$ rpki-client -vvf rpki.apnic.net/member_repository/A91613AB/9CF7ECDA6F8B11ED8FAE3C11C4F9AE02/OQGvSpP--q64ecyfWZTk5_Aa-Dg.mft File: OQGvSpP--q64ecyfWZTk5_Aa-Dg.mft (raw, json) Hash identifier: SBq5QDKbzzBBC2CQhrlHqdCecxUz9PYZD18qrKzonS8= Subject key identifier: BF:BB:39:47:3C:CC:15:9E:ED:A5:B4:E1:79:22:A6:46:4E:E3:8C:94 Authority key identifier: 39:01:AF:4A:93:FE:FA:AE:B8:79:CC:9F:59:94:E4:E7:F0:1A:F8:38 Certificate issuer: /CN=A91613AB/serialNumber=3901AF4A93FEFAAEB879CC9F5994E4E7F01AF838 Certificate serial: 0296 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OQGvSpP--q64ecyfWZTk5_Aa-Dg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91613AB/9CF7ECDA6F8B11ED8FAE3C11C4F9AE02/OQGvSpP--q64ecyfWZTk5_Aa-Dg.mft Manifest number: 0283 Signing time: Sun 05 Apr 2026 01:32:12 +0000 Manifest this update: Sun 05 Apr 2026 01:32:12 +0000 Manifest next update: Sun 12 Apr 2026 01:32:12 +0000 Files and hashes: 1: OQGvSpP--q64ecyfWZTk5_Aa-Dg.crl (hash: YlXq5S/fbZNcb8ZQ40c/msU8tFNkPRs2Ur6KgW+cB4o=) 2: 65AFE18C91DB11EFBC4C2A3EC4F9AE02.roa (hash: 99MSdD0Bt5MeBMSX17ngnXwJ7ZzUJ4PBVC3nYuIVduQ=) 3: A50FD050DA7911EDB0D3866BC4F9AE02.roa (hash: wHMAYibew+x1AYfuE7BluYMkxk01iW8RsGQGMAVOxuw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91613AB/9CF7ECDA6F8B11ED8FAE3C11C4F9AE02/OQGvSpP--q64ecyfWZTk5_Aa-Dg.crl rsync://rpki.apnic.net/member_repository/A91613AB/9CF7ECDA6F8B11ED8FAE3C11C4F9AE02/OQGvSpP--q64ecyfWZTk5_Aa-Dg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OQGvSpP--q64ecyfWZTk5_Aa-Dg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 01:32:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 662 (0x296) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91613AB, serialNumber=3901AF4A93FEFAAEB879CC9F5994E4E7F01AF838 Validity Not Before: Apr 5 01:32:12 2026 GMT Not After : Apr 12 01:32:12 2026 GMT Subject: CN=69d1bb9c-a647 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:8e:8b:dd:00:1f:c2:38:15:cb:ff:f2:06:e2: 83:02:af:a5:8d:75:51:9f:11:0c:fe:8c:56:68:50: a3:fd:55:5d:2d:98:4e:60:43:d4:e3:a9:7f:33:b3: 3f:4e:0c:0b:dc:24:e3:b8:62:7d:bb:fa:10:85:7a: b4:f9:39:01:f3:e4:fb:79:f0:e8:37:9a:c3:d4:80: 63:9e:68:c3:82:f1:5a:6f:9e:8c:86:3d:12:44:1a: 39:7a:20:5e:fa:ff:f0:a8:4c:bb:c0:dc:93:f9:7c: d8:b4:1d:df:61:2d:54:6b:2b:52:76:45:6b:99:04: a8:c0:83:80:06:c6:85:e4:fd:02:13:e9:f6:b1:d2: 68:8f:a7:bd:46:e4:c5:65:5a:f5:7f:79:d7:2d:62: 62:dd:21:12:a9:e1:ec:ef:cc:64:97:11:6d:dc:da: 1b:40:39:a2:43:fd:d7:bf:c8:25:c4:31:99:7b:27: 7f:15:5e:9a:20:07:8f:8b:61:dc:5e:67:8f:99:50: f5:f5:d7:53:80:57:42:de:af:16:ba:5c:69:d1:c4: a6:6d:66:64:eb:56:52:12:18:12:70:a5:a7:77:c1: d1:96:fb:8f:92:96:b3:2b:fe:d1:5c:50:4b:86:03: 71:cd:ea:5d:17:3d:59:c8:68:29:27:a5:c1:8c:cc: 3b:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:BB:39:47:3C:CC:15:9E:ED:A5:B4:E1:79:22:A6:46:4E:E3:8C:94 X509v3 Authority Key Identifier: