$ rpki-client -vvf rpki.apnic.net/member_repository/A91E953B/C8D039226C9A11EE85BFDF4FC4F9AE02/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.mft File: oiQ2hCI9LCXGrxdqXwL6ArJPaAs.mft (raw, json) Hash identifier: /lEFl2hoMf71Ht7s7UAHiRyXAQtMwtg0PhzvYPWbBlI= Subject key identifier: D0:7A:FB:7B:BC:A8:59:23:CA:4F:3D:22:EE:91:E3:B0:7E:E2:D2:04 Authority key identifier: A2:24:36:84:22:3D:2C:25:C6:AF:17:6A:5F:02:FA:02:B2:4F:68:0B Certificate issuer: /CN=A91E953B/serialNumber=A2243684223D2C25C6AF176A5F02FA02B24F680B Certificate serial: 01D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E953B/C8D039226C9A11EE85BFDF4FC4F9AE02/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.mft Manifest number: 01D1 Signing time: Sun 05 Apr 2026 03:08:09 +0000 Manifest this update: Sun 05 Apr 2026 03:08:09 +0000 Manifest next update: Sun 12 Apr 2026 03:08:09 +0000 Files and hashes: 1: oiQ2hCI9LCXGrxdqXwL6ArJPaAs.crl (hash: +nP+hEgd/qDg0zaqMVWnZJQwBwH+mZK27yH7wb2q6Bs=) 2: 12E1FD886C9C11EE9F3C5653C4F9AE02.roa (hash: 5SIEytqj/kUtficVvfQzNkbf84VZDuhF0/ee1j7nlyY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E953B/C8D039226C9A11EE85BFDF4FC4F9AE02/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.crl rsync://rpki.apnic.net/member_repository/A91E953B/C8D039226C9A11EE85BFDF4FC4F9AE02/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 03:08:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 470 (0x1d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E953B, serialNumber=A2243684223D2C25C6AF176A5F02FA02B24F680B Validity Not Before: Apr 5 03:08:09 2026 GMT Not After : Apr 12 03:08:09 2026 GMT Subject: CN=69d1d219-4979 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:39:33:35:49:40:33:8b:2f:f5:30:67:b4:b5: d3:48:4b:f4:da:3e:e1:54:57:4d:2d:da:c1:b8:b5: 85:cf:af:d5:18:88:e0:d8:85:f9:b3:ee:bf:07:6e: c3:4a:ef:28:f5:db:4e:10:2c:1f:21:85:b1:1c:cb: 37:91:15:32:82:68:fb:c4:e0:da:7a:36:96:86:11: 96:73:af:01:21:b6:5a:71:e6:62:d7:31:36:d3:36: 91:c3:00:a8:e2:95:e8:61:c7:1b:a3:c6:a1:44:60: f2:72:88:56:8a:a9:00:eb:7a:f5:2b:45:58:af:f3: 4c:b3:5f:1e:5f:8d:a7:bd:40:b7:02:d0:ef:2e:ca: a6:bf:43:e8:dd:bc:81:d3:51:83:26:6e:f6:84:40: e8:87:11:06:15:5b:e0:95:c9:0f:4b:83:7f:12:ce: bf:0b:20:58:df:b2:82:12:2f:ed:e6:58:63:05:71: 6a:51:04:f1:de:a8:00:e0:18:37:e3:9f:a4:0f:06: a3:56:69:e2:0a:6e:1e:15:fe:68:61:2f:c6:3d:97: df:8b:c2:bb:7c:c2:46:ba:a1:f3:c3:f2:6c:d2:b5: f7:a2:fa:42:2b:0a:10:8c:0a:e4:60:a5:5e:c4:ed: e8:cb:28:ee:04:9f:96:3f:72:89:11:95:0e:db:8d: 4e:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:7A:FB:7B:BC:A8:59:23:CA:4F:3D:22:EE:91:E3:B0:7E:E2:D2:04 X509v3 Authority Key Identifier: