$ rpki-client -vvf rpki.apnic.net/member_repository/A9128DE9/D0049F861BD511EA80CBCF36C4F9AE02/RiOppNLqhemPtaEaDSywgDiHjw8.mft File: RiOppNLqhemPtaEaDSywgDiHjw8.mft (raw, json) Hash identifier: I2OXLMe59NdIT4heV5sXE5fowx94i3LFB+mwRpjYLIY= Subject key identifier: A4:B8:AD:C7:4C:77:11:13:70:2B:4D:7C:03:52:1A:7D:29:7B:5A:CC Authority key identifier: 46:23:A9:A4:D2:EA:85:E9:8F:B5:A1:1A:0D:2C:B0:80:38:87:8F:0F Certificate issuer: /CN=A9128DE9/serialNumber=4623A9A4D2EA85E98FB5A11A0D2CB08038878F0F Certificate serial: 0C7F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RiOppNLqhemPtaEaDSywgDiHjw8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128DE9/D0049F861BD511EA80CBCF36C4F9AE02/RiOppNLqhemPtaEaDSywgDiHjw8.mft Manifest number: 0C76 Signing time: Thu 16 Apr 2026 18:32:09 +0000 Manifest this update: Thu 16 Apr 2026 18:32:09 +0000 Manifest next update: Thu 23 Apr 2026 18:32:09 +0000 Files and hashes: 1: RiOppNLqhemPtaEaDSywgDiHjw8.crl (hash: NofcMO0P9bsyL5J9Zb0UkHntSZ3mn5+bofSXnICPKt4=) 2: 75E6DD481BDA11EAB3F45D44C4F9AE02.roa (hash: n9Crm/X8BIyWrbtx9XSuVfzuzzUyJa39Yk0aZo9vy/0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128DE9/D0049F861BD511EA80CBCF36C4F9AE02/RiOppNLqhemPtaEaDSywgDiHjw8.crl rsync://rpki.apnic.net/member_repository/A9128DE9/D0049F861BD511EA80CBCF36C4F9AE02/RiOppNLqhemPtaEaDSywgDiHjw8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RiOppNLqhemPtaEaDSywgDiHjw8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 18:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3199 (0xc7f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128DE9, serialNumber=4623A9A4D2EA85E98FB5A11A0D2CB08038878F0F Validity Not Before: Apr 16 18:32:09 2026 GMT Not After : Apr 23 18:32:09 2026 GMT Subject: CN=69e12b29-98d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:f1:ba:6d:7a:86:55:c1:c1:cd:e9:34:18:e4: d8:ed:9d:5f:00:34:12:5f:95:88:24:8b:cb:2b:32: 6d:e8:07:7a:8c:07:b3:7c:8c:d1:0e:9a:e7:db:e3: 3c:82:14:cb:bc:73:1d:6e:ab:27:98:52:04:ed:02: 6e:42:fb:45:06:b3:9e:80:56:a6:27:49:53:8a:95: ab:d3:97:73:0f:56:19:27:17:e2:a5:2d:39:8f:31: 98:ec:6b:ca:27:aa:ab:8a:cd:d3:81:d4:aa:6c:21: c4:e8:74:18:ad:2b:6e:ab:d3:68:cc:8e:74:9c:e1: be:ed:2b:fc:f6:4a:e0:e9:1f:a4:6c:bb:7b:93:12: 7e:e8:c6:f9:6f:57:a7:39:ed:ab:5b:ee:4e:de:fd: 52:41:cb:6a:4d:c8:77:aa:f0:74:64:99:36:ad:8d: 8e:fc:36:1f:4d:ca:e2:cc:56:ab:41:c9:ec:98:7a: 64:f9:88:e2:a8:8b:c7:57:c6:ce:66:be:0d:26:6a: 3a:09:c2:f4:d8:49:0a:ef:9b:2e:fd:a4:f6:1b:3d: a0:2f:ee:65:dd:4b:7f:49:c5:33:10:42:c1:0f:1f: 26:57:ac:dd:73:ff:cf:11:c0:f2:e2:9d:18:11:53: ec:75:9f:b6:68:08:22:1c:b3:05:82:cb:08:a7:5e: 62:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:B8:AD:C7:4C:77:11:13:70:2B:4D:7C:03:52:1A:7D:29:7B:5A:CC X509v3 Authority Key Identifier: keyid:46:23:A9:A4:D2:EA:85:E9:8F:B5:A1:1A:0D:2C:B0:80:38:87:8F:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128DE9/D0049F861BD511EA80CBCF36C4F9AE02/RiOppNLqhemPtaEaDSywgDiHjw8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RiOppNLqhemPtaEaDSywgDiHjw8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128DE9/D0049F861BD511EA80CBCF36C4F9AE02/RiOppNLqhemPtaEaDSywgDiHjw8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:02:ee:40:95:0a:49:28:eb:18:52:35:5f:26:d1:12:f2:61: 2a:5b:3e:30:50:74:7f:41:13:52:a5:e8:29:bb:cf:95:1d:76: 1c:0a:da:6f:46:0b:cf:91:f0:00:1f:58:0e:e2:b1:c3:ef:9a: 61:56:01:7d:58:d1:39:e3:0f:b1:e4:11:82:f0:ea:6e:16:81: 18:74:8a:1f:05:a1:95:1f:b5:5e:83:b6:b3:26:56:36:10:c6: 69:bc:da:5e:d0:04:e1:da:d3:5b:a3:54:cf:1f:e9:af:a7:38: 70:de:78:0d:ec:22:c6:0c:12:79:a7:36:7d:0b:28:9b:af:3c: ca:f0:9e:47:77:95:34:9b:f1:ef:a5:25:85:58:3b:92:b2:13: 70:74:09:43:c3:d1:52:c9:ce:cb:f6:33:9d:31:03:22:26:f7: 29:2c:c4:c1:8e:00:b4:f9:12:4f:1b:a7:31:91:e7:ce:66:3d: 63:21:69:c4:9b:51:42:f9:40:35:d0:d7:48:ca:0b:84:ba:d4: be:72:64:18:5e:24:02:e0:ff:8c:d4:cc:28:ab:3d:c0:92:bb: e6:25:bf:8a:30:5c:91:be:d9:22:c6:3a:2f:80:4f:fd:5a:4f: 28:81:38:07:df:16:fc:50:22:8e:38:f6:0e:49:8e:cd:bd:27: 98:50:85:5a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDH8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjhERTkxMTAvBgNVBAUTKDQ2MjNBOUE0RDJFQTg1RTk4RkI1QTExQTBEMkNCMDgw Mzg4NzhGMEYwHhcNMjYwNDE2MTgzMjA5WhcNMjYwNDIzMTgzMjA5WjAYMRYwFAYD VQQDEw02OWUxMmIyOS05OGQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvfG6bXqGVcHBzek0GOTY7Z1fADQSX5WIJIvLKzJt6Ad6jAezfIzRDprn2+M8 ghTLvHMdbqsnmFIE7QJuQvtFBrOegFamJ0lTipWr05dzD1YZJxfipS05jzGY7GvK J6qris3TgdSqbCHE6HQYrStuq9NozI50nOG+7Sv89krg6R+kbLt7kxJ+6Mb5b1en Oe2rW+5O3v1SQctqTch3qvB0ZJk2rY2O/DYfTcrizFarQcnsmHpk+YjiqIvHV8bO Zr4NJmo6CcL02EkK75su/aT2Gz2gL+5l3Ut/ScUzEELBDx8mV6zdc//PEcDy4p0Y EVPsdZ+2aAgiHLMFgssIp15i3QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKS4rcdM dxETcCtNfANSGn0pe1rMMB8GA1UdIwQYMBaAFEYjqaTS6oXpj7WhGg0ssIA4h48P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOERFOS9EMDA0OUY4NjFC RDUxMUVBODBDQkNGMzZDNEY5QUUwMi9SaU9wcE5McWhlbVB0YUVhRFN5d2dEaUhq dzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1JpT3BwTkxxaGVtUHRhRWFEU3l3Z0RpSGp3OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OERFOS9EMDA0OUY4NjFCRDUxMUVBODBDQkNGMzZDNEY5QUUwMi9SaU9wcE5McWhl bVB0YUVhRFN5d2dEaUhqdzgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAXgLuQJUKSSjrGFI1XybREvJhKls+MFB0f0ETUqXoKbvPlR12HArab0YLz5Hw AB9YDuKxw++aYVYBfVjROeMPseQRgvDqbhaBGHSKHwWhlR+1XoO2syZWNhDGabza XtAE4drTW6NUzx/pr6c4cN54DewixgwSeac2fQsom688yvCeR3eVNJvx76UlhVg7 krITcHQJQ8PRUsnOy/YznTEDIib3KSzEwY4AtPkSTxunMZHnzmY9YyFpxJtRQvlA NdDXSMoLhLrUvnJkGF4kAuD/jNTMKKs9wJK75iW/ijBckb7ZIsY6L4BP/VpPKIE4 B98W/FAijjj2DkmOzb0nmFCFWg== -----END CERTIFICATE-----Generated at Fri Apr 17 19:03:30 2026 by rpki-client