$ rpki-client -vvf rpki.apnic.net/member_repository/A912720E/5E51D45C09D511EEA38A7480C4F9AE02/oo2gvpAdmDpDPYM1idFnv0hvZPw.mft File: oo2gvpAdmDpDPYM1idFnv0hvZPw.mft (raw, json) Hash identifier: yktpP3rIiMI6DOB122Yl9c3iHzrZ+5nzJRsjCdbEmNI= Subject key identifier: 86:B5:66:23:B9:AB:CA:AC:FD:15:33:2E:55:EE:C3:47:1B:2F:D0:CB Authority key identifier: A2:8D:A0:BE:90:1D:98:3A:43:3D:83:35:89:D1:67:BF:48:6F:64:FC Certificate issuer: /CN=A912720E/serialNumber=A28DA0BE901D983A433D833589D167BF486F64FC Certificate serial: 0216 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oo2gvpAdmDpDPYM1idFnv0hvZPw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912720E/5E51D45C09D511EEA38A7480C4F9AE02/oo2gvpAdmDpDPYM1idFnv0hvZPw.mft Manifest number: 0210 Signing time: Sun 05 Apr 2026 02:28:42 +0000 Manifest this update: Sun 05 Apr 2026 02:28:42 +0000 Manifest next update: Sun 12 Apr 2026 02:28:42 +0000 Files and hashes: 1: oo2gvpAdmDpDPYM1idFnv0hvZPw.crl (hash: q1byhSv37OQQaSQhezzT1qYGmr/sJNN7jsp6F4UH7dY=) 2: DB27568209DA11EEBA18A082C4F9AE02.roa (hash: bQjm4G+Xbuc3BrxcneYGH9ivdneUdSDZ8ioYNeVkHc0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912720E/5E51D45C09D511EEA38A7480C4F9AE02/oo2gvpAdmDpDPYM1idFnv0hvZPw.crl rsync://rpki.apnic.net/member_repository/A912720E/5E51D45C09D511EEA38A7480C4F9AE02/oo2gvpAdmDpDPYM1idFnv0hvZPw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oo2gvpAdmDpDPYM1idFnv0hvZPw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 02:28:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 534 (0x216) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912720E, serialNumber=A28DA0BE901D983A433D833589D167BF486F64FC Validity Not Before: Apr 5 02:28:42 2026 GMT Not After : Apr 12 02:28:42 2026 GMT Subject: CN=69d1c8da-b988 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:e1:42:2b:7d:21:7b:0e:58:05:26:9a:ff:06: 77:76:cd:88:33:83:c4:ba:ad:57:2a:e5:dc:fc:dd: 0f:fd:85:83:92:f6:e3:44:b6:a8:a7:3f:4b:ae:1b: fe:0f:ea:3e:f1:1b:ca:13:9e:7e:be:49:c8:43:80: 21:3a:94:ed:69:bb:5b:32:0c:7f:5e:bf:94:c1:ca: 19:da:e1:ee:38:2f:a7:5b:e1:c4:d8:7a:33:99:f5: ba:21:4b:1e:c2:54:fc:f2:04:44:97:b2:7f:82:8f: 3f:f5:68:c9:a5:03:e8:16:0d:69:b6:a7:3b:66:4b: 66:77:15:aa:23:b1:19:4f:24:60:33:f9:1f:2a:3b: 6e:af:f2:b0:ee:a4:eb:8a:58:24:a6:b3:9f:c5:1f: 69:43:b1:b7:57:dc:a4:1a:e1:ca:48:f0:57:e1:b0: da:8e:aa:df:4b:a1:1f:d7:fd:f1:db:28:a1:24:73: 45:75:b9:af:a9:5a:89:ca:45:f9:6b:7e:69:3f:7f: b6:e0:6e:32:97:89:f1:86:e2:dc:2f:3d:eb:7a:e7: 33:a9:d5:3f:90:40:d9:5a:dd:44:0d:ca:c1:c5:35: 9b:d3:29:95:07:32:3e:54:fe:11:73:39:b8:34:cb: 8a:41:a6:6a:8d:df:23:9f:ba:04:4f:06:68:e0:8b: ed:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:B5:66:23:B9:AB:CA:AC:FD:15:33:2E:55:EE:C3:47:1B:2F:D0:CB X509v3 Authority Key Identifier: