$ rpki-client -vvf rpki.apnic.net/member_repository/A91CAB4E/2CA47066997011E8861DD057C4F9AE02/OhSUJb4yhdYRSwH2wvyIoXr_S-w.mft File: OhSUJb4yhdYRSwH2wvyIoXr_S-w.mft (raw, json) Hash identifier: uriFcZ+fDzGQEZhW1bvOR0qdt7MxN4T747Zdou9EYak= Subject key identifier: 71:A5:43:8E:82:B4:71:AA:D5:9C:F6:89:5D:88:63:3C:21:7B:78:E4 Authority key identifier: 3A:14:94:25:BE:32:85:D6:11:4B:01:F6:C2:FC:88:A1:7A:FF:4B:EC Certificate issuer: /CN=A91CAB4E/serialNumber=3A149425BE3285D6114B01F6C2FC88A17AFF4BEC Certificate serial: 1436 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhSUJb4yhdYRSwH2wvyIoXr_S-w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CAB4E/2CA47066997011E8861DD057C4F9AE02/OhSUJb4yhdYRSwH2wvyIoXr_S-w.mft Manifest number: 142A Signing time: Thu 16 Apr 2026 16:49:57 +0000 Manifest this update: Thu 16 Apr 2026 16:49:57 +0000 Manifest next update: Thu 23 Apr 2026 16:49:57 +0000 Files and hashes: 1: OhSUJb4yhdYRSwH2wvyIoXr_S-w.crl (hash: QBMTjO9nKGE1V/pjVrSFPUNFvCLT3m/oreDh3t+IUis=) 2: 7F662C72997011E8B0FDEF57C4F9AE02.roa (hash: 3poz9WeE/VQCro0QqBaX5PdACtIqSQyu6Jy9OGfa5do=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CAB4E/2CA47066997011E8861DD057C4F9AE02/OhSUJb4yhdYRSwH2wvyIoXr_S-w.crl rsync://rpki.apnic.net/member_repository/A91CAB4E/2CA47066997011E8861DD057C4F9AE02/OhSUJb4yhdYRSwH2wvyIoXr_S-w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhSUJb4yhdYRSwH2wvyIoXr_S-w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 16:49:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5174 (0x1436) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CAB4E, serialNumber=3A149425BE3285D6114B01F6C2FC88A17AFF4BEC Validity Not Before: Apr 16 16:49:57 2026 GMT Not After : Apr 23 16:49:57 2026 GMT Subject: CN=69e11335-5067 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:25:cf:c1:5a:a4:bd:fc:cf:57:43:87:2e:29: 3f:ac:ec:b8:e7:37:81:da:48:fa:47:a4:5d:d2:ba: 08:c0:e7:64:04:7b:8d:88:bd:23:85:40:76:96:83: 6e:63:dc:3e:bf:05:6f:30:86:60:b6:82:90:c8:66: 70:aa:4f:39:71:bb:2b:92:5e:b5:d8:8c:0f:f5:b4: 13:ed:1c:ce:22:13:ed:fe:8c:03:46:ab:11:92:d3: 85:4c:ec:72:f1:aa:28:e5:16:5b:8e:6a:01:a5:dc: 09:de:2d:8e:4b:95:24:b1:7e:56:58:16:c0:b9:1f: cd:6f:6a:18:bf:3d:6a:f1:fe:d7:7b:de:2c:70:8f: 00:98:64:c6:72:79:fd:c4:eb:a4:fe:54:d4:d5:fe: ce:f5:58:24:7f:05:eb:38:bf:7f:10:82:e7:58:f6: e2:5d:87:04:4f:9f:c8:0c:c4:da:3f:68:58:dc:9d: 84:e2:51:e9:41:77:15:fe:7d:d4:7a:c9:0a:37:b9: b6:29:aa:71:c8:dc:9d:e2:1c:fc:a5:e6:60:b5:56: 5f:32:7a:67:4b:f5:01:c7:83:52:3a:9f:cf:f1:e3: 84:0b:f2:b5:fe:70:ab:15:25:01:c6:10:07:64:cb: bb:dc:03:78:07:f8:76:79:69:af:05:84:ed:af:b6: e6:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:A5:43:8E:82:B4:71:AA:D5:9C:F6:89:5D:88:63:3C:21:7B:78:E4 X509v3 Authority Key Identifier: keyid:3A:14:94:25:BE:32:85:D6:11:4B:01:F6:C2:FC:88:A1:7A:FF:4B:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CAB4E/2CA47066997011E8861DD057C4F9AE02/OhSUJb4yhdYRSwH2wvyIoXr_S-w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhSUJb4yhdYRSwH2wvyIoXr_S-w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CAB4E/2CA47066997011E8861DD057C4F9AE02/OhSUJb4yhdYRSwH2wvyIoXr_S-w.