$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1025/8D7B9BF29D8411EF817E1420C4F9AE02/OZp7H8QgfroHB6hRUZXMaOg2q_g.mft File: OZp7H8QgfroHB6hRUZXMaOg2q_g.mft (raw, json) Hash identifier: dmShoR2ZlUHnheQl5PZ6TLalZL/dMLPUZ/ZtmCDW6Z8= Subject key identifier: 41:A5:27:C7:B5:57:60:73:F1:A0:91:7D:B4:A5:6F:BC:7F:BD:EB:91 Authority key identifier: 39:9A:7B:1F:C4:20:7E:BA:07:07:A8:51:51:95:CC:68:E8:36:AB:F8 Certificate issuer: /CN=A91C1025/serialNumber=399A7B1FC4207EBA0707A8515195CC68E836ABF8 Certificate serial: 011A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OZp7H8QgfroHB6hRUZXMaOg2q_g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1025/8D7B9BF29D8411EF817E1420C4F9AE02/OZp7H8QgfroHB6hRUZXMaOg2q_g.mft Manifest number: 0114 Signing time: Fri 17 Apr 2026 05:39:15 +0000 Manifest this update: Fri 17 Apr 2026 05:39:15 +0000 Manifest next update: Fri 24 Apr 2026 05:39:15 +0000 Files and hashes: 1: OZp7H8QgfroHB6hRUZXMaOg2q_g.crl (hash: PS4zUtHs4jf05Xq1+lhA96lGfT6inqjDUZtP6RT4uFo=) 2: 4996A7209D9211EFAD3DCF45C4F9AE02.roa (hash: /TeFmAq6WUrTiuCuPlwLIq4bJylbmUbGhfodPgyaENY=) 3: 03FFD61EEF8A11F09F678C04616F56BC.roa (hash: Vq7WOAaGyHrEANMuaydXxs4oGlSE1GWybP72WD+YuWk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1025/8D7B9BF29D8411EF817E1420C4F9AE02/OZp7H8QgfroHB6hRUZXMaOg2q_g.crl rsync://rpki.apnic.net/member_repository/A91C1025/8D7B9BF29D8411EF817E1420C4F9AE02/OZp7H8QgfroHB6hRUZXMaOg2q_g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OZp7H8QgfroHB6hRUZXMaOg2q_g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 05:39:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 282 (0x11a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1025, serialNumber=399A7B1FC4207EBA0707A8515195CC68E836ABF8 Validity Not Before: Apr 17 05:39:15 2026 GMT Not After : Apr 24 05:39:15 2026 GMT Subject: CN=69e1c783-1643 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:6d:07:e7:7c:97:c1:18:57:2a:68:1f:4e:e8: 20:99:78:cc:2e:be:cc:9d:f8:73:a5:85:8a:9d:80: cb:b9:3c:66:5a:76:c1:60:fb:eb:80:5e:d0:2d:14: c0:60:f4:d7:b6:87:3e:68:2e:5c:20:c8:78:78:aa: 5f:20:d8:fe:82:4c:23:34:a8:ad:00:13:55:da:6e: 65:17:e2:bd:2b:81:0a:b3:93:da:3a:bf:dd:60:85: c3:17:81:b3:c0:06:a3:1e:50:20:a2:75:c9:62:25: c4:3e:6b:5c:38:fd:2c:89:b2:81:9e:53:52:af:af: 87:96:3f:b2:94:e9:10:12:3f:d7:8a:6d:68:ab:45: 15:dd:be:b7:36:30:3f:01:b2:46:97:24:7f:09:a2: 8f:45:c5:64:1d:31:d9:5f:97:f9:c0:04:c0:a8:83: 60:4f:23:c0:e4:16:71:5e:64:6b:9f:20:16:57:26: 17:29:8b:2a:52:54:41:40:44:be:9d:96:d1:f8:d8: d2:69:04:2f:c7:77:b2:36:30:16:2a:85:ad:ce:5b: f6:49:a4:c8:59:34:4c:b8:ec:48:68:be:2e:a9:46: f1:76:c4:3a:1c:10:8b:fa:c7:5e:d8:5b:05:f0:d1: c6:64:52:c9:20:78:6d:90:a2:aa:a9:ce:b8:34:e5: 1f:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:A5:27:C7:B5:57:60:73:F1:A0:91:7D:B4:A5:6F:BC:7F:BD:EB:91 X509v3 Authority Key Identifier: keyid:39:9A:7B:1F:C4:20:7E:BA:07:07:A8:51:51:95:CC:68:E8:36:AB:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1025/8D7B9BF29D8411EF817E1420C4F9AE02/OZp7H8QgfroHB6hRUZXMaOg2q_g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OZp7H8QgfroHB6hRUZXMaOg2q_g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1025/8D7B9BF29D8411EF817E1420C4F9AE02/OZp7H8QgfroHB6hRUZXMaOg2q_g.