$ rpki-client -vvf rpki.apnic.net/member_repository/A91F61DA/17C81FD0F41E11E9A8343A74C4F9AE02/oVZKa9a5Cg-he_V9i-rJ4pJZves.mft File: oVZKa9a5Cg-he_V9i-rJ4pJZves.mft (raw, json) Hash identifier: SPdK6dZUPW5JB+St7XqiXZxNT3ZYmAnJoMebenHHuKw= Subject key identifier: B0:A5:CA:36:C5:E7:EE:E5:FD:36:BB:20:23:D6:0B:FF:C3:20:C7:08 Authority key identifier: A1:56:4A:6B:D6:B9:0A:0F:A1:7B:F5:7D:8B:EA:C9:E2:92:59:BD:EB Certificate issuer: /CN=A91F61DA/serialNumber=A1564A6BD6B90A0FA17BF57D8BEAC9E29259BDEB Certificate serial: 0D4D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oVZKa9a5Cg-he_V9i-rJ4pJZves.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F61DA/17C81FD0F41E11E9A8343A74C4F9AE02/oVZKa9a5Cg-he_V9i-rJ4pJZves.mft Manifest number: 0D41 Signing time: Sat 04 Apr 2026 17:52:47 +0000 Manifest this update: Sat 04 Apr 2026 17:52:47 +0000 Manifest next update: Sat 11 Apr 2026 17:52:47 +0000 Files and hashes: 1: oVZKa9a5Cg-he_V9i-rJ4pJZves.crl (hash: hZPp+eLXvtw78P+kYhy7d0B6DCGg4kaJE6kzd/nBPmg=) 2: EA18D5547D8F11EC8E894A1DC4F9AE02.roa (hash: XMEHY700mwLD1H5UH+kDiYWGkC5d0JNM+7D3NKZezoM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F61DA/17C81FD0F41E11E9A8343A74C4F9AE02/oVZKa9a5Cg-he_V9i-rJ4pJZves.crl rsync://rpki.apnic.net/member_repository/A91F61DA/17C81FD0F41E11E9A8343A74C4F9AE02/oVZKa9a5Cg-he_V9i-rJ4pJZves.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oVZKa9a5Cg-he_V9i-rJ4pJZves.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 17:52:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3405 (0xd4d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F61DA, serialNumber=A1564A6BD6B90A0FA17BF57D8BEAC9E29259BDEB Validity Not Before: Apr 4 17:52:47 2026 GMT Not After : Apr 11 17:52:47 2026 GMT Subject: CN=69d14fef-863d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:64:b5:5b:f3:4f:8f:3d:2c:94:7d:ad:f4:ab: dd:7c:f3:59:f2:be:80:29:b0:12:ea:f2:02:29:68: 24:90:61:17:6c:60:22:e5:0e:a5:d0:98:82:05:50: ee:73:99:a1:9b:16:33:61:bf:ce:6b:be:4a:a1:91: 81:22:c2:be:3e:c1:ad:c0:90:da:a0:21:ec:4c:c7: 11:cc:6e:12:a1:71:41:7d:e4:74:08:5a:c6:d7:9f: f7:d0:11:76:ba:c5:bb:ab:88:50:32:40:af:c0:e6: c0:c7:36:e8:c9:38:73:a9:a8:61:ec:c3:5a:fc:61: 76:5a:75:bf:16:b7:9b:c3:06:15:60:5c:8a:9b:80: 29:c2:95:80:07:61:fa:20:29:7a:c7:6a:13:b2:b7: 4c:e8:2f:6b:8e:62:a8:7c:8d:29:cf:8f:67:86:41: 85:39:44:b1:36:fa:4b:2e:6d:6f:73:7b:55:4c:b4: b0:11:ff:40:2e:f5:d3:1e:a8:78:0d:77:77:1c:50: 34:4d:aa:fb:20:84:aa:9b:c0:f4:d2:04:2b:91:e7: f9:ab:91:fc:a1:5c:2c:82:26:3f:5d:e4:fd:15:8a: 35:9d:a9:bd:cb:38:74:65:8d:3d:c6:03:41:64:bc: 5a:eb:96:96:c8:6f:54:b6:83:13:bc:d7:f8:47:0b: ac:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:A5:CA:36:C5:E7:EE:E5:FD:36:BB:20:23:D6:0B:FF:C3:20:C7:08 X509v3 Authority Key Identifier: keyid:A1:56:4A:6B:D6:B9:0A:0F:A1:7B:F5:7D:8B:EA:C9:E2:92:59:BD:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F61DA/17C81FD0F41E11E9A8343A74C4F9AE02/oVZKa9a5Cg-he_V9i-rJ4pJZves.