$ rpki-client -vvf rpki.apnic.net/member_repository/A91673ED/4D8FA20E7D4911EBA165737BC4F9AE02/OTVm9EF4bZWNinkRjo71b8hy5cU.mft File: OTVm9EF4bZWNinkRjo71b8hy5cU.mft (raw, json) Hash identifier: 3pkKY8F6Z1xtJF4BvByNKTdQ4LQ1Z8NhdhhayEhZ604= Subject key identifier: AA:65:8C:DE:C6:98:03:29:62:1D:B5:9E:10:12:FE:A2:A2:FE:CD:E9 Authority key identifier: 39:35:66:F4:41:78:6D:95:8D:8A:79:11:8E:8E:F5:6F:C8:72:E5:C5 Certificate issuer: /CN=A91673ED/serialNumber=393566F441786D958D8A79118E8EF56FC872E5C5 Certificate serial: 072D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OTVm9EF4bZWNinkRjo71b8hy5cU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91673ED/4D8FA20E7D4911EBA165737BC4F9AE02/OTVm9EF4bZWNinkRjo71b8hy5cU.mft Manifest number: 071D Signing time: Tue 28 Apr 2026 22:15:41 +0000 Manifest this update: Tue 28 Apr 2026 22:15:40 +0000 Manifest next update: Tue 05 May 2026 22:15:40 +0000 Files and hashes: 1: OTVm9EF4bZWNinkRjo71b8hy5cU.crl (hash: hvWt7XSb38B0K01rRLJunrSvoGZ+zHmwgCYA/TJcz9A=) 2: BDBFFB867D5411EB8CBE5B57C4F9AE02.roa (hash: 411MyxEd4SUlAxnDC0f/mu2L3C2aQqpG7IJEEqtjBBs=) 3: CD1F0EC07D4D11EBAE81AF83C4F9AE02.roa (hash: htsQTL9h1dFStX/S8fGPhD/iB1SnRc1hDGyCcwP3e/U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91673ED/4D8FA20E7D4911EBA165737BC4F9AE02/OTVm9EF4bZWNinkRjo71b8hy5cU.crl rsync://rpki.apnic.net/member_repository/A91673ED/4D8FA20E7D4911EBA165737BC4F9AE02/OTVm9EF4bZWNinkRjo71b8hy5cU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OTVm9EF4bZWNinkRjo71b8hy5cU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 05 May 2026 22:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1837 (0x72d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91673ED, serialNumber=393566F441786D958D8A79118E8EF56FC872E5C5 Validity Not Before: Apr 28 22:15:40 2026 GMT Not After : May 5 22:15:40 2026 GMT Subject: CN=69f1318d-0774 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:31:e0:16:21:da:14:bc:e1:74:3a:c9:68:2a: 75:a3:be:44:5f:e8:84:5a:66:a6:03:fc:49:c6:d3: 36:42:64:2c:8a:c5:9a:fc:74:8d:89:48:e3:d2:f9: 5d:ef:e7:b4:7c:c4:68:25:30:a3:a0:a1:81:59:dc: ae:09:5e:35:d7:9b:72:97:80:16:77:45:ae:8c:93: 19:27:56:02:fa:fb:9e:98:36:fc:b3:2c:6c:99:18: 3d:41:e5:05:66:67:c0:20:ad:74:97:da:b8:a9:5e: 0d:46:e1:dd:eb:3f:24:ca:be:7d:15:7a:46:7a:e6: 21:6d:8f:d4:ed:1e:65:3f:ac:2e:be:68:61:13:38: 21:ef:98:7d:0e:37:07:c0:d7:ce:99:fc:96:fe:d8: ae:0b:a8:14:6a:22:34:d0:22:a3:0d:af:1f:71:45: 9d:0a:01:21:4f:10:6d:e7:64:73:87:84:60:6b:d6: 4e:8f:de:93:9e:b1:36:cd:b0:6f:39:f8:32:17:9f: fd:25:f3:70:c7:e7:91:a9:2d:51:3a:4e:af:d7:09: 04:00:55:67:8e:fe:8a:74:55:e3:f8:c6:d2:5f:1a: 56:f0:9e:3d:12:86:54:ca:1f:f4:34:81:86:3c:77: 69:ce:bf:bf:5f:c1:12:77:80:3b:86:05:da:a3:1f: 81:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:65:8C:DE:C6:98:03:29:62:1D:B5:9E:10:12:FE:A2:A2:FE:CD:E9 X509v3 Authority Key Identifier: keyid:39:35:66:F4:41:78:6D:95:8D:8A:79:11:8E:8E:F5:6F:C8:72:E5:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91673ED/4D8FA20E7D4911EBA165737BC4F9AE02/OTVm9EF4bZWNinkRjo71b8hy5cU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OTVm9EF4bZWNinkRjo71b8hy5cU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91673ED/4D8FA20E7D4911EBA165737BC4F9AE02/OTVm9EF4bZWNinkRjo71b8hy5cU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:ae:ac:9c:43:07:3a:6c:9c:e9:68:59:43:d0:c2:3c:e7:f6: a4:30:aa:e7:1c:de:29:51:d9:b8:ab:92:5a:f5:9b:c0:37:bd: a8:55:69:ea:3b:05:15:a0:b1:40:25:f1:75:bd:60:c3:8c:f3: 83:40:e6:e5:13:64:33:a9:4d:9e:79:3c:78:98:5c:1f:6d:78: a4:22:ca:2b:06:3d:d5:89:77:47:10:51:59:8b:76:3d:87:ed: 3b:46:83:e4:79:ba:96:90:a8:37:15:6d:ba:34:27:db:cb:2e: 4a:9c:93:50:29:39:29:a3:0a:f7:cb:0d:d8:e6:aa:29:7b:b6: a1:4f:03:b4:47:02:eb:38:d7:28:20:f3:06:0f:3e:b7:1d:d1: 98:d6:2d:09:dc:aa:d3:11:6a:39:7d:23:52:ff:d0:09:48:2a: 1e:eb:3d:ae:36:38:94:3c:40:0b:55:67:3a:75:85:d0:84:30: 1d:2c:89:2c:f7:a9:ce:e7:4f:af:57:2d:93:96:91:31:60:7b: 2b:00:6f:b3:eb:4a:2f:2f:7e:f8:1b:71:88:72:f9:8a:23:1c: 70:d9:3f:3b:8d:54:77:15:79:fb:92:28:c5:3c:8d:67:45:10: d4:09:00:98:da:69:1c:1b:56:69:2f:93:9a:15:7f:f9:72:e3: ea:23:3c:0e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBy0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjczRUQxMTAvBgNVBAUTKDM5MzU2NkY0NDE3ODZEOTU4RDhBNzkxMThFOEVGNTZG Qzg3MkU1QzUwHhcNMjYwNDI4MjIxNTQwWhcNMjYwNTA1MjIxNTQwWjAYMRYwFAYD VQQDEw02OWYxMzE4ZC0wNzc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4THgFiHaFLzhdDrJaCp1o75EX+iEWmamA/xJxtM2QmQsisWa/HSNiUjj0vld 7+e0fMRoJTCjoKGBWdyuCV4115tyl4AWd0WujJMZJ1YC+vuemDb8syxsmRg9QeUF ZmfAIK10l9q4qV4NRuHd6z8kyr59FXpGeuYhbY/U7R5lP6wuvmhhEzgh75h9DjcH wNfOmfyW/tiuC6gUaiI00CKjDa8fcUWdCgEhTxBt52Rzh4Rga9ZOj96TnrE2zbBv OfgyF5/9JfNwx+eRqS1ROk6v1wkEAFVnjv6KdFXj+MbSXxpW8J49EoZUyh/0NIGG PHdpzr+/X8ESd4A7hgXaox+BYQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKpljN7G mAMpYh21nhAS/qKi/s3pMB8GA1UdIwQYMBaAFDk1ZvRBeG2VjYp5EY6O9W/IcuXF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NzNFRC80RDhGQTIwRTdE NDkxMUVCQTE2NTczN0JDNEY5QUUwMi9PVFZtOUVGNGJaV05pbmtSam83MWI4aHk1 Y1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09UVm05RUY0YlpXTmlua1JqbzcxYjhoeTVjVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NzNFRC80RDhGQTIwRTdENDkxMUVCQTE2NTczN0JDNEY5QUUwMi9PVFZtOUVGNGJa V05pbmtSam83MWI4aHk1Y1UubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAiq6snEMHOmyc6WhZQ9DCPOf2pDCq5xzeKVHZuKuSWvWbwDe9qFVp6jsFFaCx QCXxdb1gw4zzg0Dm5RNkM6lNnnk8eJhcH214pCLKKwY91Yl3RxBRWYt2PYftO0aD 5Hm6lpCoNxVtujQn28suSpyTUCk5KaMK98sN2OaqKXu2oU8DtEcC6zjXKCDzBg8+ tx3RmNYtCdyq0xFqOX0jUv/QCUgqHus9rjY4lDxAC1VnOnWF0IQwHSyJLPepzudP r1ctk5aRMWB7KwBvs+tKLy9++BtxiHL5iiMccNk/O41UdxV5+5IoxTyNZ0UQ1AkA mNppHBtWaS+TmhV/+XLj6iM8Dg== -----END CERTIFICATE-----Generated at Wed Apr 29 13:42:11 2026 by rpki-client