keyid:A2:24:36:84:22:3D:2C:25:C6:AF:17:6A:5F:02:FA:02:B2:4F:68:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E953B/C8D039226C9A11EE85BFDF4FC4F9AE02/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E953B/C8D039226C9A11EE85BFDF4FC4F9AE02/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:04:79:db:dc:04:d8:70:85:00:e0:ea:dc:8b:1a:08:1b:99: 66:bf:98:01:9c:f3:e3:59:f8:3c:a1:bd:2b:11:5a:f1:93:99: da:20:75:d8:51:ff:4b:3b:13:eb:00:ca:81:ba:b8:de:0c:af: d4:70:3c:47:ca:c4:c2:f1:0e:f5:4a:c8:86:ee:37:b5:92:7c: 20:38:b6:5c:25:67:bb:bc:2c:e9:5a:c1:7d:07:bd:c8:43:fc: 46:87:3c:df:b4:71:c5:d4:71:ce:a2:aa:95:b5:27:e7:e4:f1: cd:da:44:a9:c4:54:ae:42:f2:b9:fb:71:ad:f5:38:64:e7:3c: 28:3d:91:ff:76:f5:db:1d:2f:32:6e:bc:e0:4a:8c:d3:27:8a: 00:c7:f1:c5:8f:3a:9d:f7:ed:ab:a6:9d:db:0c:ba:ab:e8:cf: 95:7a:1d:43:fb:a6:33:63:37:d9:b2:42:22:38:fc:1c:a9:6e: 18:64:d9:70:e4:13:4c:09:0c:4f:51:24:a6:e5:bf:08:a1:51: a2:e9:01:89:13:b4:05:53:ed:2b:b9:34:7f:9d:15:ea:07:76: 4a:62:13:0a:5d:13:0f:37:7b:15:9c:99:fa:f6:55:50:96:60: 51:fe:b8:81:45:4d:da:28:ad:6e:25:7b:86:18:ec:70:a6:50: 32:d0:d5:6e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAdYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTk1M0IxMTAvBgNVBAUTKEEyMjQzNjg0MjIzRDJDMjVDNkFGMTc2QTVGMDJGQTAy QjI0RjY4MEIwHhcNMjYwNDA1MDMwODA5WhcNMjYwNDEyMDMwODA5WjAYMRYwFAYD VQQDEw02OWQxZDIxOS00OTc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApDkzNUlAM4sv9TBntLXTSEv02j7hVFdNLdrBuLWFz6/VGIjg2IX5s+6/B27D Su8o9dtOECwfIYWxHMs3kRUygmj7xODaejaWhhGWc68BIbZaceZi1zE20zaRwwCo 4pXoYccbo8ahRGDycohWiqkA63r1K0VYr/NMs18eX42nvUC3AtDvLsqmv0Po3byB 01GDJm72hEDohxEGFVvglckPS4N/Es6/CyBY37KCEi/t5lhjBXFqUQTx3qgA4Bg3 45+kDwajVmniCm4eFf5oYS/GPZffi8K7fMJGuqHzw/Js0rX3ovpCKwoQjArkYKVe xO3oyyjuBJ+WP3KJEZUO241OVQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNB6+3u8 qFkjyk89Iu6R47B+4tIEMB8GA1UdIwQYMBaAFKIkNoQiPSwlxq8Xal8C+gKyT2gL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOTUzQi9DOEQwMzkyMjZD OUExMUVFODVCRkRGNEZDNEY5QUUwMi9vaVEyaENJOUxDWEdyeGRxWHdMNkFySlBh QXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29pUTJoQ0k5TENYR3J4ZHFYd0w2QXJKUGFBcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OTUzQi9DOEQwMzkyMjZDOUExMUVFODVCRkRGNEZDNEY5QUUwMi9vaVEyaENJOUxD WEdyeGRxWHdMNkFySlBhQXMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAcAR529wE2HCFAODq3IsaCBuZZr+YAZzz41n4PKG9KxFa8ZOZ2iB12FH/SzsT 6wDKgbq43gyv1HA8R8rEwvEO9UrIhu43tZJ8IDi2XCVnu7ws6VrBfQe9yEP8Roc8 37RxxdRxzqKqlbUn5+TxzdpEqcRUrkLyuftxrfU4ZOc8KD2R/3b12x0vMm684EqM 0yeKAMfxxY86nfftq6ad2wy6q+jPlXodQ/umM2M32bJCIjj8HKluGGTZcOQTTAkM T1EkpuW/CKFRoukBiRO0BVPtK7k0f50V6gd2SmITCl0TDzd7FZyZ+vZVUJZgUf64 gUVN2iitbiV7hhjscKZQMtDVbg== -----END CERTIFICATE-----Generated at Sun Apr 5 19:41:03 2026 by rpki-client