$ rpki-client -vvf rpki.apnic.net/member_repository/A918377D/9F7C8152B4B111EEB0ADE352C4F9AE02/ofrVQukeAX0lfVGxT_XDW4lCnvU.mft File: ofrVQukeAX0lfVGxT_XDW4lCnvU.mft (raw, json) Hash identifier: +MRGxOPsTClsPmpMKoajhJ0WCKosPiO7DeCa4haMIdM= Subject key identifier: 14:5C:50:76:D2:12:B1:31:F1:8E:E1:74:D3:39:9B:E7:AB:EA:26:04 Authority key identifier: A1:FA:D5:42:E9:1E:01:7D:25:7D:51:B1:4F:F5:C3:5B:89:42:9E:F5 Certificate issuer: /CN=A918377D/serialNumber=A1FAD542E91E017D257D51B14FF5C35B89429EF5 Certificate serial: 019B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ofrVQukeAX0lfVGxT_XDW4lCnvU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918377D/9F7C8152B4B111EEB0ADE352C4F9AE02/ofrVQukeAX0lfVGxT_XDW4lCnvU.mft Manifest number: 019B Signing time: Wed 25 Mar 2026 03:31:45 +0000 Manifest this update: Wed 25 Mar 2026 03:31:45 +0000 Manifest next update: Wed 01 Apr 2026 03:31:45 +0000 Files and hashes: 1: ofrVQukeAX0lfVGxT_XDW4lCnvU.crl (hash: AVgmG8wY5/jxPU46h4wsqJEXi3UVeDPtyy9erSy4zZk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918377D/9F7C8152B4B111EEB0ADE352C4F9AE02/ofrVQukeAX0lfVGxT_XDW4lCnvU.crl rsync://rpki.apnic.net/member_repository/A918377D/9F7C8152B4B111EEB0ADE352C4F9AE02/ofrVQukeAX0lfVGxT_XDW4lCnvU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ofrVQukeAX0lfVGxT_XDW4lCnvU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 03:31:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 411 (0x19b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918377D, serialNumber=A1FAD542E91E017D257D51B14FF5C35B89429EF5 Validity Not Before: Mar 25 03:31:45 2026 GMT Not After : Apr 1 03:31:45 2026 GMT Subject: CN=69c35721-9439 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:4e:5a:5c:3f:8a:c4:66:c0:17:66:d0:12:5a: 57:b4:75:f4:53:b8:25:26:dd:8e:ac:9a:a7:8b:fc: bf:fb:b3:b4:d0:71:0a:67:63:14:31:6d:93:d8:4d: 06:6a:a7:1b:db:fa:1a:71:ce:3e:d6:87:4e:57:b2: f5:da:a1:b0:d4:71:f0:b9:10:68:2c:46:d5:8a:b4: a9:b3:f8:72:16:6a:47:29:e4:7e:d0:e0:a5:da:85: 4b:6b:a2:9f:f7:f5:ec:48:98:3f:72:a6:ea:e4:2a: ee:f1:53:71:07:3a:9c:32:5b:12:e4:11:4b:da:e1: d9:f2:90:66:39:60:ed:a4:8b:11:65:f3:78:02:e7: 6f:02:25:5c:ec:18:40:ec:9f:3e:90:42:ad:01:49: 41:fc:88:90:dd:9f:21:73:cb:29:5a:1b:bc:f1:00: 2d:20:5e:e2:13:ed:3f:a7:40:bd:88:e1:7d:69:00: 14:fc:02:28:8d:09:0f:74:02:63:88:26:71:35:02: 7f:bf:b3:37:25:f4:15:b1:b2:72:8c:9d:94:ad:aa: 26:fb:7c:fc:a6:3b:5e:eb:6b:08:ef:c7:7a:ab:fe: aa:06:fb:6a:fd:54:eb:5d:2b:59:2c:92:97:9e:b3: 94:bd:d5:c4:59:48:1c:e0:55:cf:a9:5e:82:60:e7: 1a:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:5C:50:76:D2:12:B1:31:F1:8E:E1:74:D3:39:9B:E7:AB:EA:26:04 X509v3 Authority Key Identifier: keyid:A1:FA:D5:42:E9:1E:01:7D:25:7D:51:B1:4F:F5:C3:5B:89:42:9E:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918377D/9F7C8152B4B111EEB0ADE352C4F9AE02/ofrVQukeAX0lfVGxT_XDW4lCnvU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ofrVQukeAX0lfVGxT_XDW4lCnvU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918377D/9F7C8152B4B111EEB0ADE352C4F9AE02/ofrVQukeAX0lfVGxT_XDW4lCnvU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:33:af:ee:0c:71:8b:de:7c:37:8f:d7:a4:c5:4e:6c:fd:5c: 40:81:f7:cb:0a:c2:a1:1f:c8:02:9d:70:b8:ce:d0:96:f9:d3: 2f:c7:bd:91:54:bb:cb:a4:d2:c2:b8:99:e6:b1:fe:69:32:25: 21:e7:8c:51:a0:cb:1c:64:e2:d8:9d:35:3e:fa:a5:97:a7:3d: 29:a4:b8:46:a5:af:91:77:89:bf:1f:e7:c6:66:b0:ea:fc:7a: c7:4a:7b:dc:52:ab:b7:93:0d:75:c4:af:1f:a1:6f:20:ee:87: 52:d0:7a:58:de:bc:29:89:36:65:59:8c:ec:c1:5e:a9:48:fe: ab:f2:04:6f:ba:db:35:bd:d1:d1:29:e6:d0:ad:44:b7:c2:68: 2d:56:09:bd:1f:ce:06:eb:5c:f2:4a:98:22:66:97:27:a6:92: 4e:94:0f:88:6d:a4:fe:79:40:4f:fb:6b:4b:83:ef:d8:90:a8: 4c:8d:bc:0c:6d:d9:2b:16:96:03:f3:9a:f5:97:a0:89:47:3b: f1:76:20:7c:6f:1a:db:48:a4:83:bf:d9:91:0c:11:be:b1:5b: 61:c9:d5:c6:09:ac:77:11:63:34:25:9a:fd:a2:61:33:2b:00: 62:18:84:b5:f3:2a:f4:07:61:e7:10:9c:a9:69:c4:c3:8b:1a: 96:be:56:63 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAZswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODM3N0QxMTAvBgNVBAUTKEExRkFENTQyRTkxRTAxN0QyNTdENTFCMTRGRjVDMzVC ODk0MjlFRjUwHhcNMjYwMzI1MDMzMTQ1WhcNMjYwNDAxMDMzMTQ1WjAYMRYwFAYD VQQDEw02OWMzNTcyMS05NDM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs05aXD+KxGbAF2bQElpXtHX0U7glJt2OrJqni/y/+7O00HEKZ2MUMW2T2E0G aqcb2/oacc4+1odOV7L12qGw1HHwuRBoLEbVirSps/hyFmpHKeR+0OCl2oVLa6Kf 9/XsSJg/cqbq5Cru8VNxBzqcMlsS5BFL2uHZ8pBmOWDtpIsRZfN4AudvAiVc7BhA 7J8+kEKtAUlB/IiQ3Z8hc8spWhu88QAtIF7iE+0/p0C9iOF9aQAU/AIojQkPdAJj iCZxNQJ/v7M3JfQVsbJyjJ2Uraom+3z8pjte62sI78d6q/6qBvtq/VTrXStZLJKX nrOUvdXEWUgc4FXPqV6CYOcaxwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBRcUHbS ErEx8Y7hdNM5m+er6iYEMB8GA1UdIwQYMBaAFKH61ULpHgF9JX1RsU/1w1uJQp71 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Mzc3RC85RjdDODE1MkI0 QjExMUVFQjBBREUzNTJDNEY5QUUwMi9vZnJWUXVrZUFYMGxmVkd4VF9YRFc0bENu dlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29mclZRdWtlQVgwbGZWR3hUX1hEVzRsQ252VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Mzc3RC85RjdDODE1MkI0QjExMUVFQjBBREUzNTJDNEY5QUUwMi9vZnJWUXVrZUFY MGxmVkd4VF9YRFc0bENudlUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEApzOv7gxxi958N4/XpMVObP1cQIH3ywrCoR/IAp1wuM7QlvnTL8e9kVS7y6TS wriZ5rH+aTIlIeeMUaDLHGTi2J01Pvqll6c9KaS4RqWvkXeJvx/nxmaw6vx6x0p7 3FKrt5MNdcSvH6FvIO6HUtB6WN68KYk2ZVmM7MFeqUj+q/IEb7rbNb3R0Snm0K1E t8JoLVYJvR/OButc8kqYImaXJ6aSTpQPiG2k/nlAT/trS4Pv2JCoTI28DG3ZKxaW A/Oa9ZegiUc78XYgfG8a20ikg7/ZkQwRvrFbYcnVxgmsdxFjNCWa/aJhMysAYhiE tfMq9Adh5xCcqWnEw4salr5WYw== -----END CERTIFICATE-----Generated at Thu Mar 26 20:15:52 2026 by rpki-client