$ rpki-client -vvf rpki.apnic.net/member_repository/A91778D4/D9D5693A905111ECA3699615C4F9AE02/OIes3fccvvSnUh2EUe7LrrJRnv0.mft File: OIes3fccvvSnUh2EUe7LrrJRnv0.mft (raw, json) Hash identifier: FrT18veL2WuVqb6P++V4xEi8f0Cv9HzVceH2Ot26FWI= Subject key identifier: 7D:E3:7D:65:9F:D1:1A:C6:30:6F:6D:E4:86:69:A2:6F:52:21:D5:F9 Authority key identifier: 38:87:AC:DD:F7:1C:BE:F4:A7:52:1D:84:51:EE:CB:AE:B2:51:9E:FD Certificate issuer: /CN=A91778D4/serialNumber=3887ACDDF71CBEF4A7521D8451EECBAEB2519EFD Certificate serial: 0459 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OIes3fccvvSnUh2EUe7LrrJRnv0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91778D4/D9D5693A905111ECA3699615C4F9AE02/OIes3fccvvSnUh2EUe7LrrJRnv0.mft Manifest number: 0452 Signing time: Tue 24 Mar 2026 23:52:35 +0000 Manifest this update: Tue 24 Mar 2026 23:52:35 +0000 Manifest next update: Tue 31 Mar 2026 23:52:35 +0000 Files and hashes: 1: OIes3fccvvSnUh2EUe7LrrJRnv0.crl (hash: wkRfKIZr1SvvYMMc/qX3iU7jdYmSAfnK7DK7hsw/pQM=) 2: 13F9F650905511EC9A978D19C4F9AE02.roa (hash: 24R9bP8FZGrYS8hzQsfu5XaVnVqMRb0ojEdqSMQzy6s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91778D4/D9D5693A905111ECA3699615C4F9AE02/OIes3fccvvSnUh2EUe7LrrJRnv0.crl rsync://rpki.apnic.net/member_repository/A91778D4/D9D5693A905111ECA3699615C4F9AE02/OIes3fccvvSnUh2EUe7LrrJRnv0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OIes3fccvvSnUh2EUe7LrrJRnv0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 23:52:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1113 (0x459) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91778D4, serialNumber=3887ACDDF71CBEF4A7521D8451EECBAEB2519EFD Validity Not Before: Mar 24 23:52:35 2026 GMT Not After : Mar 31 23:52:35 2026 GMT Subject: CN=69c323c3-ffe7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:25:c3:02:f1:10:75:5d:3d:35:5b:9d:a4:19: 8f:11:b1:1f:39:2b:7e:5b:f1:40:f3:1b:c6:eb:b8: ae:39:83:44:ba:e2:d3:f2:8e:b7:91:5a:7c:d7:3f: 25:aa:cf:58:6e:5a:ee:bb:87:ef:bb:53:39:21:1a: 41:83:5d:79:e9:d2:d6:a4:52:7c:69:61:7d:28:ce: 08:b9:be:d9:3b:75:5a:e8:57:8c:ab:c0:65:4b:e4: 7c:2a:66:2c:70:fd:b1:fa:45:de:b2:95:2b:e8:89: 7d:38:48:37:df:a7:2a:25:22:0f:65:95:61:17:59: d7:22:58:06:a6:f7:6d:cf:5d:22:0d:8d:f1:2f:d8: e7:a9:dc:18:30:77:be:8d:f2:ff:4f:94:31:09:e6: 82:86:7a:df:3f:e7:f9:2d:66:b9:01:5a:ed:d1:46: 48:db:57:78:2a:1f:b0:22:69:e8:8e:d6:40:37:b8: 6c:ef:1c:fa:27:ee:7c:df:b4:b9:b1:86:b7:84:92: 1a:ec:47:bb:90:4e:ca:99:fb:7e:cd:55:82:45:05: a5:90:82:75:db:97:6e:c8:85:73:82:b7:38:f8:1a: 13:d8:0a:ab:04:ad:9e:a0:e2:12:21:5c:b6:f6:25: 0c:d0:8a:6c:57:03:fd:7c:5c:fd:61:ed:36:30:b7: 95:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:E3:7D:65:9F:D1:1A:C6:30:6F:6D:E4:86:69:A2:6F:52:21:D5:F9 X509v3 Authority Key Identifier: keyid:38:87:AC:DD:F7:1C:BE:F4:A7:52:1D:84:51:EE:CB:AE:B2:51:9E:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91778D4/D9D5693A905111ECA3699615C4F9AE02/OIes3fccvvSnUh2EUe7LrrJRnv0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OIes3fccvvSnUh2EUe7LrrJRnv0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91778D4/D9D5693A905111ECA3699615C4F9AE02/OIes3fccvvSnUh2EUe7LrrJRnv0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:47:f8:1a:cc:e6:10:ed:c4:73:6e:f0:6c:0c:fa:1c:49:5b: e4:9c:38:08:7a:6a:9d:9f:00:c9:c0:c1:ac:ec:ab:ee:4a:6c: b5:eb:93:9d:d3:ac:6b:db:e7:4b:f2:0b:ea:7e:5e:44:1f:c0: 3a:07:ac:a5:45:36:ff:8b:a4:31:ff:e4:18:3c:30:d6:69:09: b6:2d:8f:4a:29:13:e6:41:3a:91:a3:9d:cb:06:e9:9c:c5:59: ff:1e:dd:7b:a4:4b:03:d9:1a:36:c6:5f:47:ab:36:c9:e9:4d: 8c:a7:bb:43:1b:74:a7:da:b1:2b:55:17:c6:4f:ea:7a:63:cc: 8d:14:e1:26:51:63:35:73:c5:65:da:0f:41:07:a5:0d:1d:6e: 26:ba:d5:92:46:c8:f4:17:28:6d:6d:eb:50:b5:31:91:15:bf: 32:60:59:7d:29:d8:ef:7d:33:a7:41:6a:bb:09:56:30:2e:9d: 55:d8:09:5a:fc:61:52:d5:46:e7:5c:95:8d:3d:a4:be:f3:d2: 09:16:a2:2b:80:ff:78:a1:a3:06:80:5f:72:64:b0:ef:c1:5b: a8:07:f6:a3:72:b6:fa:31:d2:c7:7b:e7:93:6d:45:90:61:be: 56:8b:e2:de:c6:e7:06:fb:91:77:80:18:cb:dd:44:a2:9c:72: 58:6d:a0:0e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBFkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzc4RDQxMTAvBgNVBAUTKDM4ODdBQ0RERjcxQ0JFRjRBNzUyMUQ4NDUxRUVDQkFF QjI1MTlFRkQwHhcNMjYwMzI0MjM1MjM1WhcNMjYwMzMxMjM1MjM1WjAYMRYwFAYD VQQDEw02OWMzMjNjMy1mZmU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwiXDAvEQdV09NVudpBmPEbEfOSt+W/FA8xvG67iuOYNEuuLT8o63kVp81z8l qs9Yblruu4fvu1M5IRpBg1156dLWpFJ8aWF9KM4Iub7ZO3Va6FeMq8BlS+R8KmYs cP2x+kXespUr6Il9OEg336cqJSIPZZVhF1nXIlgGpvdtz10iDY3xL9jnqdwYMHe+ jfL/T5QxCeaChnrfP+f5LWa5AVrt0UZI21d4Kh+wImnojtZAN7hs7xz6J+5837S5 sYa3hJIa7Ee7kE7Kmft+zVWCRQWlkIJ125duyIVzgrc4+BoT2AqrBK2eoOISIVy2 9iUM0IpsVwP9fFz9Ye02MLeV9wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFH3jfWWf 0RrGMG9t5IZpom9SIdX5MB8GA1UdIwQYMBaAFDiHrN33HL70p1IdhFHuy66yUZ79 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NzhENC9EOUQ1NjkzQTkw NTExMUVDQTM2OTk2MTVDNEY5QUUwMi9PSWVzM2ZjY3Z2U25VaDJFVWU3THJySlJu djAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09JZXMzZmNjdnZTblVoMkVVZTdMcnJKUm52MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NzhENC9EOUQ1NjkzQTkwNTExMUVDQTM2OTk2MTVDNEY5QUUwMi9PSWVzM2ZjY3Z2 U25VaDJFVWU3THJySlJudjAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAEUf4GszmEO3Ec27wbAz6HElb5Jw4CHpqnZ8AycDBrOyr7kpsteuTndOsa9vn S/IL6n5eRB/AOgespUU2/4ukMf/kGDww1mkJti2PSikT5kE6kaOdywbpnMVZ/x7d e6RLA9kaNsZfR6s2yelNjKe7Qxt0p9qxK1UXxk/qemPMjRThJlFjNXPFZdoPQQel DR1uJrrVkkbI9BcobW3rULUxkRW/MmBZfSnY730zp0FquwlWMC6dVdgJWvxhUtVG 51yVjT2kvvPSCRaiK4D/eKGjBoBfcmSw78FbqAf2o3K2+jHSx3vnk21FkGG+Vovi 3sbnBvuRd4AYy91EopxyWG2gDg== -----END CERTIFICATE-----Generated at Thu Mar 26 18:48:27 2026 by rpki-client