$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.mft File: Oq-A6pfpm5UlszvBM1uwlcLSeKc.mft (raw, json) Hash identifier: +pJyweTVnfbMN03umhxP940kzVeNdfvmW6s+2gF3js8= Subject key identifier: FB:65:8E:AA:A9:2B:D7:01:48:1B:0B:41:F7:6D:E0:7A:A5:85:C1:37 Authority key identifier: 3A:AF:80:EA:97:E9:9B:95:25:B3:3B:C1:33:5B:B0:95:C2:D2:78:A7 Certificate issuer: /CN=A91C4F06/serialNumber=3AAF80EA97E99B9525B33BC1335BB095C2D278A7 Certificate serial: 361D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.mft Manifest number: 35A7 Signing time: Sat 04 Apr 2026 14:48:07 +0000 Manifest this update: Sat 04 Apr 2026 14:48:06 +0000 Manifest next update: Sat 11 Apr 2026 14:48:06 +0000 Files and hashes: 1: Oq-A6pfpm5UlszvBM1uwlcLSeKc.crl (hash: sLLJGg1tEEj2ertjtWDRCQzvC9KhIPiE7al5VHOopMg=) 2: 6F1612BE562511EB9470B150C4F9AE02.roa (hash: VN3fbgbN+VB5jjHGJ778LsC3bD0h86H1GfKAiCzDGbA=) 3: 5A318E06F6A111EBB6318B7EC4F9AE02.roa (hash: Kcd6XpOFaQiuuRL3zl2swXULLS6KNUXvk+RMSSrL0Fo=) 4: 1600DBF659C311E9A04B846FC4F9AE02.roa (hash: bGRZ0FpspSCf0cAveUKjR/NLCR8lXup6exlYiK4KDOA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.crl rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 14:48:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13853 (0x361d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C4F06, serialNumber=3AAF80EA97E99B9525B33BC1335BB095C2D278A7 Validity Not Before: Apr 4 14:48:06 2026 GMT Not After : Apr 11 14:48:06 2026 GMT Subject: CN=69d124a7-ef2b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:2b:60:4b:61:01:e4:02:8a:91:24:75:06:8b: 81:32:22:c3:72:2e:cb:a1:45:a6:9e:5f:bd:1b:5a: fe:3f:66:22:29:e7:29:32:86:19:56:18:3e:ef:7c: c6:87:bb:56:aa:e0:66:86:06:07:da:1c:9a:38:75: d6:2e:13:43:9a:11:4d:82:a4:55:07:99:b2:46:e0: e2:17:a5:3e:94:eb:b0:ac:c9:ab:9a:6e:e4:ec:c5: 34:62:88:ff:30:54:ea:56:2d:44:b9:a0:bd:0b:d8: 49:67:d6:31:21:96:4e:09:f4:c9:c6:13:4c:83:64: c2:d4:e2:f3:23:ad:4c:19:bd:58:0d:d8:81:f3:2c: ab:c3:37:9b:e8:ad:eb:e8:e4:db:5e:39:08:4a:0f: 7f:86:0f:98:f7:64:50:b2:ba:bc:01:a0:17:50:99: 8f:40:29:c2:94:74:fb:12:9d:02:95:df:4f:f4:32: 4f:ad:43:f5:e4:31:bf:f0:a8:ed:4d:cd:b0:ee:9a: 11:44:64:5c:74:18:8a:be:f3:b3:8b:10:3e:be:69: 15:ca:d3:85:9f:03:81:23:68:c5:8a:ff:78:b6:0e: 56:76:c8:5a:20:47:f0:62:4b:a9:f0:c4:0d:bc:30: 0e:95:98:62:b2:dc:c1:01:a4:a6:44:e2:a0:d9:54: de:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:65:8E:AA:A9:2B:D7:01:48:1B:0B:41:F7:6D:E0:7A:A5:85:C1:37 X509v3 Authority Key Identifier: keyid:3A:AF:80:EA:97:E9:9B:95:25:B3:3B:C1:33:5B:B0:95:C2:D2:78:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:c5:5c:ee:c3:ec:43:a8:f7:e4:af:d1:76:6f:07:b4:d2:a5: 31:bf:43:ea:f7:8d:3d:c2:c4:18:ae:83:27:b3:54:ef:f3:aa: cc:b2:e9:32:e3:c3:f7:56:ff:1b:69:ab:1d:87:6c:ab:c7:16: 4d:be:fe:9c:58:97:33:0d:96:55:76:29:69:17:8d:da:15:f8: 92:3e:cf:0a:1c:17:5e:49:35:69:ff:3c:be:53:a7:6c:f2:51: 3e:b8:6e:2d:f0:c6:e3:91:6f:e5:e9:a7:5d:e9:a6:df:85:9a: 62:03:56:ea:f9:c0:ad:5e:ba:e5:66:f5:4a:b9:e4:34:9c:65: 48:45:1a:8c:3e:64:cc:00:87:3f:e1:18:d1:b2:c7:9b:44:67: 86:0a:e3:3e:38:ac:c7:7a:47:aa:cb:a6:ca:4f:32:cb:2c:b8: c6:06:71:7d:1f:25:fe:8f:9b:6a:93:e5:31:bc:98:96:99:4b: ac:a7:6b:5e:50:6f:bf:49:83:8d:ec:80:4c:47:34:18:4f:d9: 0b:0c:04:a6:7c:4e:2b:17:f2:bb:ae:26:8c:3e:42:5d:32:ac: 51:3e:cb:53:c4:68:4d:80:3a:af:1a:27:27:17:68:5d:e1:aa: 10:a0:9c:ff:05:a4:b0:19:7d:48:92:93:14:b5:5c:99:42:72: 9c:2d:d4:26 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNh0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzRGMDYxMTAvBgNVBAUTKDNBQUY4MEVBOTdFOTlCOTUyNUIzM0JDMTMzNUJCMDk1 QzJEMjc4QTcwHhcNMjYwNDA0MTQ0ODA2WhcNMjYwNDExMTQ0ODA2WjAYMRYwFAYD VQQDEw02OWQxMjRhNy1lZjJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmytgS2EB5AKKkSR1BouBMiLDci7LoUWmnl+9G1r+P2YiKecpMoYZVhg+73zG h7tWquBmhgYH2hyaOHXWLhNDmhFNgqRVB5myRuDiF6U+lOuwrMmrmm7k7MU0Yoj/ MFTqVi1EuaC9C9hJZ9YxIZZOCfTJxhNMg2TC1OLzI61MGb1YDdiB8yyrwzeb6K3r 6OTbXjkISg9/hg+Y92RQsrq8AaAXUJmPQCnClHT7Ep0Cld9P9DJPrUP15DG/8Kjt Tc2w7poRRGRcdBiKvvOzixA+vmkVytOFnwOBI2jFiv94tg5WdshaIEfwYkup8MQN vDAOlZhistzBAaSmROKg2VTeNwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPtljqqp K9cBSBsLQfdt4HqlhcE3MB8GA1UdIwQYMBaAFDqvgOqX6ZuVJbM7wTNbsJXC0nin MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNEYwNi83NkUxQzQ3RTFE OTUxMUUyQkU1OTVFN0QwOEIwMkNEMi9PcS1BNnBmcG01VWxzenZCTTF1d2xjTFNl S2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09xLUE2cGZwbTVVbHN6dkJNMXV3bGNMU2VLYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NEYwNi83NkUxQzQ3RTFEOTUxMUUyQkU1OTVFN0QwOEIwMkNEMi9PcS1BNnBmcG01 VWxzenZCTTF1d2xjTFNlS2MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAEcVc7sPsQ6j35K/Rdm8HtNKlMb9D6veNPcLEGK6DJ7NU7/OqzLLpMuPD91b/ G2mrHYdsq8cWTb7+nFiXMw2WVXYpaReN2hX4kj7PChwXXkk1af88vlOnbPJRPrhu LfDG45Fv5emnXemm34WaYgNW6vnArV665Wb1SrnkNJxlSEUajD5kzACHP+EY0bLH m0RnhgrjPjisx3pHqsumyk8yyyy4xgZxfR8l/o+bapPlMbyYlplLrKdrXlBvv0mD jeyATEc0GE/ZCwwEpnxOKxfyu64mjD5CXTKsUT7LU8RoTYA6rxonJxdoXeGqEKCc /wWksBl9SJKTFLVcmUJynC3UJg== -----END CERTIFICATE-----Generated at Mon Apr 6 08:38:10 2026 by rpki-client