$ rpki-client -vvf rpki.apnic.net/member_repository/A91F81AD/43A511AE2CBE11ED99824B4CC4F9AE02/O4dpDvQFVnODtvcv3TARYM6CHys.mft File: O4dpDvQFVnODtvcv3TARYM6CHys.mft (raw, json) Hash identifier: DM1l6aJk4mADRZJNAl+rHEHjUP0qbLoAHC2OdaCLyJA= Subject key identifier: 03:85:2E:B9:AD:8B:5B:8E:BB:E2:35:17:11:20:BC:0A:6B:AA:5B:5B Authority key identifier: 3B:87:69:0E:F4:05:56:73:83:B6:F7:2F:DD:30:11:60:CE:82:1F:2B Certificate issuer: /CN=A91F81AD/serialNumber=3B87690EF405567383B6F72FDD301160CE821F2B Certificate serial: 02D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/O4dpDvQFVnODtvcv3TARYM6CHys.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F81AD/43A511AE2CBE11ED99824B4CC4F9AE02/O4dpDvQFVnODtvcv3TARYM6CHys.mft Manifest number: 02C8 Signing time: Sun 05 Apr 2026 01:08:29 +0000 Manifest this update: Sun 05 Apr 2026 01:08:29 +0000 Manifest next update: Sun 12 Apr 2026 01:08:29 +0000 Files and hashes: 1: O4dpDvQFVnODtvcv3TARYM6CHys.crl (hash: wCkhAWt4m+zH1pmv2nzIQcZ8xv+li//LP+LVSs0Bfj4=) 2: F86A2F7680FA11ED9B35954DC4F9AE02.roa (hash: 4SMwt+gACInnRK5OGYg5pUcdCWuk0YqF9HQ/Xt+IzcY=) 3: F9424C6C80FA11ED9B35954DC4F9AE02.roa (hash: kA6NvISB8IT/6NkuxuF6Q7P9ApF1p1wHgdDAw6Jwa34=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F81AD/43A511AE2CBE11ED99824B4CC4F9AE02/O4dpDvQFVnODtvcv3TARYM6CHys.crl rsync://rpki.apnic.net/member_repository/A91F81AD/43A511AE2CBE11ED99824B4CC4F9AE02/O4dpDvQFVnODtvcv3TARYM6CHys.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/O4dpDvQFVnODtvcv3TARYM6CHys.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 01:08:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 724 (0x2d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F81AD, serialNumber=3B87690EF405567383B6F72FDD301160CE821F2B Validity Not Before: Apr 5 01:08:29 2026 GMT Not After : Apr 12 01:08:29 2026 GMT Subject: CN=69d1b60d-d708 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:27:62:6b:43:15:d7:a0:a2:4b:59:08:8a:ac: e8:7c:e4:36:02:55:f9:f3:ae:dd:ed:7f:17:b5:4f: cc:9a:ff:d1:03:e2:6d:cd:6e:d5:68:9d:e1:26:ca: cf:2d:8d:83:ef:70:90:34:3d:64:3f:3f:55:b0:d7: 11:cd:b2:af:00:58:c6:4e:06:42:ef:11:b9:be:1b: 3b:8f:a4:82:6f:28:57:6e:8a:3b:1a:d1:50:3b:3b: 04:e1:90:1e:a6:42:f6:56:3a:50:0c:d7:bb:72:12: 92:42:49:f2:fa:05:ff:21:60:4a:5a:a0:e4:06:b5: 21:4b:9a:ee:c2:cf:3b:9c:97:21:84:3b:57:05:0e: df:f0:cd:07:13:ad:5e:89:63:45:bd:dd:f1:a1:13: 65:e2:15:b3:a2:0b:ba:31:c3:2e:0e:a6:23:be:d4: c8:62:a1:17:6b:2d:63:e5:c4:bd:da:ab:5b:9d:25: d6:3d:28:64:03:f0:02:01:fa:7c:cb:ed:da:59:a9: 09:bb:eb:ca:cd:ee:71:7f:47:5f:85:60:29:1a:82: 44:25:ac:f7:e3:fd:80:74:8b:ff:61:11:bc:1d:60: 9c:6a:8b:b1:ed:55:27:0f:0e:eb:68:90:b7:ed:9e: d2:d0:24:ab:d1:ec:c6:f1:c3:0a:07:01:5a:8a:d2: 4e:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:85:2E:B9:AD:8B:5B:8E:BB:E2:35:17:11:20:BC:0A:6B:AA:5B:5B X509v3 Authority Key Identifier: keyid:3B:87:69:0E:F4:05:56:73:83:B6:F7:2F:DD:30:11:60:CE:82:1F:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F81AD/43A511AE2CBE11ED99824B4CC4F9AE02/O4dpDvQFVnODtvcv3TARYM6CHys.