$ rpki-client -vvf rpki.apnic.net/member_repository/A918C158/AE51D802673B11EA99B2E556C4F9AE02/Ok9ILhJcCNuDBRbVGkot8eCqiso.mft File: Ok9ILhJcCNuDBRbVGkot8eCqiso.mft (raw, json) Hash identifier: 8kqsNtAdN+8A9Be4SOk/ux2AjagA2MVwGBukOowuROk= Subject key identifier: 57:A8:8E:3B:53:51:AF:F0:67:78:2C:96:99:0D:B8:8E:3C:52:AF:F6 Authority key identifier: 3A:4F:48:2E:12:5C:08:DB:83:05:16:D5:1A:4A:2D:F1:E0:AA:8A:CA Certificate issuer: /CN=A918C158/serialNumber=3A4F482E125C08DB830516D51A4A2DF1E0AA8ACA Certificate serial: 0AF7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ok9ILhJcCNuDBRbVGkot8eCqiso.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918C158/AE51D802673B11EA99B2E556C4F9AE02/Ok9ILhJcCNuDBRbVGkot8eCqiso.mft Manifest number: 0AEF Signing time: Sat 04 Apr 2026 19:12:08 +0000 Manifest this update: Sat 04 Apr 2026 19:12:08 +0000 Manifest next update: Sat 11 Apr 2026 19:12:08 +0000 Files and hashes: 1: Ok9ILhJcCNuDBRbVGkot8eCqiso.crl (hash: TgGG9Lxn/Fwc5SgwqUhCAQf19GIfzH12Yo6k3IFh5Mg=) 2: F25A6266796A11EB82E0EE24C4F9AE02.roa (hash: gg5YRxm/OG8ParGdDVWKapchKMYooC3n6Om94oqfGGI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918C158/AE51D802673B11EA99B2E556C4F9AE02/Ok9ILhJcCNuDBRbVGkot8eCqiso.crl rsync://rpki.apnic.net/member_repository/A918C158/AE51D802673B11EA99B2E556C4F9AE02/Ok9ILhJcCNuDBRbVGkot8eCqiso.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ok9ILhJcCNuDBRbVGkot8eCqiso.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 19:12:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2807 (0xaf7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918C158, serialNumber=3A4F482E125C08DB830516D51A4A2DF1E0AA8ACA Validity Not Before: Apr 4 19:12:08 2026 GMT Not After : Apr 11 19:12:08 2026 GMT Subject: CN=69d16288-5a12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:5d:be:3b:a2:62:f7:40:c9:ca:5a:b1:e1:0e: 2a:5a:b2:12:3d:3c:28:d0:76:87:e7:f3:85:ad:a2: 8d:46:bc:8e:00:ae:d8:8c:0b:ce:de:c1:01:6b:0d: f4:8b:b6:3d:4a:dc:48:39:ca:cd:a9:ab:c6:25:8a: 8d:8d:26:99:67:73:dc:54:92:52:16:19:ef:e4:e7: 87:35:15:b1:35:99:33:83:a0:a4:85:af:4a:0d:df: 95:ae:79:7d:78:1b:14:47:70:74:4c:59:08:b6:42: f1:dd:63:28:d6:44:f7:cb:69:3a:d8:e2:50:4b:2f: 2c:2c:9e:9e:17:5e:c6:b2:13:18:7f:ff:5d:ef:0a: 2a:a2:a9:b3:75:e8:b6:f5:12:55:90:71:a3:38:61: cb:9f:ba:b0:ad:02:0c:b1:1c:8e:66:f1:f2:aa:f6: 27:c3:8d:d9:cf:29:f5:d2:6c:09:e6:df:e1:f8:fa: 27:ee:5c:70:54:d1:d8:f8:a8:14:d4:9b:66:38:bc: 95:0e:79:6b:cf:c9:74:1b:e1:a6:29:6d:73:ad:bf: 26:a7:1c:de:eb:90:3d:c9:d2:e0:74:f2:ac:46:1c: 63:81:d6:e5:af:7a:40:fe:05:90:77:1e:ea:2e:08: 0f:72:6f:61:84:db:27:f7:65:9e:1a:ad:96:7b:6e: e3:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:A8:8E:3B:53:51:AF:F0:67:78:2C:96:99:0D:B8:8E:3C:52:AF:F6 X509v3 Authority Key Identifier: keyid:3A:4F:48:2E:12:5C:08:DB:83:05:16:D5:1A:4A:2D:F1:E0:AA:8A:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918C158/AE51D802673B11EA99B2E556C4F9AE02/Ok9ILhJcCNuDBRbVGkot8eCqiso.