HX2CafEBgOBGsc=) 3: DE5B018C8D8B11EBB959991DC4F9AE02.roa (hash: x37ecenCy3jbXj6Gv2z3koAXtHNV/RyDae1qY9A2y4M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123AB4/1FB040A0B17411E68EC88518C4F9AE02/OGxcstbg7GFBrrc_STUhsFIKPPo.crl rsync://rpki.apnic.net/member_repository/A9123AB4/1FB040A0B17411E68EC88518C4F9AE02/OGxcstbg7GFBrrc_STUhsFIKPPo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OGxcstbg7GFBrrc_STUhsFIKPPo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 16:03:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7660 (0x1dec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123AB4, serialNumber=386C5CB2D6E0EC6141AEB73F493521B0520A3CFA Validity Not Before: Apr 16 16:03:25 2026 GMT Not After : Apr 23 16:03:24 2026 GMT Subject: CN=69e1084d-8498 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:c5:d9:7b:76:0a:b0:fa:0c:d8:17:0c:34:fe: f3:c1:96:cb:51:16:6b:a7:2e:f7:ef:58:82:5f:2a: f0:6f:d5:dc:ba:0e:de:80:3d:98:fb:9b:96:e7:d2: 34:38:84:af:46:a3:6f:dd:27:d9:84:42:21:60:09: 7b:ec:bf:22:ed:d2:f1:fd:74:15:af:ba:d8:27:7a: 68:c3:fc:f7:4d:9e:ae:8b:85:27:ee:1b:fa:f2:f2: 3e:d3:d4:05:ef:ed:6c:d6:07:8d:8d:00:fe:14:fd: 94:42:4e:ca:bb:53:34:7c:02:18:26:d6:e6:52:fe: 00:93:1b:a0:83:bf:bd:7e:25:51:fe:f1:d0:01:35: 6b:af:de:07:37:24:f3:79:fc:55:c1:2d:ac:2b:e5: e8:33:f5:59:4e:b1:dd:fc:61:80:7f:01:33:4d:21: a2:25:34:5b:b0:1e:27:9e:b2:42:10:aa:23:84:27: e4:22:d1:4e:df:aa:7f:c7:01:2a:b8:6f:7d:a2:d3: 6a:36:4d:c9:3b:6a:b8:9e:57:01:87:49:09:b4:e1: f1:ff:1f:15:74:07:bc:71:d4:72:65:f7:f2:3c:17: 83:32:06:3b:0f:ab:2f:7d:4b:58:0a:68:a6:da:76: 9a:a3:59:4b:85:fc:21:7e:52:b5:fd:a2:a1:a0:00: cd:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:0B:CF:0A:73:2B:29:5D:59:3D:31:DE:D9:73:0D:BB:D5:F7:5A:90 X509v3 Authority Key Identifier: keyid:38:6C:5C:B2:D6:E0:EC:61:41:AE:B7:3F:49:35:21:B0:52:0A:3C:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123AB4/1FB040A0B17411E68EC88518C4F9AE02/OGxcstbg7GFBrrc_STUhsFIKPPo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OGxcstbg7GFBrrc_STUhsFIKPPo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123AB4/1FB040A0B17411E68EC88518C4F9AE02/OGxcstbg7GFBrrc_STUhsFIKPPo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:d9:1e:d1:52:c8:8e:3d:54:df:0d:c0:4e:52:15:78:9e:e2: b9:5b:50:c6:c0:1a:92:7a:94:33:0f:14:9e:78:88:df:f6:32: 