$ rpki-client -vvf rpki.apnic.net/member_repository/A9198267/02C86EAA78CB11EA820D7274C4F9AE02/OPsGr2SfQA9ROZSTW-335JJwyKo.mft File: OPsGr2SfQA9ROZSTW-335JJwyKo.mft (raw, json) Hash identifier: DRt1WNKmsy9Rekkt4DuWvv++YWucjGqv+2JC08jqLVQ= Subject key identifier: 81:DA:C5:2E:A9:89:74:CF:49:F7:9C:D6:48:6F:AF:AD:97:61:5F:6E Authority key identifier: 38:FB:06:AF:64:9F:40:0F:51:39:94:93:5B:ED:F7:E4:92:70:C8:AA Certificate issuer: /CN=A9198267/serialNumber=38FB06AF649F400F513994935BEDF7E49270C8AA Certificate serial: 0AB4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OPsGr2SfQA9ROZSTW-335JJwyKo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198267/02C86EAA78CB11EA820D7274C4F9AE02/OPsGr2SfQA9ROZSTW-335JJwyKo.mft Manifest number: 0AA3 Signing time: Sat 18 Apr 2026 19:24:09 +0000 Manifest this update: Sat 18 Apr 2026 19:24:09 +0000 Manifest next update: Sat 25 Apr 2026 19:24:09 +0000 Files and hashes: 1: OPsGr2SfQA9ROZSTW-335JJwyKo.crl (hash: Gz9nlosV9kB7M4Pv/8S8L6j3fi1QdBvHpcWrdlrukpM=) 2: 2F43EE7278CC11EAB69DAC75C4F9AE02.roa (hash: RCg1Rl9BMePurgmT4FLJMdQ57mTRP5HppFNnGUt/YQk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198267/02C86EAA78CB11EA820D7274C4F9AE02/OPsGr2SfQA9ROZSTW-335JJwyKo.crl rsync://rpki.apnic.net/member_repository/A9198267/02C86EAA78CB11EA820D7274C4F9AE02/OPsGr2SfQA9ROZSTW-335JJwyKo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OPsGr2SfQA9ROZSTW-335JJwyKo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Apr 2026 19:24:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2740 (0xab4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198267, serialNumber=38FB06AF649F400F513994935BEDF7E49270C8AA Validity Not Before: Apr 18 19:24:09 2026 GMT Not After : Apr 25 19:24:09 2026 GMT Subject: CN=69e3da59-d26d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:10:56:e1:5f:2f:31:9b:a9:53:54:0c:fa:2b: 42:be:03:97:17:15:34:cb:a6:3c:d8:57:7d:83:00: 30:67:f8:af:25:53:30:0e:d1:b1:d9:d1:6c:4d:48: 45:f8:65:f9:bb:d6:66:e3:2b:5c:8f:23:8c:ee:cb: e9:aa:4e:68:be:52:51:77:59:71:fe:6f:83:76:06: d8:f1:97:b7:f1:af:9e:18:5e:a8:e5:8e:d8:23:5f: ef:b4:7f:30:a0:d7:2b:b1:7d:4c:5c:34:f3:29:5a: 97:a8:1a:69:39:9d:9b:c6:d5:de:fb:b6:36:eb:a1: 84:3e:40:90:80:96:f1:60:1d:33:c3:c9:07:d1:c8: 0f:7c:89:ac:ba:6a:14:f2:12:fb:8f:39:24:2f:27: d2:92:aa:b7:c6:73:b4:53:a2:3c:dd:d0:d1:32:a4: 8b:30:f0:b9:bb:62:4f:c4:0d:a1:7c:fa:a1:3a:4f: 27:55:2a:b9:c8:bf:51:04:1f:22:90:62:b2:8c:2c: 36:56:40:87:b7:ea:6f:a7:cc:64:81:14:77:f1:5e: 60:d4:e6:e0:15:c8:47:dd:9c:b7:46:11:3a:94:e9: bb:af:f9:5a:17:70:06:eb:54:ec:eb:b6:17:04:37: c7:0a:46:e9:da:bf:19:83:46:ac:8b:d8:ab:f9:26: e0:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:DA:C5:2E:A9:89:74:CF:49:F7:9C:D6:48:6F:AF:AD:97:61:5F:6E X509v3 Authority Key Identifier: