$ rpki-client -vvf rpki.apnic.net/member_repository/A918C158/AE51D802673B11EA99B2E556C4F9AE02/Ok9ILhJcCNuDBRbVGkot8eCqiso.mft File: Ok9ILhJcCNuDBRbVGkot8eCqiso.mft (raw, json) Hash identifier: lDrQxKwXzuOElytpJx7ieYhBCNFAfpWURv+yhVHetbw= Subject key identifier: 5D:04:FF:88:5E:27:6D:6E:4C:EE:3D:F9:1C:5C:6F:3D:C4:B6:ED:34 Authority key identifier: 3A:4F:48:2E:12:5C:08:DB:83:05:16:D5:1A:4A:2D:F1:E0:AA:8A:CA Certificate issuer: /CN=A918C158/serialNumber=3A4F482E125C08DB830516D51A4A2DF1E0AA8ACA Certificate serial: 0AFD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ok9ILhJcCNuDBRbVGkot8eCqiso.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918C158/AE51D802673B11EA99B2E556C4F9AE02/Ok9ILhJcCNuDBRbVGkot8eCqiso.mft Manifest number: 0AF5 Signing time: Thu 16 Apr 2026 19:17:23 +0000 Manifest this update: Thu 16 Apr 2026 19:17:22 +0000 Manifest next update: Thu 23 Apr 2026 19:17:22 +0000 Files and hashes: 1: Ok9ILhJcCNuDBRbVGkot8eCqiso.crl (hash: 1Iu5bnOx4f8PkpHYTuzVTJN+XtEQ9MieK16gbNREAMI=) 2: F25A6266796A11EB82E0EE24C4F9AE02.roa (hash: gg5YRxm/OG8ParGdDVWKapchKMYooC3n6Om94oqfGGI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918C158/AE51D802673B11EA99B2E556C4F9AE02/Ok9ILhJcCNuDBRbVGkot8eCqiso.crl rsync://rpki.apnic.net/member_repository/A918C158/AE51D802673B11EA99B2E556C4F9AE02/Ok9ILhJcCNuDBRbVGkot8eCqiso.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ok9ILhJcCNuDBRbVGkot8eCqiso.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 19:17:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2813 (0xafd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918C158, serialNumber=3A4F482E125C08DB830516D51A4A2DF1E0AA8ACA Validity Not Before: Apr 16 19:17:22 2026 GMT Not After : Apr 23 19:17:22 2026 GMT Subject: CN=69e135c2-51a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:c3:5b:e8:fd:d3:39:ba:c5:94:27:bf:b2:35: 07:dc:1a:fe:6f:97:1c:73:ed:eb:bb:01:a6:65:61: 4f:bf:22:33:7b:d2:e2:31:3d:3a:42:45:08:c5:da: ac:40:34:ad:9c:28:eb:f5:53:e0:cc:1a:4b:31:b6: 7c:3d:d5:4f:ef:43:0b:31:bc:a7:36:a6:36:89:7e: a6:0f:16:41:6e:d3:c6:6a:e9:df:80:33:6b:94:88: a9:61:8d:e3:9b:b4:1f:06:88:7d:53:7c:40:22:d7: b6:ea:02:b6:11:8e:ca:dd:06:c5:7e:4f:2d:49:92: 15:73:00:b2:9e:3b:9f:a1:6e:44:53:72:08:3c:0a: d1:f2:07:eb:67:69:9e:1f:d0:7c:02:3e:d2:18:5a: f6:d1:21:37:44:75:76:56:8a:ce:39:b4:04:26:d7: d8:41:1b:46:e2:56:97:64:64:80:3b:e2:34:db:81: 98:32:8a:86:39:92:d6:43:ce:c6:e4:75:b4:03:3e: 87:ec:55:59:be:7b:24:42:fd:35:49:86:42:e8:4b: 79:36:ad:52:44:13:67:71:20:02:d6:3e:10:2b:97: 9b:e8:f3:3c:05:24:fb:22:7e:05:7f:a7:f8:bc:77: f5:d8:ca:15:e0:1d:88:62:4d:fa:4a:47:3c:88:e8: 24:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:04:FF:88:5E:27:6D:6E:4C:EE:3D:F9:1C:5C:6F:3D:C4:B6:ED:34 X509v3 Authority Key Identifier: keyid:3A:4F:48:2E:12:5C:08:DB:83:05:16:D5:1A:4A:2D:F1:E0:AA:8A:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918C158/AE51D802673B11EA99B2E556C4F9AE02/Ok9ILhJcCNuDBRbVGkot8eCqiso.