$ rpki-client -vvf rpki.apnic.net/member_repository/A91620E0/D964B482310E11EA9C3CE72FC4F9AE02/dOW7m208x_jCmoO9yEkrllnw7hc.mft File: dOW7m208x_jCmoO9yEkrllnw7hc.mft (raw, json) Hash identifier: 2PNKnuP7pak7JpHiSGWqUd0WLYZXcBAV9fsR/5w5YwU= Subject key identifier: 9D:8D:17:CE:5A:1E:AF:7D:23:6D:F7:EE:A0:D7:D3:EE:FF:F4:50:16 Authority key identifier: 74:E5:BB:9B:6D:3C:C7:F8:C2:9A:83:BD:C8:49:2B:96:59:F0:EE:17 Certificate issuer: /CN=A91620E0/serialNumber=74E5BB9B6D3CC7F8C29A83BDC8492B9659F0EE17 Certificate serial: 0FA4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dOW7m208x_jCmoO9yEkrllnw7hc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91620E0/D964B482310E11EA9C3CE72FC4F9AE02/dOW7m208x_jCmoO9yEkrllnw7hc.mft Manifest number: 0E38 Signing time: Tue 24 Mar 2026 18:40:01 +0000 Manifest this update: Tue 24 Mar 2026 18:40:01 +0000 Manifest next update: Tue 31 Mar 2026 18:40:01 +0000 Files and hashes: 1: dOW7m208x_jCmoO9yEkrllnw7hc.crl (hash: 458aoo3nX/tPTytK2g48/c0VGJ0PsR5WtPJQI2qMsYM=) 2: DA216556B3D411F090043E0CC4F9AE02.roa (hash: 46+nQ5sseQEKvp9U5PXmOvvyRH7dXSdUjuVRpu1vljA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91620E0/D964B482310E11EA9C3CE72FC4F9AE02/dOW7m208x_jCmoO9yEkrllnw7hc.crl rsync://rpki.apnic.net/member_repository/A91620E0/D964B482310E11EA9C3CE72FC4F9AE02/dOW7m208x_jCmoO9yEkrllnw7hc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dOW7m208x_jCmoO9yEkrllnw7hc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 18:40:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4004 (0xfa4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91620E0, serialNumber=74E5BB9B6D3CC7F8C29A83BDC8492B9659F0EE17 Validity Not Before: Mar 24 18:40:01 2026 GMT Not After : Mar 31 18:40:01 2026 GMT Subject: CN=69c2da81-0d29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:75:15:d1:10:ab:41:d0:4c:3f:c3:ed:6d:bb: ed:9e:c1:05:d7:ae:b9:3b:a4:b5:7a:6b:cf:68:61: d4:78:60:8a:36:24:bb:be:06:aa:c5:6e:db:9b:1b: 0e:bd:30:2e:6b:3a:65:0d:87:b1:af:75:2a:c4:9b: 59:bf:34:cb:1f:d2:77:3d:ae:42:ba:94:87:e5:d1: 58:a3:ef:86:4d:bb:e1:52:f1:7f:d0:11:f4:03:9d: fc:76:ca:19:cf:3e:8d:be:15:4a:9c:ea:3e:5e:8d: ec:fa:a6:a4:91:db:b3:93:b5:f3:96:17:0a:9f:68: 17:a4:66:a0:2b:b2:64:83:4b:bd:0a:b6:11:ba:99: 6d:fb:d3:d1:c7:09:e9:02:45:e4:22:f2:c4:ff:ac: 2e:38:fc:bd:7d:4a:e0:47:36:e3:ed:c6:e6:05:80: 82:86:dd:da:26:80:8c:b3:fb:84:c9:c1:82:91:11: 2e:5b:33:10:82:87:a8:3e:86:d1:1c:71:31:96:22: f1:5c:04:b7:5d:70:3b:a4:99:f1:60:f4:5a:5e:43: 9c:74:71:f7:33:49:e3:1c:93:08:f7:0a:73:09:2b: 1b:97:06:61:14:0e:7d:67:ee:5d:3d:a4:07:8e:d3: ee:cb:1a:b3:3e:c0:c2:b2:26:7b:b0:9f:8f:6d:ec: cf:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:8D:17:CE:5A:1E:AF:7D:23:6D:F7:EE:A0:D7:D3:EE:FF:F4:50:16 X509v3 Authority Key Identifier: keyid:74:E5:BB:9B:6D:3C:C7:F8:C2:9A:83:BD:C8:49:2B:96:59:F0:EE:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91620E0/D964B482310E11EA9C3CE72FC4F9AE02/dOW7m208x_jCmoO9yEkrllnw7hc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dOW7m208x_jCmoO9yEkrllnw7hc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91620E0/D964B482310E11EA9C3CE72FC4F9AE02/dOW7m208x_jCmoO9yEkrllnw7hc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:72:8b:ca:45:b3:e1:64:b1:60:e9:7b:30:9c:6a:f7:3b:98: 1f:43:8e:f4:34:23:6b:c7:d3:55:bc:d5:0a:e9:b6:99:db:e2: f0:9b:c1:c6:50:45:19:96:ed:db:d9:8a:f0:8e:a3:cc:ec:9b: 73:f3:ba:d7:45:d3:85:0d:32:fe:a8:ac:aa:75:56:da:55:46: 14:d5:45:61:73:ee:47:53:3c:ad:cf:56:f1:a5:a7:07:a2:97: 1b:c6:2e:ab:b0:4c:de:58:71:08:81:01:8b:94:81:dc:b0:93: 29:b2:0a:5f:37:2b:a3:7b:0b:9a:5d:a3:c0:1f:94:47:59:c3: 28:31:d5:48:1c:dd:3c:00:d3:a2:62:6d:5f:2c:bc:97:30:ac: af:ab:1e:c4:5f:36:7b:ad:bb:7c:d3:74:f6:6e:1b:f3:ef:f7: 96:a0:d6:5a:ac:46:4c:39:ab:7c:73:bc:d7:ec:06:bd:88:97: 9d:f8:33:e0:7d:3a:ba:35:60:3d:d1:e0:2b:51:c3:fb:46:0d: 11:9b:e0:04:8b:69:c9:ed:ed:1c:0f:68:c7:29:b1:fc:3b:83: 41:e4:8a:65:fb:f1:c6:d9:af:da:93:4f:9a:61:be:a3:8b:2b: 8c:54:3d:ba:09:3f:1d:1d:84:e0:ea:10:af:11:a8:5a:b0:74: 29:3e:b2:f1 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICD6QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjIwRTAxMTAvBgNVBAUTKDc0RTVCQjlCNkQzQ0M3RjhDMjlBODNCREM4NDkyQjk2 NTlGMEVFMTcwHhcNMjYwMzI0MTg0MDAxWhcNMjYwMzMxMTg0MDAxWjAYMRYwFAYD VQQDEw02OWMyZGE4MS0wZDI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApHUV0RCrQdBMP8PtbbvtnsEF1665O6S1emvPaGHUeGCKNiS7vgaqxW7bmxsO vTAuazplDYexr3UqxJtZvzTLH9J3Pa5CupSH5dFYo++GTbvhUvF/0BH0A538dsoZ zz6NvhVKnOo+Xo3s+qakkduzk7XzlhcKn2gXpGagK7Jkg0u9CrYRuplt+9PRxwnp AkXkIvLE/6wuOPy9fUrgRzbj7cbmBYCCht3aJoCMs/uEycGCkREuWzMQgoeoPobR HHExliLxXAS3XXA7pJnxYPRaXkOcdHH3M0njHJMI9wpzCSsblwZhFA59Z+5dPaQH jtPuyxqzPsDCsiZ7sJ+PbezPTwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJ2NF85a Hq99I2337qDX0+7/9FAWMB8GA1UdIwQYMBaAFHTlu5ttPMf4wpqDvchJK5ZZ8O4X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MjBFMC9EOTY0QjQ4MjMx MEUxMUVBOUMzQ0U3MkZDNEY5QUUwMi9kT1c3bTIwOHhfakNtb085eUVrcmxsbnc3 aGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2RPVzdtMjA4eF9qQ21vTzl5RWtybGxudzdoYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MjBFMC9EOTY0QjQ4MjMxMEUxMUVBOUMzQ0U3MkZDNEY5QUUwMi9kT1c3bTIwOHhf akNtb085eUVrcmxsbnc3aGMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAoXKLykWz4WSxYOl7MJxq9zuYH0OO9DQja8fTVbzVCum2mdvi8JvBxlBFGZbt 29mK8I6jzOybc/O610XThQ0y/qisqnVW2lVGFNVFYXPuR1M8rc9W8aWnB6KXG8Yu q7BM3lhxCIEBi5SB3LCTKbIKXzcro3sLml2jwB+UR1nDKDHVSBzdPADTomJtXyy8 lzCsr6sexF82e627fNN09m4b8+/3lqDWWqxGTDmrfHO81+wGvYiXnfgz4H06ujVg PdHgK1HD+0YNEZvgBItpye3tHA9oxymx/DuDQeSKZfvxxtmv2pNPmmG+o4srjFQ9 ugk/HR2E4OoQrxGoWrB0KT6y8Q== -----END CERTIFICATE-----Generated at Thu Mar 26 15:07:48 2026 by rpki-client