20:9b:11:24:f9:aa:d6:d5:12:e3:cc:d4:00:9a:72:e9:64:1d: 49:b0:e8:b8:3c:20:77:57:6a:95:3b:dd:0f:cf:f3:0c:a1:cf: 47:65:19:6a:87:8d:df:ab:79:1b:51:16:8e:ae:9c:04:20:ee: af:93:d8:6e:eb:53:bf:62:64:16:c2:bc:96:ba:95:45:e5:b8: 9b:5a:79:ba:e5:52:a2:de:9f:e3:43:90:8e:0f:3e:77:81:8b: 99:d2:2d:eb:b6:d8:82:30:79:05:b0:d4:df:ae:a1:56:b8:d4: 08:82:02:63:58:24:af:03:fa:9a:82:4e:cf:e5:86:da:42:fe: 7c:39:d0:be:7c:1e:1f:54:5a:a4:ab:b0:61:e0:8b:03:e6:6d: dd:e5:58:cc:73:4f:cc:59:94:93:aa:1a:24:da:25:a4:cc:b4: a8:f0:22:4c:48:e6:8d:08:47:7a:65:20:22:9c:9a:0e:87:d7: 58:bb:6c:79:32:4e:08:ae:19:ea:7d:1c:69:b4:36:95:7c:98: 4b:cb:be:7c:03:4c:6b:b1:3b:e7:dd:0b:e7:78:bc:5f:b6:34: ed:7d:6c:db -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICHewwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjNBQjQxMTAvBgNVBAUTKDM4NkM1Q0IyRDZFMEVDNjE0MUFFQjczRjQ5MzUyMUIw NTIwQTNDRkEwHhcNMjYwNDE2MTYwMzI1WhcNMjYwNDIzMTYwMzI0WjAYMRYwFAYD VQQDEw02OWUxMDg0ZC04NDk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq8XZe3YKsPoM2BcMNP7zwZbLURZrpy7371iCXyrwb9Xcug7egD2Y+5uW59I0 OISvRqNv3SfZhEIhYAl77L8i7dLx/XQVr7rYJ3pow/z3TZ6ui4Un7hv68vI+09QF 7+1s1geNjQD+FP2UQk7Ku1M0fAIYJtbmUv4Akxugg7+9fiVR/vHQATVrr94HNyTz efxVwS2sK+XoM/VZTrHd/GGAfwEzTSGiJTRbsB4nnrJCEKojhCfkItFO36p/xwEq uG99otNqNk3JO2q4nlcBh0kJtOHx/x8VdAe8cdRyZffyPBeDMgY7D6svfUtYCmim 2naao1lLhfwhflK1/aKhoADN4QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFG0Lzwpz KyldWT0x3tlzDbvV91qQMB8GA1UdIwQYMBaAFDhsXLLW4OxhQa63P0k1IbBSCjz6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyM0FCNC8xRkIwNDBBMEIx NzQxMUU2OEVDODg1MThDNEY5QUUwMi9PR3hjc3RiZzdHRkJycmNfU1RVaHNGSUtQ UG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09HeGNzdGJnN0dGQnJyY19TVFVoc0ZJS1BQby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy M0FCNC8xRkIwNDBBMEIxNzQxMUU2OEVDODg1MThDNEY5QUUwMi9PR3hjc3RiZzdH RkJycmNfU1RVaHNGSUtQUG8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAsNke0VLIjj1U3w3ATlIVeJ7iuVtQxsAaknqUMw8UnniI3/YyIJsRJPmq1tUS 48zUAJpy6WQdSbDouDwgd1dqlTvdD8/zDKHPR2UZaoeN36t5G1EWjq6cBCDur5PY butTv2JkFsK8lrqVReW4m1p5uuVSot6f40OQjg8+d4GLmdIt67bYgjB5BbDU366h VrjUCIICY1gkrwP6moJOz+WG2kL+fDnQvnweH1RapKuwYeCLA+Zt3eVYzHNPzFmU k6oaJNolpMy0qPAiTEjmjQhHemUgIpyaDofXWLtseTJOCK4Z6n0cabQ2lXyYS8u+ fANMa7E7590L53i8X7Y07X1s2w== -----END CERTIFICATE-----Generated at Fri Apr 17 13:58:40 2026 by rpki-client