$ rpki-client -vvf rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.mft File: oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.mft (raw, json) Hash identifier: uPEqZ+6NqZEt2OlG/Vc5OOrKxFuZ/L1XPZ7zETacxG8= Subject key identifier: 20:FD:85:ED:B4:03:01:41:4E:80:A9:8A:87:DF:58:CF:B4:9E:AD:23 Authority key identifier: A1:0F:57:83:C8:F9:A6:D9:4D:29:B4:AA:90:C5:6E:01:6B:B5:14:56 Certificate issuer: /CN=A91B65AC/serialNumber=A10F5783C8F9A6D94D29B4AA90C56E016BB51456 Certificate serial: 0197 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.mft Manifest number: 018F Signing time: Fri 17 Apr 2026 04:10:30 +0000 Manifest this update: Fri 17 Apr 2026 04:10:29 +0000 Manifest next update: Fri 24 Apr 2026 04:10:29 +0000 Files and hashes: 1: oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.crl (hash: dk92Cb1VkT2MJMr/h3weWLP0IGkEsJJY/OrDqnCQbXs=) 2: 48005D9EE5AE11EE9ECE4023C4F9AE02.roa (hash: Km37wq6aDw75/u5KZyWOq+MrrDlARwtAXstjS4OwvhE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.crl rsync://rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 04:10:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 407 (0x197) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B65AC, serialNumber=A10F5783C8F9A6D94D29B4AA90C56E016BB51456 Validity Not Before: Apr 17 04:10:29 2026 GMT Not After : Apr 24 04:10:29 2026 GMT Subject: CN=69e1b2b5-bee9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:f3:63:26:a2:a7:25:72:e7:9d:d1:61:83:f3: 70:20:32:93:08:13:af:ef:b5:f6:ef:69:e6:a4:d6: 6e:89:34:0e:77:47:6b:61:3a:02:58:c3:db:64:3a: 80:76:e6:2d:40:50:2b:7d:ad:9d:74:44:84:ca:57: 68:66:cb:1f:ef:53:a3:5b:97:13:47:70:ff:73:07: 3a:cb:b5:fb:de:a7:d0:74:6e:55:a4:c8:e7:d8:c0: 20:48:6f:5e:3e:44:72:9a:cf:da:cb:57:27:67:29: 6f:dd:d9:51:69:62:90:93:5a:19:4c:2d:82:89:d7: a5:f5:97:01:91:d2:24:72:e0:fb:d3:c9:e6:db:90: 47:94:7a:5e:bb:48:c4:62:d8:ed:a9:9d:4c:2a:8f: 38:b6:0f:c6:f3:8d:82:34:85:c1:aa:77:11:20:56: 0b:72:d6:98:82:33:ab:09:ff:7e:f9:78:98:80:72: f5:89:f9:0a:d6:73:b7:32:73:20:b2:e2:9a:b6:94: 89:c8:3c:5c:24:97:32:f0:8a:6c:23:e5:5e:d7:66: 99:a1:c9:de:5f:3f:e1:8f:fa:da:23:b5:6a:cc:ef: fa:66:30:11:07:25:23:e9:dd:77:d2:bf:f4:11:2e: 1a:2e:d3:f7:7f:4f:bd:de:2b:16:cb:b3:c4:a0:b5: ef:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:FD:85:ED:B4:03:01:41:4E:80:A9:8A:87:DF:58:CF:B4:9E:AD:23 X509v3 Authority Key Identifier: keyid:A1:0F:57:83:C8:F9:A6:D9:4D:29:B4:AA:90:C5:6E:01:6B:B5:14:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:ba:b1:04:5a:d4:42:51:38:01:b4:8b:8d:33:d0:40:eb:cf: a6:ef:c5:43:f5:27:92:54:5f:0a:02:8c:03:61:69:b4:7f:ff: 45:b1:33:1c:b5:c1:93:04:cc:4e:7c:c5:57:9d:b5:e1:d6:3a: 32:9b:a6:0c:52:e5:21:96:f5:71:1e:4a:19:43:45:9d:d8:1b: 7c:6d:05:dc:87:18:87:c8:3f:69:f6:ad:3a:95:d7:5b:99:b5: 4e:b8:53:7a:06:0b:3c:56:f9:79:86:93:1f:27:65:d5:07:fc: 5a:8f:0e:2f:a6:eb:aa:6b:b1:8f:f3:b0:e8:b1:7c:93:a2:9e: 69:1c:12:e6:2f:83:85:8a:6f:a4:c2:3e:15:df:7c:92:55:4e: f8:5f:7e:29:4d:c7:0b:fb:ea:a4:c3:4e:d0:30:6f:96:98:58: d1:69:38:64:87:15:f5:7f:2d:b7:3c:d2:d5:b3:8b:5c:d7:49: 4c:b3:7a:d6:18:cb:4d:60:1c:f2:f8:e1:49:8c:b8:b3:ac:34: 0c:c3:44:1a:19:7a:88:4e:09:6e:10:ca:59:9a:43:52:27:76: da:44:10:10:45:1c:fd:00:3a:1e:9f:49:20:94:f3:66:52:0e: 3c:e2:1c:27:4b:1e:6b:6f:a8:3f:15:d1:b7:9c:9c:33:c0:ea: 49:c5:74:0f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAZcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjY1QUMxMTAvBgNVBAUTKEExMEY1NzgzQzhGOUE2RDk0RDI5QjRBQTkwQzU2RTAx NkJCNTE0NTYwHhcNMjYwNDE3MDQxMDI5WhcNMjYwNDI0MDQxMDI5WjAYMRYwFAYD VQQDEw02OWUxYjJiNS1iZWU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtPNjJqKnJXLnndFhg/NwIDKTCBOv77X272nmpNZuiTQOd0drYToCWMPbZDqA duYtQFArfa2ddESEyldoZssf71OjW5cTR3D/cwc6y7X73qfQdG5VpMjn2MAgSG9e PkRyms/ay1cnZylv3dlRaWKQk1oZTC2Cidel9ZcBkdIkcuD708nm25BHlHpeu0jE YtjtqZ1MKo84tg/G842CNIXBqncRIFYLctaYgjOrCf9++XiYgHL1ifkK1nO3MnMg suKatpSJyDxcJJcy8IpsI+Ve12aZocneXz/hj/raI7VqzO/6ZjARByUj6d130r/0 ES4aLtP3f0+93isWy7PEoLXvdQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCD9he20 AwFBToCpioffWM+0nq0jMB8GA1UdIwQYMBaAFKEPV4PI+abZTSm0qpDFbgFrtRRW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjVBQy9DQjc0RjhCRUUx RTAxMUVFQUY2RTFFNjhDNEY5QUUwMi9vUTlYZzhqNXB0bE5LYlNxa01WdUFXdTFG RlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL29ROVhnOGo1cHRsTktiU3FrTVZ1QVd1MUZGWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NjVBQy9DQjc0RjhCRUUxRTAxMUVFQUY2RTFFNjhDNEY5QUUwMi9vUTlYZzhqNXB0 bE5LYlNxa01WdUFXdTFGRlkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAfLqxBFrUQlE4AbSLjTPQQOvPpu/FQ/UnklRfCgKMA2FptH//RbEzHLXBkwTM TnzFV5214dY6MpumDFLlIZb1cR5KGUNFndgbfG0F3IcYh8g/afatOpXXW5m1TrhT egYLPFb5eYaTHydl1Qf8Wo8OL6brqmuxj/Ow6LF8k6KeaRwS5i+DhYpvpMI+Fd98 klVO+F9+KU3HC/vqpMNO0DBvlphY0Wk4ZIcV9X8ttzzS1bOLXNdJTLN61hjLTWAc 8vjhSYy4s6w0DMNEGhl6iE4JbhDKWZpDUid22kQQEEUc/QA6Hp9JIJTzZlIOPOIc J0sea2+oPxXRt5ycM8DqScV0Dw== -----END CERTIFICATE-----Generated at Fri Apr 17 15:19:13 2026 by rpki-client