$ rpki-client -vvf rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.mft File: OAzWvMnhwR_sTuJ9qJOCTa21ISo.mft (raw, json) Hash identifier: pbh/UceV4p8pVU4R/qof7SwGiTZ9Ffnxva/R2TthMNE= Subject key identifier: B3:0F:DC:7B:8C:E5:FD:70:C9:20:3E:84:D9:C1:04:F4:FF:BC:46:66 Authority key identifier: 38:0C:D6:BC:C9:E1:C1:1F:EC:4E:E2:7D:A8:93:82:4D:AD:B5:21:2A Certificate issuer: /CN=A917B520/serialNumber=380CD6BCC9E1C11FEC4EE27DA893824DADB5212A Certificate serial: 0183 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OAzWvMnhwR_sTuJ9qJOCTa21ISo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.mft Manifest number: 017B Signing time: Fri 17 Apr 2026 02:23:33 +0000 Manifest this update: Fri 17 Apr 2026 02:23:33 +0000 Manifest next update: Fri 24 Apr 2026 02:23:33 +0000 Files and hashes: 1: OAzWvMnhwR_sTuJ9qJOCTa21ISo.crl (hash: aMp65MMx/tPBLieQscooSiKNNn4PSJcce1vFGUUz4rk=) 2: 9580A702548211EFAADB996FC4F9AE02.roa (hash: W7D/CE6bwRnzbpMvwdGdNhRCXEBo9prgW8s4Z6/gD9o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.crl rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OAzWvMnhwR_sTuJ9qJOCTa21ISo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 02:23:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 387 (0x183) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B520, serialNumber=380CD6BCC9E1C11FEC4EE27DA893824DADB5212A Validity Not Before: Apr 17 02:23:33 2026 GMT Not After : Apr 24 02:23:33 2026 GMT Subject: CN=69e199a5-0f9a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:91:ba:06:5a:19:13:ae:66:dd:71:6b:4c:8d: a9:53:45:ab:0d:d1:a9:ac:94:34:a1:b3:b7:2a:17: e1:a6:74:49:28:df:bb:b3:1f:c4:0f:9c:25:db:da: 99:0e:c4:37:6d:04:8d:12:50:1b:de:c6:a4:ef:c6: 4e:46:a2:a5:f4:3b:f1:84:de:15:30:e6:ac:e1:28: 5f:3d:26:6f:97:0a:0c:d1:8e:65:51:42:b7:06:92: 6b:5e:e4:6a:6e:60:b0:b7:92:31:c7:9e:32:9f:fd: 36:a1:0c:bb:23:36:f1:a4:1c:63:1c:51:13:94:42: ce:90:ab:f3:b5:fb:6c:e3:2f:9d:c6:1a:f2:24:45: 6a:1b:32:4b:aa:5b:e9:10:22:9d:ba:9e:e2:4b:ed: 7b:fd:9e:7f:e1:07:12:85:63:b0:ed:bb:60:e8:7d: 61:d0:94:41:d9:aa:f2:97:c7:9b:bf:bc:c7:ff:6a: 21:31:0c:e9:1a:bb:d9:17:23:93:79:87:76:dc:55: f1:51:1d:21:97:d9:d6:5f:77:ba:6c:ae:18:72:9a: 7c:4d:21:e4:d5:92:5c:53:47:2d:41:c0:26:bc:57: 06:cb:e8:d6:d9:c5:84:e1:af:17:48:9e:81:31:c7: c4:87:d4:1b:9b:df:77:da:34:c0:ce:81:c1:90:0d: 11:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:0F:DC:7B:8C:E5:FD:70:C9:20:3E:84:D9:C1:04:F4:FF:BC:46:66 X509v3 Authority Key Identifier: keyid:38:0C:D6:BC:C9:E1:C1:1F:EC:4E:E2:7D:A8:93:82:4D:AD:B5:21:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OAzWvMnhwR_sTuJ9qJOCTa21ISo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:f9:d0:f3:48:5b:2f:c8:8d:68:80:29:35:ae:2b:86:62:41: 2d:b9:15:db:84:76:e5:da:4e:10:2b:f9:fb:b2:60:cf:49:d1: a0:ec:22:d0:64:13:fb:9d:30:26:39:4b:8b:93:d2:f4:df:34: db:e5:44:e9:d8:c4:8c:c4:7e:ab:bf:64:b4:6e:38:aa:b8:9c: 16:84:09:54:9c:bd:04:c9:85:49:d4:ef:a2:0f:a0:5a:b1:a8: 3f:71:3e:2c:64:9f:5c:6d:44:a5:a3:9c:68:e0:e2:bd:8c:7d: e8:11:81:f1:ba:c8:d0:da:94:7d:59:cc:c1:51:cd:f9:0f:da: a1:4d:1e:7f:64:c7:bd:6f:6d:57:e7:ce:92:b4:17:40:8b:04: cf:0c:8b:71:3a:88:1c:e9:71:28:a0:09:44:ab:bf:80:dd:bd: 08:d9:47:34:7f:6d:08:7a:0b:88:42:33:f3:b4:90:c8:67:ca: a0:d0:d8:1c:54:0c:2b:70:56:8f:ce:05:27:10:d8:8d:46:d7: 50:ae:1c:be:c6:80:bf:ef:41:50:21:1a:57:d6:ac:8e:94:4f: fe:11:55:50:bd:83:76:57:8b:50:44:44:de:7d:c2:91:d7:4b: e6:71:65:58:0d:7a:ff:a5:d9:e4:70:a3:bd:3a:5d:b0:c2:a1: dc:97:1d:57 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAYMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I1MjAxMTAvBgNVBAUTKDM4MENENkJDQzlFMUMxMUZFQzRFRTI3REE4OTM4MjRE QURCNTIxMkEwHhcNMjYwNDE3MDIyMzMzWhcNMjYwNDI0MDIyMzMzWjAYMRYwFAYD VQQDEw02OWUxOTlhNS0wZjlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6pG6BloZE65m3XFrTI2pU0WrDdGprJQ0obO3KhfhpnRJKN+7sx/ED5wl29qZ DsQ3bQSNElAb3sak78ZORqKl9DvxhN4VMOas4ShfPSZvlwoM0Y5lUUK3BpJrXuRq bmCwt5Ixx54yn/02oQy7IzbxpBxjHFETlELOkKvztfts4y+dxhryJEVqGzJLqlvp ECKdup7iS+17/Z5/4QcShWOw7btg6H1h0JRB2aryl8ebv7zH/2ohMQzpGrvZFyOT eYd23FXxUR0hl9nWX3e6bK4Ycpp8TSHk1ZJcU0ctQcAmvFcGy+jW2cWE4a8XSJ6B McfEh9Qbm9932jTAzoHBkA0RJwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLMP3HuM 5f1wySA+hNnBBPT/vEZmMB8GA1UdIwQYMBaAFDgM1rzJ4cEf7E7ifaiTgk2ttSEq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjUyMC84RjkwOTFENDMy QjAxMUVGQTRDQkY5NkFDNEY5QUUwMi9PQXpXdk1uaHdSX3NUdUo5cUpPQ1RhMjFJ U28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL09Beld2TW5od1Jfc1R1SjlxSk9DVGEyMUlTby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjUyMC84RjkwOTFENDMyQjAxMUVGQTRDQkY5NkFDNEY5QUUwMi9PQXpXdk1uaHdS X3NUdUo5cUpPQ1RhMjFJU28ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAdvnQ80hbL8iNaIApNa4rhmJBLbkV24R25dpOECv5+7Jgz0nRoOwi0GQT+50w JjlLi5PS9N802+VE6djEjMR+q79ktG44qricFoQJVJy9BMmFSdTvog+gWrGoP3E+ LGSfXG1EpaOcaODivYx96BGB8brI0NqUfVnMwVHN+Q/aoU0ef2THvW9tV+fOkrQX QIsEzwyLcTqIHOlxKKAJRKu/gN29CNlHNH9tCHoLiEIz87SQyGfKoNDYHFQMK3BW j84FJxDYjUbXUK4cvsaAv+9BUCEaV9asjpRP/hFVUL2DdleLUERE3n3CkddL5nFl WA16/6XZ5HCjvTpdsMKh3JcdVw== -----END CERTIFICATE-----Generated at Sat Apr 18 03:02:19 2026 by rpki-client