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/O4dpDvQFVnODtvcv3TARYM6CHys.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F81AD/43A511AE2CBE11ED99824B4CC4F9AE02/O4dpDvQFVnODtvcv3TARYM6CHys.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:86:b3:5d:55:9b:16:bc:d0:16:1e:ea:4a:24:e6:3d:ff:18: 96:9a:4c:a8:7b:4b:72:32:00:59:19:77:3d:6d:6d:37:d1:5f: 29:1e:62:73:5b:59:0c:4c:a6:a3:b6:31:e9:24:8a:02:be:8d: a2:46:b0:6a:37:51:6e:33:08:44:4a:31:3b:c2:0a:18:7d:4b: 78:cf:ef:83:e9:ce:5c:84:c2:8d:e0:50:0e:3b:ea:63:9b:74: 67:ba:a3:f5:97:35:2f:3b:a7:06:e9:bc:11:ed:8b:a3:fd:7e: 3b:3d:38:0b:10:d5:a7:03:6d:6f:c4:d9:2a:eb:a9:3d:2a:65: f6:2f:1d:56:ac:90:58:9d:3b:b0:eb:f1:ec:fd:36:de:c7:7b: 87:47:96:fe:c9:48:47:9b:57:62:28:a1:be:cd:fd:73:8f:03: 70:ad:25:ad:8b:0b:2b:a7:18:59:bd:77:3c:68:bf:b4:aa:a6: 47:0d:0e:65:22:0d:79:16:27:81:62:9c:65:6a:5d:7e:ab:b7: 57:13:1e:7e:22:9c:a3:bb:ac:ff:61:15:40:50:02:cb:ae:49: 23:d2:ac:6a:e0:f8:30:69:72:01:ba:33:40:f5:15:42:69:c3: 29:8d:f6:b1:47:ca:5f:ef:c9:69:c8:d6:1a:d5:ea:d6:58:d6: 2e:6c:a9:e6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAtQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjgxQUQxMTAvBgNVBAUTKDNCODc2OTBFRjQwNTU2NzM4M0I2RjcyRkREMzAxMTYw Q0U4MjFGMkIwHhcNMjYwNDA1MDEwODI5WhcNMjYwNDEyMDEwODI5WjAYMRYwFAYD VQQDEw02OWQxYjYwZC1kNzA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnSdia0MV16CiS1kIiqzofOQ2AlX5867d7X8XtU/Mmv/RA+JtzW7VaJ3hJsrP LY2D73CQND1kPz9VsNcRzbKvAFjGTgZC7xG5vhs7j6SCbyhXboo7GtFQOzsE4ZAe pkL2VjpQDNe7chKSQkny+gX/IWBKWqDkBrUhS5ruws87nJchhDtXBQ7f8M0HE61e iWNFvd3xoRNl4hWzogu6McMuDqYjvtTIYqEXay1j5cS92qtbnSXWPShkA/ACAfp8 y+3aWakJu+vKze5xf0dfhWApGoJEJaz34/2AdIv/YRG8HWCcaoux7VUnDw7raJC3 7Z7S0CSr0ezG8cMKBwFaitJOhwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAOFLrmt i1uOu+I1FxEgvAprqltbMB8GA1UdIwQYMBaAFDuHaQ70BVZzg7b3L90wEWDOgh8r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODFBRC80M0E1MTFBRTJD QkUxMUVEOTk4MjRCNENDNEY5QUUwMi9PNGRwRHZRRlZuT0R0dmN2M1RBUllNNkNI eXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL080ZHBEdlFGVm5PRHR2Y3YzVEFSWU02Q0h5cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODFBRC80M0E1MTFBRTJDQkUxMUVEOTk4MjRCNENDNEY5QUUwMi9PNGRwRHZRRlZu T0R0dmN2M1RBUllNNkNIeXMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAKIazXVWbFrzQFh7qSiTmPf8YlppMqHtLcjIAWRl3PW1tN9FfKR5ic1tZDEym o7Yx6SSKAr6NokawajdRbjMIREoxO8IKGH1LeM/vg+nOXITCjeBQDjvqY5t0Z7qj 9Zc1LzunBum8Ee2Lo/1+Oz04CxDVpwNtb8TZKuupPSpl9i8dVqyQWJ07sOvx7P02 3sd7h0eW/slIR5tXYiihvs39c48DcK0lrYsLK6cYWb13PGi/tKqmRw0OZSINeRYn gWKcZWpdfqu3VxMefiKco7us/2EVQFACy65JI9KsauD4MGlyAbozQPUVQmnDKY32 sUfKX+/JacjWGtXq1ljWLmyp5g== -----END CERTIFICATE-----Generated at Mon Apr 6 01:07:48 2026 by rpki-client