$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC225/499FDF908E5511E980D09A42C4F9AE02/2OL6sVCi_VePZ-GbApZTmzdSyak.mft File: 2OL6sVCi_VePZ-GbApZTmzdSyak.mft (raw, json) Hash identifier: 3QWchkp5X91YAE4ZgIXjkAGkfJle+HEUe7tScnXQT0o= Subject key identifier: 37:DB:F1:9D:E3:4B:A9:ED:90:B2:98:DC:40:81:96:8B:33:95:7A:22 Authority key identifier: D8:E2:FA:B1:50:A2:FD:57:8F:67:E1:9B:02:96:53:9B:37:52:C9:A9 Certificate issuer: /CN=A91EC225/serialNumber=D8E2FAB150A2FD578F67E19B0296539B3752C9A9 Certificate serial: 0F51 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2OL6sVCi_VePZ-GbApZTmzdSyak.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EC225/499FDF908E5511E980D09A42C4F9AE02/2OL6sVCi_VePZ-GbApZTmzdSyak.mft Manifest number: 0F47 Signing time: Sat 04 Apr 2026 17:26:48 +0000 Manifest this update: Sat 04 Apr 2026 17:26:48 +0000 Manifest next update: Sat 11 Apr 2026 17:26:48 +0000 Files and hashes: 1: 2OL6sVCi_VePZ-GbApZTmzdSyak.crl (hash: 9KeLGVjvYkgpO48V5iRXviYaj+uDk1YUnYsmez7uyK8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EC225/499FDF908E5511E980D09A42C4F9AE02/2OL6sVCi_VePZ-GbApZTmzdSyak.crl rsync://rpki.apnic.net/member_repository/A91EC225/499FDF908E5511E980D09A42C4F9AE02/2OL6sVCi_VePZ-GbApZTmzdSyak.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2OL6sVCi_VePZ-GbApZTmzdSyak.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 17:26:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3921 (0xf51) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EC225, serialNumber=D8E2FAB150A2FD578F67E19B0296539B3752C9A9 Validity Not Before: Apr 4 17:26:48 2026 GMT Not After : Apr 11 17:26:48 2026 GMT Subject: CN=69d149d8-2a57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:f9:67:42:fa:7b:69:23:59:cb:dc:54:6d:68: bf:97:d4:3a:86:4f:60:e5:49:6f:ec:bd:e0:1a:d2: 93:87:bf:ef:41:d0:2c:49:14:f6:b2:20:2b:fc:8c: 9e:1e:2f:2b:88:10:77:55:ed:d8:2f:0c:84:5e:10: 89:42:bd:58:8e:5a:55:30:3d:cb:72:53:81:56:c7: 85:01:f4:a4:8d:3a:8e:cf:e0:5d:ff:25:44:60:d8: 0c:7a:ec:96:06:45:e4:5b:15:00:4f:8b:9e:5d:b1: 92:8b:ef:b4:56:f3:b3:6d:79:cc:eb:1c:92:9c:fd: 14:5d:49:6f:09:e5:f6:1c:54:38:4a:f6:d3:f1:90: 6a:44:70:83:09:e5:93:ba:ac:7b:d7:86:53:90:57: a4:f2:f9:92:5e:d2:8d:55:d6:e2:28:62:4a:e0:be: 45:8c:0e:87:49:15:10:fe:21:8b:5f:ed:49:af:d7: 44:c4:12:6a:3b:b4:f5:22:e2:45:80:e1:ce:d8:55: c7:c8:cc:b5:02:3a:c5:68:ec:e2:a1:aa:0b:6a:f2: de:12:56:c9:27:9c:5e:c4:86:6e:42:65:fe:51:83: 12:b7:47:ae:10:87:f5:80:3d:04:f9:1b:0f:53:ba: 40:40:3d:f9:94:91:d6:42:13:cd:51:7d:ef:fb:63: 02:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:DB:F1:9D:E3:4B:A9:ED:90:B2:98:DC:40:81:96:8B:33:95:7A:22 X509v3 Authority Key Identifier: keyid:D8:E2:FA:B1:50:A2:FD:57:8F:67:E1:9B:02:96:53:9B:37:52:C9:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EC225/499FDF908E5511E980D09A42C4F9AE02/2OL6sVCi_VePZ-GbApZTmzdSyak.