$ rpki-client -vvf rpki.apnic.net/member_repository/A9135EC4/8A9A83681D8911E29CE5ECE208B02CD2/OOHW4K0CW7AuZUgYPvKoIABQo2U.mft File: OOHW4K0CW7AuZUgYPvKoIABQo2U.mft (raw, json) Hash identifier: ffgXG7Aik8p3eTIfdt6LG7JM1ujpg0SidZpwjdpdcHs= Subject key identifier: 42:30:FE:99:8F:A0:71:2C:21:5F:AD:73:C7:04:F1:12:35:1E:76:58 Authority key identifier: 38:E1:D6:E0:AD:02:5B:B0:2E:65:48:18:3E:F2:A8:20:00:50:A3:65 Certificate issuer: /CN=A9135EC4/serialNumber=38E1D6E0AD025BB02E6548183EF2A8200050A365 Certificate serial: 3544 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OOHW4K0CW7AuZUgYPvKoIABQo2U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9135EC4/8A9A83681D8911E29CE5ECE208B02CD2/OOHW4K0CW7AuZUgYPvKoIABQo2U.mft Manifest number: 3537 Signing time: Sat 28 Mar 2026 14:31:28 +0000 Manifest this update: Sat 28 Mar 2026 14:31:27 +0000 Manifest next update: Sat 04 Apr 2026 14:31:27 +0000 Files and hashes: 1: OOHW4K0CW7AuZUgYPvKoIABQo2U.crl (hash: t5EBV6b9LOqCVBIkNeBjaNdDNKAvTviK5DVXySxHldU=) 2: E89AA63C3A3411EDA5928760C4F9AE02.roa (hash: onsBo5Bz4rkJbVswoyhTU6gtfIuIlfG0ZfPWcTezyxQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9135EC4/8A9A83681D8911E29CE5ECE208B02CD2/OOHW4K0CW7AuZUgYPvKoIABQo2U.crl rsync://rpki.apnic.net/member_repository/A9135EC4/8A9A83681D8911E29CE5ECE208B02CD2/OOHW4K0CW7AuZUgYPvKoIABQo2U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OOHW4K0CW7AuZUgYPvKoIABQo2U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 Apr 2026 14:31:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13636 (0x3544) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9135EC4, serialNumber=38E1D6E0AD025BB02E6548183EF2A8200050A365 Validity Not Before: Mar 28 14:31:27 2026 GMT Not After : Apr 4 14:31:27 2026 GMT Subject: CN=69c7e640-b8ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:45:45:02:23:71:17:22:8a:79:2a:e2:bc:d0: 00:e1:09:dd:10:5f:8c:38:38:d6:d3:51:a0:b3:cd: fb:cd:cc:c6:6c:df:96:6d:8a:c5:f2:d1:08:fc:45: 47:a9:2a:f3:a8:dd:5c:75:ef:81:9e:92:8d:16:c4: 1e:a7:c7:3c:d5:62:22:a7:10:9b:a0:9c:d8:b0:f4: 48:da:68:cf:19:b0:6c:0c:85:d0:a8:84:40:a7:72: 0e:03:a5:5b:47:9e:6a:8f:41:98:18:6d:2a:5c:7c: 97:ec:6d:fa:19:6a:97:4a:09:13:41:eb:fd:cb:2b: 78:4a:38:c5:34:d6:0e:db:09:8a:c1:6b:64:7c:84: 43:ca:81:d1:04:1e:d1:07:40:d8:3f:75:4d:83:03: bb:d7:d1:2b:12:96:d6:41:fa:6c:fd:35:52:00:68: b4:c0:dd:8a:95:7b:58:0c:26:4c:67:e6:5b:13:09: a7:bb:76:b6:4e:c3:26:12:20:ce:1e:f2:dd:81:93: 1a:d8:be:f0:62:68:56:47:71:4d:ff:99:eb:4f:2d: 50:16:a6:e3:26:a5:a2:c3:ad:96:e3:d2:da:43:23: 4f:eb:cb:dc:57:d1:24:e6:ec:21:6f:8e:ba:19:66: 22:45:0b:8d:a9:fb:d1:b9:cb:32:e4:e2:4b:df:a7: 09:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:30:FE:99:8F:A0:71:2C:21:5F:AD:73:C7:04:F1:12:35:1E:76:58 X509v3 Authority Key Identifier: keyid:38:E1:D6:E0:AD:02:5B:B0:2E:65:48:18:3E:F2:A8:20:00:50:A3:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9135EC4/8A9A83681D8911E29CE5ECE208B02CD2/OOHW4K0CW7AuZUgYPvKoIABQo2U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OOHW4K0CW7AuZUgYPvKoIABQo2U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9135EC4/8A9A83681D8911E29CE5ECE208B02CD2/OOHW4K0CW7AuZUgYPvKoIABQo2U.