$ rpki-client -vvf rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/OYN8tL7K9qYmyRaulgJBtgnmsgo.mft File: OYN8tL7K9qYmyRaulgJBtgnmsgo.mft (raw, json) Hash identifier: 8O9T6AzQW8/hxFhVUWyA/zOUqN+GgkKBPxpCXzrpSeE= Subject key identifier: DC:C8:AC:DB:83:EB:B3:17:FA:3F:CD:35:A1:71:27:AE:FC:B4:8A:F3 Authority key identifier: 39:83:7C:B4:BE:CA:F6:A6:26:C9:16:AE:96:02:41:B6:09:E6:B2:0A Certificate issuer: /CN=A918C3B7/serialNumber=39837CB4BECAF6A626C916AE960241B609E6B20A Certificate serial: 01BB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OYN8tL7K9qYmyRaulgJBtgnmsgo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/OYN8tL7K9qYmyRaulgJBtgnmsgo.mft Manifest number: 01B2 Signing time: Wed 25 Mar 2026 03:18:07 +0000 Manifest this update: Wed 25 Mar 2026 03:18:06 +0000 Manifest next update: Wed 01 Apr 2026 03:18:06 +0000 Files and hashes: 1: OYN8tL7K9qYmyRaulgJBtgnmsgo.crl (hash: aYoaBJsiXB7OH3bXvVw9kUs9BCyTDuWD2YCXgJiQ71Q=) 2: C635D41E611411EF9B00D029C4F9AE02.roa (hash: ZO33tan/7WjO4vuazxAnxsvyNrqefIDo+9LACZXGkpw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/OYN8tL7K9qYmyRaulgJBtgnmsgo.crl rsync://rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/OYN8tL7K9qYmyRaulgJBtgnmsgo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OYN8tL7K9qYmyRaulgJBtgnmsgo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 03:18:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 443 (0x1bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918C3B7, serialNumber=39837CB4BECAF6A626C916AE960241B609E6B20A Validity Not Before: Mar 25 03:18:06 2026 GMT Not After : Apr 1 03:18:06 2026 GMT Subject: CN=69c353ef-ec66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:2f:2c:06:a6:05:7a:9a:21:ae:0b:e7:54:38: a3:e1:e0:b9:66:ee:b4:ff:04:ef:30:08:0f:f6:3f: 30:41:d9:d5:a1:70:2b:1a:8f:96:2e:fe:e0:f3:a5: 2c:49:7d:bb:c6:7a:fd:59:0c:16:99:d5:a5:73:63: dd:55:ec:c1:aa:f4:ad:c2:fc:c5:f7:6a:1c:82:f1: 58:cb:dd:35:0c:0d:d0:99:c5:7d:c0:ae:fc:b5:bf: e1:31:cb:98:57:46:25:c3:23:0c:2c:04:a8:b3:45: 8b:05:de:47:32:27:d4:24:aa:03:95:0f:91:8e:15: a3:30:23:09:ab:70:18:f0:e5:8f:d6:60:26:cc:68: 51:39:38:da:f3:e8:c6:28:bc:4b:a5:38:40:bd:9f: 56:1a:08:e6:46:b7:3b:9f:8b:ed:b1:39:2e:8b:ac: a1:8a:8a:24:ee:49:fa:22:19:59:65:8f:23:9f:04: 1b:0b:71:74:87:e1:97:ff:4d:b1:25:38:ba:fa:0a: dc:ae:40:f3:bb:43:52:14:d5:98:5c:75:f4:49:f9: 0f:52:55:dd:58:ab:72:1d:e5:67:81:1c:0f:06:76: 6b:f7:d1:b8:cc:89:98:05:fd:61:2b:a6:16:8d:f2: 80:f7:c5:94:fd:86:2c:cb:63:f5:0c:72:e4:bb:4c: 6a:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:C8:AC:DB:83:EB:B3:17:FA:3F:CD:35:A1:71:27:AE:FC:B4:8A:F3 