$ rpki-client -vvf rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.mft File: OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.mft (raw, json) Hash identifier: xvxbmLKWf1J53IlnHqjdR501vgbYty59gOMNjWoxCX4= Subject key identifier: 29:9B:06:C5:7D:45:1A:09:C7:D7:CC:E9:A9:2B:7E:05:7A:53:6D:45 Authority key identifier: 39:C4:39:67:57:00:87:F5:83:E4:25:A9:FE:9B:69:B9:50:6A:59:BD Certificate issuer: /CN=A9157D67/serialNumber=39C43967570087F583E425A9FE9B69B9506A59BD Certificate serial: 0C5B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.mft Manifest number: 0A73 Signing time: Mon 27 Apr 2026 11:49:18 +0000 Manifest this update: Mon 27 Apr 2026 11:49:17 +0000 Manifest next update: Mon 04 May 2026 11:49:17 +0000 Files and hashes: 1: OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.crl (hash: a2xmGptRPofM8gwp/yLOEGRF40FuWU/Gb0oKJ0tn3kQ=) 2: AB96EF3852CD11ECAB209C5FC4F9AE02.roa (hash: J0sAShMAS7TBXIrBTuQVLuuil+RzIlr22j/AeepAcBs=) 3: 18E343FA3A3411F195AC72659C833773.roa (hash: KmC1y6Iu7HBzh2swaBdIcYsNGsBp1fh+v0hV3x9SRrk=) 4: B8D1EFFECFF111F085D0CF76C4F9AE02.roa (hash: s77Ei8EC37Djt+pew6TOMR9zQCEM+rq8eyiOuZgQork=) 5: 61EE2500936E11F091943583C4F9AE02.roa (hash: g7yJpivo0SKMhKeLtz3GXKRC6T8KMageRZ42baMFK/Y=) 6: 3CE7D21201A311F1A14FC5D2686F56BC.roa (hash: o8Efs0Zmsyf+yPslQE6u+yFKAm4P6NONEQAjk5sGm4c=) 7: 93EE047E4BB511EE9309AA4EC4F9AE02.roa (hash: TZoK6id0rUzh56KPEUCZAm7vzhoQKcumpCyH1Z185+Y=) 8: 72C9BE36950211EFAC892C5EC4F9AE02.roa (hash: ye8jq88ep0wSruy1WtzE0bv/JRbtY6NOkRlK24kmsxo=) 9: 263DB02C4BB611EE9B959267C4F9AE02.roa (hash: w6yzFziDeBAoUWZ59xaLHwBZh42R2pzo/qzXpmN8kyk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.crl rsync://rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 11:49:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3163 (0xc5b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157D67, serialNumber=39C43967570087F583E425A9FE9B69B9506A59BD Validity Not Before: Apr 27 11:49:17 2026 GMT Not After : May 4 11:49:17 2026 GMT Subject: CN=69ef4d3e-bdc2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:4c:b1:c4:e0:c4:71:85:20:c9:98:76:75:c9: ed:91:43:c7:42:ba:79:71:1f:b6:c6:99:82:46:62: 80:10:c3:18:07:82:d8:00:55:34:52:f6:45:fa:e3: 59:a8:5f:06:85:bc:82:ce:d7:c0:6f:55:55:0c:30: 5c:78:d6:24:22:42:df:f1:eb:c1:a4:42:8e:d5:d7: 53:ee:f1:0c:c5:00:78:74:08:11:67:c6:04:1e:b6: ac:f7:46:61:69:0f:37:58:41:b8:7a:d8:29:85:bf: f1:e9:68:5b:6f:66:80:a8:7b:6a:e9:93:70:86:ac: 7b:11:c8:bd:06:ff:9c:18:1f:28:d9:6d:03:15:d6: 7f:ff:52:5a:fb:28:e8:88:58:16:9e:75:82:a2:65: 66:9a:eb:09:a0:cc:f8:13:d7:ba:ae:d0:48:a6:c1: 03:93:07:a6:06:a0:7c:31:2f:3c:a4:d2:fa:97:f0: 0f:16:32:fc:47:13:2f:5e:a9:d4:2f:d6:34:97:8e: e3:d6:d3:d7:7f:ef:e5:9c:6a:56:cf:fb:30:e1:d3: 41:3d:b3:7e:9a:55:15:9e:04:ca:80:98:1f:9f:d7: 