keyid:39:01:AF:4A:93:FE:FA:AE:B8:79:CC:9F:59:94:E4:E7:F0:1A:F8:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91613AB/9CF7ECDA6F8B11ED8FAE3C11C4F9AE02/OQGvSpP--q64ecyfWZTk5_Aa-Dg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OQGvSpP--q64ecyfWZTk5_Aa-Dg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91613AB/9CF7ECDA6F8B11ED8FAE3C11C4F9AE02/OQGvSpP--q64ecyfWZTk5_Aa-Dg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b6:f8:14:38:67:fb:3f:dd:7a:34:c9:5e:2c:20:20:d9:4f:cb: 01:f7:44:29:eb:e6:c8:18:22:87:da:f0:65:a4:31:e4:03:92: f6:89:9b:06:62:76:d7:2e:98:89:51:09:af:9c:78:bc:10:98: 72:6d:90:37:d7:d0:34:64:41:7e:7f:82:f8:15:31:9a:76:15: dc:39:75:36:7e:7c:03:10:37:da:dd:8a:44:60:75:d6:b5:14: 3b:51:7a:01:65:3b:c6:82:bd:e8:b8:95:12:77:6b:12:b7:ad: d0:92:aa:cc:bf:59:7b:7e:1f:9e:2e:44:67:36:51:e5:ca:87: 36:79:c0:7d:07:9e:1e:a3:11:e6:0d:bb:94:8e:6c:18:ae:4c: 28:b4:62:bd:0d:67:2b:d9:0f:40:63:49:5e:d2:a0:e7:12:07: 28:33:38:e3:b8:42:45:dd:a7:06:22:ae:4e:a5:31:dd:3e:8b: a1:ce:c0:38:56:76:8b:52:7d:c0:e2:94:3c:3a:52:dc:42:56: 4f:95:6e:03:85:7f:11:27:0f:0c:dd:af:e9:cb:ae:31:38:21: 12:56:97:9c:ff:fb:87:72:bb:fc:3c:57:cb:d9:43:dd:cd:94: 84:41:9f:ff:aa:99:bd:53:bc:93:ef:2c:8d:fb:7f:5d:81:e5: 75:11:95:92 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICApYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjEzQUIxMTAvBgNVBAUTKDM5MDFBRjRBOTNGRUZBQUVCODc5Q0M5RjU5OTRFNEU3 RjAxQUY4MzgwHhcNMjYwNDA1MDEzMjEyWhcNMjYwNDEyMDEzMjEyWjAYMRYwFAYD VQQDEw02OWQxYmI5Yy1hNjQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3o6L3QAfwjgVy//yBuKDAq+ljXVRnxEM/oxWaFCj/VVdLZhOYEPU46l/M7M/ TgwL3CTjuGJ9u/oQhXq0+TkB8+T7efDoN5rD1IBjnmjDgvFab56Mhj0SRBo5eiBe +v/wqEy7wNyT+XzYtB3fYS1UaytSdkVrmQSowIOABsaF5P0CE+n2sdJoj6e9RuTF ZVr1f3nXLWJi3SESqeHs78xklxFt3NobQDmiQ/3Xv8glxDGZeyd/FV6aIAePi2Hc XmePmVD19ddTgFdC3q8Wulxp0cSmbWZk61ZSEhgScKWnd8HRlvuPkpazK/7RXFBL hgNxzepdFz1ZyGgpJ6XBjMw7UwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFL+7OUc8 zBWe7aW04XkipkZO44yUMB8GA1UdIwQYMBaAFDkBr0qT/vquuHnMn1mU5OfwGvg4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MTNBQi85Q0Y3RUNEQTZG OEIxMUVEOEZBRTNDMTFDNEY5QUUwMi9PUUd2U3BQLS1xNjRlY3lmV1pUazVfQWEt RGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09RR3ZTcFAtLXE2NGVjeWZXWlRrNV9BYS1EZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MTNBQi85Q0Y3RUNEQTZGOEIxMUVEOEZBRTNDMTFDNEY5QUUwMi9PUUd2U3BQLS1x NjRlY3lmV1pUazVfQWEtRGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAtvgUOGf7P916NMleLCAg2U/LAfdEKevmyBgih9rwZaQx5AOS9ombBmJ21y6Y iVEJr5x4vBCYcm2QN9fQNGRBfn+C+BUxmnYV3Dl1Nn58AxA32t2KRGB11rUUO1F6 AWU7xoK96LiVEndrEret0JKqzL9Ze34fni5EZzZR5cqHNnnAfQeeHqMR5g27lI5s GK5MKLRivQ1nK9kPQGNJXtKg5xIHKDM447hCRd2nBiKuTqUx3T6Loc7AOFZ2i1J9 wOKUPDpS3EJWT5VuA4V/EScPDN2v6cuuMTghElaXnP/7h3K7/DxXy9lD3c2UhEGf /6qZvVO8k+8sjft/XYHldRGVkg== -----END CERTIFICATE-----Generated at Sun Apr 5 19:56:58 2026 by rpki-client