$ rpki-client -vvf rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft File: oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft (raw, json) Hash identifier: 22jWSiLQuQSm3j0WTlqKZuILvhyufar1ZcQNbeArsJI= Subject key identifier: C0:F7:91:9D:79:68:6F:C6:93:02:5C:AC:EC:8B:9C:14:83:D2:DB:89 Authority key identifier: A0:7A:F0:CC:B2:98:35:CC:76:42:97:4B:AC:9E:15:02:B9:CF:82:D0 Certificate issuer: /CN=A91E29CB/serialNumber=A07AF0CCB29835CC7642974BAC9E1502B9CF82D0 Certificate serial: 0352 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oHrwzLKYNcx2QpdLrJ4VArnPgtA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft Manifest number: 033F Signing time: Fri 17 Apr 2026 00:56:39 +0000 Manifest this update: Fri 17 Apr 2026 00:56:39 +0000 Manifest next update: Fri 24 Apr 2026 00:56:39 +0000 Files and hashes: 1: oHrwzLKYNcx2QpdLrJ4VArnPgtA.crl (hash: qKWZ0S2MZ7aQT7KqdY07V9XULxpUus3WIOsRLBKvKaQ=) 2: C258B0D0E03C11EF991E147AC4F9AE02.roa (hash: X4W03lfAeMlljE4GAKwUtjHV/L977l42ii4F4eQTOn8=) 3: C08A3ED6E03C11EF991E147AC4F9AE02.roa (hash: sBJZeZ++/x7I1pXhx5Ucb2PyYvnG4JjYuOXlXA0qZVU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.crl rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oHrwzLKYNcx2QpdLrJ4VArnPgtA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 00:56:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 850 (0x352) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E29CB, serialNumber=A07AF0CCB29835CC7642974BAC9E1502B9CF82D0 Validity Not Before: Apr 17 00:56:39 2026 GMT Not After : Apr 24 00:56:39 2026 GMT Subject: CN=69e18547-4ce0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:81:e8:d6:27:78:f2:fe:a5:61:09:81:ba:59: b3:da:f8:28:6e:3b:ba:8a:4c:aa:1a:2a:59:7e:bf: 0e:e4:f4:ab:fa:d9:4b:9d:d4:1a:56:6a:3d:ee:22: 5d:4a:0c:50:a7:ad:35:77:ef:e7:50:63:0d:e1:49: ff:cb:e8:45:79:e2:1c:8e:9d:3e:2d:ea:dd:02:d0: 6c:9f:be:80:1c:06:4c:48:12:a7:13:e6:50:09:ce: 68:54:bd:19:df:8d:1c:8a:83:54:99:82:37:48:8e: aa:56:ad:72:8c:91:48:fc:fc:36:1c:b9:a8:2b:7f: 76:15:a1:fd:f3:a4:f3:1b:68:7d:3c:12:02:1f:01: 5b:c3:1a:b9:50:7c:5d:c3:db:67:40:91:1e:dc:08: fd:b0:bc:26:5f:f5:61:bd:06:41:b0:05:5f:26:16: 3a:f7:65:44:a0:d0:5a:4e:1d:a5:e4:f5:f2:3d:eb: 20:08:4d:22:75:7a:83:2c:7e:79:79:c5:91:00:6f: ab:65:93:b9:1b:f1:cc:c7:67:71:31:29:b4:b1:2f: 50:43:80:cd:1b:73:6c:6a:0f:8a:72:22:76:a0:27: bc:03:74:9c:b1:c1:f9:41:b3:b2:bd:ff:c1:f9:b0: 59:82:92:19:73:de:70:b4:44:6f:cd:02:16:32:98: a8:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:F7:91:9D:79:68:6F:C6:93:02:5C:AC:EC:8B:9C:14:83:D2:DB:89 X509v3 Authority Key Identifier: keyid:A0:7A:F0:CC:B2:98:35:CC:76:42:97:4B:AC:9E:15:02:B9:CF:82:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oHrwzLKYNcx2QpdLrJ4VArnPgtA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:84:65:62:5b:9b:d5:1b:e4:6f:ee:5d:43:5a:5a:50:7e:4a: 35:64:65:6f:17:ae:62:f9:04:c7:1c:93:d9:dd:93:8b:e1:58: 92:83:8b:b0:aa:11:c0:d8:00:bc:68:d5:fd:39:c6:92:19:c6: 09:1a:db:6d:5d:2f:5c:85:88:24:bd:45:2a:8e:27:47:55:3d: 92:e7:53:74:a5:af:b7:60:34:cf:74:8b:94:a9:d1:77:c3:79: 99:b1:60:63:6e:99:bd:83:43:d2:31:f4:4b:3a:23:d4:7e:93: a2:cb:2b:4c:d4:eb:7e:e1:c5:8f:1e:98:d3:49:50:fa:e5:c8: 98:2e:cb:a2:13:34:1d:d1:72:31:41:88:5f:70:47:26:94:c4: f2:d4:a4:c4:5c:45:25:81:5a:b4:0d:24:1b:01:fd:81:cd:45: d1:8f:73:0f:34:e0:8f:12:95:8f:bf:69:f9:96:fc:76:af:6a: 3a:3b:37:32:4d:e5:ef:f8:e5:6b:1c:f3:82:3f:9d:3b:85:53: 37:7a:f9:76:f0:e7:12:5f:04:aa:17:33:d0:d7:59:9f:4b:41: 2d:a4:13:17:93:d2:44:a2:e6:c3:7c:b7:a1:69:56:ac:18:a4: 90:a4:d2:8e:92:20:b3:a7:e0:74:4f:2a:9e:91:c8:66:a2:e0: 30:d0:4a:eb -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA1IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI5Q0IxMTAvBgNVBAUTKEEwN0FGMENDQjI5ODM1Q0M3NjQyOTc0QkFDOUUxNTAy QjlDRjgyRDAwHhcNMjYwNDE3MDA1NjM5WhcNMjYwNDI0MDA1NjM5WjAYMRYwFAYD VQQDEw02OWUxODU0Ny00Y2UwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvYHo1id48v6lYQmBulmz2vgobju6ikyqGipZfr8O5PSr+tlLndQaVmo97iJd SgxQp601d+/nUGMN4Un/y+hFeeIcjp0+LerdAtBsn76AHAZMSBKnE+ZQCc5oVL0Z 340cioNUmYI3SI6qVq1yjJFI/Pw2HLmoK392FaH986TzG2h9PBICHwFbwxq5UHxd w9tnQJEe3Aj9sLwmX/VhvQZBsAVfJhY692VEoNBaTh2l5PXyPesgCE0idXqDLH55 ecWRAG+rZZO5G/HMx2dxMSm0sS9QQ4DNG3Nsag+KciJ2oCe8A3ScscH5QbOyvf/B +bBZgpIZc95wtERvzQIWMpioawIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMD3kZ15 aG/GkwJcrOyLnBSD0tuJMB8GA1UdIwQYMBaAFKB68MyymDXMdkKXS6yeFQK5z4LQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjlDQi8xRjkwMkIwRTA1 QUYxMUVEQTcxNzY0MkJDNEY5QUUwMi9vSHJ3ekxLWU5jeDJRcGRMcko0VkFyblBn dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29Icnd6TEtZTmN4MlFwZExySjRWQXJuUGd0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MjlDQi8xRjkwMkIwRTA1QUYxMUVEQTcxNzY0MkJDNEY5QUUwMi9vSHJ3ekxLWU5j eDJRcGRMcko0VkFyblBndEEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAjoRlYlub1Rvkb+5dQ1paUH5KNWRlbxeuYvkExxyT2d2Ti+FYkoOLsKoRwNgA vGjV/TnGkhnGCRrbbV0vXIWIJL1FKo4nR1U9kudTdKWvt2A0z3SLlKnRd8N5mbFg Y26ZvYND0jH0Szoj1H6TossrTNTrfuHFjx6Y00lQ+uXImC7LohM0HdFyMUGIX3BH JpTE8tSkxFxFJYFatA0kGwH9gc1F0Y9zDzTgjxKVj79p+Zb8dq9qOjs3Mk3l7/jl axzzgj+dO4VTN3r5dvDnEl8Eqhcz0NdZn0tBLaQTF5PSRKLmw3y3oWlWrBikkKTS jpIgs6fgdE8qnpHIZqLgMNBK6w== -----END CERTIFICATE-----Generated at Fri Apr 17 14:45:08 2026 by rpki-client