$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/OhpAdHHRvxyhUl8h997PWmoqZNg.mft File: OhpAdHHRvxyhUl8h997PWmoqZNg.mft (raw, json) Hash identifier: GXua2V9//awv4DHw6AUo9/ONs+XrW03ixH2gZjbgxaY= Subject key identifier: B6:0A:02:FE:F0:CB:4E:18:AC:C8:BB:68:D3:09:67:55:DA:54:67:42 Authority key identifier: 3A:1A:40:74:71:D1:BF:1C:A1:52:5F:21:F7:DE:CF:5A:6A:2A:64:D8 Certificate issuer: /CN=A91B7B23/serialNumber=3A1A407471D1BF1CA1525F21F7DECF5A6A2A64D8 Certificate serial: 01C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhpAdHHRvxyhUl8h997PWmoqZNg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/OhpAdHHRvxyhUl8h997PWmoqZNg.mft Manifest number: 01BD Signing time: Sun 05 Apr 2026 03:28:12 +0000 Manifest this update: Sun 05 Apr 2026 03:28:12 +0000 Manifest next update: Sun 12 Apr 2026 03:28:12 +0000 Files and hashes: 1: OhpAdHHRvxyhUl8h997PWmoqZNg.crl (hash: f9sy73Ku0wAQJ7HCApjM78l8SSl98fqiaOCLoxf0nBQ=) 2: 7F6FE074B84811F091A01766C4F9AE02.roa (hash: uZ3REObOODN0mr8v9oxhquTJhyemMTdJfu8CSITYUF4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/OhpAdHHRvxyhUl8h997PWmoqZNg.crl rsync://rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/OhpAdHHRvxyhUl8h997PWmoqZNg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhpAdHHRvxyhUl8h997PWmoqZNg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 03:28:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 456 (0x1c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7B23, serialNumber=3A1A407471D1BF1CA1525F21F7DECF5A6A2A64D8 Validity Not Before: Apr 5 03:28:12 2026 GMT Not After : Apr 12 03:28:12 2026 GMT Subject: CN=69d1d6cc-bacc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:ed:51:52:fc:72:17:75:7d:59:b7:ee:86:eb: 65:cd:57:21:15:3d:6b:2a:b5:f9:ab:36:ad:90:8e: 07:12:fe:87:d9:b2:86:2e:f7:1f:34:53:ac:19:33: 4c:26:ca:b7:40:7d:3c:a4:bd:a9:f9:41:21:05:74: b0:53:6f:8b:50:a7:3d:c9:81:3e:68:18:31:6f:d3: 0d:9a:75:26:ee:8f:e9:03:66:8b:46:a3:1a:39:35: 4e:a1:01:b2:d1:ba:c5:71:da:05:d5:2e:48:86:fa: 9f:af:42:b9:3f:25:b0:aa:11:a1:78:27:c5:aa:77: a1:65:68:c9:43:da:f9:e8:00:93:ea:7e:52:f6:87: a5:bb:0a:82:1b:c2:31:ee:b0:5c:3c:ad:7c:cf:62: 41:9a:b7:05:ae:4d:76:12:62:ff:ea:50:f5:2a:dc: 8a:57:29:ce:4e:3c:f7:8a:25:b3:3d:fb:f7:ae:a4: 38:36:69:00:c3:5e:31:c0:81:c0:a6:db:db:1d:7c: ed:0c:bd:0b:6a:fa:d2:0c:63:cc:a1:12:79:e0:04: 0b:ba:3f:8f:03:7d:6e:ce:9c:31:3a:1a:c4:98:79: b3:13:b7:9a:4e:e9:2c:69:5c:c3:5b:31:eb:16:c2: 71:71:6f:e7:e7:43:4c:c2:52:f9:c5:ae:41:72:2a: c0:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:0A:02:FE:F0:CB:4E:18:AC:C8:BB:68:D3:09:67:55:DA:54:67:42 X509v3 Authority Key Identifier: keyid:3A:1A:40:74:71:D1:BF:1C:A1:52:5F:21:F7:DE:CF:5A:6A:2A:64:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/OhpAdHHRvxyhUl8h997PWmoqZNg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhpAdHHRvxyhUl8h997PWmoqZNg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/OhpAdHHRvxyhUl8h997PWmoqZNg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:d9:6b:66:d1:09:94:ba:68:24:fc:d2:77:bf:09:01:f9:cf: 99:ea:53:ee:0d:4a:0f:ab:66:ac:47:08:75:a5:0f:2b:4e:41: f5:f1:0b:9f:d0:20:32:a0:a0:a4:8e:72:31:92:f5:b3:e6:81: 9c:e4:e1:85:95:c3:22:86:ec:48:a2:51:06:81:ef:85:ac:5a: 0e:a2:7d:0a:93:a2:ac:f4:20:91:36:17:29:6b:bd:11:b3:60: 67:11:fb:40:bc:7a:28:df:66:92:8c:e2:44:9c:3f:27:c6:ed: 6c:79:f7:30:f0:ec:ff:15:c1:01:ab:53:94:26:da:d6:97:3f: 9e:6f:49:b9:85:dd:1f:2d:b6:69:bf:a6:51:bc:01:55:1d:11: 57:65:a9:54:3f:27:e2:ae:0a:3f:ad:03:f3:c3:e1:0f:78:5b: 20:c6:32:1f:7b:75:49:27:2a:7f:2b:81:58:0a:62:06:ff:03: 52:d3:57:bf:7d:06:16:ff:47:13:a0:e2:ab:36:de:7e:9b:ae: 04:0c:b3:38:35:20:c1:fe:0c:55:36:4e:41:44:a3:4e:68:3e: a2:0a:2e:12:ac:75:88:af:a2:64:f2:4a:65:a9:ca:9f:ab:c4: c5:64:a5:07:cd:6d:37:e3:ab:97:8d:c5:bd:65:8e:77:09:15: 5d:b7:56:1e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAcgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjdCMjMxMTAvBgNVBAUTKDNBMUE0MDc0NzFEMUJGMUNBMTUyNUYyMUY3REVDRjVB NkEyQTY0RDgwHhcNMjYwNDA1MDMyODEyWhcNMjYwNDEyMDMyODEyWjAYMRYwFAYD VQQDEw02OWQxZDZjYy1iYWNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuO1RUvxyF3V9WbfuhutlzVchFT1rKrX5qzatkI4HEv6H2bKGLvcfNFOsGTNM Jsq3QH08pL2p+UEhBXSwU2+LUKc9yYE+aBgxb9MNmnUm7o/pA2aLRqMaOTVOoQGy 0brFcdoF1S5Ihvqfr0K5PyWwqhGheCfFqnehZWjJQ9r56ACT6n5S9oeluwqCG8Ix 7rBcPK18z2JBmrcFrk12EmL/6lD1KtyKVynOTjz3iiWzPfv3rqQ4NmkAw14xwIHA ptvbHXztDL0LavrSDGPMoRJ54AQLuj+PA31uzpwxOhrEmHmzE7eaTuksaVzDWzHr FsJxcW/n50NMwlL5xa5BcirAOQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLYKAv7w y04YrMi7aNMJZ1XaVGdCMB8GA1UdIwQYMBaAFDoaQHRx0b8coVJfIffez1pqKmTY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCN0IyMy83NTQ1RjAzQTk3 RDMxMUVFQTIzQzY2MEJDNEY5QUUwMi9PaHBBZEhIUnZ4eWhVbDhoOTk3UFdtb3Fa TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09ocEFkSEhSdnh5aFVsOGg5OTdQV21vcVpOZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC N0IyMy83NTQ1RjAzQTk3RDMxMUVFQTIzQzY2MEJDNEY5QUUwMi9PaHBBZEhIUnZ4 eWhVbDhoOTk3UFdtb3FaTmcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAP9lrZtEJlLpoJPzSd78JAfnPmepT7g1KD6tmrEcIdaUPK05B9fELn9AgMqCg pI5yMZL1s+aBnOThhZXDIobsSKJRBoHvhaxaDqJ9CpOirPQgkTYXKWu9EbNgZxH7 QLx6KN9mkoziRJw/J8btbHn3MPDs/xXBAatTlCba1pc/nm9JuYXdHy22ab+mUbwB VR0RV2WpVD8n4q4KP60D88PhD3hbIMYyH3t1SScqfyuBWApiBv8DUtNXv30GFv9H E6DiqzbefpuuBAyzODUgwf4MVTZOQUSjTmg+ogouEqx1iK+iZPJKZanKn6vExWSl B81tN+Orl43FvWWOdwkVXbdWHg== -----END CERTIFICATE-----Generated at Mon Apr 6 08:31:45 2026 by rpki-client