$ rpki-client -vvf rpki.apnic.net/member_repository/A916B889/9AB07A3A272711F1923B397EA8833773/OhNw-SlQCbrO8HHvmlT91w_RV1o.mft File: OhNw-SlQCbrO8HHvmlT91w_RV1o.mft (raw, json) Hash identifier: 4mF5kG5gsqjAz6OHls2GdFajO7kCBn7/loBYVFsjHoc= Subject key identifier: 8B:0F:D2:2E:1C:4E:40:B2:66:7A:46:F2:B1:25:A8:0E:35:93:5E:FD Authority key identifier: 3A:13:70:F9:29:50:09:BA:CE:F0:71:EF:9A:54:FD:D7:0F:D1:57:5A Certificate issuer: /CN=A916B889/serialNumber=3A1370F9295009BACEF071EF9A54FDD70FD1575A Certificate serial: 10 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhNw-SlQCbrO8HHvmlT91w_RV1o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B889/9AB07A3A272711F1923B397EA8833773/OhNw-SlQCbrO8HHvmlT91w_RV1o.mft Manifest number: 0F Signing time: Fri 17 Apr 2026 08:48:50 +0000 Manifest this update: Fri 17 Apr 2026 08:48:50 +0000 Manifest next update: Fri 24 Apr 2026 08:48:50 +0000 Files and hashes: 1: OhNw-SlQCbrO8HHvmlT91w_RV1o.crl (hash: VCPvnJUqwMOLu5Hv4MyDjd7FfKn9OHOBs8p5N4YniRw=) 2: DD9D275A272A11F1AB1203E5AA833773.roa (hash: anG8mjPCe+gcYm3kp5C5iVeJAFEjW4WqpjQcSNgoVCk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B889/9AB07A3A272711F1923B397EA8833773/OhNw-SlQCbrO8HHvmlT91w_RV1o.crl rsync://rpki.apnic.net/member_repository/A916B889/9AB07A3A272711F1923B397EA8833773/OhNw-SlQCbrO8HHvmlT91w_RV1o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhNw-SlQCbrO8HHvmlT91w_RV1o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 08:48:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16 (0x10) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B889, serialNumber=3A1370F9295009BACEF071EF9A54FDD70FD1575A Validity Not Before: Apr 17 08:48:50 2026 GMT Not After : Apr 24 08:48:50 2026 GMT Subject: CN=69e1f3f2-b6e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:af:9e:26:39:c4:b0:9a:37:e7:4d:a1:9b:5d: dd:15:80:bb:21:e4:65:9a:c4:b7:b1:e7:e1:7b:00: c5:53:df:1a:90:54:04:06:7f:4d:1f:51:ce:27:fe: 91:62:9c:d5:fb:5f:06:ec:07:8a:18:8d:5b:5c:60: ea:5e:5e:0b:b8:4c:29:a2:88:51:0f:34:be:ce:14: 01:5d:4b:8a:51:a9:d7:76:cf:3f:86:c5:5f:a4:2f: b8:0b:02:e8:5f:65:47:f5:08:0e:cb:d2:a1:c4:e8: 30:c0:a3:5f:40:e8:18:a4:40:87:65:ff:ac:e1:88: ab:72:54:37:d8:83:8d:8d:4d:89:bc:f9:1c:eb:4a: 1c:de:9d:f6:22:31:53:ec:de:db:03:05:ee:fd:45: 00:5d:1f:8d:66:a2:a9:49:82:da:39:21:da:39:2a: 22:9c:60:9d:ee:ac:7e:bd:c5:70:12:82:4e:bd:dd: 41:66:33:43:39:cf:d7:69:38:77:78:de:7c:16:a8: d9:a0:12:21:4b:16:67:25:60:da:66:d9:e2:ce:ba: a3:89:3f:3a:9a:cd:e0:56:47:75:5d:72:00:bf:a8: 32:c4:e5:bc:ef:a1:d0:69:9d:1f:5e:24:45:73:f2: 3c:4e:ce:85:78:c8:cd:fd:05:ae:47:41:c0:25:b4: 10:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:0F:D2:2E:1C:4E:40:B2:66:7A:46:F2:B1:25:A8:0E:35:93:5E:FD X509v3 Authority Key Identifier: keyid:3A:13:70:F9:29:50:09:BA:CE:F0:71:EF:9A:54:FD:D7:0F:D1:57:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B889/9AB07A3A272711F1923B397EA8833773/OhNw-SlQCbrO8HHvmlT91w_RV1o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhNw-SlQCbrO8HHvmlT91w_RV1o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B889/9AB07A3A272711F1923B397EA8833773/OhNw-SlQCbrO8HHvmlT91w_RV1o.