97:0c:c0:86:c5:2f:c4:f7:80:d6:b3:82:8d:29:c2: fb:c6:f6:52:36:54:6a:6e:94:ec:b2:e4:18:46:4a: 4f:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:9B:06:C5:7D:45:1A:09:C7:D7:CC:E9:A9:2B:7E:05:7A:53:6D:45 X509v3 Authority Key Identifier: keyid:39:C4:39:67:57:00:87:F5:83:E4:25:A9:FE:9B:69:B9:50:6A:59:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c6:0f:10:83:01:7f:10:24:2b:66:fd:79:33:11:4c:f8:b3:e7: db:92:4f:93:df:eb:b1:66:b5:d2:09:1f:7e:bd:b5:fa:ed:a7: 53:da:5c:45:dc:c1:71:28:f4:13:ae:f1:68:ce:7b:5b:b1:ba: 82:31:1c:24:c2:69:bb:1b:47:b1:0b:a2:d1:04:9a:76:dc:bd: cd:f1:4c:4c:3f:a8:1a:f9:6e:fa:bb:97:dc:9b:fe:c6:5d:86: 4f:37:66:fb:02:de:19:3b:dd:95:17:c9:ab:38:34:54:d4:da: 05:c2:90:19:19:5b:29:f3:fe:8a:3e:71:85:7a:cd:ff:c5:eb: 57:38:ac:24:5c:78:ec:a3:7b:e4:72:4e:33:17:e1:f7:87:08: b6:7d:fb:09:de:8e:f8:db:16:14:51:6b:fb:7a:87:69:dc:cf: a0:96:e4:47:99:ed:3c:8e:ce:20:6c:37:6c:a3:39:03:fd:ee: d2:97:cb:13:60:2c:94:4b:b9:7b:dd:6e:6d:c8:1c:c5:f1:0e: c8:37:22:66:c7:30:bb:84:61:89:7a:89:84:10:a7:0e:93:b4: 6f:7c:32:3d:93:23:97:61:f0:85:e1:6a:a4:89:63:82:61:22: 15:e8:a1:c0:f5:25:26:92:a1:42:dd:cb:e9:17:6d:41:38:91: 05:ea:c6:79 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDFswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdENjcxMTAvBgNVBAUTKDM5QzQzOTY3NTcwMDg3RjU4M0U0MjVBOUZFOUI2OUI5 NTA2QTU5QkQwHhcNMjYwNDI3MTE0OTE3WhcNMjYwNTA0MTE0OTE3WjAYMRYwFAYD VQQDEw02OWVmNGQzZS1iZGMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnUyxxODEcYUgyZh2dcntkUPHQrp5cR+2xpmCRmKAEMMYB4LYAFU0UvZF+uNZ qF8GhbyCztfAb1VVDDBceNYkIkLf8evBpEKO1ddT7vEMxQB4dAgRZ8YEHras90Zh aQ83WEG4etgphb/x6Whbb2aAqHtq6ZNwhqx7Eci9Bv+cGB8o2W0DFdZ//1Ja+yjo iFgWnnWComVmmusJoMz4E9e6rtBIpsEDkwemBqB8MS88pNL6l/APFjL8RxMvXqnU L9Y0l47j1tPXf+/lnGpWz/sw4dNBPbN+mlUVngTKgJgfn9eXDMCGxS/E94DWs4KN KcL7xvZSNlRqbpTssuQYRkpPBQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCmbBsV9 RRoJx9fM6akrfgV6U21FMB8GA1UdIwQYMBaAFDnEOWdXAIf1g+Qlqf6bablQalm9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0Q2Ny82OUU2QzE2QTQ0 MkExMUVCOTU5OUFEMzhDNEY5QUUwMi9PY1E1WjFjQWhfV0Q1Q1dwX3B0cHVWQnFX YjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09jUTVaMWNBaF9XRDVDV3BfcHRwdVZCcVdiMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0Q2Ny82OUU2QzE2QTQ0MkExMUVCOTU5OUFEMzhDNEY5QUUwMi9PY1E1WjFjQWhf V0Q1Q1dwX3B0cHVWQnFXYjAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAxg8QgwF/ECQrZv15MxFM+LPn25JPk9/rsWa10gkffr21+u2nU9pcRdzBcSj0 E67xaM57W7G6gjEcJMJpuxtHsQui0QSadty9zfFMTD+oGvlu+ruX3Jv+xl2GTzdm +wLeGTvdlRfJqzg0VNTaBcKQGRlbKfP+ij5xhXrN/8XrVzisJFx47KN75HJOMxfh 94cItn37Cd6O+NsWFFFr+3qHadzPoJbkR5ntPI7OIGw3bKM5A/3u0pfLE2AslEu5 e91ubcgcxfEOyDciZscwu4RhiXqJhBCnDpO0b3wyPZMjl2HwheFqpIljgmEiFeih wPUlJpKhQt3L6RdtQTiRBerGeQ== -----END CERTIFICATE-----Generated at Tue Apr 28 09:16:09 2026 by rpki-client