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:df:1e:e3:d8:a8:a0:c4:3f:cb:4f:0b:09:48:09:ed:08:0a: f6:f5:c1:36:47:2b:67:2c:47:d5:2c:fc:52:b5:8f:a5:8b:fe: bb:0d:0a:24:59:73:38:36:ee:4f:34:bb:c6:c6:d1:25:3b:22: cb:f1:c1:ba:61:c9:d7:2b:7a:3c:a9:b4:de:e5:f2:fd:22:4c: 2d:f0:e4:c6:0a:79:31:4c:fc:38:47:95:de:cb:75:df:dd:8a: 11:4e:92:50:62:d0:73:e1:1c:8a:ba:58:50:32:fc:fc:76:37: e2:af:32:f7:aa:1f:24:d1:b4:ec:e0:cb:82:ae:79:15:4c:b7: c5:c5:a6:61:f1:69:6c:f6:a0:d3:e3:39:e3:c8:00:b7:1b:c0: 45:7c:80:fa:79:32:99:57:69:35:d3:d1:fa:8c:4d:a0:60:a6: 68:0f:50:f5:37:6c:0b:37:66:4d:f0:cc:87:0d:ba:e9:60:94: 2f:91:83:6a:dd:31:20:bf:8b:2c:94:a1:0c:fe:66:4b:86:30: f5:6e:fa:69:a2:50:bb:ff:a6:a3:8f:10:97:2b:c8:ff:c8:4b: c1:4a:7b:61:9d:6f:03:6c:3c:6c:52:47:11:c3:7a:d9:84:bb: f5:42:08:17:b9:de:97:92:a5:4d:ec:e1:2b:ce:6f:17:b8:62: 55:43:3e:5b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICFDYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0FCNEUxMTAvBgNVBAUTKDNBMTQ5NDI1QkUzMjg1RDYxMTRCMDFGNkMyRkM4OEEx N0FGRjRCRUMwHhcNMjYwNDE2MTY0OTU3WhcNMjYwNDIzMTY0OTU3WjAYMRYwFAYD VQQDEw02OWUxMTMzNS01MDY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6iXPwVqkvfzPV0OHLik/rOy45zeB2kj6R6Rd0roIwOdkBHuNiL0jhUB2loNu Y9w+vwVvMIZgtoKQyGZwqk85cbsrkl612IwP9bQT7RzOIhPt/owDRqsRktOFTOxy 8aoo5RZbjmoBpdwJ3i2OS5UksX5WWBbAuR/Nb2oYvz1q8f7Xe94scI8AmGTGcnn9 xOuk/lTU1f7O9VgkfwXrOL9/EILnWPbiXYcET5/IDMTaP2hY3J2E4lHpQXcV/n3U eskKN7m2KapxyNyd4hz8peZgtVZfMnpnS/UBx4NSOp/P8eOEC/K1/nCrFSUBxhAH ZMu73AN4B/h2eWmvBYTtr7bmpwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHGlQ46C tHGq1Zz2iV2IYzwhe3jkMB8GA1UdIwQYMBaAFDoUlCW+MoXWEUsB9sL8iKF6/0vs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQUI0RS8yQ0E0NzA2Njk5 NzAxMUU4ODYxREQwNTdDNEY5QUUwMi9PaFNVSmI0eWhkWVJTd0gyd3Z5SW9Ycl9T LXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09oU1VKYjR5aGRZUlN3SDJ3dnlJb1hyX1Mtdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QUI0RS8yQ0E0NzA2Njk5NzAxMUU4ODYxREQwNTdDNEY5QUUwMi9PaFNVSmI0eWhk WVJTd0gyd3Z5SW9Ycl9TLXcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAJ98e49iooMQ/y08LCUgJ7QgK9vXBNkcrZyxH1Sz8UrWPpYv+uw0KJFlzODbu TzS7xsbRJTsiy/HBumHJ1yt6PKm03uXy/SJMLfDkxgp5MUz8OEeV3st1392KEU6S UGLQc+EcirpYUDL8/HY34q8y96ofJNG07ODLgq55FUy3xcWmYfFpbPag0+M548gA txvARXyA+nkymVdpNdPR+oxNoGCmaA9Q9TdsCzdmTfDMhw266WCUL5GDat0xIL+L LJShDP5mS4Yw9W76aaJQu/+mo48QlyvI/8hLwUp7YZ1vA2w8bFJHEcN62YS79UII F7nel5KlTezhK85vF7hiVUM+Ww== -----END CERTIFICATE-----Generated at Fri Apr 17 21:04:58 2026 by rpki-client