$ rpki-client -vvf rpki.apnic.net/member_repository/A91FAA91/9420D2100A5A11EEA3F5B441C4F9AE02/oMgM7gY8nMgs3LC8dFxP5G3QJlc.mft File: oMgM7gY8nMgs3LC8dFxP5G3QJlc.mft (raw, json) Hash identifier: GwCs5y8l1xSuQmyaG6ZlTpGwoHAAIENxjN/VNmI72sg= Subject key identifier: 56:F0:3B:74:ED:2B:89:D9:4B:51:32:77:9D:80:68:C8:92:FD:66:46 Authority key identifier: A0:C8:0C:EE:06:3C:9C:C8:2C:DC:B0:BC:74:5C:4F:E4:6D:D0:26:57 Certificate issuer: /CN=A91FAA91/serialNumber=A0C80CEE063C9CC82CDCB0BC745C4FE46DD02657 Certificate serial: 0262 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oMgM7gY8nMgs3LC8dFxP5G3QJlc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FAA91/9420D2100A5A11EEA3F5B441C4F9AE02/oMgM7gY8nMgs3LC8dFxP5G3QJlc.mft Manifest number: 023B Signing time: Fri 17 Apr 2026 02:37:49 +0000 Manifest this update: Fri 17 Apr 2026 02:37:48 +0000 Manifest next update: Fri 24 Apr 2026 02:37:48 +0000 Files and hashes: 1: oMgM7gY8nMgs3LC8dFxP5G3QJlc.crl (hash: RtxwGe6HxGi68mYYp9M7q7Ackbml7jw1LdvJisXt9Fs=) 2: E762B166FAF811EE92A3642EC4F9AE02.roa (hash: KuP7ghPE5jbRo6RpIG8mjTF5foQeJCW+P2dt3dU5qe4=) 3: 13D68EB430AB11F0A15DC75AC4F9AE02.roa (hash: Df8chXaHVx7SlzUpc1kpONRIDx/OSWJIy+4OsePAPPY=) 4: 803597528D5911F087734E0BC4F9AE02.roa (hash: qjwNHVxj8rh4p5dbVDJ7FmnGLRA0aF4pw1XtOGgQ9/I=) 5: D0103496FD6611EE9188C568C4F9AE02.roa (hash: 8jWtzjSsUygdzDOwuRDWbJ+/Oi0HeYvaJIf1pNwKDHM=) 6: CE65A4E4A57E11EFA1B6E428C4F9AE02.roa (hash: O0Z9WR74ZqHIIViEx/QrJsLKy5xwDiS8tDAgBMROtv8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FAA91/9420D2100A5A11EEA3F5B441C4F9AE02/oMgM7gY8nMgs3LC8dFxP5G3QJlc.crl rsync://rpki.apnic.net/member_repository/A91FAA91/9420D2100A5A11EEA3F5B441C4F9AE02/oMgM7gY8nMgs3LC8dFxP5G3QJlc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oMgM7gY8nMgs3LC8dFxP5G3QJlc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 02:37:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 610 (0x262) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FAA91, serialNumber=A0C80CEE063C9CC82CDCB0BC745C4FE46DD02657 Validity Not Before: Apr 17 02:37:48 2026 GMT Not After : Apr 24 02:37:48 2026 GMT Subject: CN=69e19cfd-93b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:9b:f9:09:27:eb:4b:54:91:ff:c3:22:d3:56: e7:68:36:9b:7f:a8:8a:83:d4:bd:cb:8d:84:c4:b0: df:59:4d:7f:e8:77:66:9d:c6:02:74:83:48:2d:b8: 68:bb:81:25:5c:72:f3:c7:a4:1a:ae:dc:29:9a:da: 02:9b:b5:7f:00:f1:7e:20:03:7a:57:47:78:47:7e: c2:e5:4d:74:71:32:75:db:6c:a3:13:95:52:f8:94: 39:06:9e:7b:d3:9b:ee:db:c8:8d:8d:3e:c6:99:49: 38:7d:f0:e2:52:75:67:d3:10:80:93:2d:98:f9:8d: b5:ad:88:f7:15:a3:f4:3e:a7:eb:a3:c6:d8:3e:c3: 4a:d2:1b:04:c9:fb:d4:8b:da:f2:d8:4f:22:1c:99: b3:fe:65:21:e5:cf:a5:79:1a:71:dd:8f:ba:c8:39: 32:7d:b4:2c:9a:da:75:68:39:1a:86:e7:01:4c:2a: bc:00:b7:af:87:39:98:e6:59:c1:87:7c:3c:11:88: 2e:53:0a:43:ee:a1:95:41:d5:65:5b:63:c2:91:75: 42:28:a3:77:28:3a:80:fc:18:53:8e:e2:bd:e7:01: d6:98:59:2c:09:53:38:19:e7:e3:3b:e1:af:ba:d4: 57:10:39:a5:21:76:db:1c:00:70:3b:58:06:da:4c: 