$ rpki-client -vvf rpki.apnic.net/member_repository/A91435F3/9B5DB5EA50A811EEB6DE093FC4F9AE02/khO1BHpA8jx8YASA5tqnoc9_oug.mft File: khO1BHpA8jx8YASA5tqnoc9_oug.mft (raw, json) Hash identifier: EsngPf80xlWg3gycm4jqGBvmH+GbO7VMhBiwjoyki6c= Subject key identifier: DD:6C:AB:1A:9D:83:B7:39:15:81:BC:57:A4:D9:23:30:A9:CE:FE:8A Authority key identifier: 92:13:B5:04:7A:40:F2:3C:7C:60:04:80:E6:DA:A7:A1:CF:7F:A2:E8 Certificate issuer: /CN=A91435F3/serialNumber=9213B5047A40F23C7C600480E6DAA7A1CF7FA2E8 Certificate serial: 01EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khO1BHpA8jx8YASA5tqnoc9_oug.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91435F3/9B5DB5EA50A811EEB6DE093FC4F9AE02/khO1BHpA8jx8YASA5tqnoc9_oug.mft Manifest number: 01E7 Signing time: Fri 17 Apr 2026 03:04:48 +0000 Manifest this update: Fri 17 Apr 2026 03:04:48 +0000 Manifest next update: Fri 24 Apr 2026 03:04:48 +0000 Files and hashes: 1: khO1BHpA8jx8YASA5tqnoc9_oug.crl (hash: EwDZ4SIMMbNa4K/5CisuPKH5I2VM2/mM2JOJv8TcT2s=) 2: 4E18682450A911EEA39AAE41C4F9AE02.roa (hash: S78MAtCzOFeat+lwvfwXDyyxLQzCa+hqVuKnzodQy+E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91435F3/9B5DB5EA50A811EEB6DE093FC4F9AE02/khO1BHpA8jx8YASA5tqnoc9_oug.crl rsync://rpki.apnic.net/member_repository/A91435F3/9B5DB5EA50A811EEB6DE093FC4F9AE02/khO1BHpA8jx8YASA5tqnoc9_oug.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khO1BHpA8jx8YASA5tqnoc9_oug.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 03:04:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 492 (0x1ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91435F3, serialNumber=9213B5047A40F23C7C600480E6DAA7A1CF7FA2E8 Validity Not Before: Apr 17 03:04:48 2026 GMT Not After : Apr 24 03:04:48 2026 GMT Subject: CN=69e1a350-5d51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:6b:c8:2f:99:32:a8:0a:59:d4:c4:54:b8:c1: 61:26:36:a6:e8:f5:96:59:47:e9:39:09:e6:64:98: 01:04:a3:3d:e3:24:1c:7c:b4:f8:36:01:41:3e:ec: 07:49:04:40:c1:02:0f:57:28:cb:17:86:a8:9a:4a: 32:22:a8:3b:92:0e:37:6f:46:86:a7:14:fd:da:28: 92:55:fb:e5:ea:fa:a1:64:91:32:ea:96:3a:50:0d: fb:48:e1:6a:dd:7b:06:be:6d:0f:60:47:e9:6d:a2: 47:05:d9:0a:15:8f:a5:8e:9b:cb:57:6b:bb:46:11: bc:62:79:e0:d4:7c:ec:fa:da:cd:c8:5b:0e:2f:c4: c4:1f:58:c2:f1:3e:cb:8f:9c:34:2c:04:0f:19:c9: 0e:c4:5c:90:00:e4:de:ff:04:28:39:76:65:16:03: 27:8c:36:e6:7d:35:b2:b2:3c:20:5d:35:d5:e0:a4: f4:d8:1d:c1:48:6e:cc:75:80:93:8a:84:35:f7:fb: 9c:3e:24:a3:ba:40:e4:3d:45:28:c6:56:12:be:82: 11:c9:01:f4:89:bf:fc:0f:8e:e8:a3:b5:7f:61:3b: cd:5b:49:f2:00:78:8b:7d:d8:6a:3b:63:bf:76:24: 3f:bc:8b:59:d8:c1:e8:5f:e8:ad:54:e7:08:b3:8b: 4f:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:6C:AB:1A:9D:83:B7:39:15:81:BC:57:A4:D9:23:30:A9:CE:FE:8A X509v3 Authority Key Identifier: keyid:92:13:B5:04:7A:40:F2:3C:7C:60:04:80:E6:DA:A7:A1:CF:7F:A2:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91435F3/9B5DB5EA50A811EEB6DE093FC4F9AE02/khO1BHpA8jx8YASA5tqnoc9_oug.