$ rpki-client -vvf rpki.apnic.net/member_repository/A9197390/D2C7E7163E7A11EEA977D620C4F9AE02/oTW4FOHrHifJWX7tLoIoVJMNP88.mft File: oTW4FOHrHifJWX7tLoIoVJMNP88.mft (raw, json) Hash identifier: VxzHIH4CFs30M1F6pJFjKJNxSNhpavQ1PhVNRNWaWy8= Subject key identifier: 6C:CA:BF:AA:1A:D3:EB:97:58:F3:2E:42:5E:93:FF:A6:9D:53:6C:5B Authority key identifier: A1:35:B8:14:E1:EB:1E:27:C9:59:7E:ED:2E:82:28:54:93:0D:3F:CF Certificate issuer: /CN=A9197390/serialNumber=A135B814E1EB1E27C9597EED2E822854930D3FCF Certificate serial: 0240 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oTW4FOHrHifJWX7tLoIoVJMNP88.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197390/D2C7E7163E7A11EEA977D620C4F9AE02/oTW4FOHrHifJWX7tLoIoVJMNP88.mft Manifest number: 021D Signing time: Fri 17 Apr 2026 02:57:22 +0000 Manifest this update: Fri 17 Apr 2026 02:57:21 +0000 Manifest next update: Fri 24 Apr 2026 02:57:21 +0000 Files and hashes: 1: oTW4FOHrHifJWX7tLoIoVJMNP88.crl (hash: pEqxhAVixWdECqDwoUnz5WFn7Amxjr2vo7fugWAlhY0=) 2: CD168A226C2111EFB0ACC153C4F9AE02.roa (hash: UJfcT25TpxMsPXblHXFvDdc06o4EalWiUveKOaWphfo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197390/D2C7E7163E7A11EEA977D620C4F9AE02/oTW4FOHrHifJWX7tLoIoVJMNP88.crl rsync://rpki.apnic.net/member_repository/A9197390/D2C7E7163E7A11EEA977D620C4F9AE02/oTW4FOHrHifJWX7tLoIoVJMNP88.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oTW4FOHrHifJWX7tLoIoVJMNP88.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 02:57:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 576 (0x240) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197390, serialNumber=A135B814E1EB1E27C9597EED2E822854930D3FCF Validity Not Before: Apr 17 02:57:21 2026 GMT Not After : Apr 24 02:57:21 2026 GMT Subject: CN=69e1a192-8fc1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:82:89:a8:17:d3:e9:cf:6f:0e:22:a2:00:41: 39:1f:bb:03:1d:a1:07:0d:cd:b8:23:57:87:27:32: 93:7c:4b:2a:13:2f:40:01:22:0e:e6:e1:f9:04:26: 8d:80:b2:da:0a:1f:05:93:61:89:2b:e5:ee:d6:50: 84:ed:04:f9:ef:be:2c:99:52:7c:49:67:1b:36:ba: c5:51:f6:39:e0:3f:7c:45:c2:72:d6:f6:4b:d1:2c: 08:9d:84:40:ba:e1:25:bd:67:54:81:aa:33:12:b9: ac:a3:e0:b0:48:58:88:16:df:5b:a7:f6:37:79:7a: 11:da:6e:99:a8:67:45:7e:61:09:de:45:e6:b7:58: 26:02:dc:a2:b2:cb:c5:b8:b0:12:b6:18:eb:b2:ec: d7:72:a2:ff:cb:4a:3a:33:ec:dc:01:e2:d9:c2:dc: 72:04:18:87:c2:85:0e:5d:ce:16:94:82:4b:54:45: 16:8c:2c:5e:f9:88:c6:d9:a6:4f:a4:6f:1f:21:17: 91:b4:6c:41:84:df:2f:2b:65:77:d2:c3:c6:42:9d: 21:7f:3f:50:eb:b2:a4:60:b1:91:47:3f:3d:90:c6: eb:50:62:78:04:a9:f9:6c:3a:e9:c8:48:1e:cc:37: 11:3e:27:75:ca:8a:9f:27:88:06:49:8d:d9:e5:f7: b9:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:CA:BF:AA:1A:D3:EB:97:58:F3:2E:42:5E:93:FF:A6:9D:53:6C:5B X509v3 Authority Key Identifier: keyid:A1:35:B8:14:E1:EB:1E:27:C9:59:7E:ED:2E:82:28:54:93:0D:3F:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197390/D2C7E7163E7A11EEA977D620C4F9AE02/oTW4FOHrHifJWX7tLoIoVJMNP88.