$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.mft File: Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.mft (raw, json) Hash identifier: gD1VQAKFBKMl9B8/RS4ZEFz2G9ts82vPhPpWGi9nro8= Subject key identifier: FC:FD:37:7A:62:5A:43:60:3D:35:DF:CB:B9:F5:6C:A5:9A:AA:18:C4 Authority key identifier: 3A:CC:B6:95:39:AC:9F:42:88:BC:D0:F0:A5:42:50:D5:92:F5:40:D4 Certificate issuer: /CN=A91F0EBF/serialNumber=3ACCB69539AC9F4288BCD0F0A54250D592F540D4 Certificate serial: 22A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.mft Manifest number: 2248 Signing time: Thu 16 Apr 2026 15:50:06 +0000 Manifest this update: Thu 16 Apr 2026 15:50:06 +0000 Manifest next update: Thu 23 Apr 2026 15:50:06 +0000 Files and hashes: 1: Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.crl (hash: yqimLtENVQMRCJLplDmy5wTy+6/K7ps4lEsMUKvuQuk=) 2: A73C0BF6D93511E6B2617F7BC4F9AE02.roa (hash: 9Wh8912cu3W7SvBPurOS5rCjf4J0gjpN7uj92f3pmsg=) 3: 5F649D88F27E11EE8704D12FC4F9AE02.roa (hash: 9WmU8Y4ZcOpIMboLEtIMfgE7BVSSzD6O48vbK37ECCM=) 4: 2D477384D9C711F098E1B70271D3641D.roa (hash: GJ6jqaxX7BHT2XHEY46Q7jZx0gkdB0fTcOfm2Nfw3us=) 5: 586B33AEF44611EBA78C117AC4F9AE02.roa (hash: fTK97vrMBpL2ZoSynxsGZ4U3KEvxzaz+0BewP/ZQJbc=) 6: 5480D316764D11EA8CB5C039C4F9AE02.roa (hash: mJF9eHW945FqOhcOebNZDCr93WVmTQPVaMtl9lfF/sA=) 7: 63BFE4C0292811EEAF894530C4F9AE02.roa (hash: sVanteUBCWSFVUaHrZ5yntV/JIzyhq/72ORLRX744ZU=) 8: 11DE1CDA467611EC988CDC09C4F9AE02.roa (hash: MfV4ukOu3FWI/jsl4kHuM58dQAKJFj/LhFrUhOuLtaI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.crl rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 15:50:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8866 (0x22a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0EBF, serialNumber=3ACCB69539AC9F4288BCD0F0A54250D592F540D4 Validity Not Before: Apr 16 15:50:06 2026 GMT Not After : Apr 23 15:50:06 2026 GMT Subject: CN=69e1052e-b5a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:f7:8a:7d:3f:28:32:40:7e:1f:29:44:26:c2: a2:e5:5a:c9:d9:15:f7:da:7d:f2:bf:95:74:7f:a6: 3d:a6:ad:68:b6:fc:e4:73:a3:bb:c6:e1:40:6c:e7: 83:d1:c5:f9:71:ac:02:97:d3:38:59:62:85:86:e9: ec:f9:db:85:00:6a:04:26:59:5d:c7:bd:f2:cf:50: 82:5c:46:8c:81:48:3d:41:0d:d5:b4:99:a0:c3:29: 6a:9f:17:fb:21:e1:7f:f7:e9:f5:20:41:6c:20:ee: a5:2b:ad:91:70:bf:44:71:28:4e:e9:39:2b:2e:f9: 01:31:38:b5:2d:94:a1:94:f5:37:7c:08:fe:cd:18: 76:c6:cf:5b:69:9b:c6:82:aa:3f:67:58:c4:60:f1: e4:81:81:4c:55:e7:b3:72:16:e8:4c:00:65:f2:00: 81:a8:45:0b:40:eb:84:13:c1:b1:8e:79:59:f3:71: 93:5d:6c:b0:84:66:c9:2d:69:3f:04:8c:67:97:a5: 26:1c:b6:ee:65:0a:b1:40:e3:57:30:5c:0c:17:c7: 05:02:ac:67:93:5d:53:6a:f8:55:f6:23:4e:9c:b7: ec:20:a8:43:9e:26:0d:8c:b7:40:be:82:2d:d6:d9: 97:88:46:bb:5d:04:b5:f7:58:d4:61:c1:c7:00:70: 50:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:FD:37:7A:62:5A:43:60:3D:35:DF:CB:B9:F5:6C:A5:9A:AA:18:C4 X509v3 Authority Key Identifier: keyid:3A:CC:B6:95:39:AC:9F:42:88:BC:D0:F0:A5:42:50:D5:92:F5:40:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:00:54:ed:05:d0:b7:a2:ea:4e:97:e9:85:c9:b5:2e:02:76: 27:67:da:05:5b:c1:96:33:6f:58:43:e0:23:24:84:cb:6a:5b: 6b:3a:ff:85:03:4d:67:99:f3:b1:f1:cd:8b:e7:b5:eb:da:b7: 05:d0:76:e7:b2:d1:51:4f:89:ee:b7:71:e4:29:d3:3f:b0:ad: e5:b9:15:58:65:1b:cd:a0:3b:3a:53:03:0b:7a:8e:d2:fb:3b: df:e1:77:a5:3b:92:83:74:cc:64:62:2e:f2:67:a7:97:bd:2a: f8:ce:43:71:69:a8:d5:e1:02:0e:e1:92:d4:c5:9f:a0:52:32: c7:16:f3:33:da:44:12:6f:57:38:e6:28:57:16:4f:ac:73:83: bc:f3:41:ce:0b:4b:84:3b:aa:f7:dc:09:02:84:71:ac:7f:fa: 5e:58:6a:33:2d:73:3e:fb:97:85:38:4a:94:76:55:1e:13:be: 20:57:a0:fb:30:96:ba:fc:36:a3:2f:76:02:37:52:1a:9c:45: 1e:d7:18:69:b3:69:4e:32:27:2c:44:f4:0b:e0:01:30:04:78: ae:1e:cb:f2:bf:73:69:7d:52:b7:0c:cd:72:4a:42:0c:7b:9a: 90:c6:2e:83:b5:c3:76:b9:c9:d6:06:99:50:fd:cb:fe:03:fd: a4:dd:e2:24 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICIqIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBFQkYxMTAvBgNVBAUTKDNBQ0NCNjk1MzlBQzlGNDI4OEJDRDBGMEE1NDI1MEQ1 OTJGNTQwRDQwHhcNMjYwNDE2MTU1MDA2WhcNMjYwNDIzMTU1MDA2WjAYMRYwFAYD VQQDEw02OWUxMDUyZS1iNWEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1veKfT8oMkB+HylEJsKi5VrJ2RX32n3yv5V0f6Y9pq1otvzkc6O7xuFAbOeD 0cX5cawCl9M4WWKFhuns+duFAGoEJlldx73yz1CCXEaMgUg9QQ3VtJmgwylqnxf7 IeF/9+n1IEFsIO6lK62RcL9EcShO6TkrLvkBMTi1LZShlPU3fAj+zRh2xs9baZvG gqo/Z1jEYPHkgYFMVeezchboTABl8gCBqEULQOuEE8GxjnlZ83GTXWywhGbJLWk/ BIxnl6UmHLbuZQqxQONXMFwMF8cFAqxnk11TavhV9iNOnLfsIKhDniYNjLdAvoIt 1tmXiEa7XQS191jUYcHHAHBQDwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPz9N3pi WkNgPTXfy7n1bKWaqhjEMB8GA1UdIwQYMBaAFDrMtpU5rJ9CiLzQ8KVCUNWS9UDU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEVCRi81Rjg0RDdEOERC ODAxMUU1OUFCN0VEMUVDNEY5QUUwMi9Pc3kybFRtc24wS0l2TkR3cFVKUTFaTDFR TlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09zeTJsVG1zbjBLSXZORHdwVUpRMVpMMVFOUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MEVCRi81Rjg0RDdEOERCODAxMUU1OUFCN0VEMUVDNEY5QUUwMi9Pc3kybFRtc24w S0l2TkR3cFVKUTFaTDFRTlEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAfQBU7QXQt6LqTpfphcm1LgJ2J2faBVvBljNvWEPgIySEy2pbazr/hQNNZ5nz sfHNi+e169q3BdB257LRUU+J7rdx5CnTP7Ct5bkVWGUbzaA7OlMDC3qO0vs73+F3 pTuSg3TMZGIu8menl70q+M5DcWmo1eECDuGS1MWfoFIyxxbzM9pEEm9XOOYoVxZP rHODvPNBzgtLhDuq99wJAoRxrH/6XlhqMy1zPvuXhThKlHZVHhO+IFeg+zCWuvw2 oy92AjdSGpxFHtcYabNpTjInLET0C+ABMAR4rh7L8r9zaX1StwzNckpCDHuakMYu g7XDdrnJ1gaZUP3L/gP9pN3iJA== -----END CERTIFICATE-----Generated at Fri Apr 17 08:11:56 2026 by rpki-client