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ok9ILhJcCNuDBRbVGkot8eCqiso.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918C158/AE51D802673B11EA99B2E556C4F9AE02/Ok9ILhJcCNuDBRbVGkot8eCqiso.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:e6:cf:b5:12:45:c6:9e:33:8d:26:d3:fa:d5:22:9f:9c:b3: c4:d2:79:25:24:99:38:f9:51:44:21:67:39:1a:22:72:b3:45: 33:65:54:1e:41:e2:ec:c2:3b:d5:15:6d:f8:22:75:43:8e:8e: c5:d2:0b:e3:18:4b:39:fb:8a:da:34:79:b8:e5:d5:30:8e:3b: 0c:2a:ff:81:f6:87:98:c9:4d:65:0b:8f:6f:3c:d1:eb:8e:38: 01:b5:f2:51:25:9d:0b:4c:47:58:4a:72:4e:57:2f:b2:c8:47: aa:4a:e1:6e:69:8c:20:a9:a9:07:15:87:a8:72:02:ed:b5:1f: 1a:4e:56:bd:f4:e6:3c:bd:f2:c4:f7:0c:73:9c:d6:82:6d:c4: 62:6d:62:c7:a2:ee:e8:f5:69:af:4e:7f:82:a9:4a:7e:48:e9: 85:29:07:8d:45:f9:5a:3f:5e:d3:fc:51:18:0f:19:8b:b7:19: ee:6d:48:71:bb:36:84:e7:6f:55:2f:e4:58:2a:77:b7:d2:49: 4c:c0:7d:73:ca:83:28:70:60:fd:f3:c6:88:01:af:41:11:69: 10:36:0c:bf:3d:be:72:24:11:51:93:19:98:09:88:e9:1b:52: 12:77:c9:ed:5a:ff:f0:75:f3:8c:0c:e9:66:1a:d4:50:c3:20: d0:8f:d6:01 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCv0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEMxNTgxMTAvBgNVBAUTKDNBNEY0ODJFMTI1QzA4REI4MzA1MTZENTFBNEEyREYx RTBBQThBQ0EwHhcNMjYwNDE2MTkxNzIyWhcNMjYwNDIzMTkxNzIyWjAYMRYwFAYD VQQDEw02OWUxMzVjMi01MWE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAosNb6P3TObrFlCe/sjUH3Br+b5ccc+3ruwGmZWFPvyIze9LiMT06QkUIxdqs QDStnCjr9VPgzBpLMbZ8PdVP70MLMbynNqY2iX6mDxZBbtPGaunfgDNrlIipYY3j m7QfBoh9U3xAIte26gK2EY7K3QbFfk8tSZIVcwCynjufoW5EU3IIPArR8gfrZ2me H9B8Aj7SGFr20SE3RHV2VorOObQEJtfYQRtG4laXZGSAO+I024GYMoqGOZLWQ87G 5HW0Az6H7FVZvnskQv01SYZC6Et5Nq1SRBNncSAC1j4QK5eb6PM8BST7In4Ff6f4 vHf12MoV4B2IYk36Skc8iOgkrwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFF0E/4he J21uTO49+Rxcbz3Etu00MB8GA1UdIwQYMBaAFDpPSC4SXAjbgwUW1RpKLfHgqorK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QzE1OC9BRTUxRDgwMjY3 M0IxMUVBOTlCMkU1NTZDNEY5QUUwMi9PazlJTGhKY0NOdURCUmJWR2tvdDhlQ3Fp c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09rOUlMaEpjQ051REJSYlZHa290OGVDcWlzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QzE1OC9BRTUxRDgwMjY3M0IxMUVBOTlCMkU1NTZDNEY5QUUwMi9PazlJTGhKY0NO dURCUmJWR2tvdDhlQ3Fpc28ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEASebPtRJFxp4zjSbT+tUin5yzxNJ5JSSZOPlRRCFnORoicrNFM2VUHkHi7MI7 1RVt+CJ1Q46OxdIL4xhLOfuK2jR5uOXVMI47DCr/gfaHmMlNZQuPbzzR6444AbXy USWdC0xHWEpyTlcvsshHqkrhbmmMIKmpBxWHqHIC7bUfGk5WvfTmPL3yxPcMc5zW gm3EYm1ix6Lu6PVpr05/gqlKfkjphSkHjUX5Wj9e0/xRGA8Zi7cZ7m1Icbs2hOdv VS/kWCp3t9JJTMB9c8qDKHBg/fPGiAGvQRFpEDYMvz2+ciQRUZMZmAmI6RtSEnfJ 7Vr/8HXzjAzpZhrUUMMg0I/WAQ== -----END CERTIFICATE-----Generated at Fri Apr 17 13:16:55 2026 by rpki-client