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oTW4FOHrHifJWX7tLoIoVJMNP88.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197390/D2C7E7163E7A11EEA977D620C4F9AE02/oTW4FOHrHifJWX7tLoIoVJMNP88.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:9d:ee:26:5b:34:f3:35:90:8e:0d:f6:ee:90:4b:93:9d:56: 5e:f1:f9:f2:8f:c3:8b:cf:5c:ff:2b:3f:39:0f:e7:b2:29:16: f7:74:32:c5:1e:7a:ba:bb:c2:ba:32:ff:d0:ed:3f:25:e0:9e: ed:e7:8b:9c:5d:bc:c0:37:a4:5b:1d:eb:c1:95:be:0a:23:ba: ab:75:5b:e3:3c:1e:c5:74:35:09:34:e7:9f:66:1a:0e:fe:24: 2e:38:9b:73:5c:cc:bb:30:6a:39:4c:82:ee:59:c2:19:5c:b6: e5:a2:5c:35:08:26:42:f5:08:16:52:58:37:f5:0d:3f:52:87: ed:b3:8f:d5:de:82:99:ea:b7:81:c9:3f:28:3a:39:b2:6b:08: b3:b8:c9:1f:cc:e6:c3:30:8c:cd:b3:11:1c:8c:11:36:db:77: 25:07:84:bc:35:2f:1f:c5:95:74:80:98:24:df:17:7e:36:13: 5a:db:2b:87:af:dd:5e:b8:db:a5:3f:1b:9b:ea:93:ce:57:4b: 11:38:73:32:ea:99:97:42:2e:b3:92:17:83:44:99:b7:dc:d8: a5:8d:27:c8:b3:55:0d:a4:df:76:48:91:03:be:08:3a:ab:c9: 8d:ac:7c:d4:c7:33:38:e9:7f:f6:7f:2b:2d:91:57:28:6d:40: f3:c3:14:a0 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAkAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTczOTAxMTAvBgNVBAUTKEExMzVCODE0RTFFQjFFMjdDOTU5N0VFRDJFODIyODU0 OTMwRDNGQ0YwHhcNMjYwNDE3MDI1NzIxWhcNMjYwNDI0MDI1NzIxWjAYMRYwFAYD VQQDEw02OWUxYTE5Mi04ZmMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArIKJqBfT6c9vDiKiAEE5H7sDHaEHDc24I1eHJzKTfEsqEy9AASIO5uH5BCaN gLLaCh8Fk2GJK+Xu1lCE7QT5774smVJ8SWcbNrrFUfY54D98RcJy1vZL0SwInYRA uuElvWdUgaozErmso+CwSFiIFt9bp/Y3eXoR2m6ZqGdFfmEJ3kXmt1gmAtyissvF uLASthjrsuzXcqL/y0o6M+zcAeLZwtxyBBiHwoUOXc4WlIJLVEUWjCxe+YjG2aZP pG8fIReRtGxBhN8vK2V30sPGQp0hfz9Q67KkYLGRRz89kMbrUGJ4BKn5bDrpyEge zDcRPid1yoqfJ4gGSY3Z5fe50wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGzKv6oa 0+uXWPMuQl6T/6adU2xbMB8GA1UdIwQYMBaAFKE1uBTh6x4nyVl+7S6CKFSTDT/P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzM5MC9EMkM3RTcxNjNF N0ExMUVFQTk3N0Q2MjBDNEY5QUUwMi9vVFc0Rk9IckhpZkpXWDd0TG9Jb1ZKTU5Q ODguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29UVzRGT0hySGlmSldYN3RMb0lvVkpNTlA4OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzM5MC9EMkM3RTcxNjNFN0ExMUVFQTk3N0Q2MjBDNEY5QUUwMi9vVFc0Rk9Ickhp ZkpXWDd0TG9Jb1ZKTU5QODgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAW53uJls08zWQjg327pBLk51WXvH58o/Di89c/ys/OQ/nsikW93QyxR56urvC ujL/0O0/JeCe7eeLnF28wDekWx3rwZW+CiO6q3Vb4zwexXQ1CTTnn2YaDv4kLjib c1zMuzBqOUyC7lnCGVy25aJcNQgmQvUIFlJYN/UNP1KH7bOP1d6Cmeq3gck/KDo5 smsIs7jJH8zmwzCMzbMRHIwRNtt3JQeEvDUvH8WVdICYJN8XfjYTWtsrh6/dXrjb pT8bm+qTzldLEThzMuqZl0Ius5IXg0SZt9zYpY0nyLNVDaTfdkiRA74IOqvJjax8 1MczOOl/9n8rLZFXKG1A88MUoA== -----END CERTIFICATE-----Generated at Fri Apr 17 11:49:02 2026 by rpki-client