$ rpki-client -vvf rpki.apnic.net/member_repository/A91592B3/8917FB2A5D0E11E5B3BEAD57C4F9AE02/OlwIE8D-0Kg7PdAbelrhoTCCcCg.mft File: OlwIE8D-0Kg7PdAbelrhoTCCcCg.mft (raw, json) Hash identifier: S/uZEjcBcL1WMnnkXNBchGfC5USD3qsyHW+2pJE7A0I= Subject key identifier: 41:5B:D9:CB:50:06:FB:B7:D1:F6:D1:0C:AF:B7:34:DB:E5:95:CB:B3 Authority key identifier: 3A:5C:08:13:C0:FE:D0:A8:3B:3D:D0:1B:7A:5A:E1:A1:30:82:70:28 Certificate issuer: /CN=A91592B3/serialNumber=3A5C0813C0FED0A83B3DD01B7A5AE1A130827028 Certificate serial: 24D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OlwIE8D-0Kg7PdAbelrhoTCCcCg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91592B3/8917FB2A5D0E11E5B3BEAD57C4F9AE02/OlwIE8D-0Kg7PdAbelrhoTCCcCg.mft Manifest number: 24B6 Signing time: Mon 20 Apr 2026 15:44:24 +0000 Manifest this update: Mon 20 Apr 2026 15:44:24 +0000 Manifest next update: Mon 27 Apr 2026 15:44:24 +0000 Files and hashes: 1: OlwIE8D-0Kg7PdAbelrhoTCCcCg.crl (hash: AgOY+cDS2sZZuxdUgoVH+GqjKcRbrgzUgiV7hdSQm+8=) 2: 54EE8F7615FE11ECAF541012C4F9AE02.roa (hash: ma3mPLbDDoGF1MegDkOFqkQshwZriofp35ZPlLPNv48=) 3: D8D3FB6414F111F08EE5E32DC4F9AE02.roa (hash: Z1iMqs+QoYYoJUqVZPJECJ1hNSHdhes92tk2TKS7LP0=) 4: 9876A6C025B211ECB5356475C4F9AE02.roa (hash: MsKmniAPt2PQV/HaIQt7xSjXSsuc7vmPEbiCsLgiKi0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91592B3/8917FB2A5D0E11E5B3BEAD57C4F9AE02/OlwIE8D-0Kg7PdAbelrhoTCCcCg.crl rsync://rpki.apnic.net/member_repository/A91592B3/8917FB2A5D0E11E5B3BEAD57C4F9AE02/OlwIE8D-0Kg7PdAbelrhoTCCcCg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OlwIE8D-0Kg7PdAbelrhoTCCcCg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Apr 2026 15:44:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9426 (0x24d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91592B3, serialNumber=3A5C0813C0FED0A83B3DD01B7A5AE1A130827028 Validity Not Before: Apr 20 15:44:24 2026 GMT Not After : Apr 27 15:44:24 2026 GMT Subject: CN=69e649d8-e589 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:61:4e:c2:62:9a:16:39:97:15:b6:ac:36:dc: 35:d6:df:33:24:09:ad:84:82:b5:4e:1b:56:7c:e7: 6f:43:10:32:db:1c:3d:9d:cd:26:e3:4e:fa:11:9d: 17:eb:1c:73:f7:6d:c2:be:98:9d:24:a7:3f:64:5b: ef:36:0c:65:29:d3:0e:57:3e:f0:9f:91:ce:18:9f: 01:87:76:21:d6:69:41:0e:e3:75:d1:47:68:42:cb: af:42:ba:b3:4e:5b:31:f5:c1:6b:12:90:05:bd:56: e5:a6:99:51:0b:68:37:d8:4d:ad:e2:04:c8:5b:2d: c4:6f:2c:4d:23:e8:54:ee:02:ab:24:8f:ab:93:2f: 7d:a6:40:11:50:16:7a:95:0b:f8:c6:6b:b7:98:7b: 5b:47:02:13:31:f0:e3:f6:5c:e9:20:91:df:a1:03: 55:f6:a6:99:c8:cc:35:c9:63:6b:3f:cb:38:71:16: 7a:0d:74:d7:4a:4e:02:09:3b:bb:ec:cd:87:81:73: 10:11:17:5f:4d:0e:15:98:ab:be:7f:f8:f4:53:4f: 53:52:8b:f3:7e:fe:da:36:cf:88:60:0a:8e:3e:d5: 12:47:cf:a0:94:a2:6e:4b:b7:73:78:80:40:44:28: 5f:ca:97:95:70:d4:8f:5c:30:36:b3:c4:ab:97:d8: 05:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:5B:D9:CB:50:06:FB:B7:D1:F6:D1:0C:AF:B7:34:DB:E5:95:CB:B3 