$ rpki-client -vvf rpki.apnic.net/member_repository/A911D2A3/F6AC63864EFD11E8892B8683C4F9AE02/O-7kvaWgSxBLHXLmAcMJONuktkQ.mft File: O-7kvaWgSxBLHXLmAcMJONuktkQ.mft (raw, json) Hash identifier: BQfiS44OL15CD+Fq4C06/DQZntyCIxo/tg29Nb7pC2A= Subject key identifier: 9E:CC:B8:8C:AC:8C:DB:7A:05:56:CE:79:6B:41:68:9B:06:65:D6:89 Authority key identifier: 3B:EE:E4:BD:A5:A0:4B:10:4B:1D:72:E6:01:C3:09:38:DB:A4:B6:44 Certificate issuer: /CN=A911D2A3/serialNumber=3BEEE4BDA5A04B104B1D72E601C30938DBA4B644 Certificate serial: 15AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O-7kvaWgSxBLHXLmAcMJONuktkQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911D2A3/F6AC63864EFD11E8892B8683C4F9AE02/O-7kvaWgSxBLHXLmAcMJONuktkQ.mft Manifest number: 15A2 Signing time: Sat 04 Apr 2026 16:39:53 +0000 Manifest this update: Sat 04 Apr 2026 16:39:53 +0000 Manifest next update: Sat 11 Apr 2026 16:39:53 +0000 Files and hashes: 1: O-7kvaWgSxBLHXLmAcMJONuktkQ.crl (hash: 8T7cEjPI1OQBtTZoZ0XeiRTtzYmQOQC6Ba3FGwUnwbg=) 2: D9EDB272C44C11ECA07C2D77C4F9AE02.roa (hash: FtB2tGvplGzCJWlj88NsorSrUzak1GMw1nVvvDj7yFA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911D2A3/F6AC63864EFD11E8892B8683C4F9AE02/O-7kvaWgSxBLHXLmAcMJONuktkQ.crl rsync://rpki.apnic.net/member_repository/A911D2A3/F6AC63864EFD11E8892B8683C4F9AE02/O-7kvaWgSxBLHXLmAcMJONuktkQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O-7kvaWgSxBLHXLmAcMJONuktkQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 16:39:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5551 (0x15af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911D2A3, serialNumber=3BEEE4BDA5A04B104B1D72E601C30938DBA4B644 Validity Not Before: Apr 4 16:39:53 2026 GMT Not After : Apr 11 16:39:53 2026 GMT Subject: CN=69d13ed9-efe0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:84:f0:83:1e:8f:6d:71:42:4e:ed:55:b3:00: 94:b4:6b:43:b8:3c:78:18:75:31:67:99:c7:0d:f8: 4a:68:a0:20:d7:e7:a5:2f:de:58:fd:38:86:f1:09: 26:4a:eb:80:c7:c1:b5:9a:ae:ed:69:ab:94:20:64: 25:42:b4:b8:aa:03:05:98:e7:61:f2:c3:a8:79:db: a5:e3:04:65:c7:32:74:5e:28:a4:06:bb:08:cf:f6: 9b:2e:ea:ac:7f:73:69:9a:7e:f3:18:41:15:75:78: 0e:9d:98:9c:9a:26:06:9f:84:e3:da:ba:d2:5f:58: 37:71:4c:9b:33:42:46:fc:b0:4e:5e:e8:a1:47:b1: 2c:9a:84:08:8b:66:c0:5b:c4:78:cb:5f:72:fb:33: 5a:e7:04:74:42:c1:ad:ba:2e:c6:59:7c:9e:87:a8: 0a:66:45:cd:61:1d:ea:80:a6:9f:fc:f8:02:63:4e: e8:09:84:61:31:8d:34:ba:d3:4d:83:31:c4:14:69: 90:94:59:9b:1a:9a:c6:8d:2d:ed:5a:61:b3:96:04: ea:7f:a9:91:95:05:d2:22:54:a0:5a:1f:3c:6e:a1: 43:55:10:d2:45:06:23:e5:ed:88:51:1c:52:da:1c: 67:01:6e:c0:40:03:60:52:3c:d9:a8:b2:c1:d8:24: b5:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:CC:B8:8C:AC:8C:DB:7A:05:56:CE:79:6B:41:68:9B:06:65:D6:89 X509v3 Authority Key Identifier: