$ rpki-client -vvf rpki.apnic.net/member_repository/A91EDF00/3AE0034A4E7E11EC9E298429C4F9AE02/ozzKgbVeBGVdG1p-LOaIw-RvxTA.mft File: ozzKgbVeBGVdG1p-LOaIw-RvxTA.mft (raw, json) Hash identifier: YKKtaQIeJv7Fa5N+BL9WoF6gkjCYdQ1FhFDQ8uPL3UY= Subject key identifier: DE:4F:7E:78:3C:22:3E:E4:96:B8:1B:9A:AF:67:97:2C:01:35:7E:EF Authority key identifier: A3:3C:CA:81:B5:5E:04:65:5D:1B:5A:7E:2C:E6:88:C3:E4:6F:C5:30 Certificate issuer: /CN=A91EDF00/serialNumber=A33CCA81B55E04655D1B5A7E2CE688C3E46FC530 Certificate serial: 0515 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ozzKgbVeBGVdG1p-LOaIw-RvxTA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EDF00/3AE0034A4E7E11EC9E298429C4F9AE02/ozzKgbVeBGVdG1p-LOaIw-RvxTA.mft Manifest number: 050D Signing time: Thu 16 Apr 2026 23:33:39 +0000 Manifest this update: Thu 16 Apr 2026 23:33:38 +0000 Manifest next update: Thu 23 Apr 2026 23:33:38 +0000 Files and hashes: 1: ozzKgbVeBGVdG1p-LOaIw-RvxTA.crl (hash: hOsUNfJg20NKDRGl3sWBhRYljdcJU53wZgPUC62V1V4=) 2: 1B97FEB84E8111ECA3589560C4F9AE02.roa (hash: eI8p6HpzXJysOZ1MQfoUzQgPrBgjI04EZmU1r+INUvU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EDF00/3AE0034A4E7E11EC9E298429C4F9AE02/ozzKgbVeBGVdG1p-LOaIw-RvxTA.crl rsync://rpki.apnic.net/member_repository/A91EDF00/3AE0034A4E7E11EC9E298429C4F9AE02/ozzKgbVeBGVdG1p-LOaIw-RvxTA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ozzKgbVeBGVdG1p-LOaIw-RvxTA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 23:33:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1301 (0x515) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EDF00, serialNumber=A33CCA81B55E04655D1B5A7E2CE688C3E46FC530 Validity Not Before: Apr 16 23:33:38 2026 GMT Not After : Apr 23 23:33:38 2026 GMT Subject: CN=69e171d2-e95e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:2d:97:28:1a:84:76:b9:b5:64:c3:62:8a:e9: ed:8a:04:a7:01:e6:5e:8c:6f:0e:e9:64:f8:c1:f7: f7:a1:df:da:60:5d:13:61:61:da:4a:70:af:ad:f2: 62:d2:bb:58:ce:f1:ad:23:ea:e7:5a:d5:52:e4:5f: 74:ea:dd:7a:76:4c:45:18:53:f4:be:77:09:3e:be: 1d:79:44:a7:2e:49:8c:26:a7:92:e4:21:56:c6:57: b1:82:5d:43:97:91:03:e4:72:87:32:42:61:0b:fb: 05:e3:50:be:49:62:94:ee:0b:10:fe:5a:ce:21:19: c9:43:da:00:89:bd:79:1c:20:ea:2e:8b:0c:e7:9f: 78:2c:12:fc:9b:ff:56:a4:96:09:36:8b:e0:e4:66: 66:b2:5f:d4:9e:0e:28:2d:96:cf:83:b9:8a:16:8b: 4d:03:6d:57:26:a9:95:a4:6d:9c:47:3e:71:e9:5e: 64:43:ca:82:0a:d2:41:80:f5:13:cf:80:9a:aa:6a: 9f:d8:1c:65:1e:07:03:f3:a4:60:46:1b:fd:6c:19: 90:f7:ef:98:18:c7:87:8b:fe:8c:b0:fa:4e:44:81: 42:82:8a:8d:0c:5a:ec:9b:a2:5c:b7:e5:95:be:a8: cc:26:8a:a2:bc:f7:f3:4f:6e:38:e2:cd:c8:ae:9d: 06:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:4F:7E:78:3C:22:3E:E4:96:B8:1B:9A:AF:67:97:2C:01:35:7E:EF X509v3 Authority Key Identifier: keyid:A3:3C:CA:81:B5:5E:04:65:5D:1B:5A:7E:2C:E6:88:C3:E4:6F:C5:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EDF00/3AE0034A4E7E11EC9E298429C4F9AE02/ozzKgbVeBGVdG1p-LOaIw-RvxTA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ozzKgbVeBGVdG1p-LOaIw-RvxTA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EDF00/3AE0034A4E7E11EC9E298429C4F9AE02/ozzKgbVeBGVdG1p-LOaIw-RvxTA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:fb:76:7c:8a:dc:dd:10:fe:4e:69:5e:62:a7:2b:68:7f:04: 8c:fd:e2:cc:f9:bf:5b:21:60:c6:21:6e:98:65:1d:c2:69:6f: 7e:31:10:01:c8:68:46:d2:36:32:ef:87:91:5c:09:1b:91:ef: af:e2:38:c5:72:3d:e6:73:6b:44:0a:4e:7c:f8:80:ee:fe:ed: 5b:31:ae:5f:75:5e:5f:94:60:43:da:a5:c9:86:d5:cd:8e:7b: 77:8e:86:2a:04:0e:94:fc:09:3d:fc:50:85:a4:06:3b:de:8d: b7:82:04:84:1c:79:78:d6:39:0d:c7:15:ff:d4:ab:2c:b6:11: 4e:55:97:b6:cf:4d:16:f5:a3:43:97:09:f7:62:ce:7f:e6:16: ee:ea:ba:11:97:28:06:ea:55:b2:4b:eb:ca:95:43:63:03:83: 90:c9:6b:60:0a:fa:7d:3e:bd:1e:d6:86:e3:e6:89:7e:c1:11: 60:68:ff:4b:c4:f3:44:3c:29:a6:e2:58:04:46:78:9f:8d:01: 15:b5:1f:bf:2f:0f:c7:d3:22:45:ad:11:d3:99:5c:1c:e9:34: 3a:15:69:3d:42:6b:16:6e:02:8e:62:2b:2d:ec:84:f3:8d:e7: a5:ca:6d:3f:9c:2c:a9:2a:f3:f1:f7:38:c4:4e:37:0b:1c:ee: e1:e0:ba:f3 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBRUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RURGMDAxMTAvBgNVBAUTKEEzM0NDQTgxQjU1RTA0NjU1RDFCNUE3RTJDRTY4OEMz RTQ2RkM1MzAwHhcNMjYwNDE2MjMzMzM4WhcNMjYwNDIzMjMzMzM4WjAYMRYwFAYD VQQDEw02OWUxNzFkMi1lOTVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAki2XKBqEdrm1ZMNiiuntigSnAeZejG8O6WT4wff3od/aYF0TYWHaSnCvrfJi 0rtYzvGtI+rnWtVS5F906t16dkxFGFP0vncJPr4deUSnLkmMJqeS5CFWxlexgl1D l5ED5HKHMkJhC/sF41C+SWKU7gsQ/lrOIRnJQ9oAib15HCDqLosM5594LBL8m/9W pJYJNovg5GZmsl/Ung4oLZbPg7mKFotNA21XJqmVpG2cRz5x6V5kQ8qCCtJBgPUT z4Caqmqf2BxlHgcD86RgRhv9bBmQ9++YGMeHi/6MsPpORIFCgoqNDFrsm6Jct+WV vqjMJoqivPfzT2444s3Irp0GZQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFN5Pfng8 Ij7klrgbmq9nlywBNX7vMB8GA1UdIwQYMBaAFKM8yoG1XgRlXRtafizmiMPkb8Uw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFREYwMC8zQUUwMDM0QTRF N0UxMUVDOUUyOTg0MjlDNEY5QUUwMi9venpLZ2JWZUJHVmRHMXAtTE9hSXctUnZ4 VEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL296ektnYlZlQkdWZEcxcC1MT2FJdy1SdnhUQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF REYwMC8zQUUwMDM0QTRFN0UxMUVDOUUyOTg0MjlDNEY5QUUwMi9venpLZ2JWZUJH VmRHMXAtTE9hSXctUnZ4VEEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAZft2fIrc3RD+TmleYqcraH8EjP3izPm/WyFgxiFumGUdwmlvfjEQAchoRtI2 Mu+HkVwJG5Hvr+I4xXI95nNrRApOfPiA7v7tWzGuX3VeX5RgQ9qlyYbVzY57d46G KgQOlPwJPfxQhaQGO96Nt4IEhBx5eNY5DccV/9SrLLYRTlWXts9NFvWjQ5cJ92LO f+YW7uq6EZcoBupVskvrypVDYwODkMlrYAr6fT69HtaG4+aJfsERYGj/S8TzRDwp puJYBEZ4n40BFbUfvy8Px9MiRa0R05lcHOk0OhVpPUJrFm4CjmIrLeyE843npcpt P5wsqSrz8fc4xE43Cxzu4eC68w== -----END CERTIFICATE-----Generated at Fri Apr 17 07:43:13 2026 by rpki-client