$ rpki-client -vvf rpki.apnic.net/member_repository/A9187BAC/C6AD3E0AD02C11EFB5584915C4F9AE02/opsbaAnOwakkcMWcbDa_pc84cYY.mft File: opsbaAnOwakkcMWcbDa_pc84cYY.mft (raw, json) Hash identifier: WuTOYsrtKhHtRZOO9HDLfirUcUjN6VIwInsckaNMjaw= Subject key identifier: E3:EC:FD:1C:6E:4F:B4:F0:4B:8A:E5:A4:81:89:7C:40:24:BD:D9:8A Authority key identifier: A2:9B:1B:68:09:CE:C1:A9:24:70:C5:9C:6C:36:BF:A5:CF:38:71:86 Certificate issuer: /CN=A9187BAC/serialNumber=A29B1B6809CEC1A92470C59C6C36BFA5CF387186 Certificate serial: FD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/opsbaAnOwakkcMWcbDa_pc84cYY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9187BAC/C6AD3E0AD02C11EFB5584915C4F9AE02/opsbaAnOwakkcMWcbDa_pc84cYY.mft Manifest number: F1 Signing time: Sun 05 Apr 2026 05:50:11 +0000 Manifest this update: Sun 05 Apr 2026 05:50:11 +0000 Manifest next update: Sun 12 Apr 2026 05:50:11 +0000 Files and hashes: 1: opsbaAnOwakkcMWcbDa_pc84cYY.crl (hash: JVm42R7UmEbxiaouLFPepLK3c6ylQgGNgUQqsdyUSZI=) 2: 7375238236E411F0A95FB239C4F9AE02.roa (hash: IahlFKvuUvZTPl7dK0sCB7M+yoIRvnKGTDIQMSq4hWM=) 3: 7404496836E411F0A95FB239C4F9AE02.roa (hash: qJ7524YAscm+xf2ckiU9VWuAvVs5iHMseuM90BOMC/0=) 4: B1532E06F5FC11F08D6378D9536F56BC.roa (hash: 3XmkQBDW/VzAvHD7muWFlcJMnKZTQS3L1LZ6CKtf888=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9187BAC/C6AD3E0AD02C11EFB5584915C4F9AE02/opsbaAnOwakkcMWcbDa_pc84cYY.crl rsync://rpki.apnic.net/member_repository/A9187BAC/C6AD3E0AD02C11EFB5584915C4F9AE02/opsbaAnOwakkcMWcbDa_pc84cYY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/opsbaAnOwakkcMWcbDa_pc84cYY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 05:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 253 (0xfd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9187BAC, serialNumber=A29B1B6809CEC1A92470C59C6C36BFA5CF387186 Validity Not Before: Apr 5 05:50:11 2026 GMT Not After : Apr 12 05:50:11 2026 GMT Subject: CN=69d1f813-6b6c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:4e:f9:01:b2:42:b7:a2:86:51:d3:79:bc:54: c4:93:3f:43:48:b4:ab:3f:b2:da:54:a7:83:b6:d2: e6:db:41:c5:c4:f4:07:17:07:f7:4e:a6:45:1f:f3: 41:5c:a1:b6:17:d7:8f:49:62:ca:c2:d1:d8:b3:38: 69:7e:1a:6d:49:21:ca:b3:49:9a:8a:5b:38:cd:08: 69:d8:ae:ab:df:b8:82:cf:b9:eb:6d:ee:86:a3:17: 2b:0c:dd:ad:77:0f:07:b2:c8:5a:9a:5b:04:f6:0c: 90:b6:53:7b:7b:04:a5:75:20:74:00:7a:c6:69:0d: ea:8d:29:34:33:12:d1:14:0d:19:35:6e:c9:3d:e3: c3:a8:3e:e3:b1:79:64:64:a2:f9:86:45:3b:c7:97: 8a:6d:3c:44:e8:15:b9:01:f8:eb:de:d9:9c:80:f7: 9a:d2:39:a1:bb:46:36:c6:31:fa:a7:5e:c8:6e:45: 50:d9:fc:5d:05:ea:d6:dd:03:fb:ac:72:a9:eb:c5: 78:bb:fa:9f:da:80:ab:f7:2a:88:7b:13:63:e0:a4: b2:ed:d9:02:8b:a8:ee:4f:f3:52:e0:86:35:e4:5b: a4:f4:d8:83:aa:b0:f8:8f:79:c7:66:0f:1f:ca:0b: af:96:19:d5:55:d2:e2:cc:80:52:1e:17:27:98:d7: e6:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:EC:FD:1C:6E:4F:B4:F0:4B:8A:E5:A4:81:89:7C:40:24:BD:D9:8A X509v3 