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:f4:0c:60:2f:41:5a:6d:41:7b:91:a9:9b:54:30:9b:55:ac: 3f:7c:3c:b9:6b:b9:f2:ba:7c:d4:e2:38:92:31:7b:86:8f:86: 16:3d:7f:a6:b2:8b:3c:26:54:1e:eb:03:58:0c:8f:c7:ad:b1: 46:de:e5:e3:a9:26:73:03:e4:04:45:b1:8f:3e:1a:35:30:5a: fc:a3:80:74:37:93:7f:cc:29:bb:24:90:fa:da:14:aa:65:08: 54:4f:30:35:66:f5:20:22:e2:35:02:7a:50:8d:d7:01:fc:ab: 89:b2:7b:18:bd:44:1e:1c:82:22:50:74:61:dd:fd:c9:f7:74: 62:00:3e:f1:f6:3e:8f:e2:8b:5f:eb:97:a5:5a:0a:80:9d:ca: 6c:ea:1e:38:fd:33:95:98:38:c2:19:a5:50:3f:17:69:5c:67: 71:3d:4e:7c:86:e8:a6:b0:7d:a9:3a:dc:b1:09:f8:a7:09:ef: 7e:13:06:cc:23:35:f4:88:66:ef:88:6c:40:22:a7:8b:fb:4f: 9c:1f:d6:f2:ff:23:c7:76:1d:35:31:fb:e6:60:fb:b7:4b:d0: f4:e8:31:10:71:7c:7e:37:df:85:4f:28:ca:2b:38:6a:54:4c: 11:90:7e:27:70:d0:2f:da:b6:df:20:af:8d:e6:51:bd:fe:6c: c9:6e:3d:a8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNUQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzVFQzQxMTAvBgNVBAUTKDM4RTFENkUwQUQwMjVCQjAyRTY1NDgxODNFRjJBODIw MDA1MEEzNjUwHhcNMjYwMzI4MTQzMTI3WhcNMjYwNDA0MTQzMTI3WjAYMRYwFAYD VQQDEw02OWM3ZTY0MC1iOGNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAskVFAiNxFyKKeSrivNAA4QndEF+MODjW01Ggs837zczGbN+WbYrF8tEI/EVH qSrzqN1cde+BnpKNFsQep8c81WIipxCboJzYsPRI2mjPGbBsDIXQqIRAp3IOA6Vb R55qj0GYGG0qXHyX7G36GWqXSgkTQev9yyt4SjjFNNYO2wmKwWtkfIRDyoHRBB7R B0DYP3VNgwO719ErEpbWQfps/TVSAGi0wN2KlXtYDCZMZ+ZbEwmnu3a2TsMmEiDO HvLdgZMa2L7wYmhWR3FN/5nrTy1QFqbjJqWiw62W49LaQyNP68vcV9Ek5uwhb466 GWYiRQuNqfvRucsy5OJL36cJ3QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEIw/pmP oHEsIV+tc8cE8RI1HnZYMB8GA1UdIwQYMBaAFDjh1uCtAluwLmVIGD7yqCAAUKNl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNUVDNC84QTlBODM2ODFE ODkxMUUyOUNFNUVDRTIwOEIwMkNEMi9PT0hXNEswQ1c3QXVaVWdZUHZLb0lBQlFv MlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09PSFc0SzBDVzdBdVpVZ1lQdktvSUFCUW8yVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NUVDNC84QTlBODM2ODFEODkxMUUyOUNFNUVDRTIwOEIwMkNEMi9PT0hXNEswQ1c3 QXVaVWdZUHZLb0lBQlFvMlUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAgvQMYC9BWm1Be5Gpm1Qwm1WsP3w8uWu58rp81OI4kjF7ho+GFj1/prKLPCZU HusDWAyPx62xRt7l46kmcwPkBEWxjz4aNTBa/KOAdDeTf8wpuySQ+toUqmUIVE8w NWb1ICLiNQJ6UI3XAfyribJ7GL1EHhyCIlB0Yd39yfd0YgA+8fY+j+KLX+uXpVoK gJ3KbOoeOP0zlZg4whmlUD8XaVxncT1OfIboprB9qTrcsQn4pwnvfhMGzCM19Ihm 74hsQCKni/tPnB/W8v8jx3YdNTH75mD7t0vQ9OgxEHF8fjffhU8oyis4alRMEZB+ J3DQL9q23yCvjeZRvf5syW49qA== -----END CERTIFICATE-----Generated at Mon Mar 30 10:41:43 2026 by rpki-client