$ rpki-client -vvf rpki.apnic.net/member_repository/A91316B0/2337F2325E3E11ECA1FFEB4CC4F9AE02/OVr1eRN2M5r53uVtah4TtHq1xGY.mft File: OVr1eRN2M5r53uVtah4TtHq1xGY.mft (raw, json) Hash identifier: f+r0lWq353kRB/p1RK0y9xd4gBXmR20pOEjgiPes3qQ= Subject key identifier: A4:B4:DB:5F:79:CD:23:73:E9:86:69:DF:4C:05:4C:6C:55:92:A8:D2 Authority key identifier: 39:5A:F5:79:13:76:33:9A:F9:DE:E5:6D:6A:1E:13:B4:7A:B5:C4:66 Certificate issuer: /CN=A91316B0/serialNumber=395AF5791376339AF9DEE56D6A1E13B47AB5C466 Certificate serial: 0171 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OVr1eRN2M5r53uVtah4TtHq1xGY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91316B0/2337F2325E3E11ECA1FFEB4CC4F9AE02/OVr1eRN2M5r53uVtah4TtHq1xGY.mft Manifest number: 064D Signing time: Tue 24 Mar 2026 23:31:28 +0000 Manifest this update: Tue 24 Mar 2026 23:31:27 +0000 Manifest next update: Tue 31 Mar 2026 23:31:27 +0000 Files and hashes: 1: OVr1eRN2M5r53uVtah4TtHq1xGY.crl (hash: LguIHson9jyAGbqMMddRM/DV33lHFaTHiGgbt4gGE3A=) 2: C6EFDF5C0C3311EFB37BD03FC4F9AE02.roa (hash: rUV9zu+LXsEi7mN7osCEnUxo/cr8mt6t5o12W9CPPBI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91316B0/2337F2325E3E11ECA1FFEB4CC4F9AE02/OVr1eRN2M5r53uVtah4TtHq1xGY.crl rsync://rpki.apnic.net/member_repository/A91316B0/2337F2325E3E11ECA1FFEB4CC4F9AE02/OVr1eRN2M5r53uVtah4TtHq1xGY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OVr1eRN2M5r53uVtah4TtHq1xGY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 23:31:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 369 (0x171) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91316B0, serialNumber=395AF5791376339AF9DEE56D6A1E13B47AB5C466 Validity Not Before: Mar 24 23:31:27 2026 GMT Not After : Mar 31 23:31:27 2026 GMT Subject: CN=69c31ed0-708f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:4c:05:37:04:05:82:88:1d:1e:d1:ab:84:21: 13:5b:1d:6b:03:0d:15:94:0d:5a:a5:af:e2:e6:dc: 3a:2f:bf:50:64:e9:63:22:e9:ba:cf:8f:0f:ed:a1: 1d:2b:10:75:64:e3:56:14:9a:35:6e:16:53:13:ff: 6d:9c:3c:3e:3c:ec:1c:75:d6:8c:06:f6:b5:a8:28: 1b:ab:7a:f6:31:45:33:82:4f:51:6a:b4:5e:2b:2c: eb:7a:c9:69:7e:fe:f5:22:fb:23:86:ea:df:d2:9d: 97:0f:d5:b7:5e:bf:6e:73:5c:1b:71:c4:1d:10:4d: 78:0d:f6:9c:95:a6:f4:68:72:ee:fc:bd:65:1a:72: 4c:0d:70:38:fc:5d:da:cf:ae:85:60:f6:4e:57:2d: 24:79:a9:2f:f3:77:b8:c8:ff:66:4f:41:13:4c:be: 07:6a:90:5b:96:89:10:5e:13:5b:6e:7a:3c:be:72: 2a:cb:a4:21:f5:dd:b7:28:4c:6f:b4:78:08:28:c6: a6:b2:01:38:18:de:fb:03:7d:e5:5f:d3:09:6e:39: b6:ab:f1:0d:a0:fd:75:32:75:18:d8:b4:99:f8:1b: 4d:e4:03:8d:b6:15:b5:41:53:14:60:9b:0f:a6:34: 34:85:9a:8a:ab:91:4e:36:10:c7:a5:1a:ac:14:b9: e5:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:B4:DB:5F:79:CD:23:73:E9:86:69:DF:4C:05:4C:6C:55:92:A8:D2 X509v3 Authority Key Identifier: