$ rpki-client -vvf rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.mft File: OxaIpfe3JKr754IKLGPZey6o5SI.mft (raw, json) Hash identifier: SxC68Vqkq7iT8Gs9g83zR2iflLLqhh7jCpwQRs6d0RA= Subject key identifier: 26:8C:26:0B:86:BC:99:1F:70:21:25:52:B1:4C:3E:4E:A4:5B:BE:B1 Authority key identifier: 3B:16:88:A5:F7:B7:24:AA:FB:E7:82:0A:2C:63:D9:7B:2E:A8:E5:22 Certificate issuer: /CN=A91772FA/serialNumber=3B1688A5F7B724AAFBE7820A2C63D97B2EA8E522 Certificate serial: 03BF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OxaIpfe3JKr754IKLGPZey6o5SI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.mft Manifest number: 03B5 Signing time: Wed 25 Mar 2026 00:19:51 +0000 Manifest this update: Wed 25 Mar 2026 00:19:50 +0000 Manifest next update: Wed 01 Apr 2026 00:19:50 +0000 Files and hashes: 1: OxaIpfe3JKr754IKLGPZey6o5SI.crl (hash: A7Qy6sMq6ZH/fungIkPy768UXatRou67MtCA2JFdWbc=) 2: 2D613294CD7611EC83259862C4F9AE02.roa (hash: 6eoyUSOvVZ6K062G+XqAjy4oqU5ot0onLxElkewTe48=) 3: EF8CB49CD78F11EC91680D49C4F9AE02.roa (hash: M2pvQ304fe+2dKpg+pZivkjVtCyNRoxTwvcWntgc488=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.crl rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OxaIpfe3JKr754IKLGPZey6o5SI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 00:19:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 959 (0x3bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91772FA, serialNumber=3B1688A5F7B724AAFBE7820A2C63D97B2EA8E522 Validity Not Before: Mar 25 00:19:50 2026 GMT Not After : Apr 1 00:19:50 2026 GMT Subject: CN=69c32a26-4cfa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:18:8e:3b:ac:6b:cc:0f:53:e2:4b:5f:d7:fb: ee:8d:15:88:80:02:be:65:21:09:9d:9d:7e:f7:f1: de:ac:a7:0b:a9:8a:27:35:64:53:3e:8f:19:6b:ae: 27:91:5f:c5:8f:4e:ca:de:c2:dc:c9:bf:4d:92:f5: 99:9d:ad:c6:5e:3c:4a:90:00:2e:fb:30:59:41:3c: 85:8c:57:02:83:d7:2c:57:d5:3c:03:47:33:f6:d4: 81:67:46:97:9c:e4:a2:c4:86:e1:0d:99:ac:3b:6d: 26:4d:8b:a5:92:ac:85:d5:13:e9:43:d4:40:b0:9e: a9:1b:c3:2d:ab:cb:a2:53:e9:16:30:a8:e4:08:72: ca:04:e5:2b:25:b6:7c:38:63:30:92:74:1e:01:91: 15:ea:99:ab:84:e7:65:33:3b:a9:3b:b9:65:af:fa: 76:6c:20:52:ce:a5:3f:e0:8f:e1:c8:52:20:48:ce: 9e:99:bd:d9:5a:d0:73:53:44:d1:b0:de:30:dc:84: 72:b2:42:b3:e0:3c:1b:7b:3c:30:ee:1e:70:c1:8e: 8c:a1:9e:02:7e:6a:fb:d4:ed:15:93:00:63:23:28: cf:49:8a:9a:86:01:0a:52:e6:6f:87:d5:64:15:5e: 4a:74:fd:58:c0:7b:88:43:86:75:a1:27:75:58:be: 0c:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:8C:26:0B:86:BC:99:1F:70:21:25:52:B1:4C:3E:4E:A4:5B:BE:B1 X509v3 Authority Key Identifier: