$ rpki-client -vvf rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/OtjA2kteE0OjhFRLZEARiFJg_wc.mft File: OtjA2kteE0OjhFRLZEARiFJg_wc.mft (raw, json) Hash identifier: 2K95yciV/FgHC5ultLeyxWzhVjirnyryIPsLGVrKrKY= Subject key identifier: AC:D1:54:6F:56:F6:E5:32:59:DB:42:92:E8:50:71:94:93:14:5A:9D Authority key identifier: 3A:D8:C0:DA:4B:5E:13:43:A3:84:54:4B:64:40:11:88:52:60:FF:07 Certificate issuer: /CN=A916022F/serialNumber=3AD8C0DA4B5E1343A384544B644011885260FF07 Certificate serial: 13BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OtjA2kteE0OjhFRLZEARiFJg_wc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/OtjA2kteE0OjhFRLZEARiFJg_wc.mft Manifest number: 250D Signing time: Tue 24 Mar 2026 16:51:00 +0000 Manifest this update: Tue 24 Mar 2026 16:51:00 +0000 Manifest next update: Tue 31 Mar 2026 16:51:00 +0000 Files and hashes: 1: OtjA2kteE0OjhFRLZEARiFJg_wc.crl (hash: LBir4uyp5jZ/C1WJ2Wy8i1CwhloXwecVOalCbYgO018=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/OtjA2kteE0OjhFRLZEARiFJg_wc.crl rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/OtjA2kteE0OjhFRLZEARiFJg_wc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OtjA2kteE0OjhFRLZEARiFJg_wc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 16:50:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5050 (0x13ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916022F, serialNumber=3AD8C0DA4B5E1343A384544B644011885260FF07 Validity Not Before: Mar 24 16:51:00 2026 GMT Not After : Mar 31 16:51:00 2026 GMT Subject: CN=69c2c0f4-b1af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:c8:05:a2:50:95:65:55:17:73:18:28:57:24: 74:3e:2b:6c:e6:d8:b2:53:7f:18:2e:13:9a:8d:07: 4f:0c:09:1f:99:7e:16:95:12:ff:a5:28:29:64:4c: 9a:80:11:ba:7c:84:7e:95:e2:d6:71:fa:0e:98:a2: 81:85:f4:5d:7d:a6:c9:94:c0:af:f3:c1:ac:0e:d3: 04:45:fb:99:90:af:39:57:9d:53:ff:7f:f9:37:63: 48:66:c9:d2:c4:80:e6:8c:af:bf:17:1f:4e:ce:e8: bc:64:bd:dd:1b:9d:79:d9:cc:42:96:29:29:9e:d4: aa:be:a6:12:9a:b5:cf:37:62:8a:64:c7:fe:0a:df: ce:d9:d3:fd:29:89:fd:c5:2a:7c:f8:a9:e1:ab:19: 05:fc:6b:ab:06:9d:cc:e1:67:5d:4a:34:78:3f:81: 01:36:7d:2a:24:5f:a7:7c:5f:88:43:b0:84:1c:c7: d9:81:8a:f9:f2:44:00:11:c6:79:b9:4a:99:69:7b: b3:57:ed:d3:2e:bb:3d:b3:82:b8:e0:80:1b:b3:6a: 26:64:a7:54:62:5b:cc:82:a5:a3:a5:99:be:b4:cc: 50:66:b9:9e:e6:90:f0:3f:f6:23:2f:d9:8f:17:f4: aa:41:7b:b6:b5:0b:28:3f:4f:92:1e:76:98:b7:99: d1:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:D1:54:6F:56:F6:E5:32:59:DB:42:92:E8:50:71:94:93:14:5A:9D X509v3 Authority Key Identifier: