$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5B83/0F46CA8CADAF11EA84C04E10C4F9AE02/oL2xs_Hk5wTrTU8s5f405lA3uUM.mft File: oL2xs_Hk5wTrTU8s5f405lA3uUM.mft (raw, json) Hash identifier: 39Ymk3TSi3m23oiecdQ5D3t+KvlF/Fn1axVn8s0CEAg= Subject key identifier: 2D:68:EE:55:41:1A:44:8C:1B:98:66:2D:80:33:93:8B:2F:04:BD:20 Authority key identifier: A0:BD:B1:B3:F1:E4:E7:04:EB:4D:4F:2C:E5:FE:34:E6:50:37:B9:43 Certificate issuer: /CN=A91A5B83/serialNumber=A0BDB1B3F1E4E704EB4D4F2CE5FE34E65037B943 Certificate serial: 099D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oL2xs_Hk5wTrTU8s5f405lA3uUM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5B83/0F46CA8CADAF11EA84C04E10C4F9AE02/oL2xs_Hk5wTrTU8s5f405lA3uUM.mft Manifest number: 098E Signing time: Thu 16 Apr 2026 19:56:06 +0000 Manifest this update: Thu 16 Apr 2026 19:56:06 +0000 Manifest next update: Thu 23 Apr 2026 19:56:06 +0000 Files and hashes: 1: oL2xs_Hk5wTrTU8s5f405lA3uUM.crl (hash: RyyXRwD4c+KGsXNVE3LIsG8sr9+6ej4DlIWef2VXSJY=) 2: A21F0938C44B11EB8CF88F1EC4F9AE02.roa (hash: NAdkxGEriD41T4r2Hs9G1ZaoxJyebhWdoS8t42aFjpU=) 3: 975BB0CE73AD11EDAD75DB7DC4F9AE02.roa (hash: jAKvnhGGumY3r7ewKcT9Lzim+X/g3AItHLNz64M4NG8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5B83/0F46CA8CADAF11EA84C04E10C4F9AE02/oL2xs_Hk5wTrTU8s5f405lA3uUM.crl rsync://rpki.apnic.net/member_repository/A91A5B83/0F46CA8CADAF11EA84C04E10C4F9AE02/oL2xs_Hk5wTrTU8s5f405lA3uUM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oL2xs_Hk5wTrTU8s5f405lA3uUM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 19:56:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2461 (0x99d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5B83, serialNumber=A0BDB1B3F1E4E704EB4D4F2CE5FE34E65037B943 Validity Not Before: Apr 16 19:56:06 2026 GMT Not After : Apr 23 19:56:06 2026 GMT Subject: CN=69e13ed6-2260 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:3d:ee:be:ae:11:2d:6d:44:1d:d6:f0:f9:0d: 2b:4b:c2:bb:07:0c:e7:0b:f5:c9:ca:08:e7:df:81: f7:7b:a6:59:1e:ef:b8:fc:82:41:46:93:c0:db:23: 14:2a:76:8f:96:7d:fb:7d:6b:21:28:cb:34:5b:1c: ca:96:71:f9:83:b6:7d:65:cb:29:e8:34:0a:b3:c8: 73:aa:a2:1c:00:a0:46:81:17:57:a9:4c:49:ce:0a: 87:f5:81:67:bb:34:f4:ec:8e:21:5c:e0:34:8e:31: 3d:35:14:2d:6f:f5:dc:de:b7:a7:44:78:46:4b:9b: 8f:ac:9e:11:27:15:5f:b5:72:1a:93:a0:fd:9b:2f: 3d:5f:10:d9:b4:1c:7f:b2:99:82:17:fe:c0:64:7a: 30:30:ba:dd:d8:31:e3:0a:9c:fc:02:95:5b:a5:6f: fe:e8:0c:6a:9b:c1:b4:6f:21:a0:65:ee:44:cd:82: b1:ef:f2:93:81:58:21:22:a6:f1:e0:0d:3e:e6:46: d9:b9:51:cc:e7:a7:32:d5:2e:6b:44:90:a9:b2:89: 27:23:83:0c:63:a2:47:89:1a:bd:0f:09:c0:30:31: e1:74:a4:df:b9:8a:f3:d5:3e:76:47:d3:43:50:2c: 83:d4:75:59:14:26:d0:eb:99:11:b9:75:4a:9f:3f: 57:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:68:EE:55:41:1A:44:8C:1B:98:66:2D:80:33:93:8B:2F:04:BD:20 X509v3 Authority Key Identifier: keyid:A0:BD:B1:B3:F1:E4:E7:04:EB:4D:4F:2C:E5:FE:34:E6:50:37:B9:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5B83/0F46CA8CADAF11EA84C04E10C4F9AE02/oL2xs_Hk5wTrTU8s5f405lA3uUM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oL2xs_Hk5wTrTU8s5f405lA3uUM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5B83/0F46CA8CADAF11EA84C04E10C4F9AE02/oL2xs_Hk5wTrTU8s5f405lA3uUM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:cf:39:96:6a:fc:35:c2:1a:db:f8:5f:fb:85:33:a7:59:e8: f8:67:ee:69:e0:e3:57:25:f9:ea:83:a0:b9:e9:36:19:d7:84: 25:5c:3d:ab:1f:c6:07:cf:aa:7b:12:79:df:53:f6:c9:01:81: 89:51:04:f9:66:22:03:36:7a:18:c4:bf:a9:09:87:38:88:53: a0:e4:02:40:23:4e:03:28:44:75:1e:cc:55:66:86:86:6a:da: 4c:50:71:67:46:c1:3d:6c:67:fd:46:c6:60:bf:ab:4d:36:81: 39:c4:8f:60:06:40:1b:bf:26:2c:94:de:e2:00:28:b4:7d:d8: 9c:c1:d9:91:67:b4:f9:f4:f3:e9:03:d7:22:68:7b:06:93:9c: 76:8f:02:55:ff:c3:52:e9:6e:75:54:f7:df:56:60:04:5f:e1: 0e:2f:05:6e:ce:cd:6a:d9:91:d3:79:f7:68:7e:2c:36:84:5f: b7:64:27:65:82:05:17:b4:7d:79:ac:9e:ac:e0:48:42:23:6c: 17:df:96:e4:4a:e1:8a:dc:1f:6d:32:78:6b:54:01:f9:79:11: e3:68:c4:31:72:2b:9b:48:b5:d5:b1:43:0a:20:d0:1d:9b:b3: 38:3c:0d:24:dc:04:b2:61:16:61:76:e4:f8:46:3e:0a:fc:3a: 6a:0a:ba:f0 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCZ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTVCODMxMTAvBgNVBAUTKEEwQkRCMUIzRjFFNEU3MDRFQjRENEYyQ0U1RkUzNEU2 NTAzN0I5NDMwHhcNMjYwNDE2MTk1NjA2WhcNMjYwNDIzMTk1NjA2WjAYMRYwFAYD VQQDEw02OWUxM2VkNi0yMjYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApj3uvq4RLW1EHdbw+Q0rS8K7BwznC/XJygjn34H3e6ZZHu+4/IJBRpPA2yMU KnaPln37fWshKMs0WxzKlnH5g7Z9Zcsp6DQKs8hzqqIcAKBGgRdXqUxJzgqH9YFn uzT07I4hXOA0jjE9NRQtb/Xc3renRHhGS5uPrJ4RJxVftXIak6D9my89XxDZtBx/ spmCF/7AZHowMLrd2DHjCpz8ApVbpW/+6Axqm8G0byGgZe5EzYKx7/KTgVghIqbx 4A0+5kbZuVHM56cy1S5rRJCpsoknI4MMY6JHiRq9DwnAMDHhdKTfuYrz1T52R9ND UCyD1HVZFCbQ65kRuXVKnz9X9wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFC1o7lVB GkSMG5hmLYAzk4svBL0gMB8GA1UdIwQYMBaAFKC9sbPx5OcE601PLOX+NOZQN7lD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNUI4My8wRjQ2Q0E4Q0FE QUYxMUVBODRDMDRFMTBDNEY5QUUwMi9vTDJ4c19IazV3VHJUVThzNWY0MDVsQTN1 VU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29MMnhzX0hrNXdUclRVOHM1ZjQwNWxBM3VVTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NUI4My8wRjQ2Q0E4Q0FEQUYxMUVBODRDMDRFMTBDNEY5QUUwMi9vTDJ4c19IazV3 VHJUVThzNWY0MDVsQTN1VU0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAZ885lmr8NcIa2/hf+4Uzp1no+GfuaeDjVyX56oOguek2GdeEJVw9qx/GB8+q exJ531P2yQGBiVEE+WYiAzZ6GMS/qQmHOIhToOQCQCNOAyhEdR7MVWaGhmraTFBx Z0bBPWxn/UbGYL+rTTaBOcSPYAZAG78mLJTe4gAotH3YnMHZkWe0+fTz6QPXImh7 BpOcdo8CVf/DUuludVT331ZgBF/hDi8Fbs7NatmR03n3aH4sNoRft2QnZYIFF7R9 eayerOBIQiNsF9+W5ErhitwfbTJ4a1QB+XkR42jEMXIrm0i11bFDCiDQHZuzODwN JNwEsmEWYXbk+EY+Cvw6agq68A== -----END CERTIFICATE-----Generated at Fri Apr 17 12:51:38 2026 by rpki-client