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cd:c7:09:83:a3:e1:b9:3f:bc:cf:2f:91:0c:03:85:c2:79:5d: b9:52:46:5c:7d:b6:02:79:8a:75:06:64:a9:33:8c:e1:1b:67: 72:6d:16:6b:ad:7d:c7:0d:52:b2:2a:da:47:26:25:e0:22:11: 00:25:e0:a7:66:8c:f2:8b:ae:40:de:35:73:eb:4a:ca:ff:82: db:29:7f:9c:9b:e8:47:d5:cf:fb:c3:64:10:8e:a1:45:5f:6a: 4a:5a:87:63:61:08:09:27:66:ba:9a:c0:7c:39:19:b7:31:f6: 2d:94:6d:fd:d9:70:39:2f:6c:0b:fc:f9:79:5f:6d:f7:be:d8: 9f:f5:9c:b6:90:a5:5a:0d:8f:2c:0b:97:05:9d:16:03:18:cf: 28:ac:f5:e2:1a:97:29:56:9e:80:f8:9a:8c:67:f4:1e:20:08: ed:90:58:9f:1b:58:a6:49:87:31:8b:5d:7c:88:d9:fb:09:ce: 22:92:3f:4b:e2:b8:5c:93:e0:be:79:5e:c7:88:5a:16:2d:e9: 63:25:df:dc:ca:de:2b:2b:35:e6:c2:50:7b:0a:35:74:94:49: 2d:5f:96:d0:2b:f5:fe:25:0c:9d:7c:5a:f1:b7:a6:e1:01:12: ea:35:af:70:13:3e:2c:62:22:84:7e:5a:f8:66:a9:aa:7f:44: d3:85:cf:ad -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBEDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 Qjg4OTExMC8GA1UEBRMoM0ExMzcwRjkyOTUwMDlCQUNFRjA3MUVGOUE1NEZERDcw RkQxNTc1QTAeFw0yNjA0MTcwODQ4NTBaFw0yNjA0MjQwODQ4NTBaMBgxFjAUBgNV BAMTDTY5ZTFmM2YyLWI2ZTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCVr54mOcSwmjfnTaGbXd0VgLsh5GWaxLex5+F7AMVT3xqQVAQGf00fUc4n/pFi nNX7XwbsB4oYjVtcYOpeXgu4TCmiiFEPNL7OFAFdS4pRqdd2zz+GxV+kL7gLAuhf ZUf1CA7L0qHE6DDAo19A6BikQIdl/6zhiKtyVDfYg42NTYm8+RzrShzenfYiMVPs 3tsDBe79RQBdH41moqlJgto5Ido5KiKcYJ3urH69xXASgk693UFmM0M5z9dpOHd4 3nwWqNmgEiFLFmclYNpm2eLOuqOJPzqazeBWR3VdcgC/qDLE5bzvodBpnR9eJEVz 8jxOzoV4yM39Ba5HQcAltBBfAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUiw/SLhxO QLJmekbysSWoDjWTXv0wHwYDVR0jBBgwFoAUOhNw+SlQCbrO8HHvmlT91w/RV1ow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZCODg5LzlBQjA3QTNBMjcy NzExRjE5MjNCMzk3RUE4ODMzNzczL09oTnctU2xRQ2JyTzhISHZtbFQ5MXdfUlYx by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvT2hOdy1TbFFDYnJPOEhIdm1sVDkxd19SVjFvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZC ODg5LzlBQjA3QTNBMjcyNzExRjE5MjNCMzk3RUE4ODMzNzczL09oTnctU2xRQ2Jy TzhISHZtbFQ5MXdfUlYxby5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQDNxwmDo+G5P7zPL5EMA4XCeV25UkZcfbYCeYp1BmSpM4zhG2dybRZrrX3HDVKy KtpHJiXgIhEAJeCnZozyi65A3jVz60rK/4LbKX+cm+hH1c/7w2QQjqFFX2pKWodj YQgJJ2a6msB8ORm3MfYtlG392XA5L2wL/Pl5X233vtif9Zy2kKVaDY8sC5cFnRYD GM8orPXiGpcpVp6A+JqMZ/QeIAjtkFifG1imSYcxi118iNn7Cc4ikj9L4rhck+C+ eV7HiFoWLeljJd/cyt4rKzXmwlB7CjV0lEktX5bQK/X+JQydfFrxt6bhARLqNa9w Ez4sYiKEflr4Zqmqf0TThc+t -----END CERTIFICATE-----Generated at Fri Apr 17 21:01:50 2026 by rpki-client