$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4834/51BEDFC4CC8D11EAAFFEDB36C4F9AE02/o1D687bxS8juGymW7tSOJwIOEIM.mft File: o1D687bxS8juGymW7tSOJwIOEIM.mft (raw, json) Hash identifier: Ow1Fr2//ikmeVseiiTTq/NVKuQozMurJvG8wvdOfed8= Subject key identifier: 43:A2:B1:C3:FD:36:50:11:57:C4:42:F6:C0:11:B4:64:61:6F:BC:CA Authority key identifier: A3:50:FA:F3:B6:F1:4B:C8:EE:1B:29:96:EE:D4:8E:27:02:0E:10:83 Certificate issuer: /CN=A91D4834/serialNumber=A350FAF3B6F14BC8EE1B2996EED48E27020E1083 Certificate serial: 0918 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1D687bxS8juGymW7tSOJwIOEIM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4834/51BEDFC4CC8D11EAAFFEDB36C4F9AE02/o1D687bxS8juGymW7tSOJwIOEIM.mft Manifest number: 08FA Signing time: Thu 16 Apr 2026 20:15:36 +0000 Manifest this update: Thu 16 Apr 2026 20:15:35 +0000 Manifest next update: Thu 23 Apr 2026 20:15:35 +0000 Files and hashes: 1: o1D687bxS8juGymW7tSOJwIOEIM.crl (hash: BzgO/IZ74fvb1RQtXWQAFCOvHp/HAtyWbUozdoot9og=) 2: ECE8975685D811F09A4FFA45C4F9AE02.roa (hash: fecuy51h04kA/93Fl9Jso7L2bJu10CuAwHp5PsU5FhA=) 3: C5E7AA2289A011F08D995D74C4F9AE02.roa (hash: O+J9NJa3UAiRFIsaF/1cDe44mda6RPgxat0aYJVT3MQ=) 4: D32DB3AE7FC111F0B3BEC06AC4F9AE02.roa (hash: e1E68Ho50ngwWh9r7dC17sN0VAiVWs7P5I7wOcaITiM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4834/51BEDFC4CC8D11EAAFFEDB36C4F9AE02/o1D687bxS8juGymW7tSOJwIOEIM.crl rsync://rpki.apnic.net/member_repository/A91D4834/51BEDFC4CC8D11EAAFFEDB36C4F9AE02/o1D687bxS8juGymW7tSOJwIOEIM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1D687bxS8juGymW7tSOJwIOEIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 20:15:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2328 (0x918) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4834, serialNumber=A350FAF3B6F14BC8EE1B2996EED48E27020E1083 Validity Not Before: Apr 16 20:15:35 2026 GMT Not After : Apr 23 20:15:35 2026 GMT Subject: CN=69e14367-40ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:d5:2a:15:63:56:21:0a:54:9e:f2:e5:64:32: d1:6b:b0:41:93:4b:80:da:87:9b:25:e2:fc:db:13: 90:b8:80:44:df:17:f6:ee:9f:db:7d:87:28:9a:ea: 85:c2:84:67:25:36:df:7e:10:b6:7d:88:5a:58:3c: 44:fc:58:82:75:a5:65:4e:fa:75:24:06:e0:99:ec: 73:be:f6:67:25:b6:0b:d8:29:3d:98:0d:de:cb:fe: 3c:76:83:a6:63:40:82:98:77:e2:1f:9b:fd:b6:1d: 11:25:87:e0:a2:74:d4:68:cd:ff:de:b0:55:6d:35: e8:f2:35:d5:f6:ba:45:bb:38:de:7d:dd:01:18:41: 58:8a:1d:cb:c3:dc:d3:09:b7:7e:53:30:53:5c:6b: 4c:0b:4f:b6:10:f4:fd:9d:58:71:cf:5e:e5:f2:30: 06:a7:09:7a:db:f0:fe:e7:f0:a7:db:e4:78:4f:bf: 4b:04:ef:4c:da:f9:8f:bd:bf:90:ef:b6:69:84:f1: 83:8d:b9:5f:08:29:ba:c3:84:cc:d9:a1:f5:2e:51: 66:59:8a:4d:aa:b5:69:e0:db:a9:28:5e:8c:78:83: 6a:46:4c:ab:37:7f:84:56:68:36:4e:eb:f9:83:be: cf:f2:e6:44:85:06:85:a2:11:de:f9:f6:cd:a4:05: 34:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:A2:B1:C3:FD:36:50:11:57:C4:42:F6:C0:11:B4:64:61:6F:BC:CA