$ rpki-client -vvf rpki.apnic.net/member_repository/A91FAA91/9420D2100A5A11EEA3F5B441C4F9AE02/oMgM7gY8nMgs3LC8dFxP5G3QJlc.mft File: oMgM7gY8nMgs3LC8dFxP5G3QJlc.mft (raw, json) Hash identifier: MX1dMKi3ZLoTCdwEvvsCvs7sqyRAYsaOg4ixtu18V1A= Subject key identifier: 09:CE:64:CB:B5:47:44:66:60:CD:8D:15:00:DD:0E:00:B1:9A:45:80 Authority key identifier: A0:C8:0C:EE:06:3C:9C:C8:2C:DC:B0:BC:74:5C:4F:E4:6D:D0:26:57 Certificate issuer: /CN=A91FAA91/serialNumber=A0C80CEE063C9CC82CDCB0BC745C4FE46DD02657 Certificate serial: 0263 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oMgM7gY8nMgs3LC8dFxP5G3QJlc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FAA91/9420D2100A5A11EEA3F5B441C4F9AE02/oMgM7gY8nMgs3LC8dFxP5G3QJlc.mft Manifest number: 023C Signing time: Sun 19 Apr 2026 02:36:34 +0000 Manifest this update: Sun 19 Apr 2026 02:36:34 +0000 Manifest next update: Sun 26 Apr 2026 02:36:34 +0000 Files and hashes: 1: oMgM7gY8nMgs3LC8dFxP5G3QJlc.crl (hash: kBc+O4PqwN/G3ESX9Rn8HcwfSdCt9egrF4Qo82Auo8M=) 2: 803597528D5911F087734E0BC4F9AE02.roa (hash: qjwNHVxj8rh4p5dbVDJ7FmnGLRA0aF4pw1XtOGgQ9/I=) 3: 13D68EB430AB11F0A15DC75AC4F9AE02.roa (hash: Df8chXaHVx7SlzUpc1kpONRIDx/OSWJIy+4OsePAPPY=) 4: D0103496FD6611EE9188C568C4F9AE02.roa (hash: 8jWtzjSsUygdzDOwuRDWbJ+/Oi0HeYvaJIf1pNwKDHM=) 5: E762B166FAF811EE92A3642EC4F9AE02.roa (hash: KuP7ghPE5jbRo6RpIG8mjTF5foQeJCW+P2dt3dU5qe4=) 6: CE65A4E4A57E11EFA1B6E428C4F9AE02.roa (hash: O0Z9WR74ZqHIIViEx/QrJsLKy5xwDiS8tDAgBMROtv8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FAA91/9420D2100A5A11EEA3F5B441C4F9AE02/oMgM7gY8nMgs3LC8dFxP5G3QJlc.crl rsync://rpki.apnic.net/member_repository/A91FAA91/9420D2100A5A11EEA3F5B441C4F9AE02/oMgM7gY8nMgs3LC8dFxP5G3QJlc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oMgM7gY8nMgs3LC8dFxP5G3QJlc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Apr 2026 02:36:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 611 (0x263) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FAA91, serialNumber=A0C80CEE063C9CC82CDCB0BC745C4FE46DD02657 Validity Not Before: Apr 19 02:36:34 2026 GMT Not After : Apr 26 02:36:34 2026 GMT Subject: CN=69e43fb2-118e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:b9:b3:d2:96:65:3c:9f:d9:17:f1:23:77:15: 0c:4d:e7:91:3f:96:f4:c9:36:7d:a1:70:ef:c7:b5: 29:12:76:7d:9e:f6:69:5c:4a:5d:81:71:8a:ed:85: b8:43:87:9d:67:2c:b2:0d:12:bf:e1:62:e2:52:c6: 61:66:7e:11:8e:fa:3a:9a:e9:ed:d1:bf:0b:1c:d2: 2d:d6:c3:cd:c2:35:bb:9e:d0:48:f8:ac:a7:ba:a2: 91:77:ac:a2:3f:48:47:5e:ee:88:0b:3e:59:22:7d: e1:35:97:a6:0c:be:4a:c6:6e:2b:1c:7a:dd:3e:1b: df:57:08:92:28:24:76:6c:a4:eb:a5:7e:15:3a:4c: b3:16:05:28:65:f1:a1:2b:c6:ad:84:96:2b:06:ad: f9:d6:95:c3:76:48:a5:7a:59:db:f1:be:f1:5d:19: 20:6b:87:77:3c:07:80:92:e8:78:ee:60:70:d7:dc: 7a:20:ad:01:ab:2c:30:d9:a7:42:54:27:2b:35:a0: da:42:18:14:10:52:26:64:46:25:bb:cf:f7:9d:48: 5e:ec:37:55:c5:77:4a:64:31:1f:4f:bc:22:b0:aa: 9f:3b:d5:dc:7e:62:16:ce:a7:d0:b4:98:dc:eb:80: ac:7b:09:80:16:50:eb:c3:91:58:94:f4:f0:cb:6c: a4:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:CE:64:CB:B5:47:44:66:60:CD:8D:15:00:DD:0E:00:B1:9A:45:80 X509v3 Authority Key Identifier: keyid:A0:C8:0C:EE:06:3C:9C:C8:2C:DC:B0:BC:74:5C:4F:E4:6D:D0:26:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FAA91/9420D2100A5A11EEA3F5B441C4F9AE02/oMgM7gY8nMgs3LC8dFxP5G3QJlc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oMgM7gY8nMgs3LC8dFxP5G3QJlc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FAA91/9420D2100A5A11EEA3F5B441C4F9AE02/oMgM7gY8nMgs3LC8dFxP5G3QJlc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:b4:13:7f:65:2e:49:57:7e:e1:3a:cc:88:9d:49:30:bd:cc: 68:6b:75:b3:d0:c3:6a:ba:30:bd:6d:6c:02:cf:c2:8e:98:db: bc:3f:77:df:84:5c:c4:1d:4b:a4:b3:aa:ff:1f:c8:c4:fc:1d: a1:b3:5a:e4:0c:b1:34:d8:a4:d4:61:b7:18:f6:70:0d:cb:c4: fd:da:64:92:6b:7d:1f:8c:17:42:ba:15:42:70:ec:be:33:9a: 26:c5:b7:8e:cf:9c:0c:a5:b3:46:18:fa:ba:12:9b:42:f8:01: ff:84:e1:ba:b4:c0:cc:89:c5:e3:b6:29:3f:73:b4:a7:ec:c1: c3:dc:eb:b1:35:8e:86:e5:90:1b:8f:b1:cb:f8:8d:5a:fa:87: 28:78:5c:a7:35:00:f6:76:32:ad:9f:04:87:eb:d5:d0:b5:08: 3c:b0:30:97:bd:32:e3:f5:05:45:3a:56:cb:6d:5e:27:be:6b: 39:3a:1a:40:b1:c6:70:93:ef:b8:00:3b:d3:50:a5:bc:ad:0a: 8b:2e:be:64:ae:f6:c7:3b:d9:fb:6d:06:a5:5d:69:75:58:ac: 63:48:ce:ee:fd:b7:5b:ef:51:b3:e4:9b:f2:a5:0a:eb:20:7a: a3:db:88:d1:ca:83:3d:46:4f:19:1c:b0:78:8c:22:02:66:38: 76:35:c2:cc -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAmMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkFBOTExMTAvBgNVBAUTKEEwQzgwQ0VFMDYzQzlDQzgyQ0RDQjBCQzc0NUM0RkU0 NkREMDI2NTcwHhcNMjYwNDE5MDIzNjM0WhcNMjYwNDI2MDIzNjM0WjAYMRYwFAYD VQQDEw02OWU0M2ZiMi0xMThlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsrmz0pZlPJ/ZF/EjdxUMTeeRP5b0yTZ9oXDvx7UpEnZ9nvZpXEpdgXGK7YW4 Q4edZyyyDRK/4WLiUsZhZn4Rjvo6munt0b8LHNIt1sPNwjW7ntBI+KynuqKRd6yi P0hHXu6ICz5ZIn3hNZemDL5Kxm4rHHrdPhvfVwiSKCR2bKTrpX4VOkyzFgUoZfGh K8athJYrBq351pXDdkilelnb8b7xXRkga4d3PAeAkuh47mBw19x6IK0Bqyww2adC VCcrNaDaQhgUEFImZEYlu8/3nUhe7DdVxXdKZDEfT7wisKqfO9XcfmIWzqfQtJjc 64CsewmAFlDrw5FYlPTwy2ykMQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAnOZMu1 R0RmYM2NFQDdDgCxmkWAMB8GA1UdIwQYMBaAFKDIDO4GPJzILNywvHRcT+Rt0CZX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQUE5MS85NDIwRDIxMDBB NUExMUVFQTNGNUI0NDFDNEY5QUUwMi9vTWdNN2dZOG5NZ3MzTEM4ZEZ4UDVHM1FK bGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29NZ003Z1k4bk1nczNMQzhkRnhQNUczUUpsYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QUE5MS85NDIwRDIxMDBBNUExMUVFQTNGNUI0NDFDNEY5QUUwMi9vTWdNN2dZOG5N Z3MzTEM4ZEZ4UDVHM1FKbGMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAkrQTf2UuSVd+4TrMiJ1JML3MaGt1s9DDarowvW1sAs/CjpjbvD9334RcxB1L pLOq/x/IxPwdobNa5AyxNNik1GG3GPZwDcvE/dpkkmt9H4wXQroVQnDsvjOaJsW3 js+cDKWzRhj6uhKbQvgB/4ThurTAzInF47YpP3O0p+zBw9zrsTWOhuWQG4+xy/iN WvqHKHhcpzUA9nYyrZ8Eh+vV0LUIPLAwl70y4/UFRTpWy21eJ75rOToaQLHGcJPv uAA701ClvK0Kiy6+ZK72xzvZ+20GpV1pdVisY0jO7v23W+9Rs+Sb8qUK6yB6o9uI 0cqDPUZPGRyweIwiAmY4djXCzA== -----END CERTIFICATE-----Generated at Sun Apr 19 08:23:31 2026 by rpki-client