$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8B0B/5AEB5EB2FCC511E99858A91EC4F9AE02/5Otd-leSQpC7j-xFuZd_xsf2-jc.mft File: 5Otd-leSQpC7j-xFuZd_xsf2-jc.mft (raw, json) Hash identifier: OBakDIUDVW1DaVZOQJFfKBePHl2cqXscfEfgeI95GHA= Subject key identifier: 0C:95:4A:47:03:C1:4A:81:80:BA:36:74:72:F1:99:BF:3C:06:59:11 Authority key identifier: E4:EB:5D:FA:57:92:42:90:BB:8F:EC:45:B9:97:7F:C6:C7:F6:FA:37 Certificate issuer: /CN=A91A8B0B/serialNumber=E4EB5DFA57924290BB8FEC45B9977FC6C7F6FA37 Certificate serial: 0D39 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Otd-leSQpC7j-xFuZd_xsf2-jc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8B0B/5AEB5EB2FCC511E99858A91EC4F9AE02/5Otd-leSQpC7j-xFuZd_xsf2-jc.mft Manifest number: 0D23 Signing time: Thu 16 Apr 2026 18:01:06 +0000 Manifest this update: Thu 16 Apr 2026 18:01:05 +0000 Manifest next update: Thu 23 Apr 2026 18:01:05 +0000 Files and hashes: 1: 5Otd-leSQpC7j-xFuZd_xsf2-jc.crl (hash: EoijCeTte39s+S3La2D9rLm5l0fvAl0LtODkhS/TOTk=) 2: EA17F65E6C6711ECB7C0925AC4F9AE02.roa (hash: RLirzJKQKFo2gpkEC+bkcfbZ/amz+vvvs7CLn8xZhc8=) 3: 5842DDF0FCE511E9BFA4B27AC4F9AE02.roa (hash: eljEAlMkKKscvcS1ohJrK9p2ggCusjEVdiGi3d1+CNk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8B0B/5AEB5EB2FCC511E99858A91EC4F9AE02/5Otd-leSQpC7j-xFuZd_xsf2-jc.crl rsync://rpki.apnic.net/member_repository/A91A8B0B/5AEB5EB2FCC511E99858A91EC4F9AE02/5Otd-leSQpC7j-xFuZd_xsf2-jc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Otd-leSQpC7j-xFuZd_xsf2-jc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 18:01:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3385 (0xd39) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8B0B, serialNumber=E4EB5DFA57924290BB8FEC45B9977FC6C7F6FA37 Validity Not Before: Apr 16 18:01:05 2026 GMT Not After : Apr 23 18:01:05 2026 GMT Subject: CN=69e123e2-7af0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:c3:b5:81:04:3b:d1:69:85:eb:86:9c:f4:ef: 7b:ab:03:7f:27:be:83:b5:81:52:85:42:74:ea:89: 6d:bd:11:31:45:36:bf:bf:f4:05:2f:b8:3d:a5:9b: 1b:15:4d:ff:d7:95:2e:67:4e:d7:2a:1f:7d:79:1a: 4a:0a:79:df:81:5c:de:12:61:36:bf:76:f0:82:52: cb:ed:c2:1e:2a:e7:d1:6d:fa:0e:c4:51:bc:a7:f0: 3b:24:85:11:48:72:da:4a:fa:e2:78:73:23:c0:9d: 51:ff:19:03:a0:65:b5:ed:dc:72:00:7e:b6:23:2c: fe:fc:c6:7d:ef:56:c3:0c:e1:5f:95:48:a0:1a:3c: b8:32:84:41:88:03:d4:4a:7f:d7:bf:18:2c:67:5f: b4:2a:8a:8f:c0:62:27:05:ea:4b:06:77:36:76:5a: 43:ee:23:54:29:48:75:d6:16:41:9b:13:56:c6:1e: e2:d2:c5:5a:c4:ad:cb:41:90:be:2f:f1:98:b4:87: fa:f8:1e:30:5e:4b:49:77:b7:2d:f7:72:87:5c:af: ae:fd:c0:57:10:30:0d:94:7f:28:c5:f5:3a:3f:e1: e0:db:62:ab:ee:00:a3:88:5c:8e:89:00:28:aa:fc: 94:12:5a:b2:14:95:97:4a:be:d9:1b:63:fb:1e:4a: 4f:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:95:4A:47:03:C1:4A:81:80:BA:36:74:72:F1:99:BF:3C:06:59:11 X509v3 Authority Key Identifier: keyid:E4:EB:5D:FA:57:92:42:90:BB:8F:EC:45:B9:97:7F:C6:C7:F6:FA:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8B0B/5AEB5EB2FCC511E99858A91EC4F9AE02/5Otd-leSQpC7j-xFuZd_xsf2-jc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Otd-leSQpC7j-xFuZd_xsf2-jc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8B0B/5AEB5EB2FCC511E99858A91EC4F9AE02/5Otd-leSQpC7j-xFuZd_xsf2-jc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:ad:22:bc:40:f8:57:68:32:6b:21:69:f8:b7:36:1e:49:7f: f9:3b:45:f5:32:84:3c:a1:8c:76:92:cf:77:f6:74:46:47:23: 9c:34:28:10:aa:8f:28:a1:cf:af:95:a4:c0:cd:5c:d5:2b:bb: cd:a1:a9:cd:43:5c:a9:6f:c4:c2:f9:4f:ae:86:2f:3c:8a:78: ab:77:4f:98:67:bf:c0:44:78:1f:ce:e2:66:b5:ce:36:a0:19: 50:ac:18:38:df:c1:7f:80:7a:2c:0b:c2:63:fc:bf:3f:6e:a7: bf:79:e7:76:d8:7a:21:dc:8f:0f:6f:be:4e:b8:a4:04:ad:c1: 5d:2e:7a:c7:3f:70:2a:aa:f1:49:49:3d:af:0c:0f:2e:d7:04: b3:ba:61:8c:ee:4d:90:34:cd:2d:73:ad:04:78:14:db:d4:e4: 01:cd:dc:62:8d:74:5e:d8:d6:1c:46:36:74:73:f1:a7:65:1a: ea:36:04:1c:a2:ae:bf:08:76:47:cf:6d:93:fb:38:e6:1f:b2: 43:12:49:c1:bd:79:df:5b:7e:83:23:91:92:98:44:a9:ce:60: 6d:a2:17:ce:c2:b7:ea:25:c5:1d:4e:64:cb:b3:5a:72:c4:8f: 90:a6:e4:33:79:62:40:bc:f6:ed:57:9f:c9:83:a4:91:a0:97: d6:00:5b:62 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDTkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QThCMEIxMTAvBgNVBAUTKEU0RUI1REZBNTc5MjQyOTBCQjhGRUM0NUI5OTc3RkM2 QzdGNkZBMzcwHhcNMjYwNDE2MTgwMTA1WhcNMjYwNDIzMTgwMTA1WjAYMRYwFAYD VQQDEw02OWUxMjNlMi03YWYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtsO1gQQ70WmF64ac9O97qwN/J76DtYFShUJ06oltvRExRTa/v/QFL7g9pZsb FU3/15UuZ07XKh99eRpKCnnfgVzeEmE2v3bwglLL7cIeKufRbfoOxFG8p/A7JIUR SHLaSvrieHMjwJ1R/xkDoGW17dxyAH62Iyz+/MZ971bDDOFflUigGjy4MoRBiAPU Sn/XvxgsZ1+0KoqPwGInBepLBnc2dlpD7iNUKUh11hZBmxNWxh7i0sVaxK3LQZC+ L/GYtIf6+B4wXktJd7ct93KHXK+u/cBXEDANlH8oxfU6P+Hg22Kr7gCjiFyOiQAo qvyUElqyFJWXSr7ZG2P7HkpPCwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAyVSkcD wUqBgLo2dHLxmb88BlkRMB8GA1UdIwQYMBaAFOTrXfpXkkKQu4/sRbmXf8bH9vo3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOEIwQi81QUVCNUVCMkZD QzUxMUU5OTg1OEE5MUVDNEY5QUUwMi81T3RkLWxlU1FwQzdqLXhGdVpkX3hzZjIt amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVPdGQtbGVTUXBDN2oteEZ1WmRfeHNmMi1qYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OEIwQi81QUVCNUVCMkZDQzUxMUU5OTg1OEE5MUVDNEY5QUUwMi81T3RkLWxlU1Fw QzdqLXhGdVpkX3hzZjItamMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAha0ivED4V2gyayFp+Lc2Hkl/+TtF9TKEPKGMdpLPd/Z0RkcjnDQoEKqPKKHP r5WkwM1c1Su7zaGpzUNcqW/EwvlProYvPIp4q3dPmGe/wER4H87iZrXONqAZUKwY ON/Bf4B6LAvCY/y/P26nv3nndth6IdyPD2++TrikBK3BXS56xz9wKqrxSUk9rwwP LtcEs7phjO5NkDTNLXOtBHgU29TkAc3cYo10XtjWHEY2dHPxp2Ua6jYEHKKuvwh2 R89tk/s45h+yQxJJwb1531t+gyORkphEqc5gbaIXzsK36iXFHU5ky7NacsSPkKbk M3liQLz27VefyYOkkaCX1gBbYg== -----END CERTIFICATE-----Generated at Fri Apr 17 12:31:01 2026 by rpki-client