$ rpki-client -vvf rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.mft File: oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.mft (raw, json) Hash identifier: vMSXeBshXe2xLsM7lXkvQOnohqYdb9f1Y58/40sb3NI= Subject key identifier: 4B:BE:18:93:5B:40:7B:89:44:E2:CE:3B:15:C5:40:91:5A:25:52:B1 Authority key identifier: A1:0F:57:83:C8:F9:A6:D9:4D:29:B4:AA:90:C5:6E:01:6B:B5:14:56 Certificate issuer: /CN=A91B65AC/serialNumber=A10F5783C8F9A6D94D29B4AA90C56E016BB51456 Certificate serial: 0191 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.mft Manifest number: 0189 Signing time: Sun 05 Apr 2026 03:59:15 +0000 Manifest this update: Sun 05 Apr 2026 03:59:15 +0000 Manifest next update: Sun 12 Apr 2026 03:59:15 +0000 Files and hashes: 1: oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.crl (hash: cXeik8CJk93u3nBxYZ60rFuOrO4K0J90qoAjFoZgihs=) 2: 48005D9EE5AE11EE9ECE4023C4F9AE02.roa (hash: Km37wq6aDw75/u5KZyWOq+MrrDlARwtAXstjS4OwvhE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.crl rsync://rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 03:59:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 401 (0x191) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B65AC, serialNumber=A10F5783C8F9A6D94D29B4AA90C56E016BB51456 Validity Not Before: Apr 5 03:59:15 2026 GMT Not After : Apr 12 03:59:15 2026 GMT Subject: CN=69d1de13-a137 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:d9:dc:4d:75:11:73:1d:13:56:46:ad:a7:27: bd:fe:cf:c5:8c:69:2e:4e:39:18:31:1f:d7:e4:71: ef:56:26:2a:38:85:53:ed:f6:d0:d3:79:2c:0c:39: 9c:2c:a9:cc:90:34:97:a0:fd:af:b1:6c:02:4b:de: 41:47:b9:24:a4:be:99:69:7d:47:25:47:59:c6:ec: d2:f1:b9:e1:93:a0:4e:dc:3a:42:72:80:eb:f8:2c: 80:cb:4d:5d:aa:79:e7:94:30:13:7c:ef:00:a9:1f: f0:74:4a:de:b1:63:70:e5:44:11:46:f5:98:90:43: c4:07:47:95:7d:17:96:e2:ca:83:91:73:18:4b:ea: b5:e1:6a:1f:98:dc:d3:58:7e:47:26:56:57:0e:2b: db:13:f9:73:73:6e:e2:cd:0f:61:1a:79:b2:4e:89: 3d:8e:08:1f:d9:2b:07:d6:3f:e5:f3:f0:f4:26:08: 87:43:45:6e:81:5a:a7:58:a5:56:02:d4:7e:ce:0d: 29:7c:a7:45:52:59:2a:d7:cd:6c:80:ec:33:7a:98: 4d:12:26:98:ba:af:5d:f9:04:b4:3e:32:a0:4f:98: 51:b9:a7:99:bb:2b:88:bc:d7:86:85:86:97:ee:67: 67:55:cc:67:eb:21:4a:d8:fc:00:7d:e3:74:0b:86: f6:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:BE:18:93:5B:40:7B:89:44:E2:CE:3B:15:C5:40:91:5A:25:52:B1 X509v3 Authority Key Identifier: keyid:A1:0F:57:83:C8:F9:A6:D9:4D:29:B4:AA:90:C5:6E:01:6B:B5:14:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:de:66:84:44:e2:6a:68:c4:f5:40:c4:62:f4:bb:d7:b0:f2: ca:13:d3:9b:99:1a:78:17:9b:8d:d5:da:8d:91:d7:be:ed:db: 86:5f:ce:c7:fc:c1:cd:2a:7e:78:3e:c2:95:1b:6f:3e:de:e6: 52:9e:6f:3e:d0:2b:3b:b1:a6:77:5e:6a:a6:31:30:96:10:13: 74:9d:fe:35:ea:12:ae:7c:a2:30:c5:a5:69:c1:39:f4:71:94: 20:fe:40:14:45:e1:71:db:42:8b:5c:d7:16:cb:a2:d4:1f:15: 3b:30:1c:ff:27:43:2e:0a:35:e6:b8:40:be:aa:32:8b:9d:3c: 7f:8e:6c:54:8e:24:2a:e9:0b:a6:0d:82:56:e2:51:1b:1c:60: 26:e0:4a:2b:37:e1:42:fe:d2:97:69:89:37:ab:eb:c7:af:fc: 8e:bc:fc:e6:1d:ab:8f:0f:b1:0f:25:57:8b:6b:6d:68:d0:4e: 57:e4:78:0a:89:24:c4:75:28:de:46:ef:19:f1:fd:81:0b:cf: 75:02:c6:08:9d:1c:2d:42:b1:cf:90:28:bd:89:ba:e6:4f:ea: fe:ce:17:a2:6a:0b:01:15:1b:45:9d:c3:1c:a5:db:4f:49:0a: 2a:e8:1c:33:fd:db:1b:7f:8d:e5:3e:06:c9:5f:61:7f:d6:59: fe:38:73:ba -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAZEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjY1QUMxMTAvBgNVBAUTKEExMEY1NzgzQzhGOUE2RDk0RDI5QjRBQTkwQzU2RTAx NkJCNTE0NTYwHhcNMjYwNDA1MDM1OTE1WhcNMjYwNDEyMDM1OTE1WjAYMRYwFAYD VQQDEw02OWQxZGUxMy1hMTM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3dncTXURcx0TVkatpye9/s/FjGkuTjkYMR/X5HHvViYqOIVT7fbQ03ksDDmc LKnMkDSXoP2vsWwCS95BR7kkpL6ZaX1HJUdZxuzS8bnhk6BO3DpCcoDr+CyAy01d qnnnlDATfO8AqR/wdEresWNw5UQRRvWYkEPEB0eVfReW4sqDkXMYS+q14WofmNzT WH5HJlZXDivbE/lzc27izQ9hGnmyTok9jggf2SsH1j/l8/D0JgiHQ0VugVqnWKVW AtR+zg0pfKdFUlkq181sgOwzephNEiaYuq9d+QS0PjKgT5hRuaeZuyuIvNeGhYaX 7mdnVcxn6yFK2PwAfeN0C4b26QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEu+GJNb QHuJROLOOxXFQJFaJVKxMB8GA1UdIwQYMBaAFKEPV4PI+abZTSm0qpDFbgFrtRRW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjVBQy9DQjc0RjhCRUUx RTAxMUVFQUY2RTFFNjhDNEY5QUUwMi9vUTlYZzhqNXB0bE5LYlNxa01WdUFXdTFG RlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL29ROVhnOGo1cHRsTktiU3FrTVZ1QVd1MUZGWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NjVBQy9DQjc0RjhCRUUxRTAxMUVFQUY2RTFFNjhDNEY5QUUwMi9vUTlYZzhqNXB0 bE5LYlNxa01WdUFXdTFGRlkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEApd5mhETiamjE9UDEYvS717DyyhPTm5kaeBebjdXajZHXvu3bhl/Ox/zBzSp+ eD7ClRtvPt7mUp5vPtArO7Gmd15qpjEwlhATdJ3+NeoSrnyiMMWlacE59HGUIP5A FEXhcdtCi1zXFsui1B8VOzAc/ydDLgo15rhAvqoyi508f45sVI4kKukLpg2CVuJR GxxgJuBKKzfhQv7Sl2mJN6vrx6/8jrz85h2rjw+xDyVXi2ttaNBOV+R4CokkxHUo 3kbvGfH9gQvPdQLGCJ0cLUKxz5AovYm65k/q/s4XomoLARUbRZ3DHKXbT0kKKugc M/3bG3+N5T4GyV9hf9ZZ/jhzug== -----END CERTIFICATE-----Generated at Mon Apr 6 16:37:13 2026 by rpki-client