$ rpki-client -vvf rpki.apnic.net/member_repository/A91F61DA/17C81FD0F41E11E9A8343A74C4F9AE02/oVZKa9a5Cg-he_V9i-rJ4pJZves.mft File: oVZKa9a5Cg-he_V9i-rJ4pJZves.mft (raw, json) Hash identifier: pYMGVan7VapoYuXbNYxMCKuXFnlRXMVj5DMq38mUXRw= Subject key identifier: 20:6E:36:A5:16:8F:F5:E5:0E:AA:00:A2:2F:EB:A3:A7:D1:80:9E:9C Authority key identifier: A1:56:4A:6B:D6:B9:0A:0F:A1:7B:F5:7D:8B:EA:C9:E2:92:59:BD:EB Certificate issuer: /CN=A91F61DA/serialNumber=A1564A6BD6B90A0FA17BF57D8BEAC9E29259BDEB Certificate serial: 0D53 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oVZKa9a5Cg-he_V9i-rJ4pJZves.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F61DA/17C81FD0F41E11E9A8343A74C4F9AE02/oVZKa9a5Cg-he_V9i-rJ4pJZves.mft Manifest number: 0D47 Signing time: Thu 16 Apr 2026 17:55:52 +0000 Manifest this update: Thu 16 Apr 2026 17:55:52 +0000 Manifest next update: Thu 23 Apr 2026 17:55:52 +0000 Files and hashes: 1: oVZKa9a5Cg-he_V9i-rJ4pJZves.crl (hash: IZm8zRG8536qzSDPCoxkCYuj2ziRGqIe2DwoxBrQVNo=) 2: EA18D5547D8F11EC8E894A1DC4F9AE02.roa (hash: XMEHY700mwLD1H5UH+kDiYWGkC5d0JNM+7D3NKZezoM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F61DA/17C81FD0F41E11E9A8343A74C4F9AE02/oVZKa9a5Cg-he_V9i-rJ4pJZves.crl rsync://rpki.apnic.net/member_repository/A91F61DA/17C81FD0F41E11E9A8343A74C4F9AE02/oVZKa9a5Cg-he_V9i-rJ4pJZves.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oVZKa9a5Cg-he_V9i-rJ4pJZves.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 17:55:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3411 (0xd53) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F61DA, serialNumber=A1564A6BD6B90A0FA17BF57D8BEAC9E29259BDEB Validity Not Before: Apr 16 17:55:52 2026 GMT Not After : Apr 23 17:55:52 2026 GMT Subject: CN=69e122a8-0d17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:24:ad:fa:67:77:6a:6f:d9:e1:40:03:d6:85: fd:26:af:49:77:ba:d8:d1:1e:8a:6e:13:0b:60:ee: 29:c7:f7:f3:8a:8f:09:08:99:01:93:c2:1a:df:6d: fd:c0:2e:59:c8:f8:c9:9a:67:4e:15:f6:b3:b6:8a: 80:16:b6:2b:82:d0:21:aa:a8:a4:58:06:0e:14:2d: 4d:9e:00:d7:9a:c2:2d:99:01:32:59:a5:1a:20:57: 29:76:0c:c1:cc:6e:bd:6f:99:b7:b9:c5:90:9e:97: d4:8e:14:7f:c4:77:19:f4:1f:53:26:94:0e:2f:8f: df:7e:75:56:94:7e:67:57:29:b2:9e:70:38:77:5d: a2:d3:52:5c:cd:ba:4a:b4:e7:38:c5:57:0b:89:e4: 45:8b:17:bd:dd:ca:03:4d:48:5d:eb:6a:aa:8e:ab: 72:53:82:e7:3e:5b:f0:67:89:91:4b:df:27:36:2e: 33:59:10:7d:d6:f3:75:69:55:83:36:05:09:86:85: 96:92:ed:d4:db:5f:5a:93:44:dc:d4:5b:c2:5a:cf: 4a:55:32:8a:11:01:85:ad:48:4e:e5:8f:ef:7c:a5: 96:5a:c6:c9:51:ae:c1:db:e7:df:70:b0:bc:3e:96: 6c:36:6d:39:77:e9:df:1c:79:e9:14:7a:38:e2:91: c7:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:6E:36:A5:16:8F:F5:E5:0E:AA:00:A2:2F:EB:A3:A7:D1:80:9E:9C X509v3 Authority Key Identifier: keyid:A1:56:4A:6B:D6:B9:0A:0F:A1:7B:F5:7D:8B:EA:C9:E2:92:59:BD:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F61DA/17C81FD0F41E11E9A8343A74C4F9AE02/oVZKa9a5Cg-he_V9i-rJ4pJZves.