$ rpki-client -vvf rpki.apnic.net/member_repository/A9144CB7/8C93F76CE17611EFB7981B19C4F9AE02/opgFnwZTffjAi4klX3lZQaMcGAA.mft File: opgFnwZTffjAi4klX3lZQaMcGAA.mft (raw, json) Hash identifier: 9llV6hBqb3qdJmIRHtxWDEWoEsKC0VyuHNGAiL/VISY= Subject key identifier: 58:DD:4E:BA:2E:C5:C4:CD:C7:1A:6F:53:16:1B:2A:2F:99:D0:1B:9A Authority key identifier: A2:98:05:9F:06:53:7D:F8:C0:8B:89:25:5F:79:59:41:A3:1C:18:00 Certificate issuer: /CN=A9144CB7/serialNumber=A298059F06537DF8C08B89255F795941A31C1800 Certificate serial: F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/opgFnwZTffjAi4klX3lZQaMcGAA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144CB7/8C93F76CE17611EFB7981B19C4F9AE02/opgFnwZTffjAi4klX3lZQaMcGAA.mft Manifest number: EB Signing time: Mon 27 Apr 2026 06:19:35 +0000 Manifest this update: Mon 27 Apr 2026 06:19:35 +0000 Manifest next update: Mon 04 May 2026 06:19:35 +0000 Files and hashes: 1: opgFnwZTffjAi4klX3lZQaMcGAA.crl (hash: Ye7kr+bcOCFRk7nsZJb92ak7HnSpXrUg02w+vdYSJ4M=) 2: 903E0F1652BD11F0A9261F57C4F9AE02.roa (hash: dmB1cr7byswXq/X1M5OhCF6oVNLPlMisHj2PV9sIXP0=) 3: E8716FD4EA3511EF89116C52C4F9AE02.roa (hash: 0FCY4nM/xiPTvsko2lPHjPRBl+NB5R5liczHspFuXXU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144CB7/8C93F76CE17611EFB7981B19C4F9AE02/opgFnwZTffjAi4klX3lZQaMcGAA.crl rsync://rpki.apnic.net/member_repository/A9144CB7/8C93F76CE17611EFB7981B19C4F9AE02/opgFnwZTffjAi4klX3lZQaMcGAA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/opgFnwZTffjAi4klX3lZQaMcGAA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 06:19:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 243 (0xf3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144CB7, serialNumber=A298059F06537DF8C08B89255F795941A31C1800 Validity Not Before: Apr 27 06:19:35 2026 GMT Not After : May 4 06:19:35 2026 GMT Subject: CN=69eefff7-0f65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:9d:89:e7:26:ec:8b:43:57:58:9c:b7:dc:8a: cd:fa:2b:38:75:8f:3c:30:ec:58:78:a0:cf:31:11: bf:8d:2f:77:3f:6b:92:46:33:ae:d3:11:31:c2:e0: 95:47:bb:a7:e4:89:d9:6c:40:ee:6b:c9:d1:83:11: 88:2c:33:56:38:fc:26:b0:8f:d8:e4:92:65:70:82: 90:73:c6:2b:bd:83:02:4e:fd:ac:4c:89:e8:18:e4: 09:d1:47:84:52:d5:f9:44:88:81:ef:dc:47:44:92: 32:65:5b:e8:4a:99:24:c9:a7:d1:ac:64:05:dd:be: 9f:ae:79:05:cc:a2:14:65:92:81:29:bf:96:86:17: c2:46:25:03:ab:b2:c0:2a:a0:60:a7:0d:dc:0c:b9: bd:fb:25:d7:88:f0:81:a6:aa:d3:56:af:e9:e5:b9: d7:ae:e1:a7:5b:f0:ab:43:59:a0:8f:a3:8c:dc:8a: 46:cf:d6:29:16:71:5e:11:2d:0c:72:23:96:9c:21: 8b:a7:94:d1:b1:4f:a9:3a:02:93:f7:a0:b1:6a:7c: 01:ed:95:5c:0f:b0:c1:42:93:bd:06:fb:ac:c7:b7: a4:ab:5f:f4:b6:eb:a8:84:11:67:35:fc:27:41:43: 35:1e:c9:ea:3d:99:cd:a6:46:ae:89:ad:9e:02:bc: 21:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:DD:4E:BA:2E:C5:C4:CD:C7:1A:6F:53:16:1B:2A:2F:99:D0:1B:9A X509v3 Authority Key Identifier: keyid:A2:98:05:9F:06:53:7D:F8:C0:8B:89:25:5F:79:59:41:A3:1C:18:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144CB7/8C93F76CE17611EFB7981B19C4F9AE02/opgFnwZTffjAi4klX3lZQaMcGAA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/opgFnwZTffjAi4klX3lZQaMcGAA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144CB7/8C93F76CE17611EFB7981B19C4F9AE02/opgFnwZTffjAi4klX3lZQaMcGAA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:3a:ed:da:15:9f:10:a6:74:73:40:32:0d:3c:2c:ac:d5:c9: 0e:2c:73:81:f5:96:ef:5f:90:05:8e:47:a2:2a:50:24:57:94: e0:cd:88:4b:0b:5c:93:24:b5:53:52:86:9b:60:f1:cf:ff:ff: c2:fe:7d:be:de:af:2d:66:1e:51:80:19:15:b0:48:ea:b2:21: 31:0f:cf:96:9d:96:d6:27:e1:d9:e2:ed:12:1c:6a:a5:f1:b0: 3f:39:9d:97:1e:49:33:4e:92:c1:7c:d3:ae:fe:31:ff:70:ff: a4:3f:ab:83:5d:b7:f1:10:ea:b2:d7:09:4e:0a:17:6d:8c:55: 53:6c:3a:48:ae:d7:a6:0d:e9:54:ab:97:32:94:78:13:0a:0f: e8:24:32:2f:dc:ee:d0:c5:da:d8:e5:97:4d:42:dc:2a:c8:af: 11:a2:76:94:67:e9:a9:40:16:14:74:a2:59:29:c6:06:2b:fd: a5:28:d2:f2:80:94:88:de:46:13:ae:76:59:33:fa:b3:86:7f: 5a:3d:a4:b9:24:53:86:66:99:bb:8d:21:c6:17:29:8d:4e:92: ea:56:26:8a:4f:0c:e7:33:59:e7:cf:c2:82:2e:cb:e8:63:50: 12:6b:ff:49:19:9f:6e:e3:72:23:90:09:ed:3c:18:b1:b0:ca: 1d:3d:7b:86 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAPMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDRDQjcxMTAvBgNVBAUTKEEyOTgwNTlGMDY1MzdERjhDMDhCODkyNTVGNzk1OTQx QTMxQzE4MDAwHhcNMjYwNDI3MDYxOTM1WhcNMjYwNTA0MDYxOTM1WjAYMRYwFAYD VQQDEw02OWVlZmZmNy0wZjY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvp2J5ybsi0NXWJy33IrN+is4dY88MOxYeKDPMRG/jS93P2uSRjOu0xExwuCV R7un5InZbEDua8nRgxGILDNWOPwmsI/Y5JJlcIKQc8YrvYMCTv2sTInoGOQJ0UeE UtX5RIiB79xHRJIyZVvoSpkkyafRrGQF3b6frnkFzKIUZZKBKb+WhhfCRiUDq7LA KqBgpw3cDLm9+yXXiPCBpqrTVq/p5bnXruGnW/CrQ1mgj6OM3IpGz9YpFnFeES0M ciOWnCGLp5TRsU+pOgKT96CxanwB7ZVcD7DBQpO9Bvusx7ekq1/0tuuohBFnNfwn QUM1HsnqPZnNpkauia2eArwh/QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFjdTrou xcTNxxpvUxYbKi+Z0BuaMB8GA1UdIwQYMBaAFKKYBZ8GU334wIuJJV95WUGjHBgA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NENCNy84QzkzRjc2Q0Ux NzYxMUVGQjc5ODFCMTlDNEY5QUUwMi9vcGdGbndaVGZmakFpNGtsWDNsWlFhTWNH QUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29wZ0Zud1pUZmZqQWk0a2xYM2xaUWFNY0dBQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NENCNy84QzkzRjc2Q0UxNzYxMUVGQjc5ODFCMTlDNEY5QUUwMi9vcGdGbndaVGZm akFpNGtsWDNsWlFhTWNHQUEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAGjrt2hWfEKZ0c0AyDTwsrNXJDixzgfWW71+QBY5HoipQJFeU4M2ISwtckyS1 U1KGm2Dxz///wv59vt6vLWYeUYAZFbBI6rIhMQ/Plp2W1ifh2eLtEhxqpfGwPzmd lx5JM06SwXzTrv4x/3D/pD+rg1238RDqstcJTgoXbYxVU2w6SK7Xpg3pVKuXMpR4 EwoP6CQyL9zu0MXa2OWXTULcKsivEaJ2lGfpqUAWFHSiWSnGBiv9pSjS8oCUiN5G E652WTP6s4Z/Wj2kuSRThmaZu40hxhcpjU6S6lYmik8M5zNZ58/Cgi7L6GNQEmv/ SRmfbuNyI5AJ7TwYsbDKHT17hg== -----END CERTIFICATE-----Generated at Mon Apr 27 23:34:08 2026 by rpki-client