$ rpki-client -vvf rpki.apnic.net/member_repository/A91579E2/73AF2F7AF2B011EDA42B4470C4F9AE02/O2JAfi5U9C-AkOLA2G_Sw6YTMLM.mft File: O2JAfi5U9C-AkOLA2G_Sw6YTMLM.mft (raw, json) Hash identifier: Y1+CPLDGo5bYfnvOeuOGi1+jPWGr74AI1BgktuDaE4w= Subject key identifier: C8:B8:A3:FE:7C:89:DB:EA:04:35:7F:36:2C:B4:0A:A4:11:5E:9D:71 Authority key identifier: 3B:62:40:7E:2E:54:F4:2F:80:90:E2:C0:D8:6F:D2:C3:A6:13:30:B3 Certificate issuer: /CN=A91579E2/serialNumber=3B62407E2E54F42F8090E2C0D86FD2C3A61330B3 Certificate serial: 022C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O2JAfi5U9C-AkOLA2G_Sw6YTMLM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91579E2/73AF2F7AF2B011EDA42B4470C4F9AE02/O2JAfi5U9C-AkOLA2G_Sw6YTMLM.mft Manifest number: 0223 Signing time: Fri 17 Apr 2026 02:28:36 +0000 Manifest this update: Fri 17 Apr 2026 02:28:36 +0000 Manifest next update: Fri 24 Apr 2026 02:28:36 +0000 Files and hashes: 1: O2JAfi5U9C-AkOLA2G_Sw6YTMLM.crl (hash: rsA47xwwpqmfIeyQlPLPXZgziOjk6dEjMb5Ok0pwm4Y=) 2: 62923A1EF2B711EDAA29717AC4F9AE02.roa (hash: v4Qu7n+fWBWXJKInz5nkseGm1QdnUq7lHUeNDDgFhss=) 3: 631D6D82F2B711EDAA29717AC4F9AE02.roa (hash: 19Rc441u91Y2HL2+FlU8nzr70BJos1ukfHPyv3DBp5k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91579E2/73AF2F7AF2B011EDA42B4470C4F9AE02/O2JAfi5U9C-AkOLA2G_Sw6YTMLM.crl rsync://rpki.apnic.net/member_repository/A91579E2/73AF2F7AF2B011EDA42B4470C4F9AE02/O2JAfi5U9C-AkOLA2G_Sw6YTMLM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O2JAfi5U9C-AkOLA2G_Sw6YTMLM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 02:28:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 556 (0x22c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91579E2, serialNumber=3B62407E2E54F42F8090E2C0D86FD2C3A61330B3 Validity Not Before: Apr 17 02:28:36 2026 GMT Not After : Apr 24 02:28:36 2026 GMT Subject: CN=69e19ad4-e958 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:5e:0c:7c:1f:db:64:5a:14:9b:8c:cd:d4:b6: 3f:16:f7:7d:e3:02:98:d6:16:8f:43:ed:64:5a:fd: bf:0c:d8:50:23:34:55:ec:3a:8b:1d:80:ad:a1:81: 01:e8:d8:db:01:f0:59:88:9e:c6:ca:9b:2f:db:57: 1c:ce:03:77:9d:ed:03:cf:ed:e9:2c:74:d8:7b:7a: cb:ee:74:47:a4:77:8b:78:0e:87:6f:e1:8e:de:08: e9:4d:19:bd:3e:80:41:d9:c1:33:d0:9d:7b:4f:a8: cf:1f:c1:f0:bb:b9:63:d0:de:fd:97:04:6e:05:76: 9b:b8:47:5f:bd:4b:6f:ca:a8:86:ab:2f:45:da:0d: d9:8b:fe:11:1b:98:34:58:88:65:43:0d:ad:8e:2e: d1:d1:f4:46:d2:5c:53:e5:95:64:6d:41:8a:64:2e: 1e:be:c1:03:36:b0:08:81:2e:f4:a7:bc:3a:bd:f0: f7:15:a8:ef:52:5c:03:d2:0f:9e:1c:9f:ef:57:47: fc:38:5a:81:52:63:48:b7:34:b2:92:22:52:a4:0f: 25:59:c1:61:30:3e:22:e3:ba:86:a9:66:97:e3:db: b7:8b:6f:c4:75:4e:7a:f0:d1:21:95:b8:71:4f:a1: 74:b1:a3:14:61:7f:81:71:b1:f6:a3:ac:12:f8:71: 18:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:B8:A3:FE:7C:89:DB:EA:04:35:7F:36:2C:B4:0A:A4:11:5E:9D:71 X509v3 Authority Key Identifier: keyid:3B:62:40:7E:2E:54:F4:2F:80:90:E2:C0:D8:6F:D2:C3:A6:13:30:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91579E2/73AF2F7AF2B011EDA42B4470C4F9AE02/O2JAfi5U9C-AkOLA2G_Sw6YTMLM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O2JAfi5U9C-AkOLA2G_Sw6YTMLM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91579E2/73AF2F7AF2B011EDA42B4470C4F9AE02/O2JAfi5U9C-AkOLA2G_Sw6YTMLM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:6c:b8:06:d5:93:04:81:f1:04:d2:bd:71:f8:da:5e:8e:2e: 06:bd:bf:5f:d9:77:87:f5:e4:1c:29:8d:48:20:96:03:44:14: de:d7:18:54:03:29:83:89:70:7f:dd:32:3e:b2:53:bf:a2:94: 1e:c2:53:2c:d7:cb:32:7e:43:c2:58:aa:d7:2c:05:8a:df:4a: 87:99:00:22:d3:ca:d0:d9:79:d7:e4:1f:d9:14:42:88:08:2d: 16:1e:39:d6:49:4c:10:01:e3:23:b0:8f:b9:69:c3:71:54:c7: 9e:88:91:32:6a:6c:93:8a:12:6e:52:42:0f:d4:1b:0f:af:c7: fe:af:ce:cf:ed:ec:ab:19:a1:49:37:5d:39:9f:f5:ed:ff:f7: c1:05:1a:56:42:c2:4e:87:33:b0:aa:ee:a6:ff:94:6c:e4:a5: 5a:c1:76:89:7d:0e:3d:c8:78:fa:c6:f0:64:1a:36:24:ce:84: df:7c:61:fb:ff:ad:4f:a1:5c:ea:e2:e5:f9:ed:51:41:0b:68: fb:8f:ba:62:9d:df:2f:cf:22:9c:7e:4d:b9:da:14:1b:15:a6: 80:e4:86:ff:b6:6d:fe:ac:a4:ce:6b:78:17:9b:43:5e:6c:a9: 27:c4:65:a5:56:73:c3:53:62:67:2a:cb:fe:45:57:ba:16:d6: 4a:bd:14:62 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAiwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTc5RTIxMTAvBgNVBAUTKDNCNjI0MDdFMkU1NEY0MkY4MDkwRTJDMEQ4NkZEMkMz QTYxMzMwQjMwHhcNMjYwNDE3MDIyODM2WhcNMjYwNDI0MDIyODM2WjAYMRYwFAYD VQQDEw02OWUxOWFkNC1lOTU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp14MfB/bZFoUm4zN1LY/Fvd94wKY1haPQ+1kWv2/DNhQIzRV7DqLHYCtoYEB 6NjbAfBZiJ7Gypsv21cczgN3ne0Dz+3pLHTYe3rL7nRHpHeLeA6Hb+GO3gjpTRm9 PoBB2cEz0J17T6jPH8Hwu7lj0N79lwRuBXabuEdfvUtvyqiGqy9F2g3Zi/4RG5g0 WIhlQw2tji7R0fRG0lxT5ZVkbUGKZC4evsEDNrAIgS70p7w6vfD3FajvUlwD0g+e HJ/vV0f8OFqBUmNItzSykiJSpA8lWcFhMD4i47qGqWaX49u3i2/EdU568NEhlbhx T6F0saMUYX+BcbH2o6wS+HEY+QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMi4o/58 idvqBDV/Niy0CqQRXp1xMB8GA1UdIwQYMBaAFDtiQH4uVPQvgJDiwNhv0sOmEzCz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NzlFMi83M0FGMkY3QUYy QjAxMUVEQTQyQjQ0NzBDNEY5QUUwMi9PMkpBZmk1VTlDLUFrT0xBMkdfU3c2WVRN TE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL08ySkFmaTVVOUMtQWtPTEEyR19TdzZZVE1MTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NzlFMi83M0FGMkY3QUYyQjAxMUVEQTQyQjQ0NzBDNEY5QUUwMi9PMkpBZmk1VTlD LUFrT0xBMkdfU3c2WVRNTE0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEArGy4BtWTBIHxBNK9cfjaXo4uBr2/X9l3h/XkHCmNSCCWA0QU3tcYVAMpg4lw f90yPrJTv6KUHsJTLNfLMn5Dwliq1ywFit9Kh5kAItPK0Nl51+Qf2RRCiAgtFh45 1klMEAHjI7CPuWnDcVTHnoiRMmpsk4oSblJCD9QbD6/H/q/Oz+3sqxmhSTddOZ/1 7f/3wQUaVkLCToczsKrupv+UbOSlWsF2iX0OPch4+sbwZBo2JM6E33xh+/+tT6Fc 6uLl+e1RQQto+4+6Yp3fL88inH5NudoUGxWmgOSG/7Zt/qykzmt4F5tDXmypJ8Rl pVZzw1NiZyrL/kVXuhbWSr0UYg== -----END CERTIFICATE-----Generated at Fri Apr 17 05:39:24 2026 by rpki-client