$ rpki-client -vvf rpki.apnic.net/member_repository/A912383B/FBBA9E9CE02311EA9922DE42C4F9AE02/OAHjYU99QEcCrkIssnnlHcnRTKI.mft File: OAHjYU99QEcCrkIssnnlHcnRTKI.mft (raw, json) Hash identifier: Yh6Iqv79Bb6EjLvOlH7QEEYCbjj6qaC8zGvuDeCxkyE= Subject key identifier: DC:8F:CE:30:06:E2:4B:BE:2C:EF:BF:6D:ED:1A:13:B1:39:74:A2:A4 Authority key identifier: 38:01:E3:61:4F:7D:40:47:02:AE:42:2C:B2:79:E5:1D:C9:D1:4C:A2 Certificate issuer: /CN=A912383B/serialNumber=3801E3614F7D404702AE422CB279E51DC9D14CA2 Certificate serial: 08AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OAHjYU99QEcCrkIssnnlHcnRTKI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912383B/FBBA9E9CE02311EA9922DE42C4F9AE02/OAHjYU99QEcCrkIssnnlHcnRTKI.mft Manifest number: 08A5 Signing time: Thu 26 Mar 2026 20:24:09 +0000 Manifest this update: Thu 26 Mar 2026 20:24:09 +0000 Manifest next update: Thu 02 Apr 2026 20:24:09 +0000 Files and hashes: 1: OAHjYU99QEcCrkIssnnlHcnRTKI.crl (hash: q0teLGBmysgufqXGkMUMMXJ0wjVrzr5QZz8y3d14JMw=) 2: 4E4AF4A2C2B111EBABFFA212C4F9AE02.roa (hash: IYSmLvKDDFybIzJE/k0J2LFQgVw7pM2NwhpUrLtH0AM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912383B/FBBA9E9CE02311EA9922DE42C4F9AE02/OAHjYU99QEcCrkIssnnlHcnRTKI.crl rsync://rpki.apnic.net/member_repository/A912383B/FBBA9E9CE02311EA9922DE42C4F9AE02/OAHjYU99QEcCrkIssnnlHcnRTKI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OAHjYU99QEcCrkIssnnlHcnRTKI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 20:24:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2221 (0x8ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912383B, serialNumber=3801E3614F7D404702AE422CB279E51DC9D14CA2 Validity Not Before: Mar 26 20:24:09 2026 GMT Not After : Apr 2 20:24:09 2026 GMT Subject: CN=69c595e9-f22c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:9d:86:5c:2c:26:43:dd:15:de:f6:72:2a:93: 7a:a3:b3:d3:d4:ca:3e:ec:c5:39:84:3c:d0:68:55: 59:52:33:6f:83:a6:39:22:35:e8:14:6e:6b:7b:d6: df:c4:72:3b:18:0d:18:02:0c:8e:69:24:20:10:af: db:e8:a2:82:a3:ee:88:52:fd:14:fb:9e:01:a8:7a: 4f:5d:9c:73:e4:01:c4:51:6f:b5:b6:1a:dc:b4:bf: ee:30:20:1f:0e:d3:8c:9b:e2:a2:8a:31:92:55:ad: 71:2b:a5:6a:1f:63:1e:ee:0f:6e:71:bc:7e:f8:48: a8:c3:c5:fc:11:af:3d:82:ef:9e:9b:44:71:dd:07: 2a:2a:d1:27:e6:d2:7c:43:8a:b1:20:33:2d:bc:e4: 85:43:87:11:5b:61:4d:c6:a1:49:34:b0:41:5a:8e: b0:43:7a:2e:38:fc:d9:15:d8:52:06:67:e5:a5:6a: 1d:c5:e6:4a:22:d9:7b:a5:df:f1:eb:82:85:ba:b7: 29:58:58:2d:9d:2c:79:04:4e:8f:d4:e5:65:e7:6e: 82:2b:ed:9c:8e:92:67:cd:89:81:1a:d5:dc:4a:03: 93:c6:46:c3:b2:7d:10:0a:43:c1:ad:0a:88:dc:5e: 64:a7:21:bf:89:b9:e2:f3:83:cc:ac:0b:50:49:88: 73:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:8F:CE:30:06:E2:4B:BE:2C:EF:BF:6D:ED:1A:13:B1:39:74:A2:A4 X509v3 Authority Key Identifier: keyid:38:01:E3:61:4F:7D:40:47:02:AE:42:2C:B2:79:E5:1D:C9:D1:4C:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912383B/FBBA9E9CE02311EA9922DE42C4F9AE02/OAHjYU99QEcCrkIssnnlHcnRTKI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OAHjYU99QEcCrkIssnnlHcnRTKI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912383B/FBBA9E9CE02311EA9922DE42C4F9AE02/OAHjYU99QEcCrkIssnnlHcnRTKI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:64:58:fe:85:ce:86:28:db:0c:32:bc:fe:78:08:41:81:78: f8:8a:1c:cf:90:35:f4:9c:73:db:d9:b9:7c:08:7b:2a:2b:ae: 6c:af:a8:59:db:2e:57:24:39:2d:fa:00:fe:19:46:f7:b3:d6: 4b:f9:07:30:a8:4a:97:d5:7e:18:cd:16:df:0c:32:fb:ba:a9: 72:09:be:a2:ca:ed:8a:73:67:f9:da:69:d3:19:85:91:1d:24: d1:73:d6:0b:8b:7b:b1:95:ae:d0:d0:94:85:b6:ef:15:ce:ae: 48:eb:ca:72:44:39:47:47:a9:07:bb:60:fe:95:20:02:be:78: d9:c0:d0:d7:b5:99:24:e8:31:fd:9e:6f:46:4e:86:17:77:de: bd:c9:f8:ac:dc:d4:8e:89:11:a8:05:99:cc:46:a8:26:3f:9b: 94:a3:38:e3:41:b7:4b:93:26:4f:5a:2b:9f:d3:7d:ea:10:e0: 13:3d:45:d4:26:8c:d8:b5:2b:ac:18:2f:5a:b3:66:d7:17:b5: 1d:eb:82:c7:84:24:99:c1:ed:8f:78:97:5e:73:5f:1f:38:73: 8d:02:2a:d2:15:6e:21:9d:02:b9:ca:34:7f:f2:5a:0c:79:ed: 8a:07:96:25:00:9a:1b:46:db:eb:56:9f:7e:27:5a:9f:7b:37: 78:3d:cf:67 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCK0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjM4M0IxMTAvBgNVBAUTKDM4MDFFMzYxNEY3RDQwNDcwMkFFNDIyQ0IyNzlFNTFE QzlEMTRDQTIwHhcNMjYwMzI2MjAyNDA5WhcNMjYwNDAyMjAyNDA5WjAYMRYwFAYD VQQDEw02OWM1OTVlOS1mMjJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0J2GXCwmQ90V3vZyKpN6o7PT1Mo+7MU5hDzQaFVZUjNvg6Y5IjXoFG5re9bf xHI7GA0YAgyOaSQgEK/b6KKCo+6IUv0U+54BqHpPXZxz5AHEUW+1thrctL/uMCAf DtOMm+KiijGSVa1xK6VqH2Me7g9ucbx++Eiow8X8Ea89gu+em0Rx3QcqKtEn5tJ8 Q4qxIDMtvOSFQ4cRW2FNxqFJNLBBWo6wQ3ouOPzZFdhSBmflpWodxeZKItl7pd/x 64KFurcpWFgtnSx5BE6P1OVl526CK+2cjpJnzYmBGtXcSgOTxkbDsn0QCkPBrQqI 3F5kpyG/ibni84PMrAtQSYhznQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNyPzjAG 4ku+LO+/be0aE7E5dKKkMB8GA1UdIwQYMBaAFDgB42FPfUBHAq5CLLJ55R3J0Uyi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMzgzQi9GQkJBOUU5Q0Uw MjMxMUVBOTkyMkRFNDJDNEY5QUUwMi9PQUhqWVU5OVFFY0Nya0lzc25ubEhjblJU S0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09BSGpZVTk5UUVjQ3JrSXNzbm5sSGNuUlRLSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MzgzQi9GQkJBOUU5Q0UwMjMxMUVBOTkyMkRFNDJDNEY5QUUwMi9PQUhqWVU5OVFF Y0Nya0lzc25ubEhjblJUS0kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAI2RY/oXOhijbDDK8/ngIQYF4+Iocz5A19Jxz29m5fAh7KiuubK+oWdsuVyQ5 LfoA/hlG97PWS/kHMKhKl9V+GM0W3wwy+7qpcgm+osrtinNn+dpp0xmFkR0k0XPW C4t7sZWu0NCUhbbvFc6uSOvKckQ5R0epB7tg/pUgAr542cDQ17WZJOgx/Z5vRk6G F3fevcn4rNzUjokRqAWZzEaoJj+blKM440G3S5MmT1orn9N96hDgEz1F1CaM2LUr rBgvWrNm1xe1HeuCx4QkmcHtj3iXXnNfHzhzjQIq0hVuIZ0Cuco0f/JaDHntigeW JQCaG0bb61affidan3s3eD3PZw== -----END CERTIFICATE-----Generated at Fri Mar 27 07:03:03 2026 by rpki-client