$ rpki-client -vvf rpki.apnic.net/member_repository/A91454F3/1EF7866805DC11EA9743BA5FC4F9AE02/bOklSpy_oHBCJDc13OT79-VGEWY.mft File: bOklSpy_oHBCJDc13OT79-VGEWY.mft (raw, json) Hash identifier: X1oZExkflMI+nVxfXPDDHdfSGluPgQ9OGtzywuORn68= Subject key identifier: 61:F9:1A:A8:3E:0D:88:B2:1D:68:19:04:2F:5A:93:8E:2F:82:90:26 Authority key identifier: 6C:E9:25:4A:9C:BF:A0:70:42:24:37:35:DC:E4:FB:F7:E5:46:11:66 Certificate issuer: /CN=A91454F3/serialNumber=6CE9254A9CBFA07042243735DCE4FBF7E5461166 Certificate serial: 0CE8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bOklSpy_oHBCJDc13OT79-VGEWY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91454F3/1EF7866805DC11EA9743BA5FC4F9AE02/bOklSpy_oHBCJDc13OT79-VGEWY.mft Manifest number: 0CDF Signing time: Sat 04 Apr 2026 18:07:18 +0000 Manifest this update: Sat 04 Apr 2026 18:07:17 +0000 Manifest next update: Sat 11 Apr 2026 18:07:17 +0000 Files and hashes: 1: bOklSpy_oHBCJDc13OT79-VGEWY.crl (hash: 8SqWOuIBx+ckPVKYakOwp89FgzL+9QlNODlMJbI0kM4=) 2: 9DDA09EC05DC11EA9B6B0560C4F9AE02.roa (hash: jOASJy08cQtiHT2anaDk0d4CR9FN0kGkmWrO2dstaFQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91454F3/1EF7866805DC11EA9743BA5FC4F9AE02/bOklSpy_oHBCJDc13OT79-VGEWY.crl rsync://rpki.apnic.net/member_repository/A91454F3/1EF7866805DC11EA9743BA5FC4F9AE02/bOklSpy_oHBCJDc13OT79-VGEWY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bOklSpy_oHBCJDc13OT79-VGEWY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 18:07:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3304 (0xce8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91454F3, serialNumber=6CE9254A9CBFA07042243735DCE4FBF7E5461166 Validity Not Before: Apr 4 18:07:17 2026 GMT Not After : Apr 11 18:07:17 2026 GMT Subject: CN=69d15356-c808 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:f9:5d:af:99:bb:c8:8e:0d:94:1d:0b:64:52: ed:89:3f:48:20:0b:3d:29:b1:3d:b8:d2:df:6f:d2: 12:cc:b9:a9:5e:20:97:c4:18:ae:30:ae:e0:b9:1b: de:5f:20:90:c6:de:17:ee:bc:b1:71:ed:e7:7a:4c: 1b:e1:e1:35:68:6c:a9:4b:00:dd:9a:1e:11:50:25: 4e:b8:57:47:83:a5:a0:dc:50:9f:ad:ca:cc:9b:3a: a2:d0:79:92:c8:db:77:80:0f:ff:6d:75:1a:90:22: 25:ee:67:47:1b:31:c2:ea:d9:68:b7:36:60:a8:22: 2a:50:9c:26:f0:d9:c2:77:2d:06:13:88:b2:62:50: 10:dc:39:89:52:a5:73:77:2e:53:83:9c:d2:52:67: dc:7b:93:a2:80:ae:16:4d:68:58:bd:2a:70:0e:c9: 56:87:d9:1c:b6:54:94:00:d8:9c:bf:33:1a:3d:30: 64:44:67:f4:ec:eb:3a:6d:a5:7c:fb:95:1d:e7:b6: 32:ad:3e:78:71:1a:5f:65:51:96:de:53:c8:c4:75: ac:08:0e:6c:1d:5b:7e:2e:72:e8:fc:af:64:48:18: 3d:22:f1:ed:b2:9b:31:bb:99:8a:24:4d:a7:46:e6: 24:23:27:e1:6f:73:3c:1b:27:6c:b7:55:d1:9c:ad: a7:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:F9:1A:A8:3E:0D:88:B2:1D:68:19:04:2F:5A:93:8E:2F:82:90:26 X509v3 Authority Key Identifier: