$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7BC4/261D2830D50D11E9BAD6C226C4F9AE02/ovb2YTEslb8FoLUjCxNx1GIv1ic.mft File: ovb2YTEslb8FoLUjCxNx1GIv1ic.mft (raw, json) Hash identifier: zeChd2VeF3PCR+bLq9PS+3FhrjmJGXEVlr6drdDksis= Subject key identifier: 46:AA:30:01:58:B0:70:24:ED:59:2D:AB:19:51:43:25:29:8D:89:F6 Authority key identifier: A2:F6:F6:61:31:2C:95:BF:05:A0:B5:23:0B:13:71:D4:62:2F:D6:27 Certificate issuer: /CN=A91E7BC4/serialNumber=A2F6F661312C95BF05A0B5230B1371D4622FD627 Certificate serial: 0DEE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ovb2YTEslb8FoLUjCxNx1GIv1ic.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7BC4/261D2830D50D11E9BAD6C226C4F9AE02/ovb2YTEslb8FoLUjCxNx1GIv1ic.mft Manifest number: 0DE3 Signing time: Thu 16 Apr 2026 17:47:37 +0000 Manifest this update: Thu 16 Apr 2026 17:47:37 +0000 Manifest next update: Thu 23 Apr 2026 17:47:37 +0000 Files and hashes: 1: ovb2YTEslb8FoLUjCxNx1GIv1ic.crl (hash: 6Wf8nlATdhAlgvumeYAewEevYIWubLSYHjrC50SanSk=) 2: 05054224D8E411E9BEB7986DC4F9AE02.roa (hash: ob3kyKb+k6DfPg+34w85RGonL9slb2GFkKFVzFEICJQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7BC4/261D2830D50D11E9BAD6C226C4F9AE02/ovb2YTEslb8FoLUjCxNx1GIv1ic.crl rsync://rpki.apnic.net/member_repository/A91E7BC4/261D2830D50D11E9BAD6C226C4F9AE02/ovb2YTEslb8FoLUjCxNx1GIv1ic.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ovb2YTEslb8FoLUjCxNx1GIv1ic.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 17:47:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3566 (0xdee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7BC4, serialNumber=A2F6F661312C95BF05A0B5230B1371D4622FD627 Validity Not Before: Apr 16 17:47:37 2026 GMT Not After : Apr 23 17:47:37 2026 GMT Subject: CN=69e120b9-4cde Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:53:ec:4d:5d:f6:77:11:ac:34:0e:c3:08:30: c4:c6:d4:9f:8a:7e:59:a1:af:91:02:40:d4:b5:b9: 0b:50:74:d1:c6:37:ed:bc:bb:e5:2b:1e:e9:88:a2: b5:4b:56:14:17:9e:0f:65:5c:9d:41:eb:5b:2f:25: cd:3c:5b:3c:45:af:ce:3c:8f:74:66:f4:75:83:3e: 15:8a:cd:34:4c:57:6a:c0:bd:fa:1b:5b:36:da:90: 53:d3:7d:56:51:0f:4f:48:9e:a8:6f:52:3c:7e:96: d6:77:33:c5:4f:28:15:ca:5f:48:ea:a8:3c:54:c3: 45:3c:5d:d9:27:20:6f:f1:f1:ee:dc:31:ac:c6:ed: 7c:75:ad:22:cd:5d:dd:60:78:0e:ff:9a:e4:0e:99: 7b:36:b1:25:8c:8d:57:ff:61:9a:3f:fd:0a:1b:22: cf:55:fa:49:3e:8a:4c:8a:71:57:1b:66:8b:f0:6c: 4e:77:65:3b:84:f8:c4:66:71:cf:fe:1c:61:2d:7b: a9:f4:06:76:5b:cb:75:a9:2f:9e:d8:15:a3:52:4d: 6a:c2:47:43:35:40:0d:b0:e5:39:e0:ef:37:e2:ae: 81:ae:b0:4f:37:b0:de:83:a7:8a:9b:43:96:db:5c: d1:08:70:2c:19:fd:b9:25:48:bd:ac:77:8f:9a:bf: 3d:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:AA:30:01:58:B0:70:24:ED:59:2D:AB:19:51:43:25:29:8D:89:F6 X509v3 Authority Key Identifier: keyid:A2:F6:F6:61:31:2C:95:BF:05:A0:B5:23:0B:13:71:D4:62:2F:D6:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7BC4/261D2830D50D11E9BAD6C226C4F9AE02/ovb2YTEslb8FoLUjCxNx1GIv1ic.