$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.mft File: Oq-A6pfpm5UlszvBM1uwlcLSeKc.mft (raw, json) Hash identifier: QP9C1l5coqNu+yOV0pSvBBPjaVYdqcrIrxFkdohFnn4= Subject key identifier: C1:96:8C:A2:50:67:AC:10:CD:D3:E5:24:76:7B:D6:07:CC:36:AA:C4 Authority key identifier: 3A:AF:80:EA:97:E9:9B:95:25:B3:3B:C1:33:5B:B0:95:C2:D2:78:A7 Certificate issuer: /CN=A91C4F06/serialNumber=3AAF80EA97E99B9525B33BC1335BB095C2D278A7 Certificate serial: 3624 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.mft Manifest number: 35AE Signing time: Sat 18 Apr 2026 14:47:49 +0000 Manifest this update: Sat 18 Apr 2026 14:47:49 +0000 Manifest next update: Sat 25 Apr 2026 14:47:49 +0000 Files and hashes: 1: Oq-A6pfpm5UlszvBM1uwlcLSeKc.crl (hash: 7ZG+BRgXahiLLiyF5A4ZH9+6sPPconNwpEQ9kzfP3C4=) 2: 1600DBF659C311E9A04B846FC4F9AE02.roa (hash: bGRZ0FpspSCf0cAveUKjR/NLCR8lXup6exlYiK4KDOA=) 3: 5A318E06F6A111EBB6318B7EC4F9AE02.roa (hash: Kcd6XpOFaQiuuRL3zl2swXULLS6KNUXvk+RMSSrL0Fo=) 4: 6F1612BE562511EB9470B150C4F9AE02.roa (hash: VN3fbgbN+VB5jjHGJ778LsC3bD0h86H1GfKAiCzDGbA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.crl rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Apr 2026 14:47:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13860 (0x3624) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C4F06, serialNumber=3AAF80EA97E99B9525B33BC1335BB095C2D278A7 Validity Not Before: Apr 18 14:47:49 2026 GMT Not After : Apr 25 14:47:49 2026 GMT Subject: CN=69e39995-e858 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:10:49:10:bf:8b:20:94:42:77:25:50:f0:98: cd:97:03:58:07:62:f9:2d:3c:b4:63:6e:62:24:06: d6:65:f0:0f:83:b2:91:b9:c1:42:15:ac:af:86:3b: 68:f5:5d:33:da:80:b7:9f:1a:b2:54:84:0b:d2:26: b4:4c:65:76:2d:d6:4f:36:13:fe:6f:46:ce:eb:e8: d7:ef:dd:92:d5:e8:de:3c:de:90:c3:6d:d3:08:c8: 51:06:d4:b1:6c:61:45:f2:ad:d4:be:20:12:1a:bc: ca:a9:6a:c5:58:50:7a:71:a6:3c:5b:93:73:1f:59: 7a:9f:b6:77:6d:b6:9e:7b:2c:2f:65:84:4d:e9:c9: 87:6b:c3:e7:4b:77:a8:e4:8a:eb:49:f5:c5:ab:fb: 85:79:5a:7f:f4:1d:5d:9c:c0:62:7a:48:f1:70:c7: 98:47:28:0e:a7:05:56:9c:ea:6f:4f:13:1e:f7:4c: 12:4f:68:36:f0:a5:82:e7:e4:ef:2a:49:55:49:3d: c5:1f:75:26:8b:81:52:88:56:37:dc:c7:2b:8d:a5: f5:ec:ef:5b:25:71:16:db:91:28:a3:2e:1c:23:28: 38:ed:3c:a2:5e:39:80:0f:49:a6:5d:93:77:ff:4c: 3c:5f:8c:f7:d8:5c:db:6e:0f:d6:44:fc:ed:2a:4d: 60:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:96:8C:A2:50:67:AC:10:CD:D3:E5:24:76:7B:D6:07:CC:36:AA:C4 X509v3 Authority Key Identifier: keyid:3A:AF:80:EA:97:E9:9B:95:25:B3:3B:C1:33:5B:B0:95:C2:D2:78:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d0:ff:60:6a:75:21:f0:4a:7c:41:68:16:07:99:08:97:08:b8: 51:ca:7e:b2:5c:81:34:2c:34:e3:59:b1:e1:aa:6a:81:b2:7e: 91:bf:52:3d:47:de:bf:34:25:65:1b:cb:1d:8d:19:44:a9:d1: 70:02:67:ab:a4:76:d8:c8:66:14:e2:7d:21:9c:8a:22:a1:a8: 77:d2:93:39:41:0b:4f:d6:cb:4b:b6:97:a3:ef:10:db:ad:1d: e9:47:e5:a2:96:f8:61:fc:0e:48:d0:de:9d:82:90:c7:ea:9b: 74:e7:18:23:20:2b:7e:db:5a:e2:d8:56:b0:be:e2:95:f4:9b: 95:c6:a8:f5:05:75:e4:63:ae:da:bd:5b:af:29:87:f0:04:19: 03:df:b0:b7:66:df:28:16:45:8c:bf:e5:fe:40:30:36:62:e3: 7a:79:f5:60:27:3a:5b:c1:72:b0:53:31:90:f2:fe:17:5d:cd: e3:33:00:be:4d:b0:26:ba:76:d0:6c:42:ad:1e:ed:3f:33:eb: f2:ac:15:f1:c9:4b:9a:21:bc:81:91:b0:4c:aa:84:04:42:35: c8:f1:0f:8a:74:a4:8c:9e:ca:39:a4:65:0c:4d:c4:0f:79:fe: 39:f9:4a:1a:e3:79:70:da:b7:c8:92:8d:22:3b:e4:2d:b7:76: 2b:24:1e:87 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNiQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzRGMDYxMTAvBgNVBAUTKDNBQUY4MEVBOTdFOTlCOTUyNUIzM0JDMTMzNUJCMDk1 QzJEMjc4QTcwHhcNMjYwNDE4MTQ0NzQ5WhcNMjYwNDI1MTQ0NzQ5WjAYMRYwFAYD VQQDEw02OWUzOTk5NS1lODU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjxBJEL+LIJRCdyVQ8JjNlwNYB2L5LTy0Y25iJAbWZfAPg7KRucFCFayvhjto 9V0z2oC3nxqyVIQL0ia0TGV2LdZPNhP+b0bO6+jX792S1ejePN6Qw23TCMhRBtSx bGFF8q3UviASGrzKqWrFWFB6caY8W5NzH1l6n7Z3bbaeeywvZYRN6cmHa8PnS3eo 5IrrSfXFq/uFeVp/9B1dnMBiekjxcMeYRygOpwVWnOpvTxMe90wST2g28KWC5+Tv KklVST3FH3Umi4FSiFY33McrjaX17O9bJXEW25Eooy4cIyg47TyiXjmAD0mmXZN3 /0w8X4z32Fzbbg/WRPztKk1gnQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMGWjKJQ Z6wQzdPlJHZ71gfMNqrEMB8GA1UdIwQYMBaAFDqvgOqX6ZuVJbM7wTNbsJXC0nin MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNEYwNi83NkUxQzQ3RTFE OTUxMUUyQkU1OTVFN0QwOEIwMkNEMi9PcS1BNnBmcG01VWxzenZCTTF1d2xjTFNl S2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09xLUE2cGZwbTVVbHN6dkJNMXV3bGNMU2VLYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NEYwNi83NkUxQzQ3RTFEOTUxMUUyQkU1OTVFN0QwOEIwMkNEMi9PcS1BNnBmcG01 VWxzenZCTTF1d2xjTFNlS2MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEA0P9ganUh8Ep8QWgWB5kIlwi4Ucp+slyBNCw041mx4apqgbJ+kb9SPUfevzQl ZRvLHY0ZRKnRcAJnq6R22MhmFOJ9IZyKIqGod9KTOUELT9bLS7aXo+8Q260d6Ufl opb4YfwOSNDenYKQx+qbdOcYIyArftta4thWsL7ilfSblcao9QV15GOu2r1brymH 8AQZA9+wt2bfKBZFjL/l/kAwNmLjenn1YCc6W8FysFMxkPL+F13N4zMAvk2wJrp2 0GxCrR7tPzPr8qwV8clLmiG8gZGwTKqEBEI1yPEPinSkjJ7KOaRlDE3ED3n+OflK GuN5cNq3yJKNIjvkLbd2KyQehw== -----END CERTIFICATE-----Generated at Sun Apr 19 09:45:11 2026 by rpki-client