$ rpki-client -vvf rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.mft File: OqWspVx7NeP5Iru42qsdfYhw43M.mft (raw, json) Hash identifier: aMa6ry+ZAFPlgRy8Dpnfac2p5PH0XWkksN8OQ3UrFR4= Subject key identifier: 81:3D:13:A6:E3:C6:A6:19:55:70:92:87:0B:8F:67:FB:C9:10:0C:E4 Authority key identifier: 3A:A5:AC:A5:5C:7B:35:E3:F9:22:BB:B8:DA:AB:1D:7D:88:70:E3:73 Certificate issuer: /CN=A915A533/serialNumber=3AA5ACA55C7B35E3F922BBB8DAAB1D7D8870E373 Certificate serial: 0227 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OqWspVx7NeP5Iru42qsdfYhw43M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.mft Manifest number: 0220 Signing time: Sun 05 Apr 2026 02:21:53 +0000 Manifest this update: Sun 05 Apr 2026 02:21:53 +0000 Manifest next update: Sun 12 Apr 2026 02:21:53 +0000 Files and hashes: 1: OqWspVx7NeP5Iru42qsdfYhw43M.crl (hash: wQa6Vaw2E30J0hvxGXNhTz2ESr+3eQRx8prTI+PzaCM=) 2: 052E6FBAF9F511EDB2CAA636C4F9AE02.roa (hash: PQd/8cl7exmw5LNAxBVE8+5SKezKc679UfwN3IJFrBs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.crl rsync://rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OqWspVx7NeP5Iru42qsdfYhw43M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 02:21:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 551 (0x227) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A533, serialNumber=3AA5ACA55C7B35E3F922BBB8DAAB1D7D8870E373 Validity Not Before: Apr 5 02:21:53 2026 GMT Not After : Apr 12 02:21:53 2026 GMT Subject: CN=69d1c741-b12b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:81:c9:8a:1c:c0:0d:d6:8a:3d:11:d1:cb:85: eb:61:20:c8:bd:21:9e:ce:77:31:02:1b:8f:07:84: 34:a1:7f:fd:8f:b6:bd:a0:70:b9:b1:8c:54:9f:3b: 82:a6:c6:9b:e6:88:9e:20:d8:eb:22:bc:79:d5:f1: c8:22:b4:b8:37:d5:ab:78:29:46:ef:90:83:50:c1: 92:e8:99:50:6c:b9:16:88:45:da:78:ff:fa:e3:74: 09:b7:42:df:7b:f8:1f:d5:62:b7:72:8b:c8:ae:de: 58:6d:8e:60:0a:3e:8b:8a:94:4b:cc:e7:6e:dd:c1: 1b:48:76:0f:bf:4a:10:26:64:79:53:bf:c3:ea:35: 8f:dd:47:c3:1f:3f:04:2f:d7:88:c6:fd:27:c8:4f: cf:62:c9:19:15:51:e9:5b:42:68:9f:a2:d2:1a:11: 12:e6:6c:49:5a:62:c5:7f:3c:4f:b5:d4:97:d5:2d: c5:ad:a6:74:4d:2d:a4:05:cc:71:fb:96:36:b8:0f: 4c:f8:27:eb:da:55:77:c2:41:31:39:c1:d9:65:b7: 7b:f1:b7:3d:33:7b:0f:1c:09:69:c5:0b:cb:0a:d1: bd:d3:bb:e8:04:0d:27:f4:5f:4e:94:76:82:07:3c: b5:7b:8a:0f:62:71:83:74:5b:d5:00:cb:8a:d7:99: 8b:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:3D:13:A6:E3:C6:A6:19:55:70:92:87:0B:8F:67:FB:C9:10:0C:E4 X509v3 Authority Key Identifier: keyid:3A:A5:AC:A5:5C:7B:35:E3:F9:22:BB:B8:DA:AB:1D:7D:88:70:E3:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OqWspVx7NeP5Iru42qsdfYhw43M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bc:07:ec:31:bb:89:8f:88:fd:9b:ba:3f:9a:64:7a:4b:d4:0f: 99:07:e8:d5:d9:a0:3f:d2:01:82:d8:b3:ba:86:45:ed:af:01: 38:7c:58:62:93:fb:f9:d1:bf:b8:05:82:d5:5d:fb:bf:57:b5: 29:91:e8:cf:b5:1c:e8:2b:da:ed:bb:aa:41:98:a8:69:a6:b7: 37:ca:ff:26:0c:cf:40:04:9b:50:19:5e:b4:c6:0c:67:61:10: 78:4a:04:20:03:66:4a:3a:f1:36:e7:81:15:0c:b6:a8:63:79: e0:6f:03:e5:28:51:73:ce:4b:5b:3f:5d:c1:23:7c:d9:ac:f5: ef:28:82:7a:64:79:44:da:fe:36:16:2f:eb:0f:6f:95:60:9b: 9d:4b:9a:36:3b:4a:c3:01:63:49:2b:4d:a8:aa:dd:6f:b2:f2: ed:84:22:11:c0:c5:0f:f7:25:b5:04:5f:9a:21:60:ba:d4:61: 98:b7:4c:1a:5b:8c:a6:5a:7f:dc:5d:a0:6b:35:c8:f8:0e:83: 45:fa:cc:f7:8b:ac:2b:ea:a1:08:00:51:5d:7e:a8:f7:ec:10: 7e:5d:7d:57:44:38:88:80:74:fe:0b:66:96:ca:57:fb:9e:9d: c5:f5:3a:25:38:fd:e9:1b:b0:6b:23:75:25:f7:97:c3:7f:4b: 86:b7:f3:09 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAicwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUE1MzMxMTAvBgNVBAUTKDNBQTVBQ0E1NUM3QjM1RTNGOTIyQkJCOERBQUIxRDdE ODg3MEUzNzMwHhcNMjYwNDA1MDIyMTUzWhcNMjYwNDEyMDIyMTUzWjAYMRYwFAYD VQQDEw02OWQxYzc0MS1iMTJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsoHJihzADdaKPRHRy4XrYSDIvSGezncxAhuPB4Q0oX/9j7a9oHC5sYxUnzuC psab5oieINjrIrx51fHIIrS4N9WreClG75CDUMGS6JlQbLkWiEXaeP/643QJt0Lf e/gf1WK3covIrt5YbY5gCj6LipRLzOdu3cEbSHYPv0oQJmR5U7/D6jWP3UfDHz8E L9eIxv0nyE/PYskZFVHpW0Jon6LSGhES5mxJWmLFfzxPtdSX1S3FraZ0TS2kBcxx +5Y2uA9M+Cfr2lV3wkExOcHZZbd78bc9M3sPHAlpxQvLCtG907voBA0n9F9OlHaC Bzy1e4oPYnGDdFvVAMuK15mLPwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIE9E6bj xqYZVXCShwuPZ/vJEAzkMB8GA1UdIwQYMBaAFDqlrKVcezXj+SK7uNqrHX2IcONz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTUzMy80MDI5OTc4QUY4 N0QxMUVEOTRGMTdDNTdDNEY5QUUwMi9PcVdzcFZ4N05lUDVJcnU0MnFzZGZZaHc0 M00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09xV3NwVng3TmVQNUlydTQycXNkZllodzQzTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QTUzMy80MDI5OTc4QUY4N0QxMUVEOTRGMTdDNTdDNEY5QUUwMi9PcVdzcFZ4N05l UDVJcnU0MnFzZGZZaHc0M00ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAvAfsMbuJj4j9m7o/mmR6S9QPmQfo1dmgP9IBgtizuoZF7a8BOHxYYpP7+dG/ uAWC1V37v1e1KZHoz7Uc6Cva7buqQZioaaa3N8r/JgzPQASbUBletMYMZ2EQeEoE IANmSjrxNueBFQy2qGN54G8D5ShRc85LWz9dwSN82az17yiCemR5RNr+NhYv6w9v lWCbnUuaNjtKwwFjSStNqKrdb7Ly7YQiEcDFD/cltQRfmiFgutRhmLdMGluMplp/ 3F2gazXI+A6DRfrM94usK+qhCABRXX6o9+wQfl19V0Q4iIB0/gtmlspX+56dxfU6 JTj96RuwayN1JfeXw39LhrfzCQ== -----END CERTIFICATE-----Generated at Mon Apr 6 08:39:28 2026 by rpki-client