$ rpki-client -vvf rpki.apnic.net/member_repository/A919CA18/6D059BBCB1B211ED8D7C2F2BC4F9AE02/OvnsvEXk4pfSm6bEEfGgXIudqeM.mft File: OvnsvEXk4pfSm6bEEfGgXIudqeM.mft (raw, json) Hash identifier: XP7Z+ulLFk5v0WP7HfV1haD+5c8qrzQf0T+BGq7dJnc= Subject key identifier: 6B:42:1B:65:D2:A0:79:5F:4B:79:9C:5C:85:72:AE:5E:8E:2B:B4:46 Authority key identifier: 3A:F9:EC:BC:45:E4:E2:97:D2:9B:A6:C4:11:F1:A0:5C:8B:9D:A9:E3 Certificate issuer: /CN=A919CA18/serialNumber=3AF9ECBC45E4E297D29BA6C411F1A05C8B9DA9E3 Certificate serial: 024F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OvnsvEXk4pfSm6bEEfGgXIudqeM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919CA18/6D059BBCB1B211ED8D7C2F2BC4F9AE02/OvnsvEXk4pfSm6bEEfGgXIudqeM.mft Manifest number: 024B Signing time: Sun 05 Apr 2026 01:55:22 +0000 Manifest this update: Sun 05 Apr 2026 01:55:22 +0000 Manifest next update: Sun 12 Apr 2026 01:55:22 +0000 Files and hashes: 1: OvnsvEXk4pfSm6bEEfGgXIudqeM.crl (hash: RQqjOn+2lFzQtzvqM55h+5fzI25lMLwFIENjoaToEes=) 2: 82E99F5A10FC11EF95048154C4F9AE02.roa (hash: AXhLJomVJ63tE2qeqNBzn6juE7/Pg7GMaa4t59azamk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919CA18/6D059BBCB1B211ED8D7C2F2BC4F9AE02/OvnsvEXk4pfSm6bEEfGgXIudqeM.crl rsync://rpki.apnic.net/member_repository/A919CA18/6D059BBCB1B211ED8D7C2F2BC4F9AE02/OvnsvEXk4pfSm6bEEfGgXIudqeM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OvnsvEXk4pfSm6bEEfGgXIudqeM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 01:55:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 591 (0x24f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919CA18, serialNumber=3AF9ECBC45E4E297D29BA6C411F1A05C8B9DA9E3 Validity Not Before: Apr 5 01:55:22 2026 GMT Not After : Apr 12 01:55:22 2026 GMT Subject: CN=69d1c10a-33b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:fa:c2:8e:42:70:38:87:5a:d2:bf:35:92:5c: 66:5a:1c:34:05:8a:77:d9:20:91:c8:73:1c:da:b5: 57:8f:4c:bb:2c:e6:7b:a2:0d:81:19:82:dc:15:3f: c0:9c:68:c7:e0:43:7c:16:62:ac:fb:84:7b:7a:6d: a3:12:d9:dc:88:b7:f9:51:70:7f:27:3d:dc:88:dc: 89:c3:3a:82:bd:2c:2b:12:03:1b:97:a4:50:29:cc: 1f:e6:a5:a0:ec:59:bd:13:db:57:6d:b9:59:02:fb: 56:c8:e3:67:e7:3b:df:b2:13:2c:55:08:16:6c:bf: 87:71:cb:ef:5f:60:8c:ed:45:d4:65:6b:a7:82:6a: 59:f4:a4:d4:05:2d:11:82:82:28:ad:13:47:ed:cd: f2:ed:b5:4e:f6:6c:0e:39:ce:36:4f:6f:48:1a:c0: 2d:7d:c9:5d:51:42:e1:06:f5:6b:67:30:be:2c:51: 75:79:7f:40:9c:f7:95:ff:13:c2:8a:52:11:20:6e: ee:1a:30:c7:8a:0e:c6:7f:1d:45:a5:b3:4a:b0:cc: f6:cb:a9:13:43:14:32:4d:8a:a8:0a:da:e2:69:9b: 51:74:79:b5:b1:d5:2a:58:67:3f:da:7e:0f:94:77: c1:8f:47:a8:be:bc:ff:0f:b6:05:c4:2f:2a:49:f8: 58:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:42:1B:65:D2:A0:79:5F:4B:79:9C:5C:85:72:AE:5E:8E:2B:B4:46 X509v3 Authority Key Identifier: keyid:3A:F9:EC:BC:45:E4:E2:97:D2:9B:A6:C4:11:F1:A0:5C:8B:9D:A9:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919CA18/6D059BBCB1B211ED8D7C2F2BC4F9AE02/OvnsvEXk4pfSm6bEEfGgXIudqeM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OvnsvEXk4pfSm6bEEfGgXIudqeM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919CA18/6D059BBCB1B211ED8D7C2F2BC4F9AE02/OvnsvEXk4pfSm6bEEfGgXIudqeM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:ba:33:d2:b8:f8:af:66:4c:72:3f:b5:6c:65:bf:c3:5d:7e: 3c:58:a7:90:f5:ca:39:61:6d:d6:e9:66:69:26:51:ab:24:08: 94:73:11:4b:7d:db:21:6b:bc:48:25:d5:3b:60:93:a7:c7:eb: 87:0b:20:11:43:fc:4b:8e:f4:44:78:99:25:dd:51:02:dc:3d: 74:60:1b:f3:3f:e7:0f:2d:c9:f5:88:df:d4:c3:4f:0f:b0:fc: 70:61:5b:51:1b:a8:f5:d7:f5:60:98:ce:ff:54:a1:8e:ad:cd: b0:e7:66:42:24:3b:d8:af:ea:a5:72:1d:14:2a:ec:12:b9:d3: 31:04:e2:30:d2:67:8d:b2:8e:c9:1d:6a:99:4f:1f:4f:21:98: 93:ae:23:76:0b:56:28:c5:2c:49:e3:91:79:05:64:ca:69:41: e2:63:b6:46:77:f1:55:2a:f1:e5:b9:b6:a4:55:f4:5a:a3:be: c8:26:a9:ab:88:f7:e1:36:19:d3:65:ad:79:d0:47:15:ed:44: f1:7f:86:7f:cb:07:3d:f1:3a:ed:50:ce:31:ab:c1:4f:82:e3: fe:36:61:a7:c2:c3:ef:8b:58:a2:0f:cc:16:84:92:6c:f2:a0: c7:0d:40:86:f8:d0:2d:b2:52:b5:1d:35:b2:fa:75:f9:bf:62: a1:65:f8:f2 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAk8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUNBMTgxMTAvBgNVBAUTKDNBRjlFQ0JDNDVFNEUyOTdEMjlCQTZDNDExRjFBMDVD OEI5REE5RTMwHhcNMjYwNDA1MDE1NTIyWhcNMjYwNDEyMDE1NTIyWjAYMRYwFAYD VQQDEw02OWQxYzEwYS0zM2I0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArfrCjkJwOIda0r81klxmWhw0BYp32SCRyHMc2rVXj0y7LOZ7og2BGYLcFT/A nGjH4EN8FmKs+4R7em2jEtnciLf5UXB/Jz3ciNyJwzqCvSwrEgMbl6RQKcwf5qWg 7Fm9E9tXbblZAvtWyONn5zvfshMsVQgWbL+HccvvX2CM7UXUZWungmpZ9KTUBS0R goIorRNH7c3y7bVO9mwOOc42T29IGsAtfcldUULhBvVrZzC+LFF1eX9AnPeV/xPC ilIRIG7uGjDHig7Gfx1FpbNKsMz2y6kTQxQyTYqoCtriaZtRdHm1sdUqWGc/2n4P lHfBj0eovrz/D7YFxC8qSfhYqwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGtCG2XS oHlfS3mcXIVyrl6OK7RGMB8GA1UdIwQYMBaAFDr57LxF5OKX0pumxBHxoFyLnanj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5Q0ExOC82RDA1OUJCQ0Ix QjIxMUVEOEQ3QzJGMkJDNEY5QUUwMi9Pdm5zdkVYazRwZlNtNmJFRWZHZ1hJdWRx ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL092bnN2RVhrNHBmU202YkVFZkdnWEl1ZHFlTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 Q0ExOC82RDA1OUJCQ0IxQjIxMUVEOEQ3QzJGMkJDNEY5QUUwMi9Pdm5zdkVYazRw ZlNtNmJFRWZHZ1hJdWRxZU0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEASLoz0rj4r2ZMcj+1bGW/w11+PFinkPXKOWFt1ulmaSZRqyQIlHMRS33bIWu8 SCXVO2CTp8frhwsgEUP8S470RHiZJd1RAtw9dGAb8z/nDy3J9Yjf1MNPD7D8cGFb URuo9df1YJjO/1Shjq3NsOdmQiQ72K/qpXIdFCrsErnTMQTiMNJnjbKOyR1qmU8f TyGYk64jdgtWKMUsSeOReQVkymlB4mO2RnfxVSrx5bm2pFX0WqO+yCapq4j34TYZ 02WtedBHFe1E8X+Gf8sHPfE67VDOMavBT4Lj/jZhp8LD74tYog/MFoSSbPKgxw1A hvjQLbJStR01svp1+b9ioWX48g== -----END CERTIFICATE-----Generated at Sun Apr 5 19:38:49 2026 by rpki-client