$ rpki-client -vvf rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.mft File: oKMiStDIKz-aYvNHrKP5RdsI8rA.mft (raw, json) Hash identifier: 05gVjM3aoEuum0yrRjlls9H32aeVLwSghKhTPs5OB0g= Subject key identifier: A9:DC:E1:C2:91:20:7A:41:FA:93:14:A3:2C:8E:D3:24:35:55:75:FF Authority key identifier: A0:A3:22:4A:D0:C8:2B:3F:9A:62:F3:47:AC:A3:F9:45:DB:08:F2:B0 Certificate issuer: /CN=A91B80BD/serialNumber=A0A3224AD0C82B3F9A62F347ACA3F945DB08F2B0 Certificate serial: 312D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKMiStDIKz-aYvNHrKP5RdsI8rA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.mft Manifest number: 30D2 Signing time: Thu 16 Apr 2026 15:25:25 +0000 Manifest this update: Thu 16 Apr 2026 15:25:25 +0000 Manifest next update: Thu 23 Apr 2026 15:25:25 +0000 Files and hashes: 1: oKMiStDIKz-aYvNHrKP5RdsI8rA.crl (hash: toPTHiVOFOvEBb08h3y0B6Y575O4F5yAJkBgGu4i1F8=) 2: 4C72E61CB0EC11E5A6934B42C4F9AE02.roa (hash: ot76bD4Fe2eGS+QL+OB7ESET88ZeiKoIEOY/MT5QHrY=) 3: 583C1F6854F611E79DF7E643C4F9AE02.roa (hash: M6QpwrrsCEg6uS0XBq+MJGbdVX3IkfmFKf0zFhM8Oec=) 4: 915E51B8F3BE11ED8B9B1450C4F9AE02.roa (hash: jY72D9kM4ZreV4v43viz3/fEA3o/FMiAaeH7fUiUeSs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.crl rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKMiStDIKz-aYvNHrKP5RdsI8rA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 15:25:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12589 (0x312d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B80BD, serialNumber=A0A3224AD0C82B3F9A62F347ACA3F945DB08F2B0 Validity Not Before: Apr 16 15:25:25 2026 GMT Not After : Apr 23 15:25:25 2026 GMT Subject: CN=69e0ff65-459d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:c2:ef:36:1c:9b:9e:d8:df:82:1d:e7:d9:27: a8:c4:f4:4c:42:41:4d:bd:b9:ef:a9:62:b0:bf:cc: f1:f4:97:d4:74:aa:96:38:ed:d6:6e:f1:ac:6d:16: af:08:5f:f4:32:f1:7f:d4:c3:6a:66:44:b1:ad:69: ab:f0:b1:a7:9f:36:f7:23:7e:0b:d6:09:06:85:74: 6b:08:03:72:74:92:33:20:06:5f:d9:80:5e:f5:d4: af:cc:30:31:18:b2:0a:0d:cb:c9:ee:3f:8c:59:52: c5:8b:1b:f1:69:83:9d:c1:86:59:99:d4:ec:14:5e: 7a:90:15:5e:5b:81:6c:20:62:97:db:60:f5:a4:dd: a0:d6:d2:e1:f8:9d:dc:72:61:c0:c1:bc:3f:d6:98: 6b:da:f5:6b:57:d1:3c:c0:d3:46:8f:68:e8:7c:ca: aa:76:44:a0:8a:dd:a2:f5:6f:e4:be:ba:88:b1:8b: 65:b5:1c:83:78:59:b7:a0:eb:36:17:65:0a:2f:bb: 7e:f2:1d:fe:86:20:20:1e:a5:7e:27:99:0d:0f:32: 47:ee:41:3f:3b:5c:ac:39:57:f0:bb:90:ee:4e:3a: 0d:e2:61:9c:2c:af:fc:e9:32:a3:a9:9f:a2:e4:f7: b9:17:32:31:0c:fa:d4:92:72:43:30:8b:b6:e1:1f: ca:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:DC:E1:C2:91:20:7A:41:FA:93:14:A3:2C:8E:D3:24:35:55:75:FF X509v3 Authority Key Identifier: keyid:A0:A3:22:4A:D0:C8:2B:3F:9A:62:F3:47:AC:A3:F9:45:DB:08:F2:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKMiStDIKz-aYvNHrKP5RdsI8rA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:90:de:e0:02:b1:ab:f4:ca:cd:98:7c:cb:9f:3e:a6:89:ce: 20:c7:72:6f:76:19:22:c5:fb:8d:24:dc:fb:76:90:88:bf:88: 55:df:5b:9a:7b:c3:29:80:cd:b3:34:8a:84:bd:3a:cf:b0:af: f2:97:ed:61:38:29:ac:43:7e:e5:18:c7:9e:07:90:8b:5a:7e: f7:90:59:1f:e6:e5:74:d4:d8:a4:a9:eb:99:15:f0:c4:8e:cc: 0c:70:21:c1:98:c3:50:23:df:df:6a:19:6d:96:f3:5c:cc:9a: b7:a4:bf:4d:69:e9:b1:f9:eb:4f:0d:be:84:46:9c:0a:fb:74: 5e:31:3f:0a:c9:b6:04:89:82:ba:ef:6b:81:06:90:4e:a7:b9: a3:18:0e:d8:ec:e8:f6:cb:83:c2:1c:f3:26:37:c8:70:94:d8: 76:ce:6a:ca:b1:e7:40:3b:7f:7a:59:7c:45:ec:8b:1b:60:eb: e9:88:df:74:59:e2:11:c4:c6:b4:75:5b:45:cb:7b:0a:8e:0a: 05:7d:16:7a:8a:01:ec:38:64:38:a6:e4:cf:8a:b7:93:cd:65: 61:c8:2d:69:77:cb:09:69:9b:8f:d3:94:27:69:13:39:7b:57: 70:c5:3c:c7:1f:c1:65:6b:81:60:b7:dc:0a:fe:e8:df:6d:cb: 81:c8:7c:aa -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICMS0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjgwQkQxMTAvBgNVBAUTKEEwQTMyMjRBRDBDODJCM0Y5QTYyRjM0N0FDQTNGOTQ1 REIwOEYyQjAwHhcNMjYwNDE2MTUyNTI1WhcNMjYwNDIzMTUyNTI1WjAYMRYwFAYD VQQDEw02OWUwZmY2NS00NTlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1MLvNhybntjfgh3n2SeoxPRMQkFNvbnvqWKwv8zx9JfUdKqWOO3WbvGsbRav CF/0MvF/1MNqZkSxrWmr8LGnnzb3I34L1gkGhXRrCANydJIzIAZf2YBe9dSvzDAx GLIKDcvJ7j+MWVLFixvxaYOdwYZZmdTsFF56kBVeW4FsIGKX22D1pN2g1tLh+J3c cmHAwbw/1phr2vVrV9E8wNNGj2jofMqqdkSgit2i9W/kvrqIsYtltRyDeFm3oOs2 F2UKL7t+8h3+hiAgHqV+J5kNDzJH7kE/O1ysOVfwu5DuTjoN4mGcLK/86TKjqZ+i 5Pe5FzIxDPrUknJDMIu24R/KcQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKnc4cKR IHpB+pMUoyyO0yQ1VXX/MB8GA1UdIwQYMBaAFKCjIkrQyCs/mmLzR6yj+UXbCPKw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCODBCRC9CNUE2MzZEOEZF NUMxMUUyQUVDMDQyNTA1OTExRUEzMi9vS01pU3RESUt6LWFZdk5IcktQNVJkc0k4 ckEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29LTWlTdERJS3otYVl2TkhyS1A1UmRzSThyQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC ODBCRC9CNUE2MzZEOEZFNUMxMUUyQUVDMDQyNTA1OTExRUEzMi9vS01pU3RESUt6 LWFZdk5IcktQNVJkc0k4ckEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAMZDe4AKxq/TKzZh8y58+ponOIMdyb3YZIsX7jSTc+3aQiL+IVd9bmnvDKYDN szSKhL06z7Cv8pftYTgprEN+5RjHngeQi1p+95BZH+bldNTYpKnrmRXwxI7MDHAh wZjDUCPf32oZbZbzXMyat6S/TWnpsfnrTw2+hEacCvt0XjE/Csm2BImCuu9rgQaQ Tqe5oxgO2Ozo9suDwhzzJjfIcJTYds5qyrHnQDt/ell8ReyLG2Dr6YjfdFniEcTG tHVbRct7Co4KBX0WeooB7DhkOKbkz4q3k81lYcgtaXfLCWmbj9OUJ2kTOXtXcMU8 xx/BZWuBYLfcCv7o323Lgch8qg== -----END CERTIFICATE-----Generated at Fri Apr 17 15:38:13 2026 by rpki-client