$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6856/2DDB426E486311EEBC0BD213C4F9AE02/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.mft File: OmgjoQ8Dv6ykBo0zmERPNkEIVIU.mft (raw, json) Hash identifier: mI+PxrBJ0JQR8b6IH+dmeYLovuA1+rudlL7/Aowg0b4= Subject key identifier: 36:FD:69:F6:47:49:B2:19:9A:B6:E9:FD:50:D5:B7:C9:9C:E9:C2:7D Authority key identifier: 3A:68:23:A1:0F:03:BF:AC:A4:06:8D:33:98:44:4F:36:41:08:54:85 Certificate issuer: /CN=A91E6856/serialNumber=3A6823A10F03BFACA4068D3398444F3641085485 Certificate serial: 01F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6856/2DDB426E486311EEBC0BD213C4F9AE02/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.mft Manifest number: 01F3 Signing time: Thu 16 Apr 2026 17:32:55 +0000 Manifest this update: Thu 16 Apr 2026 17:32:54 +0000 Manifest next update: Thu 23 Apr 2026 17:32:54 +0000 Files and hashes: 1: OmgjoQ8Dv6ykBo0zmERPNkEIVIU.crl (hash: 9touBrG6zQ7CULaw+iBzbGaaVptyIyrJigYvPlW4CNw=) 2: B2C9B10A881311EE8CFB5C43C4F9AE02.roa (hash: oB4kxasRgRq+GKJ70NUc/sJMH3q5nYfTRjnemmCHnis=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6856/2DDB426E486311EEBC0BD213C4F9AE02/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.crl rsync://rpki.apnic.net/member_repository/A91E6856/2DDB426E486311EEBC0BD213C4F9AE02/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 17:32:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 505 (0x1f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6856, serialNumber=3A6823A10F03BFACA4068D3398444F3641085485 Validity Not Before: Apr 16 17:32:54 2026 GMT Not After : Apr 23 17:32:54 2026 GMT Subject: CN=69e11d47-a7c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:26:c3:61:6d:86:a0:bf:60:6f:a3:fb:57:b1: 54:31:38:09:e2:b5:2e:fa:a6:2c:db:b2:a3:7a:dd: 56:48:df:27:5f:59:67:63:41:a6:9f:98:21:ea:8a: 05:62:50:cb:5b:e4:23:90:de:ab:c8:1f:a8:17:a4: f7:fa:f4:7d:ab:33:54:5e:18:a6:02:2d:1d:e2:aa: c1:be:76:71:95:88:89:1b:6d:e4:97:c2:03:ed:f0: e7:0d:b3:c1:8d:76:db:13:33:24:b1:5d:f4:0b:b2: e4:26:be:2a:d8:6c:1d:11:d5:ac:f0:9e:f8:92:61: 94:f2:88:f8:b6:65:b4:36:72:f3:c9:d5:aa:30:7d: 27:eb:d1:d0:12:e6:e7:96:a0:af:d8:c0:75:1f:c4: 26:f7:2f:50:9b:5a:9c:82:11:a3:80:9f:e0:01:17: 96:26:32:20:fe:0e:46:14:ae:75:72:aa:d5:59:f1: d8:eb:36:22:c5:e1:a2:30:60:f9:6d:6b:53:25:a1: af:b9:d7:9f:7d:d9:e8:72:54:a5:ef:be:4d:6a:51: da:5a:d7:ab:b5:fa:4b:ad:14:c6:63:39:47:bd:09: cb:17:e2:a8:cd:fc:97:15:76:38:03:78:e2:8d:97: 7a:b9:0c:47:80:ae:90:02:b3:33:65:00:1f:d4:e9: 91:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:FD:69:F6:47:49:B2:19:9A:B6:E9:FD:50:D5:B7:C9:9C:E9:C2:7D X509v3 Authority Key Identifier: keyid:3A:68:23:A1:0F:03:BF:AC:A4:06:8D:33:98:44:4F:36:41:08:54:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6856/2DDB426E486311EEBC0BD213C4F9AE02/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6856/2DDB426E486311EEBC0BD213C4F9AE02/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:16:19:d0:68:d5:3a:39:16:d6:e5:2f:d4:ae:3e:dd:e7:60: 2f:43:61:60:62:7d:ee:84:7c:4a:68:a2:81:71:95:9b:5e:bc: 30:ca:04:2a:96:a0:24:d8:66:3e:09:a5:7b:89:e8:cf:eb:57: e3:70:62:a5:c5:b8:b4:ee:2a:56:a1:e1:8e:68:87:e9:89:ec: 61:57:ab:2e:d9:54:19:12:63:0f:c1:90:c4:2e:77:3b:38:a3: ba:8b:1d:e6:7d:44:26:a0:dd:e2:c8:fe:ff:44:ea:29:b6:ef: 1a:97:6a:d2:38:e2:d2:72:fe:84:83:e3:a1:f1:cf:bd:d8:3e: cd:e6:e4:c1:2e:c7:75:32:37:ab:d3:8a:ef:2e:c3:65:4a:1b: cf:51:14:96:c8:97:3a:c6:48:ad:9f:2f:bb:7c:02:5d:b0:90: cf:45:61:01:07:20:20:73:4c:bf:52:97:96:fa:95:a0:b5:e9: 6d:42:6f:66:f4:da:b0:f9:62:a4:08:39:20:fa:9f:8b:4e:e5: fd:51:b5:35:82:3a:e3:4b:73:7a:3d:17:bb:98:5f:3b:ab:77: a5:95:5a:8f:b6:37:c4:25:36:04:40:0e:85:84:18:f5:cd:b1: c5:31:bf:b7:5b:de:dd:25:20:58:f8:fc:c0:08:39:28:eb:36: 49:e3:b3:4c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAfkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTY4NTYxMTAvBgNVBAUTKDNBNjgyM0ExMEYwM0JGQUNBNDA2OEQzMzk4NDQ0RjM2 NDEwODU0ODUwHhcNMjYwNDE2MTczMjU0WhcNMjYwNDIzMTczMjU0WjAYMRYwFAYD VQQDEw02OWUxMWQ0Ny1hN2M2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwybDYW2GoL9gb6P7V7FUMTgJ4rUu+qYs27Kjet1WSN8nX1lnY0Gmn5gh6ooF YlDLW+QjkN6ryB+oF6T3+vR9qzNUXhimAi0d4qrBvnZxlYiJG23kl8ID7fDnDbPB jXbbEzMksV30C7LkJr4q2GwdEdWs8J74kmGU8oj4tmW0NnLzydWqMH0n69HQEubn lqCv2MB1H8Qm9y9Qm1qcghGjgJ/gAReWJjIg/g5GFK51cqrVWfHY6zYixeGiMGD5 bWtTJaGvudeffdnoclSl775NalHaWtertfpLrRTGYzlHvQnLF+KozfyXFXY4A3ji jZd6uQxHgK6QArMzZQAf1OmR2wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDb9afZH SbIZmrbp/VDVt8mc6cJ9MB8GA1UdIwQYMBaAFDpoI6EPA7+spAaNM5hETzZBCFSF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjg1Ni8yRERCNDI2RTQ4 NjMxMUVFQkMwQkQyMTNDNEY5QUUwMi9PbWdqb1E4RHY2eWtCbzB6bUVSUE5rRUlW SVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL09tZ2pvUThEdjZ5a0JvMHptRVJQTmtFSVZJVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF Njg1Ni8yRERCNDI2RTQ4NjMxMUVFQkMwQkQyMTNDNEY5QUUwMi9PbWdqb1E4RHY2 eWtCbzB6bUVSUE5rRUlWSVUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAIhYZ0GjVOjkW1uUv1K4+3edgL0NhYGJ97oR8SmiigXGVm168MMoEKpagJNhm Pgmle4noz+tX43BipcW4tO4qVqHhjmiH6YnsYVerLtlUGRJjD8GQxC53Ozijuosd 5n1EJqDd4sj+/0TqKbbvGpdq0jji0nL+hIPjofHPvdg+zebkwS7HdTI3q9OK7y7D ZUobz1EUlsiXOsZIrZ8vu3wCXbCQz0VhAQcgIHNMv1KXlvqVoLXpbUJvZvTasPli pAg5IPqfi07l/VG1NYI640tzej0Xu5hfO6t3pZVaj7Y3xCU2BEAOhYQY9c2xxTG/ t1ve3SUgWPj8wAg5KOs2SeOzTA== -----END CERTIFICATE-----Generated at Fri Apr 17 19:30:54 2026 by rpki-client