$ rpki-client -vvf rpki.apnic.net/member_repository/A9198267/02C86EAA78CB11EA820D7274C4F9AE02/OPsGr2SfQA9ROZSTW-335JJwyKo.mft File: OPsGr2SfQA9ROZSTW-335JJwyKo.mft (raw, json) Hash identifier: cwC1c3U6FXQpgKkBCa5o0JlRJPZr7bT4+W9BPtYonp8= Subject key identifier: B9:23:87:CF:4C:B7:81:06:6D:E2:4E:EA:98:DE:FF:20:6C:75:BA:4B Authority key identifier: 38:FB:06:AF:64:9F:40:0F:51:39:94:93:5B:ED:F7:E4:92:70:C8:AA Certificate issuer: /CN=A9198267/serialNumber=38FB06AF649F400F513994935BEDF7E49270C8AA Certificate serial: 0AB3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OPsGr2SfQA9ROZSTW-335JJwyKo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198267/02C86EAA78CB11EA820D7274C4F9AE02/OPsGr2SfQA9ROZSTW-335JJwyKo.mft Manifest number: 0AA2 Signing time: Thu 16 Apr 2026 19:26:13 +0000 Manifest this update: Thu 16 Apr 2026 19:26:12 +0000 Manifest next update: Thu 23 Apr 2026 19:26:12 +0000 Files and hashes: 1: OPsGr2SfQA9ROZSTW-335JJwyKo.crl (hash: XePbm9SBZsmBVIF9rz/p3Z3/QZuC5bijjDtTK9zBdlM=) 2: 2F43EE7278CC11EAB69DAC75C4F9AE02.roa (hash: RCg1Rl9BMePurgmT4FLJMdQ57mTRP5HppFNnGUt/YQk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198267/02C86EAA78CB11EA820D7274C4F9AE02/OPsGr2SfQA9ROZSTW-335JJwyKo.crl rsync://rpki.apnic.net/member_repository/A9198267/02C86EAA78CB11EA820D7274C4F9AE02/OPsGr2SfQA9ROZSTW-335JJwyKo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OPsGr2SfQA9ROZSTW-335JJwyKo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 19:26:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2739 (0xab3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198267, serialNumber=38FB06AF649F400F513994935BEDF7E49270C8AA Validity Not Before: Apr 16 19:26:12 2026 GMT Not After : Apr 23 19:26:12 2026 GMT Subject: CN=69e137d5-a6e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:ad:38:24:b4:77:95:f8:1b:6f:7b:1d:6c:23: 22:aa:fc:b0:23:c2:87:db:09:fc:08:b6:9d:ea:fc: a1:67:d9:4c:6e:1c:70:95:ea:e4:5b:c0:73:5d:44: fc:76:98:33:b9:1d:25:6a:a7:24:72:c6:d4:1e:ce: 9c:10:07:87:85:1f:ca:0c:23:c9:2b:77:1b:80:a0: 2f:d9:34:4e:19:1d:4e:6c:9c:89:48:71:06:69:8a: 9b:43:bb:00:4a:53:f0:8b:41:1b:a4:2c:08:96:08: 12:82:27:16:07:5d:61:40:d2:cd:0b:14:ab:e5:e3: 36:4b:ef:58:08:a7:68:b1:a3:5c:fb:75:79:75:9f: 17:68:db:68:e0:ae:51:26:9b:85:91:55:52:2e:3c: 5e:c5:ad:68:b0:1a:bf:67:d4:06:1d:4d:11:50:da: 4d:8c:d9:ed:03:3a:66:52:2f:92:31:09:f0:38:ef: 17:2f:ad:79:ba:6a:35:50:b8:a6:04:1c:f0:18:92: 45:11:4e:27:68:c0:2b:a2:53:53:31:0c:52:86:e2: 5c:9b:b2:39:c7:e7:5c:d3:20:c5:3a:fa:37:52:a9: 99:2e:8d:72:95:f0:b8:a5:97:41:49:d5:d1:9f:e4: 6e:c0:e7:f3:2c:9b:10:b7:86:dd:61:0a:ac:88:f9: b2:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:23:87:CF:4C:B7:81:06:6D:E2:4E:EA:98:DE:FF:20:6C:75:BA:4B X509v3 Authority Key Identifier: keyid:38:FB:06:AF:64:9F:40:0F:51:39:94:93:5B:ED:F7:E4:92:70:C8:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198267/02C86EAA78CB11EA820D7274C4F9AE02/OPsGr2SfQA9ROZSTW-335JJwyKo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OPsGr2SfQA9ROZSTW-335JJwyKo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198267/02C86EAA78CB11EA820D7274C4F9AE02/OPsGr2SfQA9ROZSTW-335JJwyKo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:eb:61:8a:16:ce:16:dc:44:29:f8:a4:16:12:3b:ce:fd:b4: 4a:9c:4e:d0:a4:35:9d:b7:09:6f:ff:92:80:d6:db:bb:8a:a4: 69:d9:78:32:8b:17:9e:ef:7d:5a:b9:20:03:3e:ca:7a:13:b8: 07:57:b0:90:0a:a3:bb:b2:9f:f0:95:70:9b:54:5a:cf:a9:d2: cc:6e:1f:4e:38:0d:19:d3:3f:94:d8:36:ec:e7:88:6a:ed:b6: e7:c9:95:30:dd:8f:d2:a6:ba:4a:1a:bf:24:40:5a:56:65:f9: c9:07:81:25:4b:da:20:eb:ac:b3:38:23:f3:e5:1f:59:a6:cf: 5f:4a:da:fe:b2:69:d8:61:1e:8a:d0:84:63:6f:f5:09:c8:18: 6c:3a:db:bb:3a:3e:a8:58:0e:6c:af:74:20:fd:7d:3c:65:3c: d0:40:45:e0:4b:c6:e1:08:38:47:44:64:c2:f2:ce:f6:90:50: 72:3f:93:13:b2:c0:a4:f5:5f:15:1c:a6:94:97:ba:ab:19:08: b8:08:c4:c8:fe:19:18:cf:f1:73:87:2e:38:1c:ea:c3:e9:d3: 80:f4:1c:86:f4:3c:af:2f:fb:e2:e9:32:b3:2c:c7:a4:3c:59: f6:f5:a7:fb:32:92:00:f9:ec:84:33:a7:55:1f:e6:11:6b:98: d7:1b:51:7c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCrMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTgyNjcxMTAvBgNVBAUTKDM4RkIwNkFGNjQ5RjQwMEY1MTM5OTQ5MzVCRURGN0U0 OTI3MEM4QUEwHhcNMjYwNDE2MTkyNjEyWhcNMjYwNDIzMTkyNjEyWjAYMRYwFAYD VQQDEw02OWUxMzdkNS1hNmUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuK04JLR3lfgbb3sdbCMiqvywI8KH2wn8CLad6vyhZ9lMbhxwlerkW8BzXUT8 dpgzuR0laqckcsbUHs6cEAeHhR/KDCPJK3cbgKAv2TROGR1ObJyJSHEGaYqbQ7sA SlPwi0EbpCwIlggSgicWB11hQNLNCxSr5eM2S+9YCKdosaNc+3V5dZ8XaNto4K5R JpuFkVVSLjxexa1osBq/Z9QGHU0RUNpNjNntAzpmUi+SMQnwOO8XL615umo1ULim BBzwGJJFEU4naMArolNTMQxShuJcm7I5x+dc0yDFOvo3UqmZLo1ylfC4pZdBSdXR n+RuwOfzLJsQt4bdYQqsiPmyzwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLkjh89M t4EGbeJO6pje/yBsdbpLMB8GA1UdIwQYMBaAFDj7Bq9kn0APUTmUk1vt9+SScMiq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5ODI2Ny8wMkM4NkVBQTc4 Q0IxMUVBODIwRDcyNzRDNEY5QUUwMi9PUHNHcjJTZlFBOVJPWlNUVy0zMzVKSnd5 S28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09Qc0dyMlNmUUE5Uk9aU1RXLTMzNUpKd3lLby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 ODI2Ny8wMkM4NkVBQTc4Q0IxMUVBODIwRDcyNzRDNEY5QUUwMi9PUHNHcjJTZlFB OVJPWlNUVy0zMzVKSnd5S28ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAhethihbOFtxEKfikFhI7zv20SpxO0KQ1nbcJb/+SgNbbu4qkadl4MosXnu99 WrkgAz7KehO4B1ewkAqju7Kf8JVwm1Raz6nSzG4fTjgNGdM/lNg27OeIau2258mV MN2P0qa6Shq/JEBaVmX5yQeBJUvaIOusszgj8+UfWabPX0ra/rJp2GEeitCEY2/1 CcgYbDrbuzo+qFgObK90IP19PGU80EBF4EvG4Qg4R0RkwvLO9pBQcj+TE7LApPVf FRymlJe6qxkIuAjEyP4ZGM/xc4cuOBzqw+nTgPQchvQ8ry/74ukysyzHpDxZ9vWn +zKSAPnshDOnVR/mEWuY1xtRfA== -----END CERTIFICATE-----Generated at Fri Apr 17 18:47:33 2026 by rpki-client