keyid:A2:8D:A0:BE:90:1D:98:3A:43:3D:83:35:89:D1:67:BF:48:6F:64:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912720E/5E51D45C09D511EEA38A7480C4F9AE02/oo2gvpAdmDpDPYM1idFnv0hvZPw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oo2gvpAdmDpDPYM1idFnv0hvZPw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912720E/5E51D45C09D511EEA38A7480C4F9AE02/oo2gvpAdmDpDPYM1idFnv0hvZPw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:d2:ed:8a:3f:37:75:a8:20:ba:cf:d7:b2:a9:88:1b:d5:3f: 07:83:a5:45:a0:c1:6d:ba:eb:8d:08:9d:07:b2:68:d2:1b:f3: dc:2a:c7:df:8f:4a:04:25:7d:db:f0:cd:d7:80:d6:8b:d3:30: a9:33:37:42:77:5b:ac:d5:94:25:16:33:ec:6f:6d:a2:0b:4d: 91:c5:7c:ab:17:7b:e7:56:88:f5:06:40:d5:1e:0d:90:d6:ab: 7c:13:ec:04:e0:06:ea:63:4e:2e:43:29:67:15:c1:53:55:2a: 1a:d3:67:3f:d3:88:3e:95:85:16:77:1f:be:e4:cb:15:65:a6: 00:25:58:fc:99:a8:ee:a8:92:b7:a3:a8:74:d0:1f:56:39:75: 1f:5a:27:3b:41:92:ad:5e:8f:f8:93:2a:21:70:f1:46:51:67: 4a:a6:e8:04:eb:2b:a5:1b:20:0c:4d:fa:06:09:06:b0:77:04: 18:0d:20:8b:c9:04:5b:44:8a:99:f3:d5:71:a8:1a:25:57:0d: 96:28:53:21:1f:5e:5f:38:81:0e:b7:01:f1:de:5c:26:f9:74: 01:2d:6e:28:5a:e0:eb:95:93:ca:a7:91:00:94:ad:6b:f9:6a: dc:22:07:21:b5:ee:3b:f0:3e:0a:a4:d5:cc:7a:5e:b9:80:9e: b3:24:c1:a2 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAhYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjcyMEUxMTAvBgNVBAUTKEEyOERBMEJFOTAxRDk4M0E0MzNEODMzNTg5RDE2N0JG NDg2RjY0RkMwHhcNMjYwNDA1MDIyODQyWhcNMjYwNDEyMDIyODQyWjAYMRYwFAYD VQQDEw02OWQxYzhkYS1iOTg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAruFCK30hew5YBSaa/wZ3ds2IM4PEuq1XKuXc/N0P/YWDkvbjRLaopz9Lrhv+ D+o+8RvKE55+vknIQ4AhOpTtabtbMgx/Xr+UwcoZ2uHuOC+nW+HE2HozmfW6IUse wlT88gREl7J/go8/9WjJpQPoFg1ptqc7ZktmdxWqI7EZTyRgM/kfKjtur/Kw7qTr ilgkprOfxR9pQ7G3V9ykGuHKSPBX4bDajqrfS6Ef1/3x2yihJHNFdbmvqVqJykX5 a35pP3+24G4yl4nxhuLcLz3reuczqdU/kEDZWt1EDcrBxTWb0ymVBzI+VP4Rczm4 NMuKQaZqjd8jn7oETwZo4IvtKwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIa1ZiO5 q8qs/RUzLlXuw0cbL9DLMB8GA1UdIwQYMBaAFKKNoL6QHZg6Qz2DNYnRZ79Ib2T8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzIwRS81RTUxRDQ1QzA5 RDUxMUVFQTM4QTc0ODBDNEY5QUUwMi9vbzJndnBBZG1EcERQWU0xaWRGbnYwaHZa UHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29vMmd2cEFkbURwRFBZTTFpZEZudjBodlpQdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NzIwRS81RTUxRDQ1QzA5RDUxMUVFQTM4QTc0ODBDNEY5QUUwMi9vbzJndnBBZG1E cERQWU0xaWRGbnYwaHZaUHcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAn9Ltij83daggus/XsqmIG9U/B4OlRaDBbbrrjQidB7Jo0hvz3CrH349KBCV9 2/DN14DWi9MwqTM3QndbrNWUJRYz7G9togtNkcV8qxd751aI9QZA1R4NkNarfBPs BOAG6mNOLkMpZxXBU1UqGtNnP9OIPpWFFncfvuTLFWWmACVY/Jmo7qiSt6OodNAf Vjl1H1onO0GSrV6P+JMqIXDxRlFnSqboBOsrpRsgDE36BgkGsHcEGA0gi8kEW0SK mfPVcagaJVcNlihTIR9eXziBDrcB8d5cJvl0AS1uKFrg65WTyqeRAJSta/lq3CIH IbXuO/A+CqTVzHpeuYCesyTBog== -----END CERTIFICATE-----Generated at Sun Apr 5 19:39:45 2026 by rpki-client