$ rpki-client -vvf rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.mft File: Okb7D0D2nV4dt10oUfBAwZ9m8iw.mft (raw, json) Hash identifier: TVmfFGEGvoqssN2YaNsQlaL0g64GhbZUI+3fJjhCHJ4= Subject key identifier: 7B:82:90:4D:34:8E:DB:AC:D4:8C:0B:F1:6C:6B:79:1B:56:DB:9F:AA Authority key identifier: 3A:46:FB:0F:40:F6:9D:5E:1D:B7:5D:28:51:F0:40:C1:9F:66:F2:2C Certificate issuer: /CN=A91ACD4D/serialNumber=3A46FB0F40F69D5E1DB75D2851F040C19F66F22C Certificate serial: 16E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Okb7D0D2nV4dt10oUfBAwZ9m8iw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.mft Manifest number: 16CD Signing time: Mon 20 Apr 2026 16:36:05 +0000 Manifest this update: Mon 20 Apr 2026 16:36:04 +0000 Manifest next update: Mon 27 Apr 2026 16:36:04 +0000 Files and hashes: 1: Okb7D0D2nV4dt10oUfBAwZ9m8iw.crl (hash: o307h4ToNm7ru58tssDx6sojytb+BeYtyqbnfRoaHxI=) 2: 268ECB3ED5BD11E894FFC250C4F9AE02.roa (hash: Z38B7rPVhqG6tcWO8r6+i/l0vZbjlq448NkG06qknRg=) 3: 3DE1DBC4D81011EC892E8A79C4F9AE02.roa (hash: axiKuwLSfY8matk7uBsk8eo5tXOq+cX6OWML8EZD+cQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.crl rsync://rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Okb7D0D2nV4dt10oUfBAwZ9m8iw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Apr 2026 16:36:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5859 (0x16e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ACD4D, serialNumber=3A46FB0F40F69D5E1DB75D2851F040C19F66F22C Validity Not Before: Apr 20 16:36:04 2026 GMT Not After : Apr 27 16:36:04 2026 GMT Subject: CN=69e655f5-b6de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:1a:82:12:37:b4:22:65:06:da:2a:c7:35:07: 79:bc:d9:ae:49:00:89:4a:ac:24:d1:32:20:29:1a: af:69:e4:4e:c8:ad:da:85:c6:0d:c7:b9:c3:2a:4e: 36:a1:86:39:0c:0e:96:b9:04:14:d3:ca:ab:7d:94: 9d:5b:4e:ee:14:1a:d4:59:21:2e:7e:f7:d5:04:9e: 23:37:76:4d:f9:f0:5f:76:08:98:0d:49:81:47:07: 39:dd:0e:d8:41:db:93:3d:d0:40:66:04:c5:ee:c1: 39:22:ca:b2:bb:2c:c7:f1:54:c2:dc:60:72:6b:1c: 36:98:1d:e2:11:88:76:84:c1:fb:b7:20:f3:b6:48: 99:ea:2f:66:e0:a3:16:ee:dc:c2:2c:ca:06:8d:44: 57:8a:df:31:d7:df:29:2b:f0:17:56:dc:c3:1e:51: f9:f6:3a:59:94:10:2a:c6:30:dd:2d:74:b1:59:b7: 53:61:64:0c:df:b0:e3:ef:34:33:da:57:85:15:8e: 7b:33:fa:36:20:5e:90:c1:0b:d0:90:44:f5:4e:3a: 9d:5b:47:1a:a9:81:0d:73:d1:f3:a6:c6:dc:d7:05: a4:9b:db:c2:7d:94:d0:d5:37:11:5c:24:e1:99:1b: a9:32:65:6d:e1:51:f3:d3:08:d1:5a:9a:ad:39:de: 00:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:82:90:4D:34:8E:DB:AC:D4:8C:0B:F1:6C:6B:79:1B:56:DB:9F:AA X509v3 Authority Key Identifier: keyid:3A:46:FB:0F:40:F6:9D:5E:1D:B7:5D:28:51:F0:40:C1:9F:66:F2:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Okb7D0D2nV4dt10oUfBAwZ9m8iw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:ba:2f:7b:6d:6b:7c:3f:1a:91:1b:21:44:8f:51:75:5e:a1: 82:1f:c2:c4:f5:cd:20:a4:69:d4:6f:d6:ea:5d:bc:70:88:c5: 96:9a:a7:10:c8:94:9d:95:2e:b4:ff:d7:70:ca:4b:d6:b4:8a: f0:f0:cf:cc:cb:eb:02:8c:0b:d0:cb:91:29:d6:72:e1:ec:13: dd:fd:37:34:cb:72:d7:fa:08:72:6a:0c:50:a3:3f:e6:52:2c: 30:4e:91:6d:18:27:9b:54:6d:ef:e0:aa:64:42:56:18:59:fa: f4:2a:92:cd:f3:02:e0:07:3c:fa:51:b9:16:10:66:29:45:58: ce:18:6b:00:59:da:73:22:95:ff:3d:66:dc:83:bb:95:6e:45: 04:4b:59:c2:df:e1:8f:99:86:63:30:f2:41:49:00:85:61:bb: d3:3f:a8:65:f9:e8:19:90:32:8e:01:5d:83:ee:13:cb:35:05: 57:66:4c:29:b8:81:8d:5a:0c:88:51:08:59:75:bf:e3:5f:83: 98:95:60:61:1c:cd:0d:f1:92:0b:26:fe:a4:13:64:99:21:5e: 66:33:b9:06:1c:f0:88:c9:f6:6a:fa:f9:63:80:55:74:4e:a6: b6:0a:84:cc:e3:ae:a9:53:b9:9e:3a:f8:c3:45:b0:00:e7:a7: b4:03:16:51 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICFuMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUNENEQxMTAvBgNVBAUTKDNBNDZGQjBGNDBGNjlENUUxREI3NUQyODUxRjA0MEMx OUY2NkYyMkMwHhcNMjYwNDIwMTYzNjA0WhcNMjYwNDI3MTYzNjA0WjAYMRYwFAYD VQQDEw02OWU2NTVmNS1iNmRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAphqCEje0ImUG2irHNQd5vNmuSQCJSqwk0TIgKRqvaeROyK3ahcYNx7nDKk42 oYY5DA6WuQQU08qrfZSdW07uFBrUWSEufvfVBJ4jN3ZN+fBfdgiYDUmBRwc53Q7Y QduTPdBAZgTF7sE5IsqyuyzH8VTC3GByaxw2mB3iEYh2hMH7tyDztkiZ6i9m4KMW 7tzCLMoGjURXit8x198pK/AXVtzDHlH59jpZlBAqxjDdLXSxWbdTYWQM37Dj7zQz 2leFFY57M/o2IF6QwQvQkET1TjqdW0caqYENc9Hzpsbc1wWkm9vCfZTQ1TcRXCTh mRupMmVt4VHz0wjRWpqtOd4AyQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHuCkE00 jtus1IwL8WxreRtW25+qMB8GA1UdIwQYMBaAFDpG+w9A9p1eHbddKFHwQMGfZvIs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQ0Q0RC8xMzdEMDBENDE2 MEUxMUU4ODUyQzQzN0VDNEY5QUUwMi9Pa2I3RDBEMm5WNGR0MTBvVWZCQXdaOW04 aXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09rYjdEMEQyblY0ZHQxMG9VZkJBd1o5bThpdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Q0Q0RC8xMzdEMDBENDE2MEUxMUU4ODUyQzQzN0VDNEY5QUUwMi9Pa2I3RDBEMm5W NGR0MTBvVWZCQXdaOW04aXcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAg7ove21rfD8akRshRI9RdV6hgh/CxPXNIKRp1G/W6l28cIjFlpqnEMiUnZUu tP/XcMpL1rSK8PDPzMvrAowL0MuRKdZy4ewT3f03NMty1/oIcmoMUKM/5lIsME6R bRgnm1Rt7+CqZEJWGFn69CqSzfMC4Ac8+lG5FhBmKUVYzhhrAFnacyKV/z1m3IO7 lW5FBEtZwt/hj5mGYzDyQUkAhWG70z+oZfnoGZAyjgFdg+4TyzUFV2ZMKbiBjVoM iFEIWXW/41+DmJVgYRzNDfGSCyb+pBNkmSFeZjO5BhzwiMn2avr5Y4BVdE6mtgqE zOOuqVO5njr4w0WwAOentAMWUQ== -----END CERTIFICATE-----Generated at Tue Apr 21 19:08:08 2026 by rpki-client