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ok9ILhJcCNuDBRbVGkot8eCqiso.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918C158/AE51D802673B11EA99B2E556C4F9AE02/Ok9ILhJcCNuDBRbVGkot8eCqiso.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:18:ce:87:53:be:cb:72:38:13:e3:82:89:60:c2:6b:51:bf: 68:8a:73:d1:c4:0b:64:6f:ec:f0:97:af:83:ee:0e:16:90:68: 9a:17:2b:26:86:3d:87:f0:38:cb:04:47:ad:22:6a:91:0b:fd: 1e:91:b8:66:f2:5f:8e:f5:2b:dc:b1:34:30:13:df:69:70:11: f7:23:5d:9b:75:ff:be:4d:d1:75:8c:01:95:a3:f4:e9:c1:5b: ac:21:cb:fb:9e:c5:14:93:3d:da:09:b6:3a:af:7c:a6:62:ab: 4c:ab:6c:35:33:e2:0b:db:ef:a5:36:39:fc:3e:4c:1c:3a:3e: f1:bb:a9:33:d6:bb:1b:76:58:37:c5:35:db:d4:d7:99:79:5b: 75:6e:9a:0b:f4:ff:3e:1c:a7:2c:fd:6c:8d:88:19:25:b6:bf: 4a:17:e2:b3:85:7c:46:2a:4b:c6:70:9e:52:68:6e:4b:fb:02: ce:57:b2:e6:2c:44:1b:45:38:34:29:d2:ea:dc:98:2c:cb:55: f6:30:c7:83:90:ea:00:bb:7d:4c:4e:f0:82:76:56:02:50:68: db:89:5a:68:8c:82:33:cf:f1:c4:d5:77:cb:91:1f:f2:d7:9c: 4a:02:53:d3:2c:54:4c:84:64:08:b2:4a:cb:d3:ef:ca:29:71: e8:a4:96:88 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCvcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEMxNTgxMTAvBgNVBAUTKDNBNEY0ODJFMTI1QzA4REI4MzA1MTZENTFBNEEyREYx RTBBQThBQ0EwHhcNMjYwNDA0MTkxMjA4WhcNMjYwNDExMTkxMjA4WjAYMRYwFAYD VQQDEw02OWQxNjI4OC01YTEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApV2+O6Ji90DJylqx4Q4qWrISPTwo0HaH5/OFraKNRryOAK7YjAvO3sEBaw30 i7Y9StxIOcrNqavGJYqNjSaZZ3PcVJJSFhnv5OeHNRWxNZkzg6Ckha9KDd+Vrnl9 eBsUR3B0TFkItkLx3WMo1kT3y2k62OJQSy8sLJ6eF17GshMYf/9d7woqoqmzdei2 9RJVkHGjOGHLn7qwrQIMsRyOZvHyqvYnw43Zzyn10mwJ5t/h+Pon7lxwVNHY+KgU 1JtmOLyVDnlrz8l0G+GmKW1zrb8mpxze65A9ydLgdPKsRhxjgdblr3pA/gWQdx7q LggPcm9hhNsn92WeGq2We27jMQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFeojjtT Ua/wZ3gslpkNuI48Uq/2MB8GA1UdIwQYMBaAFDpPSC4SXAjbgwUW1RpKLfHgqorK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QzE1OC9BRTUxRDgwMjY3 M0IxMUVBOTlCMkU1NTZDNEY5QUUwMi9PazlJTGhKY0NOdURCUmJWR2tvdDhlQ3Fp c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09rOUlMaEpjQ051REJSYlZHa290OGVDcWlzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QzE1OC9BRTUxRDgwMjY3M0IxMUVBOTlCMkU1NTZDNEY5QUUwMi9PazlJTGhKY0NO dURCUmJWR2tvdDhlQ3Fpc28ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAYhjOh1O+y3I4E+OCiWDCa1G/aIpz0cQLZG/s8Jevg+4OFpBomhcrJoY9h/A4 ywRHrSJqkQv9HpG4ZvJfjvUr3LE0MBPfaXAR9yNdm3X/vk3RdYwBlaP06cFbrCHL +57FFJM92gm2Oq98pmKrTKtsNTPiC9vvpTY5/D5MHDo+8bupM9a7G3ZYN8U129TX mXlbdW6aC/T/PhynLP1sjYgZJba/Shfis4V8RipLxnCeUmhuS/sCzley5ixEG0U4 NCnS6tyYLMtV9jDHg5DqALt9TE7wgnZWAlBo24laaIyCM8/xxNV3y5Ef8tecSgJT 0yxUTIRkCLJKy9Pvyilx6KSWiA== -----END CERTIFICATE-----Generated at Mon Apr 6 08:51:36 2026 by rpki-client