$ rpki-client -vvf rpki.apnic.net/member_repository/A9144CB7/8C93F76CE17611EFB7981B19C4F9AE02/opgFnwZTffjAi4klX3lZQaMcGAA.mft File: opgFnwZTffjAi4klX3lZQaMcGAA.mft (raw, json) Hash identifier: DN9uYRtqziZNLACgCodrphTfPBnkEEwo06JbmUZxJHw= Subject key identifier: 7F:70:BE:EF:BE:B1:4D:D9:73:DD:85:6A:81:35:71:6D:12:7E:F3:E1 Authority key identifier: A2:98:05:9F:06:53:7D:F8:C0:8B:89:25:5F:79:59:41:A3:1C:18:00 Certificate issuer: /CN=A9144CB7/serialNumber=A298059F06537DF8C08B89255F795941A31C1800 Certificate serial: EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/opgFnwZTffjAi4klX3lZQaMcGAA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144CB7/8C93F76CE17611EFB7981B19C4F9AE02/opgFnwZTffjAi4klX3lZQaMcGAA.mft Manifest number: E6 Signing time: Fri 17 Apr 2026 06:13:25 +0000 Manifest this update: Fri 17 Apr 2026 06:13:25 +0000 Manifest next update: Fri 24 Apr 2026 06:13:25 +0000 Files and hashes: 1: opgFnwZTffjAi4klX3lZQaMcGAA.crl (hash: TxwA65TBG2nCnBGbTGalAvYg4ibWT51JYfbtOCGQGN8=) 2: 903E0F1652BD11F0A9261F57C4F9AE02.roa (hash: dmB1cr7byswXq/X1M5OhCF6oVNLPlMisHj2PV9sIXP0=) 3: E8716FD4EA3511EF89116C52C4F9AE02.roa (hash: 0FCY4nM/xiPTvsko2lPHjPRBl+NB5R5liczHspFuXXU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144CB7/8C93F76CE17611EFB7981B19C4F9AE02/opgFnwZTffjAi4klX3lZQaMcGAA.crl rsync://rpki.apnic.net/member_repository/A9144CB7/8C93F76CE17611EFB7981B19C4F9AE02/opgFnwZTffjAi4klX3lZQaMcGAA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/opgFnwZTffjAi4klX3lZQaMcGAA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 06:13:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 238 (0xee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144CB7, serialNumber=A298059F06537DF8C08B89255F795941A31C1800 Validity Not Before: Apr 17 06:13:25 2026 GMT Not After : Apr 24 06:13:25 2026 GMT Subject: CN=69e1cf85-666d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:8b:77:a5:66:65:d8:e9:25:33:e0:2b:72:4d: 56:6b:29:d1:5b:c2:79:e1:c0:7a:55:b1:fe:12:8c: c8:5d:62:e2:d4:7e:81:da:32:b1:c1:35:49:54:71: 61:ca:4b:8c:2a:45:e5:d7:cf:cb:b6:a6:d8:b6:93: fa:81:f3:8b:4b:eb:97:97:11:90:5d:13:ca:b3:25: 95:5a:ff:f1:39:3e:fa:86:5c:d8:17:ee:e1:da:46: 39:ac:b2:01:01:a8:38:f8:d2:11:17:eb:52:da:2a: 3d:ea:45:3c:08:75:57:c3:0c:47:ec:97:58:1a:75: cf:cb:a7:31:b3:0c:a5:68:7c:59:1d:0b:df:dd:5a: fe:d7:e2:ed:4a:39:22:77:34:96:fb:55:90:4c:34: 3f:e7:53:d3:94:1e:da:58:e0:d0:97:ed:04:7e:9d: 2b:0d:ac:03:9d:96:22:52:02:a8:81:3e:33:4a:03: e3:e8:f7:b6:30:c9:11:09:5e:fc:23:76:1f:42:eb: 02:cf:77:b3:82:ad:eb:06:f4:90:0d:a0:00:d3:74: c0:7c:02:37:2c:d1:7b:e5:7a:53:13:f9:92:74:71: 52:cf:96:d1:38:50:b5:4a:ec:2e:e6:45:00:1a:e5: d6:b3:7c:61:1c:07:44:3b:0e:90:07:88:aa:a7:d3: 50:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:70:BE:EF:BE:B1:4D:D9:73:DD:85:6A:81:35:71:6D:12:7E:F3:E1 X509v3 Authority Key Identifier: