$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC225/499FDF908E5511E980D09A42C4F9AE02/2OL6sVCi_VePZ-GbApZTmzdSyak.mft File: 2OL6sVCi_VePZ-GbApZTmzdSyak.mft (raw, json) Hash identifier: WyOJXCUyQZwPwES/bDG1O4PqEwn2uyXBa8NHGwihTXs= Subject key identifier: 20:11:6D:11:7C:D0:F9:00:AD:EF:52:A3:58:BB:C3:0B:65:B7:2A:9F Authority key identifier: D8:E2:FA:B1:50:A2:FD:57:8F:67:E1:9B:02:96:53:9B:37:52:C9:A9 Certificate issuer: /CN=A91EC225/serialNumber=D8E2FAB150A2FD578F67E19B0296539B3752C9A9 Certificate serial: 0F57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2OL6sVCi_VePZ-GbApZTmzdSyak.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EC225/499FDF908E5511E980D09A42C4F9AE02/2OL6sVCi_VePZ-GbApZTmzdSyak.mft Manifest number: 0F4D Signing time: Thu 16 Apr 2026 17:29:17 +0000 Manifest this update: Thu 16 Apr 2026 17:29:17 +0000 Manifest next update: Thu 23 Apr 2026 17:29:17 +0000 Files and hashes: 1: 2OL6sVCi_VePZ-GbApZTmzdSyak.crl (hash: PhqjsgMFkeHl8WGwWAz/uVrR06MPEA27kN8rsRZ4w8E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EC225/499FDF908E5511E980D09A42C4F9AE02/2OL6sVCi_VePZ-GbApZTmzdSyak.crl rsync://rpki.apnic.net/member_repository/A91EC225/499FDF908E5511E980D09A42C4F9AE02/2OL6sVCi_VePZ-GbApZTmzdSyak.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2OL6sVCi_VePZ-GbApZTmzdSyak.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 17:29:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3927 (0xf57) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EC225, serialNumber=D8E2FAB150A2FD578F67E19B0296539B3752C9A9 Validity Not Before: Apr 16 17:29:17 2026 GMT Not After : Apr 23 17:29:17 2026 GMT Subject: CN=69e11c6d-93fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:e9:7b:7b:1a:50:63:c6:f7:b6:2c:c3:92:d5: 1d:7a:93:82:05:b6:37:70:cf:49:23:4d:a6:a4:87: 82:b1:8d:11:e1:0b:07:02:a9:08:00:f9:8a:12:2c: 02:8a:2c:33:9e:5c:25:9e:55:cf:f5:36:ac:5a:31: 0d:cb:85:f1:b9:d6:df:c8:e3:60:8b:b7:b9:50:14: 33:e5:4d:5b:a8:7c:0a:15:4e:f9:d7:72:54:4e:ba: 0f:e4:13:86:b4:75:ce:da:82:dc:92:64:dc:f6:f9: 9c:1a:74:36:7e:fb:f5:90:8f:f7:b7:b9:75:f0:b0: d4:59:0f:13:16:67:ab:2f:20:22:9f:cb:53:a3:44: f1:a0:a7:45:41:13:25:9c:ef:fb:7b:c8:67:08:f6: ab:12:c1:03:c7:a0:7d:a6:0d:f2:cc:74:5c:de:6f: 09:b7:06:d1:cb:48:d5:af:39:eb:5c:64:05:49:90: ae:5a:ea:02:ad:df:11:33:be:63:7e:b0:20:91:6c: 91:1e:f5:6d:c7:a2:84:a8:af:19:c5:07:28:97:5b: 7f:8b:99:37:51:c0:51:52:81:bd:52:72:07:84:dd: 99:51:e0:de:f6:dc:15:35:4f:8b:d5:b0:9d:fc:53: 3c:57:16:0f:52:48:6c:20:51:09:41:6b:a5:d6:52: 84:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:11:6D:11:7C:D0:F9:00:AD:EF:52:A3:58:BB:C3:0B:65:B7:2A:9F X509v3 Authority Key Identifier: keyid:D8:E2:FA:B1:50:A2:FD:57:8F:67:E1:9B:02:96:53:9B:37:52:C9:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EC225/499FDF908E5511E980D09A42C4F9AE02/2OL6sVCi_VePZ-GbApZTmzdSyak.