$ rpki-client -vvf rpki.apnic.net/member_repository/A91702B9/3B72EE90C60511ECAB74D962C4F9AE02/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.mft File: rOLEzLCJ0hs3BFSwDmtZOvKIYvY.mft (raw, json) Hash identifier: iqT6mPMVcoCWkTjgC6VsH7CdbxDNJ54BRiYO2wEDa5A= Subject key identifier: A1:72:E9:B6:B6:70:8F:4C:96:88:70:7E:29:F3:95:E0:0A:BA:8D:9C Authority key identifier: AC:E2:C4:CC:B0:89:D2:1B:37:04:54:B0:0E:6B:59:3A:F2:88:62:F6 Certificate issuer: /CN=A91702B9/serialNumber=ACE2C4CCB089D21B370454B00E6B593AF28862F6 Certificate serial: 03E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91702B9/3B72EE90C60511ECAB74D962C4F9AE02/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.mft Manifest number: 03D8 Signing time: Fri 17 Apr 2026 00:28:54 +0000 Manifest this update: Fri 17 Apr 2026 00:28:53 +0000 Manifest next update: Fri 24 Apr 2026 00:28:53 +0000 Files and hashes: 1: rOLEzLCJ0hs3BFSwDmtZOvKIYvY.crl (hash: 3MjmAgjGmWqhTZuF0cSRSDhfVBXyfk0IlTJmqbPUaQ4=) 2: FC159BECF4D911EFB4F5FC16C4F9AE02.roa (hash: pSZyO8DRU7k04LVzxpq4jULZp/HQ6qCZD+25WSrrumg=) 3: A047A07AD56811EFB57A5D33C4F9AE02.roa (hash: 9ddhu2yrw8Y1Qn76lqowUGOY2CYHuc5bqh90B9kOwck=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91702B9/3B72EE90C60511ECAB74D962C4F9AE02/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.crl rsync://rpki.apnic.net/member_repository/A91702B9/3B72EE90C60511ECAB74D962C4F9AE02/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 00:28:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 995 (0x3e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91702B9, serialNumber=ACE2C4CCB089D21B370454B00E6B593AF28862F6 Validity Not Before: Apr 17 00:28:53 2026 GMT Not After : Apr 24 00:28:53 2026 GMT Subject: CN=69e17ec6-92b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:4f:22:ad:b5:6c:7f:92:cd:87:75:f0:3a:54: 79:71:5e:73:ee:0c:b2:8d:01:fd:c1:db:2d:80:7c: cc:de:8e:bc:2b:c7:36:a2:c7:9b:43:2b:a4:4b:39: 7c:2a:01:13:f3:c6:7e:98:ea:10:ed:ac:14:7b:00: 7e:a3:80:74:fe:9a:78:6f:d1:d6:b5:c6:5b:dc:7b: 63:68:70:56:b7:94:6d:46:40:6d:b1:f8:d8:89:7f: 17:1a:d7:cb:4b:7a:04:a0:07:86:1b:41:73:a3:af: 49:8b:ef:a9:37:9c:b5:c3:c9:44:a3:c7:3d:ee:1a: a2:c5:3b:18:a1:f4:f1:35:09:c5:f1:0d:a0:bb:52: 58:86:d4:31:3a:df:bf:fa:70:49:ab:cb:6a:95:52: 7f:c5:a4:1e:06:90:e0:24:d8:25:ba:57:61:96:6a: 54:b3:6d:91:69:fa:c8:93:02:7b:0d:5f:44:f9:8a: 04:38:0d:92:e7:30:12:84:32:c3:66:16:66:e2:92: 9b:84:8f:9f:c3:ec:07:63:8c:43:47:11:2d:94:c0: c3:07:e9:29:d5:76:b6:86:72:bc:1e:1f:2e:33:d5: 3e:e0:cd:38:fa:08:38:cd:b9:be:43:5a:8e:30:93: ec:38:71:c9:80:9d:25:2f:33:a1:9b:2c:55:3e:1d: 8c:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:72:E9:B6:B6:70:8F:4C:96:88:70:7E:29:F3:95:E0:0A:BA:8D:9C X509v3 Authority Key Identifier: keyid:AC:E2:C4:CC:B0:89:D2:1B:37:04:54:B0:0E:6B:59:3A:F2:88:62:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91702B9/3B72EE90C60511ECAB74D962C4F9AE02/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91702B9/3B72EE90C60511ECAB74D962C4F9AE02/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:4c:c4:dd:b4:91:8c:e8:c0:c3:1f:7a:14:2b:05:c4:2c:fe: ef:2d:27:41:00:aa:44:29:ca:d8:60:e6:ee:64:90:30:10:b0: d5:f4:26:94:34:75:68:49:5b:4d:b5:44:75:13:c1:18:a1:83: e4:98:8e:ca:e5:69:a9:4f:32:98:1f:22:75:cd:1b:65:6c:8a: 6c:ad:f6:9c:01:84:cc:88:bc:f2:44:4c:41:71:22:bf:41:ca: ee:db:af:96:bc:c2:c8:4a:f2:7f:b2:96:67:bb:df:0f:74:a7: 26:7f:75:20:42:23:6c:13:31:1e:65:71:0e:50:3b:76:f8:30: 13:64:31:6d:d1:a3:41:17:27:23:4c:d7:4a:7c:3a:62:63:b0: d7:f2:6a:76:b3:03:28:81:50:54:35:7b:d0:a5:3e:be:bf:7c: 55:58:dd:a0:62:4e:68:2c:d2:ff:0a:93:cd:d5:cb:bf:94:ba: d2:28:ab:03:e9:f7:c5:f5:06:8c:2f:66:77:d8:e1:da:a2:1e: 9d:ce:aa:f8:9f:f2:55:16:93:fb:20:d4:46:ed:da:07:dd:67: 3f:77:e0:b8:c4:06:70:ac:96:84:33:40:a8:d8:ca:b3:e9:c1: fe:ca:d9:a4:0c:d8:dc:0b:37:9c:f9:57:bc:1a:e4:55:e4:97: 39:82:d2:0a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA+MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzAyQjkxMTAvBgNVBAUTKEFDRTJDNENDQjA4OUQyMUIzNzA0NTRCMDBFNkI1OTNB RjI4ODYyRjYwHhcNMjYwNDE3MDAyODUzWhcNMjYwNDI0MDAyODUzWjAYMRYwFAYD VQQDEw02OWUxN2VjNi05MmI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6E8irbVsf5LNh3XwOlR5cV5z7gyyjQH9wdstgHzM3o68K8c2osebQyukSzl8 KgET88Z+mOoQ7awUewB+o4B0/pp4b9HWtcZb3HtjaHBWt5RtRkBtsfjYiX8XGtfL S3oEoAeGG0Fzo69Ji++pN5y1w8lEo8c97hqixTsYofTxNQnF8Q2gu1JYhtQxOt+/ +nBJq8tqlVJ/xaQeBpDgJNgluldhlmpUs22RafrIkwJ7DV9E+YoEOA2S5zAShDLD ZhZm4pKbhI+fw+wHY4xDRxEtlMDDB+kp1Xa2hnK8Hh8uM9U+4M04+gg4zbm+Q1qO MJPsOHHJgJ0lLzOhmyxVPh2MpQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKFy6ba2 cI9MlohwfinzleAKuo2cMB8GA1UdIwQYMBaAFKzixMywidIbNwRUsA5rWTryiGL2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDJCOS8zQjcyRUU5MEM2 MDUxMUVDQUI3NEQ5NjJDNEY5QUUwMi9yT0xFekxDSjBoczNCRlN3RG10Wk92S0lZ dlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JPTEV6TENKMGhzM0JGU3dEbXRaT3ZLSVl2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MDJCOS8zQjcyRUU5MEM2MDUxMUVDQUI3NEQ5NjJDNEY5QUUwMi9yT0xFekxDSjBo czNCRlN3RG10Wk92S0lZdlkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEACkzE3bSRjOjAwx96FCsFxCz+7y0nQQCqRCnK2GDm7mSQMBCw1fQmlDR1aElb TbVEdRPBGKGD5JiOyuVpqU8ymB8idc0bZWyKbK32nAGEzIi88kRMQXEiv0HK7tuv lrzCyEryf7KWZ7vfD3SnJn91IEIjbBMxHmVxDlA7dvgwE2QxbdGjQRcnI0zXSnw6 YmOw1/JqdrMDKIFQVDV70KU+vr98VVjdoGJOaCzS/wqTzdXLv5S60iirA+n3xfUG jC9md9jh2qIenc6q+J/yVRaT+yDURu3aB91nP3fguMQGcKyWhDNAqNjKs+nB/srZ pAzY3As3nPlXvBrkVeSXOYLSCg== -----END CERTIFICATE-----Generated at Fri Apr 17 06:53:32 2026 by rpki-client