keyid:39:5A:F5:79:13:76:33:9A:F9:DE:E5:6D:6A:1E:13:B4:7A:B5:C4:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91316B0/2337F2325E3E11ECA1FFEB4CC4F9AE02/OVr1eRN2M5r53uVtah4TtHq1xGY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OVr1eRN2M5r53uVtah4TtHq1xGY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91316B0/2337F2325E3E11ECA1FFEB4CC4F9AE02/OVr1eRN2M5r53uVtah4TtHq1xGY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:fa:bd:b9:37:47:1f:5d:58:5a:31:76:fc:ae:3b:7e:1a:0c: 98:09:85:e9:0c:ef:f6:5c:f4:d2:8b:db:2a:39:13:b6:e0:cd: 13:d5:b2:21:d7:03:2a:2f:51:a1:9d:7b:89:21:72:3a:5d:27: 79:ff:fd:75:ee:0b:e9:8b:e7:81:e9:85:3c:89:bd:a0:0f:57: 26:71:0e:e6:ad:66:33:05:a9:6e:3a:a7:de:70:74:d7:6b:60: b3:d3:32:8c:de:20:bc:56:e0:64:dd:11:47:63:0e:c1:82:51: 44:1b:df:af:8d:6a:81:44:78:4f:49:23:69:19:9b:3b:ed:b6: 0a:57:1a:e9:04:2e:09:00:d5:e6:04:08:f5:f1:5c:2b:a9:fc: 1f:74:5d:6a:a8:42:cf:34:3a:17:cf:8c:0b:0c:d9:2d:43:ba: c6:9a:07:31:f9:3b:f4:17:97:c9:2f:50:24:e1:71:43:32:74: 36:80:14:eb:6c:2e:a5:bf:c9:9e:f6:08:6c:84:82:f4:ce:c7: bc:f4:e8:d3:92:a3:e6:a9:0e:03:53:9c:27:4b:e8:5e:66:70: 55:94:ba:a6:8d:ea:32:05:b4:c0:95:1a:66:bc:88:25:52:4e: 8b:57:8c:f3:69:df:12:83:13:42:e3:26:9a:8a:29:5e:a4:d8: 0f:e3:bf:49 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAXEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzE2QjAxMTAvBgNVBAUTKDM5NUFGNTc5MTM3NjMzOUFGOURFRTU2RDZBMUUxM0I0 N0FCNUM0NjYwHhcNMjYwMzI0MjMzMTI3WhcNMjYwMzMxMjMzMTI3WjAYMRYwFAYD VQQDEw02OWMzMWVkMC03MDhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1UwFNwQFgogdHtGrhCETWx1rAw0VlA1apa/i5tw6L79QZOljIum6z48P7aEd KxB1ZONWFJo1bhZTE/9tnDw+POwcddaMBva1qCgbq3r2MUUzgk9RarReKyzreslp fv71Ivsjhurf0p2XD9W3Xr9uc1wbccQdEE14Dfaclab0aHLu/L1lGnJMDXA4/F3a z66FYPZOVy0keakv83e4yP9mT0ETTL4HapBblokQXhNbbno8vnIqy6Qh9d23KExv tHgIKMamsgE4GN77A33lX9MJbjm2q/ENoP11MnUY2LSZ+BtN5AONthW1QVMUYJsP pjQ0hZqKq5FONhDHpRqsFLnl0QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKS02195 zSNz6YZp30wFTGxVkqjSMB8GA1UdIwQYMBaAFDla9XkTdjOa+d7lbWoeE7R6tcRm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTZCMC8yMzM3RjIzMjVF M0UxMUVDQTFGRkVCNENDNEY5QUUwMi9PVnIxZVJOMk01cjUzdVZ0YWg0VHRIcTF4 R1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09WcjFlUk4yTTVyNTN1VnRhaDRUdEhxMXhHWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MTZCMC8yMzM3RjIzMjVFM0UxMUVDQTFGRkVCNENDNEY5QUUwMi9PVnIxZVJOMk01 cjUzdVZ0YWg0VHRIcTF4R1kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEArfq9uTdHH11YWjF2/K47fhoMmAmF6Qzv9lz00ovbKjkTtuDNE9WyIdcDKi9R oZ17iSFyOl0nef/9de4L6YvngemFPIm9oA9XJnEO5q1mMwWpbjqn3nB012tgs9My jN4gvFbgZN0RR2MOwYJRRBvfr41qgUR4T0kjaRmbO+22Clca6QQuCQDV5gQI9fFc K6n8H3RdaqhCzzQ6F8+MCwzZLUO6xpoHMfk79BeXyS9QJOFxQzJ0NoAU62wupb/J nvYIbISC9M7HvPTo05Kj5qkOA1OcJ0voXmZwVZS6po3qMgW0wJUaZryIJVJOi1eM 82nfEoMTQuMmmoopXqTYD+O/SQ== -----END CERTIFICATE-----Generated at Thu Mar 26 04:26:20 2026 by rpki-client