$ rpki-client -vvf rpki.apnic.net/member_repository/A9158547/B38668E492A511EE8CD95B1EC4F9AE02/oNZvEXVTOiOoUulRUGXIWjOec4Y.mft File: oNZvEXVTOiOoUulRUGXIWjOec4Y.mft (raw, json) Hash identifier: +D7YW/67efx4stxj2uyUJKRO6Z+KRL/ImerGfcg27mQ= Subject key identifier: 11:66:31:1B:F7:42:7B:12:CB:8C:5E:EF:68:57:DD:44:4F:BA:52:C6 Authority key identifier: A0:D6:6F:11:75:53:3A:23:A8:52:E9:51:50:65:C8:5A:33:9E:73:86 Certificate issuer: /CN=A9158547/serialNumber=A0D66F1175533A23A852E9515065C85A339E7386 Certificate serial: 01C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oNZvEXVTOiOoUulRUGXIWjOec4Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158547/B38668E492A511EE8CD95B1EC4F9AE02/oNZvEXVTOiOoUulRUGXIWjOec4Y.mft Manifest number: 01BD Signing time: Fri 17 Apr 2026 03:35:54 +0000 Manifest this update: Fri 17 Apr 2026 03:35:53 +0000 Manifest next update: Fri 24 Apr 2026 03:35:53 +0000 Files and hashes: 1: oNZvEXVTOiOoUulRUGXIWjOec4Y.crl (hash: oNtRTVewyAUDF0xtPAmlT5kTLD2L4pGOfBOCItHEHe4=) 2: 6E7BFE7092A611EEBD5D8720C4F9AE02.roa (hash: GM/TYAUFUCny0Saz92cbiRCqbmb1aqzepH4OiX/MKnM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158547/B38668E492A511EE8CD95B1EC4F9AE02/oNZvEXVTOiOoUulRUGXIWjOec4Y.crl rsync://rpki.apnic.net/member_repository/A9158547/B38668E492A511EE8CD95B1EC4F9AE02/oNZvEXVTOiOoUulRUGXIWjOec4Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oNZvEXVTOiOoUulRUGXIWjOec4Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 03:35:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 450 (0x1c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158547, serialNumber=A0D66F1175533A23A852E9515065C85A339E7386 Validity Not Before: Apr 17 03:35:53 2026 GMT Not After : Apr 24 03:35:53 2026 GMT Subject: CN=69e1aa9a-dd2a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:75:16:54:7a:c1:e7:2b:3a:49:49:79:3c:88: 96:fc:43:5f:68:52:07:5f:3d:67:a7:0e:f5:dc:54: 38:34:03:04:86:db:5b:e2:75:f4:cd:9f:34:33:1e: 9e:04:cf:ea:b2:c6:d1:ff:84:60:49:97:42:67:d8: 3d:8d:6f:4d:ec:af:a8:c6:cf:ee:3d:4a:d1:ae:67: 73:8b:ae:18:b5:25:2e:d2:c4:b2:b0:3f:cf:2b:e9: 6d:54:46:b0:bb:78:6f:39:c1:f8:41:03:dd:fc:24: 9c:e5:d9:f8:da:47:22:aa:a9:db:54:9c:54:32:1c: 15:09:ca:ed:e3:d2:2d:96:57:bb:1d:d3:8f:ac:41: fd:d0:07:c5:83:18:11:55:b2:2e:6a:7f:43:5c:a0: fd:41:dc:f3:11:11:4e:bb:3b:ce:bd:a4:00:86:a6: 4a:e3:9c:d4:0d:da:6d:ea:2d:62:5e:df:17:83:eb: 9c:b3:3c:5c:3e:84:22:a6:d0:95:fa:85:3f:32:b2: 5d:47:99:79:30:63:02:f4:5c:cd:28:81:4b:70:c6: 82:1c:5d:68:2c:e0:06:f8:38:13:45:12:98:74:3d: 90:f0:c4:e8:b6:45:88:35:61:d4:88:f2:51:ff:89: b3:27:98:d8:f6:8f:11:2c:18:23:8f:7b:dc:82:4f: 3b:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:66:31:1B:F7:42:7B:12:CB:8C:5E:EF:68:57:DD:44:4F:BA:52:C6 X509v3 Authority Key Identifier: keyid:A0:D6:6F:11:75:53:3A:23:A8:52:E9:51:50:65:C8:5A:33:9E:73:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158547/B38668E492A511EE8CD95B1EC4F9AE02/oNZvEXVTOiOoUulRUGXIWjOec4Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oNZvEXVTOiOoUulRUGXIWjOec4Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158547/B38668E492A511EE8CD95B1EC4F9AE02/oNZvEXVTOiOoUulRUGXIWjOec4Y.