$ rpki-client -vvf rpki.apnic.net/member_repository/A918377D/9F7C8152B4B111EEB0ADE352C4F9AE02/ofrVQukeAX0lfVGxT_XDW4lCnvU.mft File: ofrVQukeAX0lfVGxT_XDW4lCnvU.mft (raw, json) Hash identifier: W1qQGjHPW1gdqdOnKkrNRr24eZfn8a8tnW/rU644snc= Subject key identifier: 15:A9:97:0F:33:0E:AD:C4:E9:5C:D2:82:B4:4B:16:28:AD:56:3F:BD Authority key identifier: A1:FA:D5:42:E9:1E:01:7D:25:7D:51:B1:4F:F5:C3:5B:89:42:9E:F5 Certificate issuer: /CN=A918377D/serialNumber=A1FAD542E91E017D257D51B14FF5C35B89429EF5 Certificate serial: 01A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ofrVQukeAX0lfVGxT_XDW4lCnvU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918377D/9F7C8152B4B111EEB0ADE352C4F9AE02/ofrVQukeAX0lfVGxT_XDW4lCnvU.mft Manifest number: 01A1 Signing time: Sun 05 Apr 2026 03:38:46 +0000 Manifest this update: Sun 05 Apr 2026 03:38:45 +0000 Manifest next update: Sun 12 Apr 2026 03:38:45 +0000 Files and hashes: 1: ofrVQukeAX0lfVGxT_XDW4lCnvU.crl (hash: IHUiFpg7Am34A7/Aea48Fd87haH4xxJUGjGG0CNRigQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918377D/9F7C8152B4B111EEB0ADE352C4F9AE02/ofrVQukeAX0lfVGxT_XDW4lCnvU.crl rsync://rpki.apnic.net/member_repository/A918377D/9F7C8152B4B111EEB0ADE352C4F9AE02/ofrVQukeAX0lfVGxT_XDW4lCnvU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ofrVQukeAX0lfVGxT_XDW4lCnvU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 03:38:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 417 (0x1a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918377D, serialNumber=A1FAD542E91E017D257D51B14FF5C35B89429EF5 Validity Not Before: Apr 5 03:38:45 2026 GMT Not After : Apr 12 03:38:45 2026 GMT Subject: CN=69d1d946-078b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:8b:47:c1:3d:eb:25:5c:45:9a:f3:d6:4a:b9: 24:51:59:9c:fb:af:90:87:fc:c4:52:a3:9b:a3:ba: 92:45:3c:b9:4a:89:48:5c:a6:23:67:dc:39:29:80: ee:53:4d:a7:3c:ca:a1:6d:5d:41:d7:20:e5:19:cf: 09:3b:7d:f5:e8:b5:11:0c:2c:33:3a:ba:d3:e3:66: d1:6c:89:a7:ef:ce:75:6c:df:e5:f6:dd:5e:53:d0: e6:93:f7:43:2d:67:40:96:6f:54:36:07:08:1b:c3: ac:0a:fd:6e:1b:5c:fe:22:1c:08:e5:23:06:80:5a: f7:94:0c:46:bb:c6:65:91:9e:90:ba:54:eb:0b:fa: 37:04:b1:21:53:22:09:76:34:55:97:0a:b1:21:bf: a2:f3:a4:fc:41:67:22:2b:99:68:d7:d5:fd:0e:d5: 4e:3c:8e:f3:3a:05:13:57:25:57:ca:24:57:40:2c: 24:2b:27:cb:0f:a2:21:5a:d2:ea:9f:d8:b6:a6:93: 98:cd:fa:1b:60:b6:f0:c6:b4:3e:25:42:2e:20:c2: ee:71:60:32:88:4a:e2:64:b1:76:91:5d:50:1e:dd: 92:ad:55:03:eb:5c:18:f8:07:f3:5d:75:38:66:c0: 09:8f:3c:29:90:63:b9:ad:e5:08:65:19:74:d2:f0: 76:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:A9:97:0F:33:0E:AD:C4:E9:5C:D2:82:B4:4B:16:28:AD:56:3F:BD X509v3 Authority Key Identifier: keyid:A1:FA:D5:42:E9:1E:01:7D:25:7D:51:B1:4F:F5:C3:5B:89:42:9E:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918377D/9F7C8152B4B111EEB0ADE352C4F9AE02/ofrVQukeAX0lfVGxT_XDW4lCnvU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ofrVQukeAX0lfVGxT_XDW4lCnvU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918377D/9F7C8152B4B111EEB0ADE352C4F9AE02/ofrVQukeAX0lfVGxT_XDW4lCnvU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:98:a1:a0:ee:e1:0c:1c:42:85:97:e8:b9:a2:1c:9a:82:04: 62:81:a0:e2:fe:eb:73:8a:4f:59:9d:14:5e:8a:b2:2a:61:fb: 29:3d:83:55:b7:98:81:d7:c7:53:2d:19:6d:36:46:b0:a5:8c: 93:36:9b:5f:22:8d:57:d3:c7:cd:f2:8c:5e:91:7a:09:57:46: 6e:70:47:60:9d:d0:fe:84:b9:af:0e:4a:be:e1:89:4e:b1:f3: 26:df:7f:8c:d8:8d:57:70:ab:1c:84:a1:27:ba:e2:22:18:56: 51:ed:b0:82:84:86:6f:94:a4:c7:29:df:f0:c0:95:d0:68:cf: 85:44:5a:72:55:61:45:c3:f3:4a:ff:92:9a:fb:df:9f:6f:e2: ea:05:e7:1c:ba:fa:4e:93:af:ad:8e:92:21:1a:3d:43:7e:c3: a0:c3:a6:3d:cd:31:ed:be:5f:99:6e:f3:9e:84:2c:34:05:7a: f4:54:29:78:ed:05:2c:12:ce:75:ac:97:94:4e:36:29:0c:0a: 21:50:2b:64:0a:d9:bb:a4:8c:aa:16:f3:a8:61:72:5c:48:a2: 80:e1:73:90:53:98:1e:26:72:e5:29:74:1c:21:66:96:c2:e8: 32:8d:5c:fc:94:db:09:24:72:a7:19:99:fc:a8:e5:d3:94:3b: d5:51:dd:51 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAaEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODM3N0QxMTAvBgNVBAUTKEExRkFENTQyRTkxRTAxN0QyNTdENTFCMTRGRjVDMzVC ODk0MjlFRjUwHhcNMjYwNDA1MDMzODQ1WhcNMjYwNDEyMDMzODQ1WjAYMRYwFAYD VQQDEw02OWQxZDk0Ni0wNzhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoYtHwT3rJVxFmvPWSrkkUVmc+6+Qh/zEUqObo7qSRTy5SolIXKYjZ9w5KYDu U02nPMqhbV1B1yDlGc8JO3316LURDCwzOrrT42bRbImn7851bN/l9t1eU9Dmk/dD LWdAlm9UNgcIG8OsCv1uG1z+IhwI5SMGgFr3lAxGu8ZlkZ6QulTrC/o3BLEhUyIJ djRVlwqxIb+i86T8QWciK5lo19X9DtVOPI7zOgUTVyVXyiRXQCwkKyfLD6IhWtLq n9i2ppOYzfobYLbwxrQ+JUIuIMLucWAyiEriZLF2kV1QHt2SrVUD61wY+AfzXXU4 ZsAJjzwpkGO5reUIZRl00vB2twIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBWplw8z Dq3E6VzSgrRLFiitVj+9MB8GA1UdIwQYMBaAFKH61ULpHgF9JX1RsU/1w1uJQp71 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Mzc3RC85RjdDODE1MkI0 QjExMUVFQjBBREUzNTJDNEY5QUUwMi9vZnJWUXVrZUFYMGxmVkd4VF9YRFc0bENu dlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29mclZRdWtlQVgwbGZWR3hUX1hEVzRsQ252VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Mzc3RC85RjdDODE1MkI0QjExMUVFQjBBREUzNTJDNEY5QUUwMi9vZnJWUXVrZUFY MGxmVkd4VF9YRFc0bENudlUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAsJihoO7hDBxChZfouaIcmoIEYoGg4v7rc4pPWZ0UXoqyKmH7KT2DVbeYgdfH Uy0ZbTZGsKWMkzabXyKNV9PHzfKMXpF6CVdGbnBHYJ3Q/oS5rw5KvuGJTrHzJt9/ jNiNV3CrHIShJ7riIhhWUe2wgoSGb5Skxynf8MCV0GjPhURaclVhRcPzSv+Smvvf n2/i6gXnHLr6TpOvrY6SIRo9Q37DoMOmPc0x7b5fmW7znoQsNAV69FQpeO0FLBLO dayXlE42KQwKIVArZArZu6SMqhbzqGFyXEiigOFzkFOYHiZy5Sl0HCFmlsLoMo1c /JTbCSRypxmZ/Kjl05Q71VHdUQ== -----END CERTIFICATE-----Generated at Sun Apr 5 20:59:11 2026 by rpki-client