$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/OBfP4ApfGsw2O0cvT2nag761ZhM.mft File: OBfP4ApfGsw2O0cvT2nag761ZhM.mft (raw, json) Hash identifier: zMKezEtZkPFYfZeG0WSJAYtm/kPtg87wvdBzJbhOVFk= Subject key identifier: 9A:B6:67:3D:73:FC:59:DA:5C:83:BC:1A:A9:32:32:56:CE:94:14:AC Authority key identifier: 38:17:CF:E0:0A:5F:1A:CC:36:3B:47:2F:4F:69:DA:83:BE:B5:66:13 Certificate issuer: /CN=A91B9AB9/serialNumber=3817CFE00A5F1ACC363B472F4F69DA83BEB56613 Certificate serial: 0132 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBfP4ApfGsw2O0cvT2nag761ZhM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/OBfP4ApfGsw2O0cvT2nag761ZhM.mft Manifest number: 012A Signing time: Thu 09 Apr 2026 05:14:56 +0000 Manifest this update: Thu 09 Apr 2026 05:14:56 +0000 Manifest next update: Thu 16 Apr 2026 05:14:56 +0000 Files and hashes: 1: OBfP4ApfGsw2O0cvT2nag761ZhM.crl (hash: 3tiYLhac/qxLNY8WJThbMwo39GHeTHk9eOGxRcJ4g3o=) 2: A06AB21E6E8811EF95434073C4F9AE02.roa (hash: 1cWKe61JXoqpcmn6lNJya/Zcn9d/497NYBSEDuJwXJY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/OBfP4ApfGsw2O0cvT2nag761ZhM.crl rsync://rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/OBfP4ApfGsw2O0cvT2nag761ZhM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBfP4ApfGsw2O0cvT2nag761ZhM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 16 Apr 2026 05:14:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 306 (0x132) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9AB9, serialNumber=3817CFE00A5F1ACC363B472F4F69DA83BEB56613 Validity Not Before: Apr 9 05:14:56 2026 GMT Not After : Apr 16 05:14:56 2026 GMT Subject: CN=69d735d0-980c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:57:2f:7a:bd:c3:1c:7a:1b:c1:5a:d5:28:d0: c5:b8:80:0b:fc:49:52:0a:60:65:ba:0f:24:55:e1: e2:c6:68:9a:89:ff:13:90:74:17:fa:a6:55:56:48: 30:05:a1:64:9b:b1:e3:de:71:1b:6f:d7:93:1b:d2: 64:cf:55:81:97:9c:0f:cc:09:f3:79:df:78:09:dd: ac:e2:bc:ca:1d:92:85:6a:41:9d:d5:4a:a7:01:f8: 04:06:19:08:9f:00:e5:f4:19:a9:b5:be:d3:f7:13: 19:d2:00:a4:84:ed:3b:ba:39:7d:f9:88:43:3b:71: 59:3e:1c:9b:04:47:a0:13:cf:57:ac:bd:03:8d:c4: fe:5d:1e:a3:99:19:42:82:c4:8a:76:2c:57:de:26: c0:5a:8e:9f:29:13:c8:48:8a:09:87:7f:fa:62:a3: 90:8a:ac:aa:57:ec:53:fd:82:aa:b1:fc:ad:dc:0d: bb:56:0a:30:43:34:5c:86:4b:2b:42:a9:98:70:ea: e9:fd:f2:66:bc:e5:5d:4e:10:8e:5b:3a:2c:4b:1d: 6c:bb:89:c1:07:fd:00:2f:42:76:a3:b9:9c:72:d5: d5:ef:cf:53:d3:15:98:b6:e1:1e:ea:89:5f:cf:e9: a8:ec:96:c7:05:5e:28:cc:2c:81:50:8c:c7:e4:59: 15:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:B6:67:3D:73:FC:59:DA:5C:83:BC:1A:A9:32:32:56:CE:94:14:AC X509v3 Authority Key Identifier: keyid:38:17:CF:E0:0A:5F:1A:CC:36:3B:47:2F:4F:69:DA:83:BE:B5:66:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/OBfP4ApfGsw2O0cvT2nag761ZhM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBfP4ApfGsw2O0cvT2nag761ZhM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/OBfP4ApfGsw2O0cvT2nag761ZhM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:b8:4a:39:91:b3:b1:da:76:53:bb:fe:3b:8e:85:e9:a5:af: e7:bf:ef:1d:2c:d2:42:e4:f8:1f:65:63:06:9d:cc:c7:18:b6: 47:39:59:20:35:d6:11:51:8c:53:19:60:d9:e5:e2:e5:a9:ba: 80:a9:88:44:ee:26:46:10:69:d2:2d:79:36:4f:ac:14:34:52: c3:e8:81:e7:09:e3:06:d7:ed:65:3b:fe:15:13:63:a2:21:0f: f0:54:3b:31:9a:21:86:25:3b:a4:35:3a:3a:ca:a6:42:43:4f: 5f:05:63:b3:0b:45:99:9c:1b:b4:26:62:ac:88:4c:cf:a0:ed: e4:70:21:ee:0a:ab:c7:89:7d:d5:41:7d:97:64:f8:30:99:91: e2:ec:fc:50:2c:ce:73:b9:2c:49:c5:91:8f:b8:ec:8f:70:07: 1a:d9:25:88:db:33:f1:eb:98:35:cc:56:5e:88:72:99:9c:bf: c2:76:b9:ba:43:01:90:e3:32:14:d2:3a:c1:63:56:3b:ae:0f: eb:cc:8e:aa:08:d4:3a:8e:4f:09:f3:c7:c0:0c:bd:12:85:f4: cd:63:ee:e3:42:40:cd:6f:b9:58:51:a7:0b:58:fc:7c:ae:63: bc:59:47:6a:f8:43:e9:c4:2b:52:b3:11:2c:5c:b5:44:c0:14: 63:35:02:f4 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICATIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjlBQjkxMTAvBgNVBAUTKDM4MTdDRkUwMEE1RjFBQ0MzNjNCNDcyRjRGNjlEQTgz QkVCNTY2MTMwHhcNMjYwNDA5MDUxNDU2WhcNMjYwNDE2MDUxNDU2WjAYMRYwFAYD VQQDEw02OWQ3MzVkMC05ODBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoFcver3DHHobwVrVKNDFuIAL/ElSCmBlug8kVeHixmiaif8TkHQX+qZVVkgw BaFkm7Hj3nEbb9eTG9Jkz1WBl5wPzAnzed94Cd2s4rzKHZKFakGd1UqnAfgEBhkI nwDl9Bmptb7T9xMZ0gCkhO07ujl9+YhDO3FZPhybBEegE89XrL0DjcT+XR6jmRlC gsSKdixX3ibAWo6fKRPISIoJh3/6YqOQiqyqV+xT/YKqsfyt3A27VgowQzRchksr QqmYcOrp/fJmvOVdThCOWzosSx1su4nBB/0AL0J2o7mcctXV789T0xWYtuEe6olf z+mo7JbHBV4ozCyBUIzH5FkVDQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJq2Zz1z /FnaXIO8GqkyMlbOlBSsMB8GA1UdIwQYMBaAFDgXz+AKXxrMNjtHL09p2oO+tWYT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOUFCOS9EMTE4QzBCQzZF ODQxMUVGQTNDRDk4M0ZDNEY5QUUwMi9PQmZQNEFwZkdzdzJPMGN2VDJuYWc3NjFa aE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09CZlA0QXBmR3N3Mk8wY3ZUMm5hZzc2MVpoTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OUFCOS9EMTE4QzBCQzZFODQxMUVGQTNDRDk4M0ZDNEY5QUUwMi9PQmZQNEFwZkdz dzJPMGN2VDJuYWc3NjFaaE0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEADLhKOZGzsdp2U7v+O46F6aWv57/vHSzSQuT4H2VjBp3Mxxi2RzlZIDXWEVGM Uxlg2eXi5am6gKmIRO4mRhBp0i15Nk+sFDRSw+iB5wnjBtftZTv+FRNjoiEP8FQ7 MZohhiU7pDU6OsqmQkNPXwVjswtFmZwbtCZirIhMz6Dt5HAh7gqrx4l91UF9l2T4 MJmR4uz8UCzOc7ksScWRj7jsj3AHGtkliNsz8euYNcxWXohymZy/wna5ukMBkOMy FNI6wWNWO64P68yOqgjUOo5PCfPHwAy9EoX0zWPu40JAzW+5WFGnC1j8fK5jvFlH avhD6cQrUrMRLFy1RMAUYzUC9A== -----END CERTIFICATE-----Generated at Thu Apr 9 23:58:34 2026 by rpki-client