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:14:21:c1:fb:73:95:7d:a0:c4:86:79:68:76:0e:8e:0d:7d: 3e:ec:a1:32:3e:65:73:23:8c:cc:45:38:f3:75:3f:f2:ce:cd: ba:58:5f:cc:f6:7b:b8:d7:46:75:d4:1f:01:93:04:ad:ad:ac: c5:ad:34:a6:f6:f2:65:f6:17:27:86:41:fb:23:b4:e9:bc:f0: d3:7f:64:40:05:fa:18:73:12:cb:0e:d5:bd:0f:86:3e:e0:c2: c8:fa:c4:1e:3c:5f:4d:f9:09:0a:41:bc:3a:05:96:86:51:94: 99:c1:99:c0:bb:0d:fb:74:70:fe:3a:97:6b:95:86:35:45:fa: 56:1b:04:57:da:10:7e:e4:5b:84:92:1d:ae:f6:e5:e8:8f:5a: a3:32:53:14:f2:8b:6e:54:83:cf:6b:a2:e2:8f:1b:4c:87:d5: 12:53:71:c8:74:dd:05:58:91:0a:f6:15:00:7a:c7:8c:fb:65: ad:b8:21:93:2a:e0:12:a3:28:68:cd:a3:b1:08:97:a2:39:4b: 61:82:32:52:f2:17:50:f5:d1:a4:80:97:1c:c2:63:1b:72:a2: 53:fe:85:61:b2:b9:c8:fe:11:8d:7c:96:f9:10:e3:7c:65:c4: b5:bb:32:8c:6a:05:32:2a:ea:33:1c:fb:b4:bd:01:39:a3:1f: a2:8b:85:6f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAcIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg1NDcxMTAvBgNVBAUTKEEwRDY2RjExNzU1MzNBMjNBODUyRTk1MTUwNjVDODVB MzM5RTczODYwHhcNMjYwNDE3MDMzNTUzWhcNMjYwNDI0MDMzNTUzWjAYMRYwFAYD VQQDEw02OWUxYWE5YS1kZDJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA33UWVHrB5ys6SUl5PIiW/ENfaFIHXz1npw713FQ4NAMEhttb4nX0zZ80Mx6e BM/qssbR/4RgSZdCZ9g9jW9N7K+oxs/uPUrRrmdzi64YtSUu0sSysD/PK+ltVEaw u3hvOcH4QQPd/CSc5dn42kciqqnbVJxUMhwVCcrt49Itlle7HdOPrEH90AfFgxgR VbIuan9DXKD9QdzzERFOuzvOvaQAhqZK45zUDdpt6i1iXt8Xg+ucszxcPoQiptCV +oU/MrJdR5l5MGMC9FzNKIFLcMaCHF1oLOAG+DgTRRKYdD2Q8MTotkWINWHUiPJR /4mzJ5jY9o8RLBgjj3vcgk878wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBFmMRv3 QnsSy4xe72hX3URPulLGMB8GA1UdIwQYMBaAFKDWbxF1UzojqFLpUVBlyFoznnOG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODU0Ny9CMzg2NjhFNDky QTUxMUVFOENEOTVCMUVDNEY5QUUwMi9vTlp2RVhWVE9pT29VdWxSVUdYSVdqT2Vj NFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29OWnZFWFZUT2lPb1V1bFJVR1hJV2pPZWM0WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODU0Ny9CMzg2NjhFNDkyQTUxMUVFOENEOTVCMUVDNEY5QUUwMi9vTlp2RVhWVE9p T29VdWxSVUdYSVdqT2VjNFkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAIhQhwftzlX2gxIZ5aHYOjg19PuyhMj5lcyOMzEU483U/8s7NulhfzPZ7uNdG ddQfAZMEra2sxa00pvbyZfYXJ4ZB+yO06bzw039kQAX6GHMSyw7VvQ+GPuDCyPrE HjxfTfkJCkG8OgWWhlGUmcGZwLsN+3Rw/jqXa5WGNUX6VhsEV9oQfuRbhJIdrvbl 6I9aozJTFPKLblSDz2ui4o8bTIfVElNxyHTdBViRCvYVAHrHjPtlrbghkyrgEqMo aM2jsQiXojlLYYIyUvIXUPXRpICXHMJjG3KiU/6FYbK5yP4RjXyW+RDjfGXEtbsy jGoFMirqMxz7tL0BOaMfoouFbw== -----END CERTIFICATE-----Generated at Fri Apr 17 07:31:00 2026 by rpki-client