$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/ozdjPjWRmUC9cp2RLzZjFYwmfDY.mft File: ozdjPjWRmUC9cp2RLzZjFYwmfDY.mft (raw, json) Hash identifier: fWBRYAJE9nXOii15OXg+VU/Avx4ELl44DxXxT6EngM8= Subject key identifier: 84:F4:D5:0E:CA:45:8C:E6:FE:79:8E:01:2C:57:FA:06:1A:D5:8D:11 Authority key identifier: A3:37:63:3E:35:91:99:40:BD:72:9D:91:2F:36:63:15:8C:26:7C:36 Certificate issuer: /CN=A91F8AC4/serialNumber=A337633E35919940BD729D912F3663158C267C36 Certificate serial: 0299 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ozdjPjWRmUC9cp2RLzZjFYwmfDY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/ozdjPjWRmUC9cp2RLzZjFYwmfDY.mft Manifest number: 0291 Signing time: Sun 19 Apr 2026 01:30:51 +0000 Manifest this update: Sun 19 Apr 2026 01:30:50 +0000 Manifest next update: Sun 26 Apr 2026 01:30:50 +0000 Files and hashes: 1: ozdjPjWRmUC9cp2RLzZjFYwmfDY.crl (hash: wyPM3v1/O/DX4oPXx1vFd+HpyKhAmyLz6SZDcj/L4P4=) 2: 0AFFF078577811ED959AC36FC4F9AE02.roa (hash: pGBNoZVQ4x9HykZ/w/nfYdiBRr1XcTrcOsgRSH1bWes=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/ozdjPjWRmUC9cp2RLzZjFYwmfDY.crl rsync://rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/ozdjPjWRmUC9cp2RLzZjFYwmfDY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ozdjPjWRmUC9cp2RLzZjFYwmfDY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Apr 2026 01:30:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 665 (0x299) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8AC4, serialNumber=A337633E35919940BD729D912F3663158C267C36 Validity Not Before: Apr 19 01:30:50 2026 GMT Not After : Apr 26 01:30:50 2026 GMT Subject: CN=69e4304a-0051 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:ac:92:df:7d:67:ca:c8:7d:2f:1f:c8:04:2e: 63:9a:4a:79:58:ab:20:0e:fd:78:6c:01:35:71:15: 9c:0b:36:02:6f:53:df:4b:2b:54:96:13:9f:81:10: 15:f0:21:31:da:05:de:43:36:78:b4:92:ee:22:78: a7:7e:6f:ef:50:56:23:bc:63:7f:d4:d8:96:14:5a: 0a:37:02:be:cd:c7:e7:16:e3:a7:63:32:19:0b:d7: d7:0a:39:7b:df:cf:39:fa:10:eb:9b:5c:39:2e:f5: f8:6d:11:b6:76:57:f0:f5:78:d9:60:7b:85:e0:51: 3d:3f:1e:59:d7:4b:74:1f:23:4f:90:31:24:df:98: 83:95:77:0e:6a:82:0b:0c:5a:62:ce:ba:63:ab:60: a2:37:78:c5:99:5b:26:0d:36:ec:50:60:0e:c8:52: 89:f8:b1:46:db:98:f8:58:b5:36:80:f7:3c:00:6a: cc:20:a1:37:d4:c0:47:ce:bc:95:41:14:85:37:32: 9b:91:22:63:83:1c:c7:97:b4:ce:0d:c9:30:a2:6e: d1:86:c2:65:11:91:96:86:61:1b:ef:1c:c4:75:12: b8:6a:35:30:7d:44:e4:e7:ef:3a:03:81:cc:0f:d9: 18:d7:f2:ed:2b:68:e7:60:33:1b:02:bc:70:7f:c7: f1:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:F4:D5:0E:CA:45:8C:E6:FE:79:8E:01:2C:57:FA:06:1A:D5:8D:11 X509v3 Authority Key Identifier: keyid:A3:37:63:3E:35:91:99:40:BD:72:9D:91:2F:36:63:15:8C:26:7C:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/ozdjPjWRmUC9cp2RLzZjFYwmfDY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ozdjPjWRmUC9cp2RLzZjFYwmfDY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/ozdjPjWRmUC9cp2RLzZjFYwmfDY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:b9:9f:e1:a8:be:b6:31:97:31:88:1c:39:78:b6:0c:f7:e5: 4a:39:53:bd:ba:83:ca:89:2e:04:a6:7e:e1:d3:7d:83:2b:5d: d6:79:4b:5f:ac:0c:39:a1:e6:38:cd:f9:de:63:d0:cd:4d:2d: 58:89:ef:8b:cc:92:e7:be:f1:c4:96:32:ac:9a:1e:4b:19:a3: 48:65:fd:cf:51:47:9a:a2:e5:10:bb:6c:33:c6:02:f4:70:24: b0:91:96:84:b3:b7:a7:cc:f2:a1:66:ee:e9:dd:02:33:59:dd: dd:44:90:78:94:c2:a5:8d:2f:8c:d4:f1:0d:f3:07:b1:69:fb: ab:3c:9f:5d:56:d1:fa:47:d3:0a:96:27:a3:d0:0a:2c:15:b7: b9:06:14:1b:d1:fd:43:c6:14:49:8f:c1:b8:f0:8f:11:00:f1: 06:ca:96:78:4c:14:7b:fe:64:b4:55:83:76:40:c3:6b:ff:b1: 0a:63:c3:de:de:c0:00:3e:0c:5a:df:44:ed:9a:ed:a5:38:26: a9:0f:bf:60:89:ab:bd:cd:dc:15:ba:87:5a:b1:be:3f:42:f8: a9:2e:14:ca:b1:89:ad:6d:9b:90:7d:03:77:09:7b:ad:62:3c: af:dc:4c:31:88:78:c6:fa:36:41:ad:38:4c:4f:2c:0a:e4:bb: ef:03:92:b3 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICApkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjhBQzQxMTAvBgNVBAUTKEEzMzc2MzNFMzU5MTk5NDBCRDcyOUQ5MTJGMzY2MzE1 OEMyNjdDMzYwHhcNMjYwNDE5MDEzMDUwWhcNMjYwNDI2MDEzMDUwWjAYMRYwFAYD VQQDEw02OWU0MzA0YS0wMDUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqayS331nysh9Lx/IBC5jmkp5WKsgDv14bAE1cRWcCzYCb1PfSytUlhOfgRAV 8CEx2gXeQzZ4tJLuIninfm/vUFYjvGN/1NiWFFoKNwK+zcfnFuOnYzIZC9fXCjl7 3885+hDrm1w5LvX4bRG2dlfw9XjZYHuF4FE9Px5Z10t0HyNPkDEk35iDlXcOaoIL DFpizrpjq2CiN3jFmVsmDTbsUGAOyFKJ+LFG25j4WLU2gPc8AGrMIKE31MBHzryV QRSFNzKbkSJjgxzHl7TODckwom7RhsJlEZGWhmEb7xzEdRK4ajUwfUTk5+86A4HM D9kY1/LtK2jnYDMbArxwf8fxzwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIT01Q7K RYzm/nmOASxX+gYa1Y0RMB8GA1UdIwQYMBaAFKM3Yz41kZlAvXKdkS82YxWMJnw2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOEFDNC9DOEZFMTc0QzU3 NzUxMUVEODFGMTNCNkZDNEY5QUUwMi9vemRqUGpXUm1VQzljcDJSTHpaakZZd21m RFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL296ZGpQaldSbVVDOWNwMlJMelpqRll3bWZEWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OEFDNC9DOEZFMTc0QzU3NzUxMUVEODFGMTNCNkZDNEY5QUUwMi9vemRqUGpXUm1V QzljcDJSTHpaakZZd21mRFkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEApbmf4ai+tjGXMYgcOXi2DPflSjlTvbqDyokuBKZ+4dN9gytd1nlLX6wMOaHm OM353mPQzU0tWInvi8yS577xxJYyrJoeSxmjSGX9z1FHmqLlELtsM8YC9HAksJGW hLO3p8zyoWbu6d0CM1nd3USQeJTCpY0vjNTxDfMHsWn7qzyfXVbR+kfTCpYno9AK LBW3uQYUG9H9Q8YUSY/BuPCPEQDxBsqWeEwUe/5ktFWDdkDDa/+xCmPD3t7AAD4M Wt9E7ZrtpTgmqQ+/YImrvc3cFbqHWrG+P0L4qS4UyrGJrW2bkH0Ddwl7rWI8r9xM MYh4xvo2Qa04TE8sCuS77wOSsw== -----END CERTIFICATE-----Generated at Sun Apr 19 11:21:25 2026 by rpki-client