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ovb2YTEslb8FoLUjCxNx1GIv1ic.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7BC4/261D2830D50D11E9BAD6C226C4F9AE02/ovb2YTEslb8FoLUjCxNx1GIv1ic.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:67:14:d7:90:ea:22:93:2f:86:d6:05:b3:57:c5:d2:a4:81: a3:5b:ea:ad:7a:06:e0:68:23:2c:9a:50:7d:e8:55:e4:37:cc: 02:60:36:43:c8:6a:aa:85:e8:dc:b8:71:38:0b:e7:fa:55:02: dc:b5:46:3c:d5:da:5f:c3:33:69:ab:43:5a:9b:76:df:d8:16: b2:62:6a:8c:85:22:07:77:7f:ac:c5:e2:63:13:25:11:3b:bf: e8:6b:27:dd:b0:f3:ec:bf:13:af:94:c4:ea:a3:b4:59:82:31: e4:15:44:6d:03:70:6d:56:e9:7c:5b:e5:a9:fa:04:91:71:a2: 42:0a:ce:2f:ed:58:3f:87:54:e1:7b:31:9c:7e:43:b2:29:19: ec:0c:5f:7b:61:ce:ed:b5:02:81:76:a8:0e:b1:a4:e5:f4:9a: 22:8c:f2:cd:3d:8c:cf:e2:80:75:9e:1d:3b:72:d1:19:46:6b: bc:73:c4:34:e5:ae:03:c5:8c:46:f2:76:a5:7d:9d:b2:92:40: 21:52:a1:94:fc:d3:a8:de:4b:6b:15:55:df:80:e1:6e:9b:7f: 3c:29:43:70:e2:18:3c:0c:1d:56:b0:89:f6:f9:50:32:bf:88: d3:df:bf:9b:4e:1b:da:d7:0b:19:a7:a6:92:a8:d8:8e:b1:56: 29:db:f7:97 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDe4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTdCQzQxMTAvBgNVBAUTKEEyRjZGNjYxMzEyQzk1QkYwNUEwQjUyMzBCMTM3MUQ0 NjIyRkQ2MjcwHhcNMjYwNDE2MTc0NzM3WhcNMjYwNDIzMTc0NzM3WjAYMRYwFAYD VQQDEw02OWUxMjBiOS00Y2RlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2VPsTV32dxGsNA7DCDDExtSfin5Zoa+RAkDUtbkLUHTRxjftvLvlKx7piKK1 S1YUF54PZVydQetbLyXNPFs8Ra/OPI90ZvR1gz4Vis00TFdqwL36G1s22pBT031W UQ9PSJ6ob1I8fpbWdzPFTygVyl9I6qg8VMNFPF3ZJyBv8fHu3DGsxu18da0izV3d YHgO/5rkDpl7NrEljI1X/2GaP/0KGyLPVfpJPopMinFXG2aL8GxOd2U7hPjEZnHP /hxhLXup9AZ2W8t1qS+e2BWjUk1qwkdDNUANsOU54O834q6BrrBPN7Deg6eKm0OW 21zRCHAsGf25JUi9rHePmr898QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEaqMAFY sHAk7VktqxlRQyUpjYn2MB8GA1UdIwQYMBaAFKL29mExLJW/BaC1IwsTcdRiL9Yn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFN0JDNC8yNjFEMjgzMEQ1 MEQxMUU5QkFENkMyMjZDNEY5QUUwMi9vdmIyWVRFc2xiOEZvTFVqQ3hOeDFHSXYx aWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL292YjJZVEVzbGI4Rm9MVWpDeE54MUdJdjFpYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF N0JDNC8yNjFEMjgzMEQ1MEQxMUU5QkFENkMyMjZDNEY5QUUwMi9vdmIyWVRFc2xi OEZvTFVqQ3hOeDFHSXYxaWMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAHWcU15DqIpMvhtYFs1fF0qSBo1vqrXoG4GgjLJpQfehV5DfMAmA2Q8hqqoXo 3LhxOAvn+lUC3LVGPNXaX8MzaatDWpt239gWsmJqjIUiB3d/rMXiYxMlETu/6Gsn 3bDz7L8Tr5TE6qO0WYIx5BVEbQNwbVbpfFvlqfoEkXGiQgrOL+1YP4dU4XsxnH5D sikZ7Axfe2HO7bUCgXaoDrGk5fSaIozyzT2Mz+KAdZ4dO3LRGUZrvHPENOWuA8WM RvJ2pX2dspJAIVKhlPzTqN5LaxVV34Dhbpt/PClDcOIYPAwdVrCJ9vlQMr+I09+/ m04b2tcLGaemkqjYjrFWKdv3lw== -----END CERTIFICATE-----Generated at Fri Apr 17 12:03:09 2026 by rpki-client