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oVZKa9a5Cg-he_V9i-rJ4pJZves.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F61DA/17C81FD0F41E11E9A8343A74C4F9AE02/oVZKa9a5Cg-he_V9i-rJ4pJZves.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:4b:d7:76:b0:87:ad:42:5a:6e:49:70:57:e2:47:62:4f:32: 8a:87:9a:c9:ab:ae:af:26:83:25:c5:2b:18:12:98:0e:ce:b6: 52:ea:84:27:fe:78:71:68:63:1f:dc:fb:07:9f:6e:2f:f1:dd: 0e:33:59:58:10:f5:f5:4e:e7:9c:2f:a5:80:0d:ab:e6:00:2a: 39:77:46:b2:84:b9:8e:f6:41:b6:86:1e:9b:d4:27:99:59:49: 6c:dd:ff:c2:8d:0c:33:31:fa:9e:5c:36:f7:11:cf:3d:67:32: 7d:d0:be:cf:ef:17:9c:73:88:19:2f:9b:be:bd:7a:d2:0a:0b: 9a:4f:17:0e:a1:1e:12:a1:91:96:bf:f1:dc:ec:83:39:ae:41: 98:17:a8:c0:f8:c6:03:4b:54:80:48:eb:b7:9a:1c:80:40:43: 7c:9d:4d:bd:6e:9f:83:f8:a0:c5:5c:4f:e9:82:b5:61:e8:ee: b5:27:3e:ba:9d:10:82:de:b9:af:10:69:cc:3c:e2:56:e2:2f: 3d:9a:df:96:f1:70:12:9f:93:35:79:79:93:ec:03:eb:60:42: 62:ca:b1:41:f2:56:c5:8d:e2:7d:98:81:f6:58:92:6b:d2:ff: 65:4f:92:a9:07:45:c6:11:61:47:ae:79:80:e7:a7:5b:92:73: ca:83:ca:bc -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDVMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjYxREExMTAvBgNVBAUTKEExNTY0QTZCRDZCOTBBMEZBMTdCRjU3RDhCRUFDOUUy OTI1OUJERUIwHhcNMjYwNDE2MTc1NTUyWhcNMjYwNDIzMTc1NTUyWjAYMRYwFAYD VQQDEw02OWUxMjJhOC0wZDE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1CSt+md3am/Z4UAD1oX9Jq9Jd7rY0R6KbhMLYO4px/fzio8JCJkBk8Ia3239 wC5ZyPjJmmdOFfaztoqAFrYrgtAhqqikWAYOFC1NngDXmsItmQEyWaUaIFcpdgzB zG69b5m3ucWQnpfUjhR/xHcZ9B9TJpQOL4/ffnVWlH5nVymynnA4d12i01JczbpK tOc4xVcLieRFixe93coDTUhd62qqjqtyU4LnPlvwZ4mRS98nNi4zWRB91vN1aVWD NgUJhoWWku3U219ak0Tc1FvCWs9KVTKKEQGFrUhO5Y/vfKWWWsbJUa7B2+ffcLC8 PpZsNm05d+nfHHnpFHo44pHH/wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCBuNqUW j/XlDqoAoi/ro6fRgJ6cMB8GA1UdIwQYMBaAFKFWSmvWuQoPoXv1fYvqyeKSWb3r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjFEQS8xN0M4MUZEMEY0 MUUxMUU5QTgzNDNBNzRDNEY5QUUwMi9vVlpLYTlhNUNnLWhlX1Y5aS1ySjRwSlp2 ZXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29WWkthOWE1Q2ctaGVfVjlpLXJKNHBKWnZlcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NjFEQS8xN0M4MUZEMEY0MUUxMUU5QTgzNDNBNzRDNEY5QUUwMi9vVlpLYTlhNUNn LWhlX1Y5aS1ySjRwSlp2ZXMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAOUvXdrCHrUJabklwV+JHYk8yioeayauuryaDJcUrGBKYDs62UuqEJ/54cWhj H9z7B59uL/HdDjNZWBD19U7nnC+lgA2r5gAqOXdGsoS5jvZBtoYem9QnmVlJbN3/ wo0MMzH6nlw29xHPPWcyfdC+z+8XnHOIGS+bvr160goLmk8XDqEeEqGRlr/x3OyD Oa5BmBeowPjGA0tUgEjrt5ocgEBDfJ1NvW6fg/igxVxP6YK1YejutSc+up0Qgt65 rxBpzDziVuIvPZrflvFwEp+TNXl5k+wD62BCYsqxQfJWxY3ifZiB9liSa9L/ZU+S qQdFxhFhR655gOenW5JzyoPKvA== -----END CERTIFICATE-----Generated at Fri Apr 17 18:27:10 2026 by rpki-client