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2OL6sVCi_VePZ-GbApZTmzdSyak.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC225/499FDF908E5511E980D09A42C4F9AE02/2OL6sVCi_VePZ-GbApZTmzdSyak.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:27:1f:99:11:84:df:d4:68:dd:e3:c1:3f:c0:b4:f9:4e:c7: 97:ea:15:b7:cb:2a:ce:97:33:5b:d2:5c:2d:4e:bf:e8:46:c4: b1:79:dd:e2:8f:73:f5:b7:5f:5f:6f:ec:86:36:fa:48:12:24: 1e:b9:84:4d:af:ab:22:08:e6:7b:fd:0e:55:d6:f9:dd:64:42: 07:b6:18:a6:31:73:4a:f2:ac:c5:f8:fb:96:46:f9:7d:b5:cc: d7:69:26:c2:0c:9d:d7:18:2c:64:4d:e1:02:ad:10:c4:e9:d0: ac:2e:88:52:76:a3:be:21:f3:f6:3c:26:16:cb:72:5f:84:de: 85:54:85:c1:2c:d3:6f:49:8e:4e:9d:79:6f:21:41:2d:6d:c1: cb:22:00:39:f5:65:a9:5b:13:2f:3c:23:4e:a0:60:e9:c1:ec: 40:fc:d2:f8:10:55:15:3d:1c:bb:e9:7d:d7:f3:3a:97:7c:ef: d6:69:d5:91:97:a2:dc:ae:2c:b5:39:54:81:a1:e5:e6:42:2e: a9:7f:1b:64:c1:69:79:95:87:53:b3:3e:e1:f5:cc:cd:cb:e2: b9:29:17:7e:48:d9:20:a6:1a:d2:a5:51:f8:64:4f:c3:0b:15: 95:dc:b0:2f:ca:fa:f1:89:89:1c:7b:ed:a7:11:7e:d0:04:e5: 0f:f4:27:94 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICD1EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUMyMjUxMTAvBgNVBAUTKEQ4RTJGQUIxNTBBMkZENTc4RjY3RTE5QjAyOTY1MzlC Mzc1MkM5QTkwHhcNMjYwNDA0MTcyNjQ4WhcNMjYwNDExMTcyNjQ4WjAYMRYwFAYD VQQDEw02OWQxNDlkOC0yYTU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv/lnQvp7aSNZy9xUbWi/l9Q6hk9g5Ulv7L3gGtKTh7/vQdAsSRT2siAr/Iye Hi8riBB3Ve3YLwyEXhCJQr1YjlpVMD3LclOBVseFAfSkjTqOz+Bd/yVEYNgMeuyW BkXkWxUAT4ueXbGSi++0VvOzbXnM6xySnP0UXUlvCeX2HFQ4SvbT8ZBqRHCDCeWT uqx714ZTkFek8vmSXtKNVdbiKGJK4L5FjA6HSRUQ/iGLX+1Jr9dExBJqO7T1IuJF gOHO2FXHyMy1AjrFaOzioaoLavLeElbJJ5xexIZuQmX+UYMSt0euEIf1gD0E+RsP U7pAQD35lJHWQhPNUX3v+2MCUQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDfb8Z3j S6ntkLKY3ECBloszlXoiMB8GA1UdIwQYMBaAFNji+rFQov1Xj2fhmwKWU5s3Usmp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQzIyNS80OTlGREY5MDhF NTUxMUU5ODBEMDlBNDJDNEY5QUUwMi8yT0w2c1ZDaV9WZVBaLUdiQXBaVG16ZFN5 YWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJPTDZzVkNpX1ZlUFotR2JBcFpUbXpkU3lhay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QzIyNS80OTlGREY5MDhFNTUxMUU5ODBEMDlBNDJDNEY5QUUwMi8yT0w2c1ZDaV9W ZVBaLUdiQXBaVG16ZFN5YWsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAICcfmRGE39Ro3ePBP8C0+U7Hl+oVt8sqzpczW9JcLU6/6EbEsXnd4o9z9bdf X2/shjb6SBIkHrmETa+rIgjme/0OVdb53WRCB7YYpjFzSvKsxfj7lkb5fbXM12km wgyd1xgsZE3hAq0QxOnQrC6IUnajviHz9jwmFstyX4TehVSFwSzTb0mOTp15byFB LW3ByyIAOfVlqVsTLzwjTqBg6cHsQPzS+BBVFT0cu+l91/M6l3zv1mnVkZei3K4s tTlUgaHl5kIuqX8bZMFpeZWHU7M+4fXMzcviuSkXfkjZIKYa0qVR+GRPwwsVldyw L8r68YmJHHvtpxF+0ATlD/QnlA== -----END CERTIFICATE-----Generated at Mon Apr 6 08:25:47 2026 by rpki-client