$ rpki-client -vvf rpki.apnic.net/member_repository/A91435F3/9B5DB5EA50A811EEB6DE093FC4F9AE02/khO1BHpA8jx8YASA5tqnoc9_oug.mft File: khO1BHpA8jx8YASA5tqnoc9_oug.mft (raw, json) Hash identifier: ZOlcTyghq93BY0rwwDykXK9yIEynnFgNu+7s4ftb5/k= Subject key identifier: 29:E7:E5:2F:FC:E6:FE:B4:8C:26:1A:D6:A3:58:6B:A5:59:FE:BC:5B Authority key identifier: 92:13:B5:04:7A:40:F2:3C:7C:60:04:80:E6:DA:A7:A1:CF:7F:A2:E8 Certificate issuer: /CN=A91435F3/serialNumber=9213B5047A40F23C7C600480E6DAA7A1CF7FA2E8 Certificate serial: 01E0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khO1BHpA8jx8YASA5tqnoc9_oug.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91435F3/9B5DB5EA50A811EEB6DE093FC4F9AE02/khO1BHpA8jx8YASA5tqnoc9_oug.mft Manifest number: 01DB Signing time: Wed 25 Mar 2026 02:48:09 +0000 Manifest this update: Wed 25 Mar 2026 02:48:08 +0000 Manifest next update: Wed 01 Apr 2026 02:48:08 +0000 Files and hashes: 1: khO1BHpA8jx8YASA5tqnoc9_oug.crl (hash: UWpmpZmN6EFv+O6uJ7+EsT8prolhoP0ZPwfaKVtIkgg=) 2: 4E18682450A911EEA39AAE41C4F9AE02.roa (hash: S78MAtCzOFeat+lwvfwXDyyxLQzCa+hqVuKnzodQy+E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91435F3/9B5DB5EA50A811EEB6DE093FC4F9AE02/khO1BHpA8jx8YASA5tqnoc9_oug.crl rsync://rpki.apnic.net/member_repository/A91435F3/9B5DB5EA50A811EEB6DE093FC4F9AE02/khO1BHpA8jx8YASA5tqnoc9_oug.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khO1BHpA8jx8YASA5tqnoc9_oug.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 02:48:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 480 (0x1e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91435F3, serialNumber=9213B5047A40F23C7C600480E6DAA7A1CF7FA2E8 Validity Not Before: Mar 25 02:48:08 2026 GMT Not After : Apr 1 02:48:08 2026 GMT Subject: CN=69c34ce9-7226 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:60:37:af:8c:37:a6:34:bd:8f:81:5e:04:46: 78:e3:83:45:3f:b4:46:45:05:90:16:7f:3d:3d:43: d7:4d:47:37:eb:75:99:38:02:f2:ea:07:b6:1b:d7: c8:97:c5:6c:ec:29:d2:0e:1c:2e:38:32:d3:46:dd: 4f:f7:e5:a7:fe:d8:85:6d:44:72:30:b1:91:17:0f: 61:4b:49:0e:e5:d1:2a:7e:a5:b1:9b:90:8e:d2:2b: 19:49:0d:c6:ca:ce:ce:2a:c4:c4:86:8b:a3:6c:fa: c0:e8:36:f2:ff:ca:35:52:73:8d:f2:83:11:5f:59: c7:d3:3a:41:69:ac:ff:84:fa:7e:23:a0:95:8e:56: 50:85:07:e5:2a:87:0b:00:44:8f:71:10:23:ac:42: 41:90:a0:e3:77:8b:d3:a5:4d:ab:04:c6:37:36:b0: f7:24:94:e0:3a:32:12:9f:d9:8e:f3:2f:07:cb:09: d7:d0:94:d2:d4:a7:a3:c8:e8:ba:2d:ce:16:e4:a4: 04:ce:05:5d:43:50:8b:a4:e6:9e:05:9a:0e:32:83: 51:68:b5:69:99:da:b1:6f:2b:36:d8:06:d3:df:1a: e9:26:99:fc:86:2c:fe:51:0f:bd:e2:f3:97:bb:b7: 5a:8e:af:5f:59:10:0f:52:0c:52:4f:b7:40:f0:3a: 7f:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:E7:E5:2F:FC:E6:FE:B4:8C:26:1A:D6:A3:58:6B:A5:59:FE:BC:5B X509v3 Authority Key Identifier: keyid:92:13:B5:04:7A:40:F2:3C:7C:60:04:80:E6:DA:A7:A1:CF:7F:A2:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91435F3/9B5DB5EA50A811EEB6DE093FC4F9AE02/khO1BHpA8jx8YASA5tqnoc9_oug.