$ rpki-client -vvf rpki.apnic.net/member_repository/A91FB297/BBF28DDAD99511F09A18623B64D3641D/oPy-m8tDKKnovMofXhSWrMLOLtk.mft File: oPy-m8tDKKnovMofXhSWrMLOLtk.mft (raw, json) Hash identifier: +wu2mm+xdjvK+x1Q3SZ55dnihSnCbDH+KUInQH7V34w= Subject key identifier: 8C:92:C6:A4:05:B8:88:51:A4:74:06:85:99:4F:81:83:C3:A7:0F:E2 Authority key identifier: A0:FC:BE:9B:CB:43:28:A9:E8:BC:CA:1F:5E:14:96:AC:C2:CE:2E:D9 Certificate issuer: /CN=A91FB297/serialNumber=A0FCBE9BCB4328A9E8BCCA1F5E1496ACC2CE2ED9 Certificate serial: 45 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oPy-m8tDKKnovMofXhSWrMLOLtk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FB297/BBF28DDAD99511F09A18623B64D3641D/oPy-m8tDKKnovMofXhSWrMLOLtk.mft Manifest number: 44 Signing time: Wed 15 Apr 2026 03:46:01 +0000 Manifest this update: Wed 15 Apr 2026 03:46:00 +0000 Manifest next update: Wed 22 Apr 2026 03:46:00 +0000 Files and hashes: 1: oPy-m8tDKKnovMofXhSWrMLOLtk.crl (hash: FNFJAq5wj60VukdTPYgoA2PDxpAT/siWaByFShKW6UQ=) 2: 7D6CF15E299511F1AB285139C2833773.roa (hash: zrVJVWy7b99+fAaJlDs/efiLXBbFoQUYnwnxhru+Sag=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FB297/BBF28DDAD99511F09A18623B64D3641D/oPy-m8tDKKnovMofXhSWrMLOLtk.crl rsync://rpki.apnic.net/member_repository/A91FB297/BBF28DDAD99511F09A18623B64D3641D/oPy-m8tDKKnovMofXhSWrMLOLtk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oPy-m8tDKKnovMofXhSWrMLOLtk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 03:46:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69 (0x45) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FB297, serialNumber=A0FCBE9BCB4328A9E8BCCA1F5E1496ACC2CE2ED9 Validity Not Before: Apr 15 03:46:00 2026 GMT Not After : Apr 22 03:46:00 2026 GMT Subject: CN=69df09f9-d835 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:fa:97:2e:e1:be:87:9d:79:e8:98:e5:7b:04: e6:d4:8e:f3:61:3d:01:10:9d:31:d2:8b:73:60:c0: 8f:64:bc:48:ef:06:5d:5a:05:4c:d1:c6:5a:12:d8: 67:6f:79:77:57:e2:9e:9f:8a:44:b8:19:29:cf:b6: ea:ce:30:ee:8b:82:d8:e9:07:32:f6:77:04:b0:c8: 1b:24:49:ed:d3:b5:9a:de:2a:74:6c:b0:f7:66:84: d8:5c:af:97:b5:c2:8d:50:54:5a:84:42:9c:9f:36: e5:85:2a:50:38:46:f7:7b:4c:42:80:30:d7:b3:8b: e9:d1:a9:53:34:06:7a:8c:b1:19:64:0a:1c:2a:fd: d3:0e:26:8c:81:37:4c:9f:3b:da:47:4a:1c:58:75: 8a:25:2b:c5:53:67:93:a9:ed:fd:79:b0:a9:db:81: 9c:17:03:3a:eb:2d:fb:1b:3c:6a:3f:02:66:e0:b5: 5a:b9:3a:de:08:b5:5d:33:cb:85:48:80:73:59:0b: 78:34:cf:48:a0:f6:8b:62:a7:fb:be:67:46:ea:27: 31:2e:ae:ed:2e:1e:cb:cc:f2:64:77:12:3e:b2:e6: 3d:71:42:32:5a:67:0b:6c:31:80:16:af:19:b0:d9: a9:72:33:66:01:02:e2:52:8b:cd:9a:93:73:e5:92: 43:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:92:C6:A4:05:B8:88:51:A4:74:06:85:99:4F:81:83:C3:A7:0F:E2 X509v3 Authority Key Identifier: keyid:A0:FC:BE:9B:CB:43:28:A9:E8:BC:CA:1F:5E:14:96:AC:C2:CE:2E:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FB297/BBF28DDAD99511F09A18623B64D3641D/oPy-m8tDKKnovMofXhSWrMLOLtk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oPy-m8tDKKnovMofXhSWrMLOLtk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FB297/BBF28DDAD99511F09A18623B64D3641D/oPy-m8tDKKnovMofXhSWrMLOLtk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:03:44:74:a2:b3:5b:47:71:69:bd:c0:a5:8f:b8:c7:82:c6: e8:1f:67:58:83:99:6a:dd:a6:ee:f6:4f:f8:29:10:99:6d:73: 17:ae:ad:e4:69:e0:1c:4f:9d:3e:49:f1:5b:43:77:a5:d0:cc: 84:34:bc:1a:9b:cd:15:e1:96:4c:85:9c:51:b5:db:f2:f5:5c: b2:a2:a6:0d:5e:65:3b:d9:09:c4:34:ac:25:f3:b8:36:c7:f5: c5:40:34:cf:9f:51:a7:d5:e5:02:67:ce:c5:26:f5:e8:e2:da: 55:b8:5d:ab:f1:ec:d3:cb:e7:ce:06:bb:eb:34:c8:df:10:5c: 2c:f4:3a:01:2b:49:80:c5:43:e3:b3:fc:ea:eb:30:40:80:1e: 02:ce:64:23:5d:74:46:b3:b0:97:46:62:d2:d8:9a:3a:c8:bd: 18:3b:00:b9:0e:1d:c1:26:26:f7:71:7e:b4:09:45:02:4b:2b: ab:dd:86:de:1d:14:bf:3e:20:f8:f0:f9:73:0f:bf:74:7d:c4: 20:1a:bc:db:c1:33:6c:62:bb:6c:bc:d2:9c:2c:6a:05:1a:f8: f1:b7:f8:0d:cd:9a:9a:9c:cd:fa:5b:c3:97:b0:8d:b6:97:71: f7:91:d9:97:70:9e:25:d1:12:5a:10:62:4f:76:6e:65:b2:6c: 6b:a1:56:47 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBRTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG QjI5NzExMC8GA1UEBRMoQTBGQ0JFOUJDQjQzMjhBOUU4QkNDQTFGNUUxNDk2QUND MkNFMkVEOTAeFw0yNjA0MTUwMzQ2MDBaFw0yNjA0MjIwMzQ2MDBaMBgxFjAUBgNV BAMTDTY5ZGYwOWY5LWQ4MzUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDD+pcu4b6HnXnomOV7BObUjvNhPQEQnTHSi3NgwI9kvEjvBl1aBUzRxloS2Gdv eXdX4p6fikS4GSnPturOMO6LgtjpBzL2dwSwyBskSe3TtZreKnRssPdmhNhcr5e1 wo1QVFqEQpyfNuWFKlA4Rvd7TEKAMNezi+nRqVM0BnqMsRlkChwq/dMOJoyBN0yf O9pHShxYdYolK8VTZ5Op7f15sKnbgZwXAzrrLfsbPGo/AmbgtVq5Ot4ItV0zy4VI gHNZC3g0z0ig9otip/u+Z0bqJzEuru0uHsvM8mR3Ej6y5j1xQjJaZwtsMYAWrxmw 2alyM2YBAuJSi82ak3PlkkPxAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUjJLGpAW4 iFGkdAaFmU+Bg8OnD+IwHwYDVR0jBBgwFoAUoPy+m8tDKKnovMofXhSWrMLOLtkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZCMjk3L0JCRjI4RERBRDk5 NTExRjA5QTE4NjIzQjY0RDM2NDFEL29QeS1tOHRES0tub3ZNb2ZYaFNXck1MT0x0 ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvb1B5LW04dERLS25vdk1vZlhoU1dyTUxPTHRrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZC Mjk3L0JCRjI4RERBRDk5NTExRjA5QTE4NjIzQjY0RDM2NDFEL29QeS1tOHRES0tu b3ZNb2ZYaFNXck1MT0x0ay5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQBsA0R0orNbR3FpvcClj7jHgsboH2dYg5lq3abu9k/4KRCZbXMXrq3kaeAcT50+ SfFbQ3el0MyENLwam80V4ZZMhZxRtdvy9VyyoqYNXmU72QnENKwl87g2x/XFQDTP n1Gn1eUCZ87FJvXo4tpVuF2r8ezTy+fOBrvrNMjfEFws9DoBK0mAxUPjs/zq6zBA gB4CzmQjXXRGs7CXRmLS2Jo6yL0YOwC5Dh3BJib3cX60CUUCSyur3YbeHRS/PiD4 8PlzD790fcQgGrzbwTNsYrtsvNKcLGoFGvjxt/gNzZqanM36W8OXsI22l3H3kdmX cJ4l0RJaEGJPdm5lsmxroVZH -----END CERTIFICATE-----Generated at Fri Apr 17 04:13:35 2026 by rpki-client