keyid:38:FB:06:AF:64:9F:40:0F:51:39:94:93:5B:ED:F7:E4:92:70:C8:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198267/02C86EAA78CB11EA820D7274C4F9AE02/OPsGr2SfQA9ROZSTW-335JJwyKo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OPsGr2SfQA9ROZSTW-335JJwyKo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198267/02C86EAA78CB11EA820D7274C4F9AE02/OPsGr2SfQA9ROZSTW-335JJwyKo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:61:a9:c1:b0:a2:73:c0:3e:f7:0d:cf:a4:c2:53:e4:b9:05: 6a:6b:37:3f:45:56:f9:1e:c6:e0:a2:b1:39:7c:03:27:3b:5a: 2a:a9:68:3d:3b:31:3a:6e:87:5b:0c:61:ab:61:52:3e:dc:59: 4e:00:77:16:69:56:7d:6d:97:2a:6f:a0:42:2e:41:2d:51:1b: 24:80:cb:6b:eb:cc:01:1d:ff:a4:e6:2d:a5:49:ca:1b:62:11: 3a:f7:32:87:c4:b0:91:73:35:33:c5:41:ea:8e:72:19:74:13: cc:e8:42:74:e9:da:71:2e:ba:be:01:18:83:75:fa:cd:f6:f6: 73:36:2c:86:e8:c9:4c:a4:c7:e4:35:67:39:f4:05:6f:66:e7: 34:17:c4:c9:37:03:12:3f:d8:4c:5b:84:94:37:24:28:c4:72: b3:b5:94:15:e5:8a:a4:e0:a3:f7:e9:bc:4b:72:44:8b:95:c9: 6e:06:d2:6d:d3:d8:17:a0:6c:63:37:5e:52:41:4d:88:9b:84: e8:7e:a4:77:7a:d4:4e:e1:82:11:ca:25:a8:bc:9a:bb:c8:71: e8:45:5e:1d:36:da:58:57:39:58:61:70:fb:78:d7:3b:f9:dd: b7:bd:63:1e:35:a1:59:04:f0:43:22:61:32:e7:11:4f:9c:de: 94:0e:44:fc -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCrQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTgyNjcxMTAvBgNVBAUTKDM4RkIwNkFGNjQ5RjQwMEY1MTM5OTQ5MzVCRURGN0U0 OTI3MEM4QUEwHhcNMjYwNDE4MTkyNDA5WhcNMjYwNDI1MTkyNDA5WjAYMRYwFAYD VQQDEw02OWUzZGE1OS1kMjZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkhBW4V8vMZupU1QM+itCvgOXFxU0y6Y82Fd9gwAwZ/ivJVMwDtGx2dFsTUhF +GX5u9Zm4ytcjyOM7svpqk5ovlJRd1lx/m+DdgbY8Ze38a+eGF6o5Y7YI1/vtH8w oNcrsX1MXDTzKVqXqBppOZ2bxtXe+7Y266GEPkCQgJbxYB0zw8kH0cgPfImsumoU 8hL7jzkkLyfSkqq3xnO0U6I83dDRMqSLMPC5u2JPxA2hfPqhOk8nVSq5yL9RBB8i kGKyjCw2VkCHt+pvp8xkgRR38V5g1ObgFchH3Zy3RhE6lOm7r/laF3AG61Ts67YX BDfHCkbp2r8Zg0asi9ir+SbgkQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIHaxS6p iXTPSfec1khvr62XYV9uMB8GA1UdIwQYMBaAFDj7Bq9kn0APUTmUk1vt9+SScMiq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5ODI2Ny8wMkM4NkVBQTc4 Q0IxMUVBODIwRDcyNzRDNEY5QUUwMi9PUHNHcjJTZlFBOVJPWlNUVy0zMzVKSnd5 S28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09Qc0dyMlNmUUE5Uk9aU1RXLTMzNUpKd3lLby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 ODI2Ny8wMkM4NkVBQTc4Q0IxMUVBODIwRDcyNzRDNEY5QUUwMi9PUHNHcjJTZlFB OVJPWlNUVy0zMzVKSnd5S28ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAYGGpwbCic8A+9w3PpMJT5LkFams3P0VW+R7G4KKxOXwDJztaKqloPTsxOm6H Wwxhq2FSPtxZTgB3FmlWfW2XKm+gQi5BLVEbJIDLa+vMAR3/pOYtpUnKG2IROvcy h8SwkXM1M8VB6o5yGXQTzOhCdOnacS66vgEYg3X6zfb2czYshujJTKTH5DVnOfQF b2bnNBfEyTcDEj/YTFuElDckKMRys7WUFeWKpOCj9+m8S3JEi5XJbgbSbdPYF6Bs YzdeUkFNiJuE6H6kd3rUTuGCEcolqLyau8hx6EVeHTbaWFc5WGFw+3jXO/ndt71j HjWhWQTwQyJhMucRT5zelA5E/A== -----END CERTIFICATE-----Generated at Sun Apr 19 02:26:22 2026 by rpki-client