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oVZKa9a5Cg-he_V9i-rJ4pJZves.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F61DA/17C81FD0F41E11E9A8343A74C4F9AE02/oVZKa9a5Cg-he_V9i-rJ4pJZves.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:a1:fc:be:82:76:07:fa:87:86:f9:70:6e:2c:4f:8e:f3:1a: 25:a1:d6:c7:ea:6c:d9:12:cb:ea:89:31:c7:a1:a9:82:0c:63: c9:52:ab:8f:a1:a6:1f:3c:b4:9c:91:fa:83:9d:6c:9d:f7:24: cd:29:0a:b2:95:19:f3:64:48:fd:1f:78:d4:0e:06:d9:c8:4a: 35:1d:07:c0:a7:71:e6:12:dd:f0:c8:b8:36:70:da:2c:02:b6: db:42:d4:4c:56:82:87:10:8d:7c:c8:ec:eb:3b:dd:1b:59:3a: 40:59:af:c4:c3:5b:28:2b:40:32:32:64:24:5b:72:49:5e:17: 41:62:16:8c:fe:c9:22:40:28:f2:27:60:a3:98:6c:63:72:a2: 10:17:c1:90:69:ce:27:41:d9:7c:cc:96:81:f3:b5:d8:6f:4e: 5a:06:cb:a8:90:1b:85:13:80:1e:c5:cd:cb:32:e5:88:f7:e6: 23:e4:cc:9f:c0:89:41:27:43:4b:c9:43:92:51:35:0a:d0:70: 4b:e1:ab:2b:19:ce:86:fc:c1:e3:2f:9c:62:ef:68:f7:c4:a2: df:39:37:5c:f9:47:7e:68:42:84:ee:b6:93:67:e8:f2:fb:01: d2:4d:86:c3:da:b7:1d:7d:35:a9:92:8c:42:f2:31:da:a0:9b: 4f:e2:83:fd -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDU0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjYxREExMTAvBgNVBAUTKEExNTY0QTZCRDZCOTBBMEZBMTdCRjU3RDhCRUFDOUUy OTI1OUJERUIwHhcNMjYwNDA0MTc1MjQ3WhcNMjYwNDExMTc1MjQ3WjAYMRYwFAYD VQQDEw02OWQxNGZlZi04NjNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtGS1W/NPjz0slH2t9KvdfPNZ8r6AKbAS6vICKWgkkGEXbGAi5Q6l0JiCBVDu c5mhmxYzYb/Oa75KoZGBIsK+PsGtwJDaoCHsTMcRzG4SoXFBfeR0CFrG15/30BF2 usW7q4hQMkCvwObAxzboyThzqahh7MNa/GF2WnW/FrebwwYVYFyKm4ApwpWAB2H6 ICl6x2oTsrdM6C9rjmKofI0pz49nhkGFOUSxNvpLLm1vc3tVTLSwEf9ALvXTHqh4 DXd3HFA0Tar7IISqm8D00gQrkef5q5H8oVwsgiY/XeT9FYo1nam9yzh0ZY09xgNB ZLxa65aWyG9UtoMTvNf4RwusLwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLClyjbF 5+7l/Ta7ICPWC//DIMcIMB8GA1UdIwQYMBaAFKFWSmvWuQoPoXv1fYvqyeKSWb3r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjFEQS8xN0M4MUZEMEY0 MUUxMUU5QTgzNDNBNzRDNEY5QUUwMi9vVlpLYTlhNUNnLWhlX1Y5aS1ySjRwSlp2 ZXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29WWkthOWE1Q2ctaGVfVjlpLXJKNHBKWnZlcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NjFEQS8xN0M4MUZEMEY0MUUxMUU5QTgzNDNBNzRDNEY5QUUwMi9vVlpLYTlhNUNn LWhlX1Y5aS1ySjRwSlp2ZXMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAeaH8voJ2B/qHhvlwbixPjvMaJaHWx+ps2RLL6okxx6GpggxjyVKrj6GmHzy0 nJH6g51snfckzSkKspUZ82RI/R941A4G2chKNR0HwKdx5hLd8Mi4NnDaLAK220LU TFaChxCNfMjs6zvdG1k6QFmvxMNbKCtAMjJkJFtySV4XQWIWjP7JIkAo8idgo5hs Y3KiEBfBkGnOJ0HZfMyWgfO12G9OWgbLqJAbhROAHsXNyzLliPfmI+TMn8CJQSdD S8lDklE1CtBwS+GrKxnOhvzB4y+cYu9o98Si3zk3XPlHfmhChO62k2fo8vsB0k2G w9q3HX01qZKMQvIx2qCbT+KD/Q== -----END CERTIFICATE-----Generated at Mon Apr 6 08:54:16 2026 by rpki-client