$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft File: oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft (raw, json) Hash identifier: WKY/M1hHIjj1QyRwKLATGdtwBaMxOGaxGc4dy2G4D80= Subject key identifier: D0:C4:8E:FE:59:70:AE:0A:D1:2C:89:92:3A:4E:BE:B1:F3:6F:39:E9 Authority key identifier: A0:AC:42:7E:95:7B:37:4D:02:67:FA:76:48:DD:3F:F8:57:02:DA:B1 Certificate issuer: /CN=A91FA024/serialNumber=A0AC427E957B374D0267FA7648DD3FF85702DAB1 Certificate serial: 088A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKxCfpV7N00CZ_p2SN0_-FcC2rE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft Manifest number: 0880 Signing time: Thu 16 Apr 2026 20:32:18 +0000 Manifest this update: Thu 16 Apr 2026 20:32:18 +0000 Manifest next update: Thu 23 Apr 2026 20:32:18 +0000 Files and hashes: 1: oKxCfpV7N00CZ_p2SN0_-FcC2rE.crl (hash: L/l8Uytqhc3vXp7r2h5qhkCwrT9/1xqmeIZx3TM/WWY=) 2: FE1FDB12BCD011EC8283681EC4F9AE02.roa (hash: D7POOiqxGTRBfPXL5kT6B+2budcwWwPlgdAg9UBfD4U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.crl rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKxCfpV7N00CZ_p2SN0_-FcC2rE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 20:32:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2186 (0x88a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA024, serialNumber=A0AC427E957B374D0267FA7648DD3FF85702DAB1 Validity Not Before: Apr 16 20:32:18 2026 GMT Not After : Apr 23 20:32:18 2026 GMT Subject: CN=69e14752-e59e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:93:3d:03:68:71:0e:b5:e5:c6:89:8f:5f:c2: b5:a2:90:9e:0c:b1:3e:cd:bc:11:e1:2f:b1:dc:41: eb:13:12:6a:68:0d:e2:7f:a6:f7:ae:7d:b3:30:29: d5:60:f8:6f:4e:73:76:af:cc:4b:0e:ae:eb:2b:c5: ff:34:bd:9c:54:c9:3b:9d:11:81:8c:ab:4b:41:43: ab:56:bc:e6:d5:1f:48:0a:ac:1b:d0:c7:f5:22:91: cb:77:84:c7:9f:57:ab:5f:7e:67:16:78:6e:0f:3a: d8:f9:25:69:5c:c0:ea:bf:19:8e:07:2d:7c:66:65: f1:79:5a:f1:39:63:a2:be:f2:69:fc:5e:54:4e:8e: e5:32:d6:51:a5:f2:c3:bc:65:70:3a:05:e5:2a:0d: 41:ab:83:00:67:7d:2a:27:fb:2b:a9:1f:44:e5:82: df:b2:9d:47:fc:be:1b:30:c3:22:e7:6a:0b:4c:5a: 3a:56:80:e5:c9:a3:1d:c3:81:ff:5c:18:2d:3d:21: 45:90:66:cb:05:f9:da:95:7d:da:01:4a:88:39:87: 6b:6b:e8:a1:71:30:58:9e:fa:65:61:9a:04:5e:69: c6:ce:45:f1:f5:39:e2:5b:fa:75:ff:5d:19:c6:c0: 7c:2b:e2:01:5f:0e:fe:6c:7e:41:28:79:1c:9e:0f: 70:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:C4:8E:FE:59:70:AE:0A:D1:2C:89:92:3A:4E:BE:B1:F3:6F:39:E9 X509v3 Authority Key Identifier: keyid:A0:AC:42:7E:95:7B:37:4D:02:67:FA:76:48:DD:3F:F8:57:02:DA:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKxCfpV7N00CZ_p2SN0_-FcC2rE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:9b:54:5b:6b:96:66:c3:67:92:5c:bc:23:8b:df:0e:b5:7d: 11:cc:ef:2f:dc:b7:47:20:a3:6c:75:94:0a:43:14:cb:f9:54: 8f:5a:4d:f7:de:b0:63:4c:a8:25:b9:aa:26:0c:f1:14:f8:66: 3c:b9:2b:4c:1a:eb:94:0c:03:3e:bb:f6:78:bf:e0:17:b6:d7: 86:6a:81:a4:ba:e0:31:5c:7b:f3:f9:fa:ae:4b:62:c7:af:4b: 39:d6:cf:6b:a6:81:f6:1f:37:d3:37:2b:67:01:9f:0a:a0:80: e9:f2:35:76:57:d4:50:70:eb:a7:08:95:a2:18:8c:a9:ca:5d: 3a:27:54:e2:0a:a3:a5:8d:d8:70:32:d8:cc:b0:0a:ea:da:e3: c4:a8:4e:5b:77:30:dc:2f:45:e3:59:d3:af:c1:c6:1e:08:a5: 5d:4e:06:de:19:e9:e7:0d:ac:2b:26:b1:d8:b9:f5:50:b2:23: 90:75:b5:f6:78:33:c1:ef:fa:cb:db:ba:1a:97:06:d7:c3:a5: 5c:1c:67:20:c6:19:01:07:b1:a0:2b:98:e4:57:99:50:ac:30: f8:be:cf:c2:25:45:fe:f5:e8:b9:8c:81:fa:a1:83:83:c5:b3: 0c:a9:af:e6:71:d8:86:e1:2e:42:9a:07:89:16:0e:73:06:89: 28:51:1a:44 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCIowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkEwMjQxMTAvBgNVBAUTKEEwQUM0MjdFOTU3QjM3NEQwMjY3RkE3NjQ4REQzRkY4 NTcwMkRBQjEwHhcNMjYwNDE2MjAzMjE4WhcNMjYwNDIzMjAzMjE4WjAYMRYwFAYD VQQDEw02OWUxNDc1Mi1lNTllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy5M9A2hxDrXlxomPX8K1opCeDLE+zbwR4S+x3EHrExJqaA3if6b3rn2zMCnV YPhvTnN2r8xLDq7rK8X/NL2cVMk7nRGBjKtLQUOrVrzm1R9ICqwb0Mf1IpHLd4TH n1erX35nFnhuDzrY+SVpXMDqvxmOBy18ZmXxeVrxOWOivvJp/F5UTo7lMtZRpfLD vGVwOgXlKg1Bq4MAZ30qJ/srqR9E5YLfsp1H/L4bMMMi52oLTFo6VoDlyaMdw4H/ XBgtPSFFkGbLBfnalX3aAUqIOYdra+ihcTBYnvplYZoEXmnGzkXx9TniW/p1/10Z xsB8K+IBXw7+bH5BKHkcng9wqQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNDEjv5Z cK4K0SyJkjpOvrHzbznpMB8GA1UdIwQYMBaAFKCsQn6VezdNAmf6dkjdP/hXAtqx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTAyNC9EMzNBNDc5NEYx ODgxMUVBOUU4MEY3MUVDNEY5QUUwMi9vS3hDZnBWN04wMENaX3AyU04wXy1GY0My ckUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29LeENmcFY3TjAwQ1pfcDJTTjBfLUZjQzJyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QTAyNC9EMzNBNDc5NEYxODgxMUVBOUU4MEY3MUVDNEY5QUUwMi9vS3hDZnBWN04w MENaX3AyU04wXy1GY0MyckUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAKJtUW2uWZsNnkly8I4vfDrV9EczvL9y3RyCjbHWUCkMUy/lUj1pN996wY0yo JbmqJgzxFPhmPLkrTBrrlAwDPrv2eL/gF7bXhmqBpLrgMVx78/n6rktix69LOdbP a6aB9h830zcrZwGfCqCA6fI1dlfUUHDrpwiVohiMqcpdOidU4gqjpY3YcDLYzLAK 6trjxKhOW3cw3C9F41nTr8HGHgilXU4G3hnp5w2sKyax2Ln1ULIjkHW19ngzwe/6 y9u6GpcG18OlXBxnIMYZAQexoCuY5FeZUKww+L7PwiVF/vXouYyB+qGDg8WzDKmv 5nHYhuEuQpoHiRYOcwaJKFEaRA== -----END CERTIFICATE-----Generated at Fri Apr 17 07:23:14 2026 by rpki-client