$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7BC4/261D2830D50D11E9BAD6C226C4F9AE02/ovb2YTEslb8FoLUjCxNx1GIv1ic.mft File: ovb2YTEslb8FoLUjCxNx1GIv1ic.mft (raw, json) Hash identifier: eaTySArwIt4ubhwEapv4547IQUGcUxfvxjFdQc43hrs= Subject key identifier: 54:0A:50:AC:08:C4:CE:9E:6C:57:5C:C0:F0:8E:5D:A4:49:8D:75:72 Authority key identifier: A2:F6:F6:61:31:2C:95:BF:05:A0:B5:23:0B:13:71:D4:62:2F:D6:27 Certificate issuer: /CN=A91E7BC4/serialNumber=A2F6F661312C95BF05A0B5230B1371D4622FD627 Certificate serial: 0DEF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ovb2YTEslb8FoLUjCxNx1GIv1ic.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7BC4/261D2830D50D11E9BAD6C226C4F9AE02/ovb2YTEslb8FoLUjCxNx1GIv1ic.mft Manifest number: 0DE4 Signing time: Sat 18 Apr 2026 17:46:45 +0000 Manifest this update: Sat 18 Apr 2026 17:46:45 +0000 Manifest next update: Sat 25 Apr 2026 17:46:45 +0000 Files and hashes: 1: ovb2YTEslb8FoLUjCxNx1GIv1ic.crl (hash: wY0TK98I+QcW7Uh9jefGY8OTlYgPj89Ieg/MC1DDAE8=) 2: 05054224D8E411E9BEB7986DC4F9AE02.roa (hash: ob3kyKb+k6DfPg+34w85RGonL9slb2GFkKFVzFEICJQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7BC4/261D2830D50D11E9BAD6C226C4F9AE02/ovb2YTEslb8FoLUjCxNx1GIv1ic.crl rsync://rpki.apnic.net/member_repository/A91E7BC4/261D2830D50D11E9BAD6C226C4F9AE02/ovb2YTEslb8FoLUjCxNx1GIv1ic.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ovb2YTEslb8FoLUjCxNx1GIv1ic.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Apr 2026 14:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3567 (0xdef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7BC4, serialNumber=A2F6F661312C95BF05A0B5230B1371D4622FD627 Validity Not Before: Apr 18 17:46:45 2026 GMT Not After : Apr 25 17:46:45 2026 GMT Subject: CN=69e3c385-b9db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:f8:a5:0f:2c:a0:e0:ba:28:07:cc:16:df:d1: 76:bd:2a:ab:b2:4d:02:a5:c6:75:c1:cf:27:cd:93: b7:a7:bf:cf:c4:6f:71:e5:66:3a:f2:38:ce:ec:a1: 74:3b:44:8e:ce:ef:c5:fb:a3:dd:1c:71:6d:5c:21: 9f:1f:c9:53:06:ce:32:ac:42:74:6b:3f:e2:10:d5: 1a:08:4f:37:f8:e6:42:06:ca:12:a0:8d:43:2f:4f: 30:60:6e:67:0e:5f:c6:f7:50:1d:f3:29:6c:06:99: da:ff:b9:1e:ab:c1:9b:47:34:48:7f:39:33:19:d1: 3b:fb:82:31:9d:b1:4d:26:18:76:5e:a0:53:25:ed: 37:3c:f7:6a:76:e7:ab:6e:8c:04:b5:34:86:ee:ea: ea:38:34:b5:d2:df:f2:b8:51:00:19:d9:f6:4e:e6: f6:81:42:c3:76:0d:65:46:8e:89:a8:e0:23:e5:82: c7:dc:a5:3d:e0:7d:ca:ed:ae:91:2b:b7:0c:32:ad: 42:17:c2:84:8b:a4:51:80:7d:2a:6c:fe:08:97:78: 1e:03:79:24:46:00:af:68:c6:24:00:e5:07:74:c3: cd:84:49:a9:24:d4:f8:d7:7d:81:85:fe:d8:6f:ae: 9a:74:5d:fb:27:9a:5d:a3:2b:40:19:94:e6:70:29: cc:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:0A:50:AC:08:C4:CE:9E:6C:57:5C:C0:F0:8E:5D:A4:49:8D:75:72 X509v3 Authority Key Identifier: keyid:A2:F6:F6:61:31:2C:95:BF:05:A0:B5:23:0B:13:71:D4:62:2F:D6:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7BC4/261D2830D50D11E9BAD6C226C4F9AE02/ovb2YTEslb8FoLUjCxNx1GIv1ic.