keyid:3B:EE:E4:BD:A5:A0:4B:10:4B:1D:72:E6:01:C3:09:38:DB:A4:B6:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911D2A3/F6AC63864EFD11E8892B8683C4F9AE02/O-7kvaWgSxBLHXLmAcMJONuktkQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O-7kvaWgSxBLHXLmAcMJONuktkQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D2A3/F6AC63864EFD11E8892B8683C4F9AE02/O-7kvaWgSxBLHXLmAcMJONuktkQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:78:f6:ac:79:18:6c:17:0d:91:ad:42:61:48:f5:68:aa:3c: ec:0a:a3:b4:6d:7f:84:36:92:b9:01:c1:39:44:7d:ff:90:65: b2:16:7a:9f:08:a0:59:35:54:ab:56:d6:40:65:5f:a5:ca:99: df:0d:37:3e:6a:89:2b:a2:04:e8:aa:32:8d:0b:20:4d:6c:e5: fc:c5:8c:8a:0d:97:eb:84:db:d8:12:ba:f0:ab:f0:7d:ef:fe: f3:71:5e:07:86:fe:c3:f6:3e:ed:37:f6:ef:48:80:bb:3a:98: 99:25:c9:03:5c:d1:65:f6:de:58:ce:a0:ab:93:47:84:de:5b: 19:b3:bc:18:f7:ad:f5:4a:2a:31:46:e0:89:6b:dc:77:09:b8: c9:de:b9:8e:0f:d5:a6:9b:e1:83:e0:6f:97:cf:83:65:13:37: 00:66:17:b9:bd:0b:d8:f6:a8:2f:13:c7:49:a1:09:24:13:13: ac:90:ad:7e:34:b0:5a:13:a2:7a:e9:7e:8a:d7:8d:79:92:fe: 77:cd:87:b6:62:f7:1c:f4:c6:b2:08:7d:0b:35:30:88:97:7f: 43:29:05:2b:c4:88:65:0e:54:bf:d9:05:fe:f8:9a:bd:f5:d4: 79:3e:a9:58:16:6c:53:1d:aa:d6:32:a3:e8:7b:81:b5:6a:57: 37:16:05:62 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICFa8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUQyQTMxMTAvBgNVBAUTKDNCRUVFNEJEQTVBMDRCMTA0QjFENzJFNjAxQzMwOTM4 REJBNEI2NDQwHhcNMjYwNDA0MTYzOTUzWhcNMjYwNDExMTYzOTUzWjAYMRYwFAYD VQQDEw02OWQxM2VkOS1lZmUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxoTwgx6PbXFCTu1VswCUtGtDuDx4GHUxZ5nHDfhKaKAg1+elL95Y/TiG8Qkm SuuAx8G1mq7taauUIGQlQrS4qgMFmOdh8sOoedul4wRlxzJ0XiikBrsIz/abLuqs f3Npmn7zGEEVdXgOnZicmiYGn4Tj2rrSX1g3cUybM0JG/LBOXuihR7EsmoQIi2bA W8R4y19y+zNa5wR0QsGtui7GWXyeh6gKZkXNYR3qgKaf/PgCY07oCYRhMY00utNN gzHEFGmQlFmbGprGjS3tWmGzlgTqf6mRlQXSIlSgWh88bqFDVRDSRQYj5e2IURxS 2hxnAW7AQANgUjzZqLLB2CS14wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJ7MuIys jNt6BVbOeWtBaJsGZdaJMB8GA1UdIwQYMBaAFDvu5L2loEsQSx1y5gHDCTjbpLZE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRDJBMy9GNkFDNjM4NjRF RkQxMUU4ODkyQjg2ODNDNEY5QUUwMi9PLTdrdmFXZ1N4QkxIWExtQWNNSk9OdWt0 a1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL08tN2t2YVdnU3hCTEhYTG1BY01KT051a3RrUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RDJBMy9GNkFDNjM4NjRFRkQxMUU4ODkyQjg2ODNDNEY5QUUwMi9PLTdrdmFXZ1N4 QkxIWExtQWNNSk9OdWt0a1EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAgXj2rHkYbBcNka1CYUj1aKo87AqjtG1/hDaSuQHBOUR9/5BlshZ6nwigWTVU q1bWQGVfpcqZ3w03PmqJK6IE6KoyjQsgTWzl/MWMig2X64Tb2BK68Kvwfe/+83Fe B4b+w/Y+7Tf270iAuzqYmSXJA1zRZfbeWM6gq5NHhN5bGbO8GPet9UoqMUbgiWvc dwm4yd65jg/Vppvhg+Bvl8+DZRM3AGYXub0L2PaoLxPHSaEJJBMTrJCtfjSwWhOi eul+iteNeZL+d82HtmL3HPTGsgh9CzUwiJd/QykFK8SIZQ5Uv9kF/viavfXUeT6p WBZsUx2q1jKj6HuBtWpXNxYFYg== -----END CERTIFICATE-----Generated at Mon Apr 6 10:10:13 2026 by rpki-client