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:12:12:02:17:16:5b:b5:f7:10:52:5c:2b:4e:8a:b1:42:fe: 0f:e8:12:70:74:ae:a0:c6:b2:bc:20:27:a8:aa:d5:5c:9a:08: 35:05:8b:3f:de:ea:60:6a:ed:3d:d8:01:df:4c:a0:c9:66:e2: 46:6a:9b:0b:84:48:45:ab:39:de:e3:fc:38:5f:6f:75:63:a9: 17:73:e3:f7:c9:93:9b:7a:c0:66:d0:b3:d5:8b:c6:d4:24:9e: 5f:34:d7:0c:9e:62:8c:f5:b9:95:2e:dd:85:e6:98:04:c8:16: 10:00:08:2b:b7:fb:4a:b3:3c:24:12:a8:f7:dc:13:7b:10:f9: 88:85:70:07:e3:af:99:90:6f:44:79:55:4e:17:c0:f8:94:cb: 4f:2b:16:fe:41:38:5f:71:f3:74:79:55:81:82:99:c4:5f:5c: 57:89:0b:10:5b:f6:49:86:c9:4d:f5:d4:e2:12:16:5f:67:36: c8:9d:73:d8:36:5b:70:64:96:30:85:04:2d:c4:d7:59:b4:1b: af:ff:77:cd:e3:41:c3:cf:6e:c9:ff:cb:6f:f6:04:8c:a3:1e: 58:65:25:3c:d3:e9:60:01:a0:b2:b3:0b:26:8b:93:5e:4b:2a: 12:6e:c1:ed:1f:56:ac:35:91:a9:13:2c:61:5e:f9:3f:7e:c9: 89:fb:59:83 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICARowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzEwMjUxMTAvBgNVBAUTKDM5OUE3QjFGQzQyMDdFQkEwNzA3QTg1MTUxOTVDQzY4 RTgzNkFCRjgwHhcNMjYwNDE3MDUzOTE1WhcNMjYwNDI0MDUzOTE1WjAYMRYwFAYD VQQDEw02OWUxYzc4My0xNjQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAym0H53yXwRhXKmgfTuggmXjMLr7MnfhzpYWKnYDLuTxmWnbBYPvrgF7QLRTA YPTXtoc+aC5cIMh4eKpfINj+gkwjNKitABNV2m5lF+K9K4EKs5PaOr/dYIXDF4Gz wAajHlAgonXJYiXEPmtcOP0sibKBnlNSr6+Hlj+ylOkQEj/Xim1oq0UV3b63NjA/ AbJGlyR/CaKPRcVkHTHZX5f5wATAqINgTyPA5BZxXmRrnyAWVyYXKYsqUlRBQES+ nZbR+NjSaQQvx3eyNjAWKoWtzlv2SaTIWTRMuOxIaL4uqUbxdsQ6HBCL+sde2FsF 8NHGZFLJIHhtkKKqqc64NOUfLQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEGlJ8e1 V2Bz8aCRfbSlb7x/veuRMB8GA1UdIwQYMBaAFDmaex/EIH66BweoUVGVzGjoNqv4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTAyNS84RDdCOUJGMjlE ODQxMUVGODE3RTE0MjBDNEY5QUUwMi9PWnA3SDhRZ2Zyb0hCNmhSVVpYTWFPZzJx X2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL09acDdIOFFnZnJvSEI2aFJVWlhNYU9nMnFfZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MTAyNS84RDdCOUJGMjlEODQxMUVGODE3RTE0MjBDNEY5QUUwMi9PWnA3SDhRZ2Zy b0hCNmhSVVpYTWFPZzJxX2cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAlhISAhcWW7X3EFJcK06KsUL+D+gScHSuoMayvCAnqKrVXJoINQWLP97qYGrt PdgB30ygyWbiRmqbC4RIRas53uP8OF9vdWOpF3Pj98mTm3rAZtCz1YvG1CSeXzTX DJ5ijPW5lS7dheaYBMgWEAAIK7f7SrM8JBKo99wTexD5iIVwB+OvmZBvRHlVThfA +JTLTysW/kE4X3HzdHlVgYKZxF9cV4kLEFv2SYbJTfXU4hIWX2c2yJ1z2DZbcGSW MIUELcTXWbQbr/93zeNBw89uyf/Lb/YEjKMeWGUlPNPpYAGgsrMLJouTXksqEm7B 7R9WrDWRqRMsYV75P37JiftZgw== -----END CERTIFICATE-----Generated at Fri Apr 17 19:10:43 2026 by rpki-client