$ rpki-client -vvf rpki.apnic.net/member_repository/A91597A7/01022782BA3811F093408F6BC4F9AE02/oL8weU5q5J7AaNUDjPmv9UNdHdI.mft File: oL8weU5q5J7AaNUDjPmv9UNdHdI.mft (raw, json) Hash identifier: U47nhaB2jMf4qRjhCM6wZC8OKKl67QwE4pfj0W1WcwA= Subject key identifier: 4A:D5:AE:C3:BA:A6:85:F7:03:CE:90:11:27:51:69:CE:28:CA:96:0B Authority key identifier: A0:BF:30:79:4E:6A:E4:9E:C0:68:D5:03:8C:F9:AF:F5:43:5D:1D:D2 Certificate issuer: /CN=A91597A7/serialNumber=A0BF30794E6AE49EC068D5038CF9AFF5435D1DD2 Certificate serial: 50 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oL8weU5q5J7AaNUDjPmv9UNdHdI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91597A7/01022782BA3811F093408F6BC4F9AE02/oL8weU5q5J7AaNUDjPmv9UNdHdI.mft Manifest number: 4D Signing time: Wed 25 Mar 2026 07:28:52 +0000 Manifest this update: Wed 25 Mar 2026 07:28:51 +0000 Manifest next update: Wed 01 Apr 2026 07:28:51 +0000 Files and hashes: 1: oL8weU5q5J7AaNUDjPmv9UNdHdI.crl (hash: zQd8+Z57m0OLXOo38Ow0vqG+RIm/GzeZUq9LlO4PIDQ=) 2: 6DD11538BA6711F0A5E1473EC4F9AE02.roa (hash: aZcuk92cPHBLPT7kL0kkLxHikI+2JffenZZL+WJEXRc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91597A7/01022782BA3811F093408F6BC4F9AE02/oL8weU5q5J7AaNUDjPmv9UNdHdI.crl rsync://rpki.apnic.net/member_repository/A91597A7/01022782BA3811F093408F6BC4F9AE02/oL8weU5q5J7AaNUDjPmv9UNdHdI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oL8weU5q5J7AaNUDjPmv9UNdHdI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 07:28:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 80 (0x50) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91597A7, serialNumber=A0BF30794E6AE49EC068D5038CF9AFF5435D1DD2 Validity Not Before: Mar 25 07:28:51 2026 GMT Not After : Apr 1 07:28:51 2026 GMT Subject: CN=69c38eb4-479a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:cb:4b:da:9e:0e:be:ab:21:d2:68:1c:1c:5a: 46:14:01:f2:03:60:17:5c:70:b4:56:56:19:f2:97: 45:b8:cb:1a:84:12:89:6e:e7:da:85:62:3e:27:75: 92:67:2b:c1:db:5f:2e:61:c8:9f:dc:53:07:ee:6d: c6:67:e0:0b:06:27:16:e9:63:df:4a:0f:33:d7:0c: e4:25:58:34:06:04:f8:88:26:b7:44:21:27:c6:ba: ae:b8:63:58:8c:71:19:3d:51:69:c1:73:1c:39:19: bc:65:8b:da:df:a4:a1:e3:04:23:b5:80:71:9a:e5: 01:23:bf:ba:28:71:a7:91:62:f9:94:53:d1:87:72: a9:a7:da:4b:43:b0:bb:c0:65:ca:1d:f1:8e:ba:00: ca:17:d4:ed:12:60:f5:e9:b1:61:33:f9:43:4c:62: db:67:83:52:48:24:dc:34:84:a9:4b:94:37:a4:da: b7:f1:46:51:d7:84:70:0f:8a:e8:59:43:27:17:b7: 27:13:bf:be:66:c7:b8:bd:3c:fb:54:21:4c:82:54: 57:c5:90:55:38:fd:4c:2f:9c:cd:67:e4:be:84:8b: ea:f8:9e:ac:36:83:33:d7:b9:34:f1:b3:4b:02:b7: e3:0a:e1:a2:09:c7:f9:e5:ef:7d:05:85:92:dd:46: 36:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:D5:AE:C3:BA:A6:85:F7:03:CE:90:11:27:51:69:CE:28:CA:96:0B X509v3 Authority Key Identifier: keyid:A0:BF:30:79:4E:6A:E4:9E:C0:68:D5:03:8C:F9:AF:F5:43:5D:1D:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91597A7/01022782BA3811F093408F6BC4F9AE02/oL8weU5q5J7AaNUDjPmv9UNdHdI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oL8weU5q5J7AaNUDjPmv9UNdHdI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91597A7/01022782BA3811F093408F6BC4F9AE02/oL8weU5q5J7AaNUDjPmv9UNdHdI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:f6:5a:e8:a3:0a:b0:7b:29:b0:c9:46:c9:0f:f7:81:3c:59: 19:ed:8f:42:d9:d0:61:51:69:95:74:fe:96:e2:63:b0:ba:6f: 25:ce:ea:d6:50:5a:aa:a2:f9:3c:2c:de:d0:d7:91:36:25:b6: b4:e9:47:3b:da:77:b5:f3:e2:26:a4:20:5d:bd:24:61:57:fa: 0e:74:64:71:a9:23:06:5c:17:8c:f9:8c:14:7c:34:99:64:b5: d3:08:9b:17:83:6a:cf:f4:de:9f:51:ab:42:14:a0:4e:27:ef: 9d:69:88:ad:7c:fe:90:54:0d:7a:13:ca:dc:77:42:42:76:a8: 6d:3e:ca:46:8e:35:91:88:a2:40:05:72:a6:36:55:b9:c2:86: e0:50:a6:d6:ba:45:5e:aa:33:86:55:7d:dd:17:d3:ab:f7:7b: 13:cb:8b:6a:13:52:08:4f:09:ad:03:24:55:43:b6:27:4c:b8: 2e:f6:fe:6b:96:60:de:96:af:30:6c:03:08:0f:f3:1c:73:05: 93:1f:53:30:b1:84:a1:f1:4a:42:11:98:62:6a:5b:4f:1a:8a: 7b:80:ce:db:99:2e:15:65:04:d0:b7:5a:89:e2:47:1c:35:2d: 24:6a:25:8a:59:30:d3:07:0d:3f:80:7a:3c:88:ef:fc:f9:9e: 52:4e:a4:b8 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBUDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 OTdBNzExMC8GA1UEBRMoQTBCRjMwNzk0RTZBRTQ5RUMwNjhENTAzOENGOUFGRjU0 MzVEMUREMjAeFw0yNjAzMjUwNzI4NTFaFw0yNjA0MDEwNzI4NTFaMBgxFjAUBgNV BAMTDTY5YzM4ZWI0LTQ3OWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCHy0vang6+qyHSaBwcWkYUAfIDYBdccLRWVhnyl0W4yxqEEolu59qFYj4ndZJn K8HbXy5hyJ/cUwfubcZn4AsGJxbpY99KDzPXDOQlWDQGBPiIJrdEISfGuq64Y1iM cRk9UWnBcxw5Gbxli9rfpKHjBCO1gHGa5QEjv7oocaeRYvmUU9GHcqmn2ktDsLvA Zcod8Y66AMoX1O0SYPXpsWEz+UNMYttng1JIJNw0hKlLlDek2rfxRlHXhHAPiuhZ QycXtycTv75mx7i9PPtUIUyCVFfFkFU4/UwvnM1n5L6Ei+r4nqw2gzPXuTTxs0sC t+MK4aIJx/nl730FhZLdRjYJAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUStWuw7qm hfcDzpARJ1FpzijKlgswHwYDVR0jBBgwFoAUoL8weU5q5J7AaNUDjPmv9UNdHdIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU5N0E3LzAxMDIyNzgyQkEz ODExRjA5MzQwOEY2QkM0RjlBRTAyL29MOHdlVTVxNUo3QWFOVURqUG12OVVOZEhk SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvb0w4d2VVNXE1SjdBYU5VRGpQbXY5VU5kSGRJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU5 N0E3LzAxMDIyNzgyQkEzODExRjA5MzQwOEY2QkM0RjlBRTAyL29MOHdlVTVxNUo3 QWFOVURqUG12OVVOZEhkSS5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQBD9lroowqweymwyUbJD/eBPFkZ7Y9C2dBhUWmVdP6W4mOwum8lzurWUFqqovk8 LN7Q15E2Jba06Uc72ne18+ImpCBdvSRhV/oOdGRxqSMGXBeM+YwUfDSZZLXTCJsX g2rP9N6fUatCFKBOJ++daYitfP6QVA16E8rcd0JCdqhtPspGjjWRiKJABXKmNlW5 wobgUKbWukVeqjOGVX3dF9Or93sTy4tqE1IITwmtAyRVQ7YnTLgu9v5rlmDelq8w bAMID/MccwWTH1MwsYSh8UpCEZhialtPGop7gM7bmS4VZQTQt1qJ4kccNS0kaiWK WTDTBw0/gHo8iO/8+Z5STqS4 -----END CERTIFICATE-----Generated at Thu Mar 26 16:00:04 2026 by rpki-client