keyid:3B:16:88:A5:F7:B7:24:AA:FB:E7:82:0A:2C:63:D9:7B:2E:A8:E5:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OxaIpfe3JKr754IKLGPZey6o5SI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:e4:00:f4:29:87:99:89:f4:bf:2f:0d:f4:a8:68:f4:e6:5f: b9:f6:d5:ad:ff:f8:34:08:a0:29:d7:fd:f7:2b:21:60:62:24: 53:fb:6a:9b:b5:d5:8f:d2:9a:46:81:09:4f:85:6d:65:d1:2a: fb:49:6f:96:92:f4:49:7c:ea:1b:f9:d9:01:2b:6f:42:6e:c5: 94:0e:d5:e9:17:26:0a:d2:79:3b:22:2e:53:d8:bb:14:e3:61: f5:b3:87:06:bc:69:b5:67:fa:6d:cb:9f:6b:0d:75:d0:25:53: 4c:a3:59:56:51:60:5f:b2:f7:bf:88:aa:e7:5c:7a:83:bd:b6: d6:60:ec:50:da:66:dd:00:cb:67:d9:51:be:0c:d5:14:cf:56: d6:8c:8d:8e:48:2f:89:f7:9e:89:fd:38:a7:81:bf:c5:57:cc: 05:c9:fa:4a:35:01:8f:9c:6b:e8:e0:b2:14:2a:ed:13:47:87: bc:85:d4:8a:1f:16:99:84:c8:35:c6:c0:24:24:b3:5f:e5:e0: 27:2f:11:a6:c0:77:3a:22:79:fb:1f:8e:fb:e3:39:60:bc:47: a8:96:5b:1e:bb:85:a3:9e:8e:f6:5e:ce:21:42:fa:8b:00:bd: 3c:f0:ab:92:c2:7f:ba:3e:bf:be:4e:58:ad:09:b8:3d:18:d3: 31:48:8b:7a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA78wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzcyRkExMTAvBgNVBAUTKDNCMTY4OEE1RjdCNzI0QUFGQkU3ODIwQTJDNjNEOTdC MkVBOEU1MjIwHhcNMjYwMzI1MDAxOTUwWhcNMjYwNDAxMDAxOTUwWjAYMRYwFAYD VQQDEw02OWMzMmEyNi00Y2ZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwhiOO6xrzA9T4ktf1/vujRWIgAK+ZSEJnZ1+9/HerKcLqYonNWRTPo8Za64n kV/Fj07K3sLcyb9NkvWZna3GXjxKkAAu+zBZQTyFjFcCg9csV9U8A0cz9tSBZ0aX nOSixIbhDZmsO20mTYulkqyF1RPpQ9RAsJ6pG8Mtq8uiU+kWMKjkCHLKBOUrJbZ8 OGMwknQeAZEV6pmrhOdlMzupO7llr/p2bCBSzqU/4I/hyFIgSM6emb3ZWtBzU0TR sN4w3IRyskKz4Dwbezww7h5wwY6MoZ4Cfmr71O0VkwBjIyjPSYqahgEKUuZvh9Vk FV5KdP1YwHuIQ4Z1oSd1WL4MwQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCaMJguG vJkfcCElUrFMPk6kW76xMB8GA1UdIwQYMBaAFDsWiKX3tySq++eCCixj2XsuqOUi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NzJGQS9ENzI0NDU2MkNE NzMxMUVDQTBBQTgwNjFDNEY5QUUwMi9PeGFJcGZlM0pLcjc1NElLTEdQWmV5Nm81 U0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL094YUlwZmUzSktyNzU0SUtMR1BaZXk2bzVTSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NzJGQS9ENzI0NDU2MkNENzMxMUVDQTBBQTgwNjFDNEY5QUUwMi9PeGFJcGZlM0pL cjc1NElLTEdQWmV5Nm81U0kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAjOQA9CmHmYn0vy8N9Kho9OZfufbVrf/4NAigKdf99yshYGIkU/tqm7XVj9Ka RoEJT4VtZdEq+0lvlpL0SXzqG/nZAStvQm7FlA7V6RcmCtJ5OyIuU9i7FONh9bOH BrxptWf6bcufaw110CVTTKNZVlFgX7L3v4iq51x6g7221mDsUNpm3QDLZ9lRvgzV FM9W1oyNjkgvifeeif04p4G/xVfMBcn6SjUBj5xr6OCyFCrtE0eHvIXUih8WmYTI NcbAJCSzX+XgJy8RpsB3OiJ5+x+O++M5YLxHqJZbHruFo56O9l7OIUL6iwC9PPCr ksJ/uj6/vk5YrQm4PRjTMUiLeg== -----END CERTIFICATE-----Generated at Thu Mar 26 02:34:10 2026 by rpki-client