7d:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:F0:3B:74:ED:2B:89:D9:4B:51:32:77:9D:80:68:C8:92:FD:66:46 X509v3 Authority Key Identifier: keyid:A0:C8:0C:EE:06:3C:9C:C8:2C:DC:B0:BC:74:5C:4F:E4:6D:D0:26:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FAA91/9420D2100A5A11EEA3F5B441C4F9AE02/oMgM7gY8nMgs3LC8dFxP5G3QJlc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oMgM7gY8nMgs3LC8dFxP5G3QJlc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FAA91/9420D2100A5A11EEA3F5B441C4F9AE02/oMgM7gY8nMgs3LC8dFxP5G3QJlc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:f9:ec:35:d0:54:a9:29:95:24:88:49:f8:68:0b:7a:51:5b: 51:2e:ca:36:5a:3c:b2:aa:5c:c3:fc:0f:54:f5:fd:34:9c:1c: 34:b3:d5:75:9e:3a:08:aa:4b:32:5e:d6:40:d8:7b:6a:f2:9d: 9c:1a:89:67:93:cc:d1:99:a0:0c:ae:ea:cb:7b:4c:19:79:04: f8:32:b6:0d:fc:29:af:4d:69:e8:28:cc:91:f6:37:b2:fe:90: 6c:30:61:39:ef:ad:f7:75:83:94:00:9f:c6:1a:9f:8b:aa:92: c4:59:de:3a:35:bb:fa:10:0c:2d:83:bb:4a:10:03:f9:4c:86: e3:ac:37:a9:4b:d8:59:fc:f3:9c:aa:41:81:f7:ef:46:1d:05: 6f:5c:08:e1:60:21:0e:f6:16:63:d4:77:0d:c1:15:b7:ac:0b: 36:df:9a:7e:36:c1:02:a8:6f:1c:eb:37:65:af:3c:51:f1:b9: 34:11:52:b9:e5:ea:ba:72:17:f8:ca:ea:a5:fd:55:44:08:aa: 4b:00:5f:5b:13:03:45:ab:1a:29:f2:08:26:f3:cb:53:d3:67: ba:78:94:5c:aa:83:ec:8c:2a:69:5e:f9:0a:8d:18:77:16:90: bb:40:62:e3:8f:a7:ef:f3:7b:5c:27:5f:c8:3e:1f:b3:75:a1: fb:b5:e9:cb -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAmIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkFBOTExMTAvBgNVBAUTKEEwQzgwQ0VFMDYzQzlDQzgyQ0RDQjBCQzc0NUM0RkU0 NkREMDI2NTcwHhcNMjYwNDE3MDIzNzQ4WhcNMjYwNDI0MDIzNzQ4WjAYMRYwFAYD VQQDEw02OWUxOWNmZC05M2I3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnJv5CSfrS1SR/8Mi01bnaDabf6iKg9S9y42ExLDfWU1/6HdmncYCdINILbho u4ElXHLzx6QartwpmtoCm7V/APF+IAN6V0d4R37C5U10cTJ122yjE5VS+JQ5Bp57 05vu28iNjT7GmUk4ffDiUnVn0xCAky2Y+Y21rYj3FaP0Pqfro8bYPsNK0hsEyfvU i9ry2E8iHJmz/mUh5c+leRpx3Y+6yDkyfbQsmtp1aDkahucBTCq8ALevhzmY5lnB h3w8EYguUwpD7qGVQdVlW2PCkXVCKKN3KDqA/BhTjuK95wHWmFksCVM4GefjO+Gv utRXEDmlIXbbHABwO1gG2kx9EQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFbwO3Tt K4nZS1Eyd52AaMiS/WZGMB8GA1UdIwQYMBaAFKDIDO4GPJzILNywvHRcT+Rt0CZX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQUE5MS85NDIwRDIxMDBB NUExMUVFQTNGNUI0NDFDNEY5QUUwMi9vTWdNN2dZOG5NZ3MzTEM4ZEZ4UDVHM1FK bGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29NZ003Z1k4bk1nczNMQzhkRnhQNUczUUpsYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QUE5MS85NDIwRDIxMDBBNUExMUVFQTNGNUI0NDFDNEY5QUUwMi9vTWdNN2dZOG5N Z3MzTEM4ZEZ4UDVHM1FKbGMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAKvnsNdBUqSmVJIhJ+GgLelFbUS7KNlo8sqpcw/wPVPX9NJwcNLPVdZ46CKpL Ml7WQNh7avKdnBqJZ5PM0ZmgDK7qy3tMGXkE+DK2Dfwpr01p6CjMkfY3sv6QbDBh Oe+t93WDlACfxhqfi6qSxFneOjW7+hAMLYO7ShAD+UyG46w3qUvYWfzznKpBgffv Rh0Fb1wI4WAhDvYWY9R3DcEVt6wLNt+afjbBAqhvHOs3Za88UfG5NBFSueXqunIX +Mrqpf1VRAiqSwBfWxMDRasaKfIIJvPLU9NnuniUXKqD7IwqaV75Co0YdxaQu0Bi 44+n7/N7XCdfyD4fs3Wh+7Xpyw== -----END CERTIFICATE-----Generated at Fri Apr 17 10:00:22 2026 by rpki-client