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khO1BHpA8jx8YASA5tqnoc9_oug.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91435F3/9B5DB5EA50A811EEB6DE093FC4F9AE02/khO1BHpA8jx8YASA5tqnoc9_oug.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:3e:b3:79:39:c2:29:35:9f:97:d8:c9:90:53:56:06:a6:bd: e0:36:ff:00:38:f6:cb:01:da:d7:b9:c2:3c:72:58:03:ef:25: e2:aa:7a:51:b1:29:cb:b5:2e:f9:36:8a:ac:c2:50:34:76:88: 2f:d1:1c:6e:04:a6:f6:1a:fc:bf:cb:aa:c5:56:b6:e6:05:08: 80:5e:1f:f5:51:15:5c:13:46:a1:bb:ec:2e:38:fc:97:98:f1: 78:4b:d8:17:47:f2:0f:b9:a5:b9:fb:d7:3b:88:4b:9a:fc:1c: 06:b9:23:4b:cd:85:e1:1f:82:41:9f:40:0f:c1:34:0b:43:c2: 33:67:31:04:59:04:7e:7b:ee:27:47:e4:71:24:f9:db:0f:92: 35:82:94:1c:d2:0a:05:cd:33:ea:cf:05:40:77:76:c2:27:b8: b8:e5:7d:f4:05:8e:2a:da:35:72:af:e0:e2:fe:cb:53:3c:dd: b8:7b:b4:02:6e:3f:59:cf:38:26:8a:5b:59:79:e0:80:28:78: 1f:1f:99:68:be:62:d2:07:3c:7f:04:15:82:48:c7:f6:48:96: 26:91:11:05:b8:ca:bf:47:83:b9:3b:44:04:06:7a:3d:58:01: d2:6a:6d:d9:dc:e7:3f:dd:fd:9f:5f:37:46:a1:2a:b9:17:7f: d9:20:da:1e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAewwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDM1RjMxMTAvBgNVBAUTKDkyMTNCNTA0N0E0MEYyM0M3QzYwMDQ4MEU2REFBN0Ex Q0Y3RkEyRTgwHhcNMjYwNDE3MDMwNDQ4WhcNMjYwNDI0MDMwNDQ4WjAYMRYwFAYD VQQDEw02OWUxYTM1MC01ZDUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsmvIL5kyqApZ1MRUuMFhJjam6PWWWUfpOQnmZJgBBKM94yQcfLT4NgFBPuwH SQRAwQIPVyjLF4aomkoyIqg7kg43b0aGpxT92iiSVfvl6vqhZJEy6pY6UA37SOFq 3XsGvm0PYEfpbaJHBdkKFY+ljpvLV2u7RhG8Ynng1Hzs+trNyFsOL8TEH1jC8T7L j5w0LAQPGckOxFyQAOTe/wQoOXZlFgMnjDbmfTWysjwgXTXV4KT02B3BSG7MdYCT ioQ19/ucPiSjukDkPUUoxlYSvoIRyQH0ib/8D47oo7V/YTvNW0nyAHiLfdhqO2O/ diQ/vItZ2MHoX+itVOcIs4tPgwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFN1sqxqd g7c5FYG8V6TZIzCpzv6KMB8GA1UdIwQYMBaAFJITtQR6QPI8fGAEgObap6HPf6Lo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MzVGMy85QjVEQjVFQTUw QTgxMUVFQjZERTA5M0ZDNEY5QUUwMi9raE8xQkhwQThqeDhZQVNBNXRxbm9jOV9v dWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2toTzFCSHBBOGp4OFlBU0E1dHFub2M5X291Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MzVGMy85QjVEQjVFQTUwQTgxMUVFQjZERTA5M0ZDNEY5QUUwMi9raE8xQkhwQThq eDhZQVNBNXRxbm9jOV9vdWcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAPj6zeTnCKTWfl9jJkFNWBqa94Db/ADj2ywHa17nCPHJYA+8l4qp6UbEpy7Uu +TaKrMJQNHaIL9EcbgSm9hr8v8uqxVa25gUIgF4f9VEVXBNGobvsLjj8l5jxeEvY F0fyD7mlufvXO4hLmvwcBrkjS82F4R+CQZ9AD8E0C0PCM2cxBFkEfnvuJ0fkcST5 2w+SNYKUHNIKBc0z6s8FQHd2wie4uOV99AWOKto1cq/g4v7LUzzduHu0Am4/Wc84 JopbWXnggCh4Hx+ZaL5i0gc8fwQVgkjH9kiWJpERBbjKv0eDuTtEBAZ6PVgB0mpt 2dznP939n183RqEquRd/2SDaHg== -----END CERTIFICATE-----Generated at Fri Apr 17 15:33:45 2026 by rpki-client