$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft File: oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft (raw, json) Hash identifier: 9zyfa/gICtg+ZeZOMigs76CXAcZpMq9B+YH5k2QxnWg= Subject key identifier: 13:69:4F:6C:2C:D9:E9:FC:D1:65:CF:13:5B:27:49:30:4C:E1:9A:6F Authority key identifier: A0:AC:42:7E:95:7B:37:4D:02:67:FA:76:48:DD:3F:F8:57:02:DA:B1 Certificate issuer: /CN=A91FA024/serialNumber=A0AC427E957B374D0267FA7648DD3FF85702DAB1 Certificate serial: 0884 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKxCfpV7N00CZ_p2SN0_-FcC2rE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft Manifest number: 087A Signing time: Sat 04 Apr 2026 20:25:57 +0000 Manifest this update: Sat 04 Apr 2026 20:25:57 +0000 Manifest next update: Sat 11 Apr 2026 20:25:57 +0000 Files and hashes: 1: oKxCfpV7N00CZ_p2SN0_-FcC2rE.crl (hash: PACa0d6VjaHGD4BFeRTjGxDfyFRN+wXkGwHpDdP45hM=) 2: FE1FDB12BCD011EC8283681EC4F9AE02.roa (hash: D7POOiqxGTRBfPXL5kT6B+2budcwWwPlgdAg9UBfD4U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.crl rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKxCfpV7N00CZ_p2SN0_-FcC2rE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 20:25:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2180 (0x884) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA024, serialNumber=A0AC427E957B374D0267FA7648DD3FF85702DAB1 Validity Not Before: Apr 4 20:25:57 2026 GMT Not After : Apr 11 20:25:57 2026 GMT Subject: CN=69d173d5-d12a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:e2:0a:70:ea:a0:d5:ec:5e:4a:ed:15:c7:3d: 06:6f:7c:46:59:3b:9b:c5:1a:b0:e5:2f:bb:db:f2: 6b:c9:03:a2:f2:54:a7:03:ad:07:c0:09:ec:da:72: 58:3a:ba:90:35:33:8f:0a:f8:4f:7b:5b:28:8a:b2: c4:1f:c8:d4:53:c2:ee:ce:44:8b:fa:ad:de:96:87: da:c7:0b:9f:2a:26:de:9f:09:f4:61:af:5a:ee:3c: fc:42:40:b8:52:f1:3e:33:d5:5a:b7:ca:7e:a9:da: ae:f5:ce:88:5b:ee:6e:b2:a4:7c:4b:bf:fa:7d:ed: a6:c1:2e:ce:5a:23:7c:88:80:8e:2e:a6:ba:0c:b8: df:4b:4b:53:c8:9d:8a:10:15:1a:27:06:35:49:a5: 7a:07:11:bf:0c:2a:9d:45:2c:1d:c8:d4:ce:5e:43: bb:12:d1:d1:21:32:f8:ad:55:71:c0:60:80:e9:71: 2b:8d:ef:46:01:56:ef:31:62:69:11:59:cb:f3:c3: d9:d5:78:b0:91:ae:d7:1b:5c:78:1d:e2:af:a8:fc: f0:0a:3a:f1:19:d6:6c:45:5d:e7:dc:bf:9a:5c:aa: 71:71:f7:85:d2:31:f8:d7:a1:49:ba:9c:65:4f:87: 70:cb:06:06:c8:89:bb:15:b9:8a:6d:27:ed:a2:90: f3:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:69:4F:6C:2C:D9:E9:FC:D1:65:CF:13:5B:27:49:30:4C:E1:9A:6F X509v3 Authority Key Identifier: keyid:A0:AC:42:7E:95:7B:37:4D:02:67:FA:76:48:DD:3F:F8:57:02:DA:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKxCfpV7N00CZ_p2SN0_-FcC2rE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:b0:fc:6a:06:6b:a5:13:72:ca:72:95:a6:34:ed:39:4f:e8: 1e:ca:af:a1:84:dc:1d:02:9a:1f:22:f8:56:d8:d7:f9:61:7e: 0e:19:eb:b2:23:5a:00:cc:fc:85:60:8c:e5:09:2a:01:16:da: b6:44:83:44:e4:3b:70:ae:ae:fd:40:0b:0f:47:25:4b:6a:63: af:88:34:9e:dd:79:af:32:1a:4f:9b:e3:e8:b2:b3:be:fe:dc: 78:61:78:f2:c7:07:c4:f8:4b:de:76:e8:6c:f4:03:89:cb:ed: 70:d9:72:64:91:ae:79:33:c7:09:fd:0d:91:89:a4:cf:d4:20: 0d:47:d4:64:41:f0:d0:49:bc:95:ed:e0:9a:82:92:18:e8:b7: 59:22:60:4f:60:cd:71:9c:92:7d:f1:a1:20:c2:14:24:ee:d1: c8:f9:0c:d0:51:6f:53:01:6e:11:87:0f:cb:69:25:5b:10:c0: 4e:88:69:a7:e5:e3:ba:25:46:a6:e6:93:3f:99:dd:75:e5:95: 0a:ed:77:cf:7e:8d:a9:44:f4:20:78:c2:a8:48:6a:99:70:66: 06:12:9d:29:7c:b6:6e:d0:9f:02:02:af:94:b0:4b:bf:16:c2: 96:e1:b5:ef:78:f6:54:9c:5e:b6:ff:bd:01:16:48:f3:52:65: 66:08:66:65 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCIQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkEwMjQxMTAvBgNVBAUTKEEwQUM0MjdFOTU3QjM3NEQwMjY3RkE3NjQ4REQzRkY4 NTcwMkRBQjEwHhcNMjYwNDA0MjAyNTU3WhcNMjYwNDExMjAyNTU3WjAYMRYwFAYD VQQDEw02OWQxNzNkNS1kMTJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzuIKcOqg1exeSu0Vxz0Gb3xGWTubxRqw5S+72/JryQOi8lSnA60HwAns2nJY OrqQNTOPCvhPe1soirLEH8jUU8LuzkSL+q3elofaxwufKibenwn0Ya9a7jz8QkC4 UvE+M9Vat8p+qdqu9c6IW+5usqR8S7/6fe2mwS7OWiN8iICOLqa6DLjfS0tTyJ2K EBUaJwY1SaV6BxG/DCqdRSwdyNTOXkO7EtHRITL4rVVxwGCA6XErje9GAVbvMWJp EVnL88PZ1Xiwka7XG1x4HeKvqPzwCjrxGdZsRV3n3L+aXKpxcfeF0jH416FJupxl T4dwywYGyIm7FbmKbSftopDziwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBNpT2ws 2en80WXPE1snSTBM4ZpvMB8GA1UdIwQYMBaAFKCsQn6VezdNAmf6dkjdP/hXAtqx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTAyNC9EMzNBNDc5NEYx ODgxMUVBOUU4MEY3MUVDNEY5QUUwMi9vS3hDZnBWN04wMENaX3AyU04wXy1GY0My ckUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29LeENmcFY3TjAwQ1pfcDJTTjBfLUZjQzJyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QTAyNC9EMzNBNDc5NEYxODgxMUVBOUU4MEY3MUVDNEY5QUUwMi9vS3hDZnBWN04w MENaX3AyU04wXy1GY0MyckUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAgbD8agZrpRNyynKVpjTtOU/oHsqvoYTcHQKaHyL4VtjX+WF+DhnrsiNaAMz8 hWCM5QkqARbatkSDROQ7cK6u/UALD0clS2pjr4g0nt15rzIaT5vj6LKzvv7ceGF4 8scHxPhL3nbobPQDicvtcNlyZJGueTPHCf0NkYmkz9QgDUfUZEHw0Em8le3gmoKS GOi3WSJgT2DNcZySffGhIMIUJO7RyPkM0FFvUwFuEYcPy2klWxDATohpp+XjuiVG puaTP5nddeWVCu13z36NqUT0IHjCqEhqmXBmBhKdKXy2btCfAgKvlLBLvxbCluG1 73j2VJxetv+9ARZI81JlZghmZQ== -----END CERTIFICATE-----Generated at Mon Apr 6 08:30:40 2026 by rpki-client