$ rpki-client -vvf rpki.apnic.net/member_repository/A9186249/A1F2343CD17011EEA6151C4DC4F9AE02/rOKNq-U2SWN_puTjId4bY0Y7g88.mft File: rOKNq-U2SWN_puTjId4bY0Y7g88.mft (raw, json) Hash identifier: oPwmxH/vmIHgzJmBD8a0aro9fQUqNmAys6a5Mqyvc+8= Subject key identifier: B2:C3:E2:CE:4E:A3:85:F2:55:34:31:B3:3C:28:A4:A7:D5:15:F9:E2 Authority key identifier: AC:E2:8D:AB:E5:36:49:63:7F:A6:E4:E3:21:DE:1B:63:46:3B:83:CF Certificate issuer: /CN=A9186249/serialNumber=ACE28DABE53649637FA6E4E321DE1B63463B83CF Certificate serial: 0198 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rOKNq-U2SWN_puTjId4bY0Y7g88.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186249/A1F2343CD17011EEA6151C4DC4F9AE02/rOKNq-U2SWN_puTjId4bY0Y7g88.mft Manifest number: 0191 Signing time: Sun 05 Apr 2026 03:53:38 +0000 Manifest this update: Sun 05 Apr 2026 03:53:38 +0000 Manifest next update: Sun 12 Apr 2026 03:53:38 +0000 Files and hashes: 1: rOKNq-U2SWN_puTjId4bY0Y7g88.crl (hash: VoomvmFcOcJsWApXhUz6M/mlwPLt3gHUhmsCWQR1U94=) 2: E7F6D15AD17411EE87F7325DC4F9AE02.roa (hash: zQuRWZynPjX+xVieuFFOjcx7urcSlA8n96bIrvyW0V4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186249/A1F2343CD17011EEA6151C4DC4F9AE02/rOKNq-U2SWN_puTjId4bY0Y7g88.crl rsync://rpki.apnic.net/member_repository/A9186249/A1F2343CD17011EEA6151C4DC4F9AE02/rOKNq-U2SWN_puTjId4bY0Y7g88.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rOKNq-U2SWN_puTjId4bY0Y7g88.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 03:53:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 408 (0x198) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186249, serialNumber=ACE28DABE53649637FA6E4E321DE1B63463B83CF Validity Not Before: Apr 5 03:53:38 2026 GMT Not After : Apr 12 03:53:38 2026 GMT Subject: CN=69d1dcc2-b5c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:ed:75:75:29:51:16:0d:a9:ff:34:b6:e5:06: 8f:87:8d:da:96:7d:b9:a5:5c:e1:a1:bd:48:30:ca: 50:f1:de:1c:1a:85:a5:ce:35:9e:7e:5f:00:2c:25: 2e:37:4b:cb:78:52:e6:60:ef:70:77:fe:ff:d5:2d: b4:1b:87:de:98:be:8b:cc:b6:3a:1a:35:58:91:bf: ac:e3:29:92:fa:fd:4b:38:60:93:eb:a9:23:1c:cc: a4:ea:7b:fd:1c:5d:c1:aa:c3:62:7f:f5:61:28:e5: 91:18:d6:90:ce:c2:e8:06:c8:5d:fa:7c:79:0e:aa: d1:f0:56:28:18:21:09:b5:63:e3:5c:29:8d:9c:ae: c0:87:09:dc:d1:d5:e5:6a:18:af:81:c1:1c:85:19: 3a:f3:a0:40:d8:b5:4b:49:b9:68:a1:0b:e0:5e:7f: 5f:81:6b:21:00:47:fe:92:61:96:60:ce:88:43:26: 38:80:46:51:64:c7:ba:bf:0b:41:59:e3:6f:71:5b: 92:fe:e6:88:e8:8e:1a:e0:47:ca:b5:d7:70:45:05: 79:31:c7:a8:7f:3c:d2:a4:3c:39:ff:64:cb:a5:80: c4:45:bd:86:8c:03:94:02:ab:9e:3e:d0:dd:33:b0: 38:a7:b9:fe:bb:ba:81:08:26:4d:bd:84:3d:58:9e: 58:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:C3:E2:CE:4E:A3:85:F2:55:34:31:B3:3C:28:A4:A7:D5:15:F9:E2 X509v3 Authority Key Identifier: keyid:AC:E2:8D:AB:E5:36:49:63:7F:A6:E4:E3:21:DE:1B:63:46:3B:83:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186249/A1F2343CD17011EEA6151C4DC4F9AE02/rOKNq-U2SWN_puTjId4bY0Y7g88.