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2OL6sVCi_VePZ-GbApZTmzdSyak.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC225/499FDF908E5511E980D09A42C4F9AE02/2OL6sVCi_VePZ-GbApZTmzdSyak.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:d8:3a:11:5e:40:d8:c3:43:65:a9:0d:d2:18:1b:d0:15:af: 56:0f:2c:42:8e:15:77:0d:32:d8:c1:cf:be:24:be:93:96:f2: 40:c3:17:41:f8:10:66:17:7d:b4:bc:69:7d:fb:8a:30:6e:6a: 6a:36:ce:3a:6a:ec:81:3d:7b:07:7e:1c:18:17:3d:e1:3c:8b: 01:0a:99:e9:18:2d:53:3f:ac:80:ab:f7:cb:ee:ef:62:d2:8c: 4b:d4:16:f0:ea:e7:ee:43:7c:f3:ca:e3:0a:2a:6e:4f:32:3d: 8e:9f:d3:e2:4d:e6:de:bf:1b:6c:7e:69:86:57:17:2b:5f:33: 5f:b1:ff:e0:3a:8c:b3:b1:bc:f0:4d:54:7f:a6:27:6e:f9:ac: b9:4b:11:63:19:0c:18:7a:21:b1:e3:8c:71:1f:ed:2b:ed:83: bd:aa:d2:da:e7:aa:21:e7:96:72:c1:c0:5f:6f:0b:83:30:9f: d4:71:09:16:70:0f:e9:4d:8e:e6:ca:a6:fd:c5:0b:a0:a5:99: d6:4a:a4:7b:a4:50:6d:ec:50:17:96:a2:7f:95:db:86:79:44: 1b:61:65:cb:d5:1d:fc:fa:83:48:98:05:1c:d2:fa:2d:d5:69: e7:52:68:11:a8:13:ad:0b:59:29:33:21:bc:68:58:58:0b:3b: ff:a0:9c:41 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICD1cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUMyMjUxMTAvBgNVBAUTKEQ4RTJGQUIxNTBBMkZENTc4RjY3RTE5QjAyOTY1MzlC Mzc1MkM5QTkwHhcNMjYwNDE2MTcyOTE3WhcNMjYwNDIzMTcyOTE3WjAYMRYwFAYD VQQDEw02OWUxMWM2ZC05M2ZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyel7expQY8b3tizDktUdepOCBbY3cM9JI02mpIeCsY0R4QsHAqkIAPmKEiwC iiwznlwlnlXP9TasWjENy4XxudbfyONgi7e5UBQz5U1bqHwKFU7513JUTroP5BOG tHXO2oLckmTc9vmcGnQ2fvv1kI/3t7l18LDUWQ8TFmerLyAin8tTo0TxoKdFQRMl nO/7e8hnCParEsEDx6B9pg3yzHRc3m8JtwbRy0jVrznrXGQFSZCuWuoCrd8RM75j frAgkWyRHvVtx6KEqK8ZxQcol1t/i5k3UcBRUoG9UnIHhN2ZUeDe9twVNU+L1bCd /FM8VxYPUkhsIFEJQWul1lKE+wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCARbRF8 0PkAre9So1i7wwtltyqfMB8GA1UdIwQYMBaAFNji+rFQov1Xj2fhmwKWU5s3Usmp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQzIyNS80OTlGREY5MDhF NTUxMUU5ODBEMDlBNDJDNEY5QUUwMi8yT0w2c1ZDaV9WZVBaLUdiQXBaVG16ZFN5 YWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJPTDZzVkNpX1ZlUFotR2JBcFpUbXpkU3lhay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QzIyNS80OTlGREY5MDhFNTUxMUU5ODBEMDlBNDJDNEY5QUUwMi8yT0w2c1ZDaV9W ZVBaLUdiQXBaVG16ZFN5YWsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAYdg6EV5A2MNDZakN0hgb0BWvVg8sQo4Vdw0y2MHPviS+k5byQMMXQfgQZhd9 tLxpffuKMG5qajbOOmrsgT17B34cGBc94TyLAQqZ6RgtUz+sgKv3y+7vYtKMS9QW 8Orn7kN888rjCipuTzI9jp/T4k3m3r8bbH5phlcXK18zX7H/4DqMs7G88E1Uf6Yn bvmsuUsRYxkMGHohseOMcR/tK+2DvarS2ueqIeeWcsHAX28LgzCf1HEJFnAP6U2O 5sqm/cULoKWZ1kqke6RQbexQF5aif5XbhnlEG2Fly9Ud/PqDSJgFHNL6LdVp51Jo EagTrQtZKTMhvGhYWAs7/6CcQQ== -----END CERTIFICATE-----Generated at Fri Apr 17 06:28:37 2026 by rpki-client