Authority Key Identifier: keyid:A2:9B:1B:68:09:CE:C1:A9:24:70:C5:9C:6C:36:BF:A5:CF:38:71:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9187BAC/C6AD3E0AD02C11EFB5584915C4F9AE02/opsbaAnOwakkcMWcbDa_pc84cYY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/opsbaAnOwakkcMWcbDa_pc84cYY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9187BAC/C6AD3E0AD02C11EFB5584915C4F9AE02/opsbaAnOwakkcMWcbDa_pc84cYY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:1e:cc:f0:b5:8e:96:0d:a5:cd:64:ed:cf:3f:b8:8d:d7:13: 2f:09:e6:63:d5:ff:35:8d:66:93:51:c5:c0:35:07:15:0f:f3: 43:a0:35:a6:eb:0b:11:b1:d8:61:fd:bd:03:1f:19:c5:2f:14: 6a:41:65:a9:03:f9:95:0a:d3:65:58:d8:3f:f3:20:75:86:bb: aa:61:6b:c8:77:66:d0:2c:c6:98:7c:aa:05:be:4b:f5:7c:ae: b2:43:60:ba:ce:d0:ed:71:bb:89:1a:47:cb:99:96:f6:23:94: 93:ad:b4:4f:b9:d5:b0:26:8b:c5:7a:2e:40:05:63:74:53:32: 2a:53:54:d2:39:72:f0:ee:32:9b:e1:08:87:99:b1:96:c1:05: 13:64:e6:e2:4a:a6:f5:0e:a3:a8:e2:85:7f:c4:f5:b0:34:13: a4:a4:14:f6:19:61:16:51:37:d1:89:4a:2c:74:97:11:df:85: 9e:97:da:f3:96:15:e0:bd:22:3a:b3:65:f8:6c:d0:4c:45:5c: 7a:6c:7c:97:4e:57:f6:19:c7:2c:78:86:38:d0:15:e9:bc:17: 18:10:2b:31:1d:26:cd:ad:38:24:78:3a:1e:7a:70:3a:71:29: 1a:f1:8e:56:7c:bb:04:6a:31:bf:71:92:06:e8:2c:5c:30:00: 38:0b:ef:0e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAP0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODdCQUMxMTAvBgNVBAUTKEEyOUIxQjY4MDlDRUMxQTkyNDcwQzU5QzZDMzZCRkE1 Q0YzODcxODYwHhcNMjYwNDA1MDU1MDExWhcNMjYwNDEyMDU1MDExWjAYMRYwFAYD VQQDEw02OWQxZjgxMy02YjZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAok75AbJCt6KGUdN5vFTEkz9DSLSrP7LaVKeDttLm20HFxPQHFwf3TqZFH/NB XKG2F9ePSWLKwtHYszhpfhptSSHKs0mails4zQhp2K6r37iCz7nrbe6GoxcrDN2t dw8HsshamlsE9gyQtlN7ewSldSB0AHrGaQ3qjSk0MxLRFA0ZNW7JPePDqD7jsXlk ZKL5hkU7x5eKbTxE6BW5Afjr3tmcgPea0jmhu0Y2xjH6p17IbkVQ2fxdBerW3QP7 rHKp68V4u/qf2oCr9yqIexNj4KSy7dkCi6juT/NS4IY15Fuk9NiDqrD4j3nHZg8f yguvlhnVVdLizIBSHhcnmNfmgQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOPs/Rxu T7TwS4rlpIGJfEAkvdmKMB8GA1UdIwQYMBaAFKKbG2gJzsGpJHDFnGw2v6XPOHGG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4N0JBQy9DNkFEM0UwQUQw MkMxMUVGQjU1ODQ5MTVDNEY5QUUwMi9vcHNiYUFuT3dha2tjTVdjYkRhX3BjODRj WVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29wc2JhQW5Pd2Fra2NNV2NiRGFfcGM4NGNZWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 N0JBQy9DNkFEM0UwQUQwMkMxMUVGQjU1ODQ5MTVDNEY5QUUwMi9vcHNiYUFuT3dh a2tjTVdjYkRhX3BjODRjWVkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAfB7M8LWOlg2lzWTtzz+4jdcTLwnmY9X/NY1mk1HFwDUHFQ/zQ6A1pusLEbHY Yf29Ax8ZxS8UakFlqQP5lQrTZVjYP/MgdYa7qmFryHdm0CzGmHyqBb5L9XyuskNg us7Q7XG7iRpHy5mW9iOUk620T7nVsCaLxXouQAVjdFMyKlNU0jly8O4ym+EIh5mx lsEFE2Tm4kqm9Q6jqOKFf8T1sDQTpKQU9hlhFlE30YlKLHSXEd+Fnpfa85YV4L0i OrNl+GzQTEVcemx8l05X9hnHLHiGONAV6bwXGBArMR0mza04JHg6HnpwOnEpGvGO Vny7BGoxv3GSBugsXDAAOAvvDg== -----END CERTIFICATE-----Generated at Mon Apr 6 08:34:08 2026 by rpki-client