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rOKNq-U2SWN_puTjId4bY0Y7g88.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186249/A1F2343CD17011EEA6151C4DC4F9AE02/rOKNq-U2SWN_puTjId4bY0Y7g88.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:42:ed:8e:2b:e0:95:63:80:80:d7:f5:b1:15:d6:74:b7:20: 2b:49:6d:de:81:16:3d:e6:88:33:f0:a0:dd:65:14:b8:6a:f4: 74:67:50:73:c3:20:4b:6a:94:4f:d4:a3:03:70:af:94:29:eb: fa:9c:1b:20:5d:46:ef:8b:96:8f:10:35:a2:ff:01:26:35:2a: df:d5:13:88:f4:96:77:8c:3d:7f:10:9c:bd:12:17:3b:ed:20: e2:5d:56:61:32:53:d6:d6:3c:f2:c1:b4:ed:a9:11:58:ab:ae: 83:f9:cc:13:ec:5b:80:cd:70:bd:1d:63:fa:e1:85:d9:e6:54: 7e:5a:22:06:36:3d:37:a6:cb:88:ab:d6:91:14:d6:22:b5:6d: 3b:10:de:3b:69:ac:50:57:0e:07:68:54:24:af:03:7d:20:95: eb:3f:88:9e:83:0c:d7:78:74:13:99:d0:af:36:27:95:58:d5: 2d:5f:4a:b0:0c:98:1f:4b:f0:6a:9b:5f:ed:44:4d:14:35:66: dd:12:8b:34:5a:9b:e3:17:bb:ad:dc:aa:df:29:5b:64:c8:c3: 32:ba:30:76:1f:bd:b9:e7:3f:c9:3a:3e:1b:b7:8f:d1:58:f2: 22:08:55:45:7c:d9:70:d8:fa:6c:86:36:14:9f:e9:d6:31:af: 33:88:73:75 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAZgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODYyNDkxMTAvBgNVBAUTKEFDRTI4REFCRTUzNjQ5NjM3RkE2RTRFMzIxREUxQjYz NDYzQjgzQ0YwHhcNMjYwNDA1MDM1MzM4WhcNMjYwNDEyMDM1MzM4WjAYMRYwFAYD VQQDEw02OWQxZGNjMi1iNWM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsO11dSlRFg2p/zS25QaPh43aln25pVzhob1IMMpQ8d4cGoWlzjWefl8ALCUu N0vLeFLmYO9wd/7/1S20G4femL6LzLY6GjVYkb+s4ymS+v1LOGCT66kjHMyk6nv9 HF3BqsNif/VhKOWRGNaQzsLoBshd+nx5DqrR8FYoGCEJtWPjXCmNnK7Ahwnc0dXl ahivgcEchRk686BA2LVLSblooQvgXn9fgWshAEf+kmGWYM6IQyY4gEZRZMe6vwtB WeNvcVuS/uaI6I4a4EfKtddwRQV5MceofzzSpDw5/2TLpYDERb2GjAOUAquePtDd M7A4p7n+u7qBCCZNvYQ9WJ5Y+wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLLD4s5O o4XyVTQxszwopKfVFfniMB8GA1UdIwQYMBaAFKzijavlNkljf6bk4yHeG2NGO4PP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjI0OS9BMUYyMzQzQ0Qx NzAxMUVFQTYxNTFDNERDNEY5QUUwMi9yT0tOcS1VMlNXTl9wdVRqSWQ0YlkwWTdn ODguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JPS05xLVUyU1dOX3B1VGpJZDRiWTBZN2c4OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NjI0OS9BMUYyMzQzQ0QxNzAxMUVFQTYxNTFDNERDNEY5QUUwMi9yT0tOcS1VMlNX Tl9wdVRqSWQ0YlkwWTdnODgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAM0LtjivglWOAgNf1sRXWdLcgK0lt3oEWPeaIM/Cg3WUUuGr0dGdQc8MgS2qU T9SjA3CvlCnr+pwbIF1G74uWjxA1ov8BJjUq39UTiPSWd4w9fxCcvRIXO+0g4l1W YTJT1tY88sG07akRWKuug/nME+xbgM1wvR1j+uGF2eZUfloiBjY9N6bLiKvWkRTW IrVtOxDeO2msUFcOB2hUJK8DfSCV6z+InoMM13h0E5nQrzYnlVjVLV9KsAyYH0vw aptf7URNFDVm3RKLNFqb4xe7rdyq3ylbZMjDMrowdh+9uec/yTo+G7eP0VjyIghV RXzZcNj6bIY2FJ/p1jGvM4hzdQ== -----END CERTIFICATE-----Generated at Sun Apr 5 19:51:46 2026 by rpki-client