$ rpki-client -vvf rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.mft File: OAzWvMnhwR_sTuJ9qJOCTa21ISo.mft (raw, json) Hash identifier: 2BT2LZ3MpS0xmcO11LNPDhD7IJ3vjmFwzYUyP+5iFkI= Subject key identifier: 28:A6:E1:AD:23:6B:00:74:4F:AD:98:E6:37:7E:1F:FE:95:FF:B8:76 Authority key identifier: 38:0C:D6:BC:C9:E1:C1:1F:EC:4E:E2:7D:A8:93:82:4D:AD:B5:21:2A Certificate issuer: /CN=A917B520/serialNumber=380CD6BCC9E1C11FEC4EE27DA893824DADB5212A Certificate serial: 017C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OAzWvMnhwR_sTuJ9qJOCTa21ISo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.mft Manifest number: 0174 Signing time: Sun 05 Apr 2026 02:15:01 +0000 Manifest this update: Sun 05 Apr 2026 02:15:01 +0000 Manifest next update: Sun 12 Apr 2026 02:15:01 +0000 Files and hashes: 1: OAzWvMnhwR_sTuJ9qJOCTa21ISo.crl (hash: vmQqaJnbz/qr2Oo6Hvvo1qntC7LELoHCc9hduwwJxN0=) 2: 9580A702548211EFAADB996FC4F9AE02.roa (hash: W7D/CE6bwRnzbpMvwdGdNhRCXEBo9prgW8s4Z6/gD9o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.crl rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OAzWvMnhwR_sTuJ9qJOCTa21ISo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 02:15:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 380 (0x17c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B520, serialNumber=380CD6BCC9E1C11FEC4EE27DA893824DADB5212A Validity Not Before: Apr 5 02:15:01 2026 GMT Not After : Apr 12 02:15:01 2026 GMT Subject: CN=69d1c5a5-e444 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:e2:f7:89:66:09:a5:b2:5c:41:36:5d:18:39: 8e:39:19:c6:02:ea:f6:a9:7b:1c:cc:2e:e8:03:67: 6a:b6:9f:07:a4:a2:94:07:29:dd:45:ee:27:5d:d0: ee:38:4c:1a:18:fa:94:46:7a:be:96:31:f5:18:c6: f1:63:0c:9b:8b:47:ed:0e:3b:1d:0c:d5:76:23:2f: 20:b4:c8:ef:d0:48:93:79:2e:e0:71:fd:72:78:36: ab:78:02:3b:cd:88:2b:2b:4e:3a:87:3b:d2:1c:29: 4d:7b:38:af:fb:5d:2f:1e:e9:18:fc:68:75:f5:64: 9a:b0:59:24:d6:22:6e:9a:8e:95:3f:50:c4:71:d2: f8:b7:92:d0:c3:75:de:eb:cf:e1:54:55:c3:32:5d: 41:6a:a5:cf:66:ab:51:34:3e:e4:03:b7:70:9b:ba: 1c:2c:f7:d0:ec:9f:3c:1c:fc:ff:e1:9c:79:6b:4f: 69:cd:ac:17:35:38:2b:1f:c0:fa:88:c1:87:1d:79: 43:f8:c2:49:4d:07:fc:7c:63:fe:fb:2c:57:f6:bf: b1:48:f0:6a:76:e9:8b:c8:66:15:4f:e0:c0:fe:12: ac:ae:32:d5:79:63:8f:ec:b0:f0:8a:92:95:75:d7: 8c:18:f0:6b:f7:00:03:56:ae:38:58:9b:f8:9c:71: 9e:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:A6:E1:AD:23:6B:00:74:4F:AD:98:E6:37:7E:1F:FE:95:FF:B8:76 X509v3 Authority Key Identifier: keyid:38:0C:D6:BC:C9:E1:C1:1F:EC:4E:E2:7D:A8:93:82:4D:AD:B5:21:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OAzWvMnhwR_sTuJ9qJOCTa21ISo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:0e:2e:d8:1a:55:cf:b4:73:3a:08:bb:ed:43:31:71:c7:22: 1f:76:8a:3b:ed:31:21:e6:2d:b6:ae:d0:d5:6f:2e:b7:60:59: 89:f5:15:dc:6e:42:c2:fc:ba:90:b8:3d:05:34:a8:5b:e6:54: 63:71:11:f6:9e:67:2f:cf:f2:94:10:e2:57:0e:d6:51:05:21: 70:10:a6:76:7f:d3:0b:f3:25:7c:07:c5:bb:f5:14:e4:28:0a: 14:0d:2a:09:7c:24:ce:f7:d9:5f:c0:e6:d4:bc:d2:18:e0:12: 1d:42:e7:90:83:ba:56:aa:d2:0b:ba:a6:3b:9b:c5:8a:bb:40: 3a:ab:d1:75:0b:5e:d0:04:17:a3:e5:17:22:2f:b8:98:0a:74: 80:e2:e8:77:61:d8:d8:be:5e:1b:c7:60:a7:f8:a3:93:72:98: 1c:3b:2c:81:55:83:d2:93:e5:ab:f6:ec:2f:08:90:98:b1:82: ed:cc:25:49:44:e8:d1:d2:ac:85:ee:f6:e3:21:28:ab:a2:9b: 94:99:3b:ef:86:bb:48:4d:78:f9:a1:ec:21:34:6d:6e:51:d4: a5:b0:00:b8:6b:95:08:5e:e2:43:a0:a3:02:ae:66:94:6e:c3: a5:a6:82:2f:4a:63:4a:36:6b:98:83:63:0b:c0:27:5b:b6:c9: 1c:a5:d4:5c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAXwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I1MjAxMTAvBgNVBAUTKDM4MENENkJDQzlFMUMxMUZFQzRFRTI3REE4OTM4MjRE QURCNTIxMkEwHhcNMjYwNDA1MDIxNTAxWhcNMjYwNDEyMDIxNTAxWjAYMRYwFAYD VQQDEw02OWQxYzVhNS1lNDQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxOL3iWYJpbJcQTZdGDmOORnGAur2qXsczC7oA2dqtp8HpKKUByndRe4nXdDu OEwaGPqURnq+ljH1GMbxYwybi0ftDjsdDNV2Iy8gtMjv0EiTeS7gcf1yeDareAI7 zYgrK046hzvSHClNeziv+10vHukY/Gh19WSasFkk1iJumo6VP1DEcdL4t5LQw3Xe 68/hVFXDMl1BaqXPZqtRND7kA7dwm7ocLPfQ7J88HPz/4Zx5a09pzawXNTgrH8D6 iMGHHXlD+MJJTQf8fGP++yxX9r+xSPBqdumLyGYVT+DA/hKsrjLVeWOP7LDwipKV ddeMGPBr9wADVq44WJv4nHGerwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCim4a0j awB0T62Y5jd+H/6V/7h2MB8GA1UdIwQYMBaAFDgM1rzJ4cEf7E7ifaiTgk2ttSEq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjUyMC84RjkwOTFENDMy QjAxMUVGQTRDQkY5NkFDNEY5QUUwMi9PQXpXdk1uaHdSX3NUdUo5cUpPQ1RhMjFJ U28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL09Beld2TW5od1Jfc1R1SjlxSk9DVGEyMUlTby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjUyMC84RjkwOTFENDMyQjAxMUVGQTRDQkY5NkFDNEY5QUUwMi9PQXpXdk1uaHdS X3NUdUo5cUpPQ1RhMjFJU28ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEApQ4u2BpVz7RzOgi77UMxccciH3aKO+0xIeYttq7Q1W8ut2BZifUV3G5Cwvy6 kLg9BTSoW+ZUY3ER9p5nL8/ylBDiVw7WUQUhcBCmdn/TC/MlfAfFu/UU5CgKFA0q CXwkzvfZX8Dm1LzSGOASHULnkIO6VqrSC7qmO5vFirtAOqvRdQte0AQXo+UXIi+4 mAp0gOLod2HY2L5eG8dgp/ijk3KYHDssgVWD0pPlq/bsLwiQmLGC7cwlSUTo0dKs he724yEoq6KblJk774a7SE14+aHsITRtblHUpbAAuGuVCF7iQ6CjAq5mlG7DpaaC L0pjSjZrmINjC8AnW7bJHKXUXA== -----END CERTIFICATE-----Generated at Mon Apr 6 19:38:51 2026 by rpki-client