keyid:6C:E9:25:4A:9C:BF:A0:70:42:24:37:35:DC:E4:FB:F7:E5:46:11:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91454F3/1EF7866805DC11EA9743BA5FC4F9AE02/bOklSpy_oHBCJDc13OT79-VGEWY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bOklSpy_oHBCJDc13OT79-VGEWY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91454F3/1EF7866805DC11EA9743BA5FC4F9AE02/bOklSpy_oHBCJDc13OT79-VGEWY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:68:6d:fd:27:0f:f5:8f:c9:01:6d:fd:04:39:b6:78:69:ce: 19:e3:5e:9b:f3:03:53:49:02:6d:f6:ac:c5:b8:36:cb:5a:dd: 5b:f3:8e:46:22:ce:f0:eb:12:79:d9:7c:41:2f:a6:21:6f:87: 63:ba:c7:04:49:25:d5:10:c1:c6:2d:07:81:24:84:da:39:5c: 86:e8:f2:f5:af:3f:35:a8:58:eb:25:79:39:fb:47:6a:62:bf: be:b7:9c:80:4a:2b:f4:31:98:7b:90:cc:17:e6:4a:a8:6b:b0: 0c:7c:82:f3:20:e1:cc:33:b4:b5:1d:32:d9:58:47:c5:ae:8a: 47:88:d7:a0:ad:42:8d:bf:65:63:59:c0:41:72:1b:40:41:e0: 76:58:ca:c7:84:54:a9:2a:77:60:3d:a2:d3:43:6e:f3:a6:6b: 17:e6:ff:40:f4:7f:d7:58:16:1d:f2:53:00:a5:24:e5:86:1e: 6d:d0:d6:47:0b:32:cb:de:6e:02:cf:db:a8:18:e2:85:fb:95: 60:28:92:39:48:1f:d7:83:02:64:39:5b:57:24:dc:e4:65:64: dc:92:5e:f5:82:2e:c5:fa:dd:31:4d:99:57:ba:ae:bc:c9:1c: f1:fc:f1:2b:e6:e5:f3:89:c6:05:53:2a:6f:6b:97:96:97:5c: c9:21:04:06 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDOgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDU0RjMxMTAvBgNVBAUTKDZDRTkyNTRBOUNCRkEwNzA0MjI0MzczNURDRTRGQkY3 RTU0NjExNjYwHhcNMjYwNDA0MTgwNzE3WhcNMjYwNDExMTgwNzE3WjAYMRYwFAYD VQQDEw02OWQxNTM1Ni1jODA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqvldr5m7yI4NlB0LZFLtiT9IIAs9KbE9uNLfb9ISzLmpXiCXxBiuMK7guRve XyCQxt4X7ryxce3nekwb4eE1aGypSwDdmh4RUCVOuFdHg6Wg3FCfrcrMmzqi0HmS yNt3gA//bXUakCIl7mdHGzHC6tlotzZgqCIqUJwm8NnCdy0GE4iyYlAQ3DmJUqVz dy5Tg5zSUmfce5OigK4WTWhYvSpwDslWh9kctlSUANicvzMaPTBkRGf07Os6baV8 +5Ud57YyrT54cRpfZVGW3lPIxHWsCA5sHVt+LnLo/K9kSBg9IvHtspsxu5mKJE2n RuYkIyfhb3M8Gydst1XRnK2nWQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGH5Gqg+ DYiyHWgZBC9ak44vgpAmMB8GA1UdIwQYMBaAFGzpJUqcv6BwQiQ3Ndzk+/flRhFm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NTRGMy8xRUY3ODY2ODA1 REMxMUVBOTc0M0JBNUZDNEY5QUUwMi9iT2tsU3B5X29IQkNKRGMxM09UNzktVkdF V1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JPa2xTcHlfb0hCQ0pEYzEzT1Q3OS1WR0VXWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NTRGMy8xRUY3ODY2ODA1REMxMUVBOTc0M0JBNUZDNEY5QUUwMi9iT2tsU3B5X29I QkNKRGMxM09UNzktVkdFV1kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAOmht/ScP9Y/JAW39BDm2eGnOGeNem/MDU0kCbfasxbg2y1rdW/OORiLO8OsS edl8QS+mIW+HY7rHBEkl1RDBxi0HgSSE2jlchujy9a8/NahY6yV5OftHamK/vrec gEor9DGYe5DMF+ZKqGuwDHyC8yDhzDO0tR0y2VhHxa6KR4jXoK1Cjb9lY1nAQXIb QEHgdljKx4RUqSp3YD2i00Nu86ZrF+b/QPR/11gWHfJTAKUk5YYebdDWRwsyy95u As/bqBjihfuVYCiSOUgf14MCZDlbVyTc5GVk3JJe9YIuxfrdMU2ZV7quvMkc8fzx K+bl84nGBVMqb2uXlpdcySEEBg== -----END CERTIFICATE-----Generated at Mon Apr 6 08:30:27 2026 by rpki-client