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khO1BHpA8jx8YASA5tqnoc9_oug.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91435F3/9B5DB5EA50A811EEB6DE093FC4F9AE02/khO1BHpA8jx8YASA5tqnoc9_oug.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:f0:5c:a4:2f:e8:6a:14:c7:61:46:d0:0f:ce:f5:86:96:ba: c3:b1:4d:3e:a1:fa:d6:93:b5:df:33:2a:28:e9:38:1d:d6:a7: ae:cb:1e:c6:6a:98:13:53:40:cf:b1:eb:9e:50:c5:26:fe:19: 93:ac:89:b6:fd:43:3e:0c:43:8c:59:26:d6:12:57:8c:00:63: cf:53:c0:09:35:71:24:56:e7:a5:a8:88:a7:ee:3a:c8:ce:c5: 89:aa:18:5b:f6:84:89:0c:c1:21:05:8f:63:bc:0e:19:d9:b4: bd:e1:1b:34:95:24:f7:fb:9d:55:78:7c:8f:d3:0d:31:89:76: 0c:9c:81:b6:d0:f4:69:7a:5f:12:33:f6:10:e0:ff:de:00:fc: 23:5d:21:60:35:d3:ea:86:5a:fb:cb:6e:5b:a3:7f:72:3e:56: b7:14:5e:8d:55:ac:37:e7:8d:42:e6:f9:11:b1:e3:4c:f2:29: 78:cf:9d:d3:de:b3:fb:ef:4f:ab:20:cc:17:94:34:b5:57:24: 99:a8:b1:a8:41:5a:83:1a:dd:81:e9:ef:15:75:88:34:bd:8d: bf:52:db:1c:fa:5d:ed:87:e2:7d:21:34:df:ea:f9:da:a4:86: 20:17:b7:b1:f4:ac:f8:56:66:a4:84:dc:74:4a:1e:2a:c1:0c: d8:92:7e:5b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAeAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDM1RjMxMTAvBgNVBAUTKDkyMTNCNTA0N0E0MEYyM0M3QzYwMDQ4MEU2REFBN0Ex Q0Y3RkEyRTgwHhcNMjYwMzI1MDI0ODA4WhcNMjYwNDAxMDI0ODA4WjAYMRYwFAYD VQQDEw02OWMzNGNlOS03MjI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoGA3r4w3pjS9j4FeBEZ444NFP7RGRQWQFn89PUPXTUc363WZOALy6ge2G9fI l8Vs7CnSDhwuODLTRt1P9+Wn/tiFbURyMLGRFw9hS0kO5dEqfqWxm5CO0isZSQ3G ys7OKsTEhoujbPrA6Dby/8o1UnON8oMRX1nH0zpBaaz/hPp+I6CVjlZQhQflKocL AESPcRAjrEJBkKDjd4vTpU2rBMY3NrD3JJTgOjISn9mO8y8HywnX0JTS1KejyOi6 Lc4W5KQEzgVdQ1CLpOaeBZoOMoNRaLVpmdqxbys22AbT3xrpJpn8hiz+UQ+94vOX u7dajq9fWRAPUgxST7dA8Dp/QQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCnn5S/8 5v60jCYa1qNYa6VZ/rxbMB8GA1UdIwQYMBaAFJITtQR6QPI8fGAEgObap6HPf6Lo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MzVGMy85QjVEQjVFQTUw QTgxMUVFQjZERTA5M0ZDNEY5QUUwMi9raE8xQkhwQThqeDhZQVNBNXRxbm9jOV9v dWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2toTzFCSHBBOGp4OFlBU0E1dHFub2M5X291Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MzVGMy85QjVEQjVFQTUwQTgxMUVFQjZERTA5M0ZDNEY5QUUwMi9raE8xQkhwQThq eDhZQVNBNXRxbm9jOV9vdWcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAGfBcpC/oahTHYUbQD871hpa6w7FNPqH61pO13zMqKOk4HdanrssexmqYE1NA z7HrnlDFJv4Zk6yJtv1DPgxDjFkm1hJXjABjz1PACTVxJFbnpaiIp+46yM7FiaoY W/aEiQzBIQWPY7wOGdm0veEbNJUk9/udVXh8j9MNMYl2DJyBttD0aXpfEjP2EOD/ 3gD8I10hYDXT6oZa+8tuW6N/cj5WtxRejVWsN+eNQub5EbHjTPIpeM+d096z++9P qyDMF5Q0tVckmaixqEFagxrdgenvFXWINL2Nv1LbHPpd7YfifSE03+r52qSGIBe3 sfSs+FZmpITcdEoeKsEM2JJ+Ww== -----END CERTIFICATE-----Generated at Thu Mar 26 00:54:43 2026 by rpki-client