keyid:A2:98:05:9F:06:53:7D:F8:C0:8B:89:25:5F:79:59:41:A3:1C:18:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144CB7/8C93F76CE17611EFB7981B19C4F9AE02/opgFnwZTffjAi4klX3lZQaMcGAA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/opgFnwZTffjAi4klX3lZQaMcGAA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144CB7/8C93F76CE17611EFB7981B19C4F9AE02/opgFnwZTffjAi4klX3lZQaMcGAA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c2:04:72:0b:04:35:1a:7c:a1:fc:57:52:d8:44:f3:a1:21:5d: 30:a2:9b:cd:45:6b:32:81:60:77:3c:c2:7a:70:96:c8:ad:df: 7d:fb:08:70:32:51:35:b4:2a:aa:ad:60:1a:86:4d:77:92:3f: 84:6e:3b:20:f8:aa:4a:93:2f:ff:31:68:ad:fd:e8:62:82:cb: 5c:9f:96:86:73:75:11:c5:84:af:24:60:dc:01:0e:f4:79:82: 7a:60:cf:01:87:1d:3c:11:b0:cf:2e:49:32:12:f7:44:0e:61: 26:4c:c2:5a:85:5c:57:14:ab:3d:2c:64:72:ac:9c:52:28:97: b8:4a:e9:d3:49:e2:0b:96:8f:ba:fb:64:70:41:4e:52:0e:62: 1a:3c:3e:1f:35:08:df:02:44:ba:67:3d:f8:90:13:8b:a5:30: 40:56:b9:47:2d:1b:41:61:9b:70:08:7a:22:6b:09:33:4c:ab: 76:ab:74:87:7d:45:1e:c8:57:5a:a3:1a:dc:64:07:79:46:50: 07:15:4e:9f:26:c9:75:ec:6f:75:6d:64:b6:82:d3:ed:ba:9b: 02:c7:6e:4e:bb:2d:63:38:4e:98:78:e7:af:cf:3f:54:84:0d: ec:d3:79:a7:8c:0f:20:5b:d6:e9:b9:ca:70:fc:02:f8:e7:e6: c6:eb:e5:6a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAO4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDRDQjcxMTAvBgNVBAUTKEEyOTgwNTlGMDY1MzdERjhDMDhCODkyNTVGNzk1OTQx QTMxQzE4MDAwHhcNMjYwNDE3MDYxMzI1WhcNMjYwNDI0MDYxMzI1WjAYMRYwFAYD VQQDEw02OWUxY2Y4NS02NjZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7ot3pWZl2OklM+Arck1WaynRW8J54cB6VbH+EozIXWLi1H6B2jKxwTVJVHFh ykuMKkXl18/LtqbYtpP6gfOLS+uXlxGQXRPKsyWVWv/xOT76hlzYF+7h2kY5rLIB Aag4+NIRF+tS2io96kU8CHVXwwxH7JdYGnXPy6cxswylaHxZHQvf3Vr+1+LtSjki dzSW+1WQTDQ/51PTlB7aWODQl+0Efp0rDawDnZYiUgKogT4zSgPj6Pe2MMkRCV78 I3YfQusCz3ezgq3rBvSQDaAA03TAfAI3LNF75XpTE/mSdHFSz5bROFC1Suwu5kUA GuXWs3xhHAdEOw6QB4iqp9NQVwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFH9wvu++ sU3Zc92FaoE1cW0SfvPhMB8GA1UdIwQYMBaAFKKYBZ8GU334wIuJJV95WUGjHBgA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NENCNy84QzkzRjc2Q0Ux NzYxMUVGQjc5ODFCMTlDNEY5QUUwMi9vcGdGbndaVGZmakFpNGtsWDNsWlFhTWNH QUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29wZ0Zud1pUZmZqQWk0a2xYM2xaUWFNY0dBQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NENCNy84QzkzRjc2Q0UxNzYxMUVGQjc5ODFCMTlDNEY5QUUwMi9vcGdGbndaVGZm akFpNGtsWDNsWlFhTWNHQUEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAwgRyCwQ1Gnyh/FdS2ETzoSFdMKKbzUVrMoFgdzzCenCWyK3fffsIcDJRNbQq qq1gGoZNd5I/hG47IPiqSpMv/zForf3oYoLLXJ+WhnN1EcWEryRg3AEO9HmCemDP AYcdPBGwzy5JMhL3RA5hJkzCWoVcVxSrPSxkcqycUiiXuErp00niC5aPuvtkcEFO Ug5iGjw+HzUI3wJEumc9+JATi6UwQFa5Ry0bQWGbcAh6ImsJM0yrdqt0h31FHshX WqMa3GQHeUZQBxVOnybJdexvdW1ktoLT7bqbAsduTrstYzhOmHjnr88/VIQN7NN5 p4wPIFvW6bnKcPwC+Ofmxuvlag== -----END CERTIFICATE-----Generated at Fri Apr 17 21:18:43 2026 by rpki-client