$ rpki-client -vvf rpki.apnic.net/member_repository/A91FB68C/17D103A8EAB211EF846F1337C4F9AE02/oiiPiWTWFpqHlfL07wXg1ebhOwk.mft File: oiiPiWTWFpqHlfL07wXg1ebhOwk.mft (raw, json) Hash identifier: 6JZKsfUKTZ9/tGL1iRMlM1/7msIA2qb2BtZsCfwugz0= Subject key identifier: 33:5A:81:12:47:3E:D2:43:57:C2:0C:2C:29:2B:A2:70:46:25:5A:64 Authority key identifier: A2:28:8F:89:64:D6:16:9A:87:95:F2:F4:EF:05:E0:D5:E6:E1:3B:09 Certificate issuer: /CN=A91FB68C/serialNumber=A2288F8964D6169A8795F2F4EF05E0D5E6E13B09 Certificate serial: FC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiiPiWTWFpqHlfL07wXg1ebhOwk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FB68C/17D103A8EAB211EF846F1337C4F9AE02/oiiPiWTWFpqHlfL07wXg1ebhOwk.mft Manifest number: EE Signing time: Fri 17 Apr 2026 06:18:34 +0000 Manifest this update: Fri 17 Apr 2026 06:18:34 +0000 Manifest next update: Fri 24 Apr 2026 06:18:34 +0000 Files and hashes: 1: oiiPiWTWFpqHlfL07wXg1ebhOwk.crl (hash: G+WG5ii45vneMmnFt97rUhluHQt9l80sHry5Mvz9BMA=) 2: 965254F8278811F09217002CC4F9AE02.roa (hash: 0RhsOifNGasCmCxCAJFq65+7Iqu3gbPwoj7AcEDMVxI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FB68C/17D103A8EAB211EF846F1337C4F9AE02/oiiPiWTWFpqHlfL07wXg1ebhOwk.crl rsync://rpki.apnic.net/member_repository/A91FB68C/17D103A8EAB211EF846F1337C4F9AE02/oiiPiWTWFpqHlfL07wXg1ebhOwk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiiPiWTWFpqHlfL07wXg1ebhOwk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 06:18:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 252 (0xfc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FB68C, serialNumber=A2288F8964D6169A8795F2F4EF05E0D5E6E13B09 Validity Not Before: Apr 17 06:18:34 2026 GMT Not After : Apr 24 06:18:34 2026 GMT Subject: CN=69e1d0ba-8a95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:8e:a4:39:e4:7c:87:79:d1:c2:da:e2:f6:b5: e2:56:25:c1:3e:fc:4b:ce:8c:44:db:e5:5a:de:58: fc:bc:f8:4c:4d:84:56:90:c3:53:96:31:d0:62:9e: 71:c7:ce:b7:b0:49:bd:9a:2e:0f:c1:7f:57:0d:64: 88:23:df:30:0a:d3:89:08:49:93:33:67:25:f8:8d: 88:db:d0:f3:96:ab:f8:8b:ea:51:3a:2d:b4:54:96: aa:33:de:19:c6:d2:8d:8b:48:0e:72:e7:76:0d:f9: 76:7b:f5:f7:e1:8f:7d:a0:f0:6d:d8:1d:0b:77:5a: e4:3c:c1:5e:ce:cf:79:b6:6d:c6:68:2f:1b:66:c9: 9c:ee:8e:7f:f7:dd:1b:2d:a9:c6:4d:51:24:d8:bf: 72:ec:f2:94:30:7c:87:2c:62:53:43:56:76:82:b5: b8:ad:2f:44:b6:7d:a5:85:51:13:f5:4c:16:4d:da: 04:ec:ce:d0:df:04:5f:b9:d3:5b:f7:3c:04:cd:de: a7:de:1a:25:cc:e5:4c:ba:71:3d:43:f6:28:da:5f: 88:71:d5:fe:4a:91:a8:b5:8b:d7:cc:15:4d:45:aa: 9c:fd:9b:1b:aa:85:75:ba:ff:ec:33:91:97:5b:f0: c9:05:3a:8a:0f:26:b2:81:60:3f:aa:85:ce:cc:28: 68:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:5A:81:12:47:3E:D2:43:57:C2:0C:2C:29:2B:A2:70:46:25:5A:64 X509v3 Authority Key Identifier: keyid:A2:28:8F:89:64:D6:16:9A:87:95:F2:F4:EF:05:E0:D5:E6:E1:3B:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FB68C/17D103A8EAB211EF846F1337C4F9AE02/oiiPiWTWFpqHlfL07wXg1ebhOwk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiiPiWTWFpqHlfL07wXg1ebhOwk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FB68C/17D103A8EAB211EF846F1337C4F9AE02/oiiPiWTWFpqHlfL07wXg1ebhOwk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:3c:bf:84:b0:03:e2:d4:cf:45:39:5f:ac:af:87:6c:ca:30: b3:7f:49:df:c1:b8:d1:d7:a7:6f:ab:43:4c:28:fd:e1:a0:c4: 8c:fd:db:dd:83:a6:d9:52:43:ed:07:14:07:77:87:84:99:ee: 67:fc:32:8b:fe:c8:14:87:60:df:5c:01:d4:c7:5a:dd:d6:74: ac:89:2e:7c:3b:51:98:4a:f0:f1:3d:68:a2:f9:f5:0e:80:a8: 49:28:4a:8a:21:fe:6e:ff:12:b5:f9:8c:fd:fa:b1:24:38:82: ea:5a:14:97:9b:79:4f:df:27:4c:34:8c:9e:ad:b2:7b:c0:16: b5:f4:e0:0a:10:cf:6f:79:5d:90:b8:26:8a:bc:be:e2:45:37: 3e:75:5e:3d:b9:c7:65:49:20:ef:d0:10:83:dc:cf:da:97:13: 92:56:58:e4:b6:50:67:2a:98:7c:04:f2:74:e4:84:33:3c:d0: 4d:13:1d:f8:c9:0e:1f:de:1d:1e:47:3c:4f:7b:f1:66:56:bd: aa:10:f2:b9:bd:5a:9a:18:ff:02:5c:8d:a7:67:a1:07:d8:79: fd:7c:80:5a:26:56:10:39:80:1f:a2:09:de:f5:e1:2a:bc:18: 2c:57:5d:d9:e1:2b:de:0d:33:68:f3:39:d3:43:1a:63:f4:e2: a7:8d:01:e4 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAPwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkI2OEMxMTAvBgNVBAUTKEEyMjg4Rjg5NjRENjE2OUE4Nzk1RjJGNEVGMDVFMEQ1 RTZFMTNCMDkwHhcNMjYwNDE3MDYxODM0WhcNMjYwNDI0MDYxODM0WjAYMRYwFAYD VQQDEw02OWUxZDBiYS04YTk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoo6kOeR8h3nRwtri9rXiViXBPvxLzoxE2+Va3lj8vPhMTYRWkMNTljHQYp5x x863sEm9mi4PwX9XDWSII98wCtOJCEmTM2cl+I2I29Dzlqv4i+pROi20VJaqM94Z xtKNi0gOcud2Dfl2e/X34Y99oPBt2B0Ld1rkPMFezs95tm3GaC8bZsmc7o5/990b LanGTVEk2L9y7PKUMHyHLGJTQ1Z2grW4rS9Etn2lhVET9UwWTdoE7M7Q3wRfudNb 9zwEzd6n3holzOVMunE9Q/Yo2l+IcdX+SpGotYvXzBVNRaqc/ZsbqoV1uv/sM5GX W/DJBTqKDyaygWA/qoXOzChokQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDNagRJH PtJDV8IMLCkronBGJVpkMB8GA1UdIwQYMBaAFKIoj4lk1haah5Xy9O8F4NXm4TsJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQjY4Qy8xN0QxMDNBOEVB QjIxMUVGODQ2RjEzMzdDNEY5QUUwMi9vaWlQaVdUV0ZwcUhsZkwwN3dYZzFlYmhP d2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29paVBpV1RXRnBxSGxmTDA3d1hnMWViaE93ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QjY4Qy8xN0QxMDNBOEVBQjIxMUVGODQ2RjEzMzdDNEY5QUUwMi9vaWlQaVdUV0Zw cUhsZkwwN3dYZzFlYmhPd2subWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEATDy/hLAD4tTPRTlfrK+HbMows39J38G40denb6tDTCj94aDEjP3b3YOm2VJD 7QcUB3eHhJnuZ/wyi/7IFIdg31wB1Mda3dZ0rIkufDtRmErw8T1oovn1DoCoSShK iiH+bv8StfmM/fqxJDiC6loUl5t5T98nTDSMnq2ye8AWtfTgChDPb3ldkLgmiry+ 4kU3PnVePbnHZUkg79AQg9zP2pcTklZY5LZQZyqYfATydOSEMzzQTRMd+MkOH94d Hkc8T3vxZla9qhDyub1amhj/AlyNp2ehB9h5/XyAWiZWEDmAH6IJ3vXhKrwYLFdd 2eEr3g0zaPM500MaY/Tip40B5A== -----END CERTIFICATE-----Generated at Fri Apr 17 14:32:25 2026 by rpki-client