keyid:3A:D8:C0:DA:4B:5E:13:43:A3:84:54:4B:64:40:11:88:52:60:FF:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/OtjA2kteE0OjhFRLZEARiFJg_wc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OtjA2kteE0OjhFRLZEARiFJg_wc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/OtjA2kteE0OjhFRLZEARiFJg_wc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption e4:04:75:1c:f3:47:20:20:ac:a5:ae:31:49:7f:32:43:42:c0: 9f:21:e1:a0:46:f8:16:00:30:a9:e2:e6:7a:8a:9e:5f:49:4e: c4:64:13:07:c2:35:af:a3:06:d7:7f:13:89:3c:69:e5:67:0e: f6:bc:37:a3:86:d8:e0:8d:19:56:b4:99:05:bc:51:d0:19:45: 43:d8:a9:91:d6:f9:d1:6e:4b:2c:a9:17:31:b6:a8:9b:3c:65: 27:5b:f8:4b:4a:1c:ce:e3:76:41:6c:f8:c4:08:4d:0c:db:5d: 38:88:27:6b:2b:54:3f:ac:f4:a2:a5:3f:59:77:51:f6:2d:2e: 82:dd:60:ad:73:2d:f8:38:cb:dd:09:77:e5:9e:bc:54:3a:9f: 9e:8f:1c:68:c7:89:c8:c5:09:f1:6a:1d:8a:5c:55:8a:1d:93: a1:37:9c:94:b5:63:50:be:58:bb:40:90:f1:eb:da:fb:4b:7e: 15:d8:4f:52:84:01:ee:dd:9f:ad:65:1d:23:d8:db:9b:ad:c1: e6:a2:e2:8e:3a:3f:1d:0e:08:e2:1c:87:9c:66:cc:34:e0:76: 47:a7:da:7f:6c:f4:78:25:18:7c:d8:0f:07:90:b9:fe:3b:30: d4:b7:c3:8f:a7:8c:d5:39:ec:2c:d3:16:b1:1a:fa:95:ab:26: 89:d8:2b:63 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICE7owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjAyMkYxMTAvBgNVBAUTKDNBRDhDMERBNEI1RTEzNDNBMzg0NTQ0QjY0NDAxMTg4 NTI2MEZGMDcwHhcNMjYwMzI0MTY1MTAwWhcNMjYwMzMxMTY1MTAwWjAYMRYwFAYD VQQDEw02OWMyYzBmNC1iMWFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3MgFolCVZVUXcxgoVyR0Pits5tiyU38YLhOajQdPDAkfmX4WlRL/pSgpZEya gBG6fIR+leLWcfoOmKKBhfRdfabJlMCv88GsDtMERfuZkK85V51T/3/5N2NIZsnS xIDmjK+/Fx9Ozui8ZL3dG5152cxClikpntSqvqYSmrXPN2KKZMf+Ct/O2dP9KYn9 xSp8+KnhqxkF/GurBp3M4WddSjR4P4EBNn0qJF+nfF+IQ7CEHMfZgYr58kQAEcZ5 uUqZaXuzV+3TLrs9s4K44IAbs2omZKdUYlvMgqWjpZm+tMxQZrme5pDwP/YjL9mP F/SqQXu2tQsoP0+SHnaYt5nRRQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKzRVG9W 9uUyWdtCkuhQcZSTFFqdMB8GA1UdIwQYMBaAFDrYwNpLXhNDo4RUS2RAEYhSYP8H MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDIyRi85RUM3QUZCNEFB N0QxMUU4ODYxNDQ1MjRDNEY5QUUwMi9PdGpBMmt0ZUUwT2poRlJMWkVBUmlGSmdf d2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL090akEya3RlRTBPamhGUkxaRUFSaUZKZ193Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDIyRi85RUM3QUZCNEFBN0QxMUU4ODYxNDQ1MjRDNEY5QUUwMi9PdGpBMmt0ZUUw T2poRlJMWkVBUmlGSmdfd2MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEA5AR1HPNHICCspa4xSX8yQ0LAnyHhoEb4FgAwqeLmeoqeX0lOxGQTB8I1r6MG 138TiTxp5WcO9rw3o4bY4I0ZVrSZBbxR0BlFQ9ipkdb50W5LLKkXMbaomzxlJ1v4 S0oczuN2QWz4xAhNDNtdOIgnaytUP6z0oqU/WXdR9i0ugt1grXMt+DjL3Ql35Z68 VDqfno8caMeJyMUJ8WodilxVih2ToTeclLVjUL5Yu0CQ8eva+0t+FdhPUoQB7t2f rWUdI9jbm63B5qLijjo/HQ4I4hyHnGbMNOB2R6faf2z0eCUYfNgPB5C5/jsw1LfD j6eM1TnsLNMWsRr6lasmidgrYw== -----END CERTIFICATE-----Generated at Thu Mar 26 11:58:23 2026 by rpki-client