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ovb2YTEslb8FoLUjCxNx1GIv1ic.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7BC4/261D2830D50D11E9BAD6C226C4F9AE02/ovb2YTEslb8FoLUjCxNx1GIv1ic.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:d7:94:1f:94:c5:ec:78:89:ff:97:b3:08:72:42:d6:84:37: 16:fa:fa:28:4e:f5:5b:35:ef:6b:5b:5b:8e:af:6a:f5:08:18: ea:5e:3a:c1:93:a2:ef:c9:b5:51:d8:5e:42:93:e7:03:ec:21: e7:05:24:da:1d:25:f4:c0:64:06:ec:f0:92:58:81:bd:29:8c: ca:59:22:1e:7c:11:b8:87:0a:c1:9a:11:84:51:02:b5:e1:24: e7:0d:9f:68:12:5e:dd:b2:8b:97:b3:2d:0b:99:15:47:58:47: 60:d1:fe:27:ab:a4:62:66:e5:e5:16:b4:bc:e8:c7:c9:d0:bb: da:2c:61:e2:16:bb:79:55:63:a5:c0:2f:05:76:24:7a:d5:14: 60:19:9c:da:39:d3:5c:c6:f8:7b:e2:1e:81:07:ef:04:eb:28: 8c:5a:c5:d4:d8:c6:c2:86:b2:08:31:ad:2d:0a:34:ed:72:1d: 21:d9:b3:10:49:19:c2:f6:ea:20:16:32:17:a1:bf:41:ed:96: 9e:18:a6:ea:c2:79:d4:15:3b:8e:de:81:3e:47:37:1e:03:bb: 0c:19:80:b3:47:88:ea:3f:81:45:62:5b:3f:48:ea:89:2b:3a: e3:2e:e2:25:f5:db:46:bb:69:fa:01:f4:1b:9a:14:fc:90:cd: 6c:8e:d6:78 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDe8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTdCQzQxMTAvBgNVBAUTKEEyRjZGNjYxMzEyQzk1QkYwNUEwQjUyMzBCMTM3MUQ0 NjIyRkQ2MjcwHhcNMjYwNDE4MTc0NjQ1WhcNMjYwNDI1MTc0NjQ1WjAYMRYwFAYD VQQDEw02OWUzYzM4NS1iOWRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtfilDyyg4LooB8wW39F2vSqrsk0CpcZ1wc8nzZO3p7/PxG9x5WY68jjO7KF0 O0SOzu/F+6PdHHFtXCGfH8lTBs4yrEJ0az/iENUaCE83+OZCBsoSoI1DL08wYG5n Dl/G91Ad8ylsBpna/7keq8GbRzRIfzkzGdE7+4IxnbFNJhh2XqBTJe03PPdqduer bowEtTSG7urqODS10t/yuFEAGdn2Tub2gULDdg1lRo6JqOAj5YLH3KU94H3K7a6R K7cMMq1CF8KEi6RRgH0qbP4Il3geA3kkRgCvaMYkAOUHdMPNhEmpJNT4132Bhf7Y b66adF37J5pdoytAGZTmcCnMdwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFQKUKwI xM6ebFdcwPCOXaRJjXVyMB8GA1UdIwQYMBaAFKL29mExLJW/BaC1IwsTcdRiL9Yn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFN0JDNC8yNjFEMjgzMEQ1 MEQxMUU5QkFENkMyMjZDNEY5QUUwMi9vdmIyWVRFc2xiOEZvTFVqQ3hOeDFHSXYx aWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL292YjJZVEVzbGI4Rm9MVWpDeE54MUdJdjFpYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF N0JDNC8yNjFEMjgzMEQ1MEQxMUU5QkFENkMyMjZDNEY5QUUwMi9vdmIyWVRFc2xi OEZvTFVqQ3hOeDFHSXYxaWMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAiNeUH5TF7HiJ/5ezCHJC1oQ3Fvr6KE71WzXva1tbjq9q9QgY6l46wZOi78m1 UdheQpPnA+wh5wUk2h0l9MBkBuzwkliBvSmMylkiHnwRuIcKwZoRhFECteEk5w2f aBJe3bKLl7MtC5kVR1hHYNH+J6ukYmbl5Ra0vOjHydC72ixh4ha7eVVjpcAvBXYk etUUYBmc2jnTXMb4e+IegQfvBOsojFrF1NjGwoayCDGtLQo07XIdIdmzEEkZwvbq IBYyF6G/Qe2Wnhim6sJ51BU7jt6BPkc3HgO7DBmAs0eI6j+BRWJbP0jqiSs64y7i JfXbRrtp+gH0G5oU/JDNbI7WeA== -----END CERTIFICATE-----Generated at Sat Apr 18 21:07:06 2026 by rpki-client