X509v3 Authority Key Identifier: keyid:A3:50:FA:F3:B6:F1:4B:C8:EE:1B:29:96:EE:D4:8E:27:02:0E:10:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4834/51BEDFC4CC8D11EAAFFEDB36C4F9AE02/o1D687bxS8juGymW7tSOJwIOEIM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1D687bxS8juGymW7tSOJwIOEIM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4834/51BEDFC4CC8D11EAAFFEDB36C4F9AE02/o1D687bxS8juGymW7tSOJwIOEIM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:d4:fd:c7:42:aa:63:10:3b:99:c3:95:c4:ed:4a:e8:3c:5d: 64:94:45:7c:11:b8:88:d3:cd:94:56:6b:b9:89:d4:b1:18:ad: b4:aa:d7:4c:1b:5c:a7:6d:7d:98:fb:27:fa:f8:bd:b0:f1:24: 9e:90:27:96:6d:cb:c7:d6:8e:16:3c:9f:38:8c:45:1e:9c:f5: be:58:05:ca:cd:ca:8d:a2:2b:43:9a:4e:61:b5:41:68:8d:05: 77:41:ba:ac:2a:27:fd:4a:26:04:56:fb:d7:ad:2d:b8:34:81: 65:9e:48:8e:a4:b7:f3:f8:0c:2c:5d:66:36:6f:06:31:a2:92: 81:89:e2:ae:e3:a6:d1:fd:ae:ef:38:e4:20:dc:cd:2b:91:c9: b2:ab:8c:f2:41:dd:05:71:4f:84:59:28:6d:94:28:85:50:39: d9:20:17:26:ef:e0:ca:6d:6d:a9:c6:b2:c3:93:43:68:51:8c: c6:db:95:fb:f8:da:54:4a:d7:81:24:2a:df:d1:b3:2d:b7:f4: 7f:ca:b9:53:17:5e:b4:4a:05:f4:ec:45:db:09:98:cc:5d:65: 0f:d3:3e:16:60:ba:0f:83:e5:02:d8:45:73:dc:b0:78:30:80: 86:60:09:bf:f8:cf:a9:dd:53:2c:ce:0a:08:08:7e:d1:92:f5: 66:a6:df:7b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCRgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ4MzQxMTAvBgNVBAUTKEEzNTBGQUYzQjZGMTRCQzhFRTFCMjk5NkVFRDQ4RTI3 MDIwRTEwODMwHhcNMjYwNDE2MjAxNTM1WhcNMjYwNDIzMjAxNTM1WjAYMRYwFAYD VQQDEw02OWUxNDM2Ny00MGVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0NUqFWNWIQpUnvLlZDLRa7BBk0uA2oebJeL82xOQuIBE3xf27p/bfYcomuqF woRnJTbffhC2fYhaWDxE/FiCdaVlTvp1JAbgmexzvvZnJbYL2Ck9mA3ey/48doOm Y0CCmHfiH5v9th0RJYfgonTUaM3/3rBVbTXo8jXV9rpFuzjefd0BGEFYih3Lw9zT Cbd+UzBTXGtMC0+2EPT9nVhxz17l8jAGpwl62/D+5/Cn2+R4T79LBO9M2vmPvb+Q 77ZphPGDjblfCCm6w4TM2aH1LlFmWYpNqrVp4NupKF6MeINqRkyrN3+EVmg2Tuv5 g77P8uZEhQaFohHe+fbNpAU06QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEOiscP9 NlARV8RC9sARtGRhb7zKMB8GA1UdIwQYMBaAFKNQ+vO28UvI7hsplu7UjicCDhCD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDgzNC81MUJFREZDNEND OEQxMUVBQUZGRURCMzZDNEY5QUUwMi9vMUQ2ODdieFM4anVHeW1XN3RTT0p3SU9F SU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL28xRDY4N2J4UzhqdUd5bVc3dFNPSndJT0VJTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDgzNC81MUJFREZDNENDOEQxMUVBQUZGRURCMzZDNEY5QUUwMi9vMUQ2ODdieFM4 anVHeW1XN3RTT0p3SU9FSU0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAetT9x0KqYxA7mcOVxO1K6DxdZJRFfBG4iNPNlFZruYnUsRittKrXTBtcp219 mPsn+vi9sPEknpAnlm3Lx9aOFjyfOIxFHpz1vlgFys3KjaIrQ5pOYbVBaI0Fd0G6 rCon/UomBFb7160tuDSBZZ5IjqS38/gMLF1mNm8GMaKSgYniruOm0f2u7zjkINzN K5HJsquM8kHdBXFPhFkobZQohVA52SAXJu/gym1tqcayw5NDaFGMxtuV+/jaVErX gSQq39GzLbf0f8q5UxdetEoF9OxF2wmYzF1lD9M+FmC6D4PlAthFc9yweDCAhmAJ v/jPqd1TLM4KCAh+0ZL1Zqbfew== -----END CERTIFICATE-----Generated at Fri Apr 17 06:55:46 2026 by rpki-client