X509v3 Authority Key Identifier: keyid:3A:5C:08:13:C0:FE:D0:A8:3B:3D:D0:1B:7A:5A:E1:A1:30:82:70:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91592B3/8917FB2A5D0E11E5B3BEAD57C4F9AE02/OlwIE8D-0Kg7PdAbelrhoTCCcCg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OlwIE8D-0Kg7PdAbelrhoTCCcCg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91592B3/8917FB2A5D0E11E5B3BEAD57C4F9AE02/OlwIE8D-0Kg7PdAbelrhoTCCcCg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:84:7f:c0:28:dd:29:32:16:02:eb:98:70:b4:0e:c7:6a:a3: 70:73:7c:d6:8c:6a:06:81:a1:d5:e7:d9:2a:19:ce:cb:d5:7c: 82:f1:1c:c7:b9:5f:5f:5f:2b:9a:64:02:69:b4:4a:ef:fb:30: 68:57:f5:9b:65:3c:67:37:e3:0a:47:f3:7d:81:e5:b6:84:ee: 44:d2:ec:82:01:02:bf:94:75:b5:eb:2b:d1:52:92:a4:b4:c6: 89:32:a2:df:77:ba:b1:a7:7e:dc:8a:e5:f6:d7:e5:3e:95:ed: 98:4b:55:d7:f7:fe:44:fb:bc:b9:11:a8:72:2e:09:d4:79:09: 02:e3:07:22:89:0c:e8:49:b6:13:30:c9:48:e1:70:02:ad:38: e1:60:e8:d8:dd:1d:86:8d:db:41:d7:cb:bd:5a:01:66:d5:1b: 7b:9f:9d:d5:af:2b:ba:77:bc:6a:65:2e:34:a5:17:2a:f2:36: 49:1a:5b:1a:3e:d0:00:31:e7:1b:7c:94:2b:a5:28:17:18:14: 91:b0:45:70:02:7f:4b:d4:7d:36:b0:fd:55:80:b2:6d:78:ec: d0:5f:06:b5:35:bc:b3:42:0f:34:42:ca:c6:e7:46:27:57:f6: dd:62:18:3a:56:ee:92:73:4a:8c:55:a3:2e:c2:7c:05:10:71: 3e:ca:66:5f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICJNIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTkyQjMxMTAvBgNVBAUTKDNBNUMwODEzQzBGRUQwQTgzQjNERDAxQjdBNUFFMUEx MzA4MjcwMjgwHhcNMjYwNDIwMTU0NDI0WhcNMjYwNDI3MTU0NDI0WjAYMRYwFAYD VQQDEw02OWU2NDlkOC1lNTg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqmFOwmKaFjmXFbasNtw11t8zJAmthIK1ThtWfOdvQxAy2xw9nc0m4076EZ0X 6xxz923CvpidJKc/ZFvvNgxlKdMOVz7wn5HOGJ8Bh3Yh1mlBDuN10UdoQsuvQrqz Tlsx9cFrEpAFvVblpplRC2g32E2t4gTIWy3EbyxNI+hU7gKrJI+rky99pkARUBZ6 lQv4xmu3mHtbRwITMfDj9lzpIJHfoQNV9qaZyMw1yWNrP8s4cRZ6DXTXSk4CCTu7 7M2HgXMQERdfTQ4VmKu+f/j0U09TUovzfv7aNs+IYAqOPtUSR8+glKJuS7dzeIBA RChfypeVcNSPXDA2s8Srl9gF9QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEFb2ctQ Bvu30fbRDK+3NNvllcuzMB8GA1UdIwQYMBaAFDpcCBPA/tCoOz3QG3pa4aEwgnAo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OTJCMy84OTE3RkIyQTVE MEUxMUU1QjNCRUFENTdDNEY5QUUwMi9PbHdJRThELTBLZzdQZEFiZWxyaG9UQ0Nj Q2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09sd0lFOEQtMEtnN1BkQWJlbHJob1RDQ2NDZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OTJCMy84OTE3RkIyQTVEMEUxMUU1QjNCRUFENTdDNEY5QUUwMi9PbHdJRThELTBL ZzdQZEFiZWxyaG9UQ0NjQ2cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAFYR/wCjdKTIWAuuYcLQOx2qjcHN81oxqBoGh1efZKhnOy9V8gvEcx7lfX18r mmQCabRK7/swaFf1m2U8ZzfjCkfzfYHltoTuRNLsggECv5R1tesr0VKSpLTGiTKi 33e6sad+3Irl9tflPpXtmEtV1/f+RPu8uRGoci4J1HkJAuMHIokM6Em2EzDJSOFw Aq044WDo2N0dho3bQdfLvVoBZtUbe5+d1a8rune8amUuNKUXKvI2SRpbGj7QADHn G3yUK6UoFxgUkbBFcAJ/S9R9NrD9VYCybXjs0F8GtTW8s0IPNELKxudGJ1f23WIY OlbuknNKjFWjLsJ8BRBxPspmXw== -----END CERTIFICATE-----Generated at Wed Apr 22 04:08:26 2026 by rpki-client