X509v3 Authority Key Identifier: keyid:39:83:7C:B4:BE:CA:F6:A6:26:C9:16:AE:96:02:41:B6:09:E6:B2:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/OYN8tL7K9qYmyRaulgJBtgnmsgo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OYN8tL7K9qYmyRaulgJBtgnmsgo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/OYN8tL7K9qYmyRaulgJBtgnmsgo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:a1:fc:10:26:df:de:9d:b4:de:80:59:c9:27:34:bd:f9:a8: 87:03:ea:7e:5c:31:36:4b:05:bf:98:ee:6c:27:32:47:2a:12: 6e:f1:52:1d:51:1f:bd:92:63:56:d4:80:dd:17:94:92:27:07: 45:b4:39:02:8f:ff:b1:79:de:2a:0b:76:92:0d:44:b0:a9:99: 15:f5:d4:6f:c0:59:84:cf:34:3e:d7:8b:9a:59:23:5d:92:15: f0:bf:10:a8:dc:bf:09:8b:4e:4a:17:8b:2d:33:c2:14:aa:86: e0:29:b1:4c:3d:6f:ef:b5:fd:5f:5c:ba:f2:60:33:93:e5:3c: 5c:16:a5:f3:52:e5:bf:b6:3f:61:3a:3c:d7:5e:39:c0:f5:bf: 85:7c:05:b1:c7:db:b9:c0:d7:1c:75:52:dd:b5:22:d6:ab:22: 3c:f2:36:27:4f:ad:ca:2a:6f:40:7f:63:e0:0a:62:d8:ac:34: 1c:d9:10:38:12:14:3c:e1:cf:8b:ad:eb:86:a4:c4:71:66:e7: 6a:78:06:44:63:50:aa:e8:b5:3f:6d:1b:00:12:a1:89:8c:e7: e2:93:96:c7:92:e9:d6:27:51:f0:71:e5:c1:43:69:ed:49:68: 26:b1:a6:ed:43:49:56:49:30:2f:22:da:7d:f6:4f:45:b2:a3: a5:e4:b5:6e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAbswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEMzQjcxMTAvBgNVBAUTKDM5ODM3Q0I0QkVDQUY2QTYyNkM5MTZBRTk2MDI0MUI2 MDlFNkIyMEEwHhcNMjYwMzI1MDMxODA2WhcNMjYwNDAxMDMxODA2WjAYMRYwFAYD VQQDEw02OWMzNTNlZi1lYzY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAly8sBqYFepohrgvnVDij4eC5Zu60/wTvMAgP9j8wQdnVoXArGo+WLv7g86Us SX27xnr9WQwWmdWlc2PdVezBqvStwvzF92ocgvFYy901DA3QmcV9wK78tb/hMcuY V0YlwyMMLASos0WLBd5HMifUJKoDlQ+RjhWjMCMJq3AY8OWP1mAmzGhROTja8+jG KLxLpThAvZ9WGgjmRrc7n4vtsTkui6yhiook7kn6IhlZZY8jnwQbC3F0h+GX/02x JTi6+grcrkDzu0NSFNWYXHX0SfkPUlXdWKtyHeVngRwPBnZr99G4zImYBf1hK6YW jfKA98WU/YYsy2P1DHLku0xq6QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNzIrNuD 67MX+j/NNaFxJ678tIrzMB8GA1UdIwQYMBaAFDmDfLS+yvamJskWrpYCQbYJ5rIK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QzNCNy8xNTlBNEFEMDkz MjUxMUVFQkU5ODdGNjBDNEY5QUUwMi9PWU44dEw3SzlxWW15UmF1bGdKQnRnbm1z Z28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL09ZTjh0TDdLOXFZbXlSYXVsZ0pCdGdubXNnby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QzNCNy8xNTlBNEFEMDkzMjUxMUVFQkU5ODdGNjBDNEY5QUUwMi9PWU44dEw3Szlx WW15UmF1bGdKQnRnbm1zZ28ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEABKH8ECbf3p203oBZySc0vfmohwPqflwxNksFv5jubCcyRyoSbvFSHVEfvZJj VtSA3ReUkicHRbQ5Ao//sXneKgt2kg1EsKmZFfXUb8BZhM80PteLmlkjXZIV8L8Q qNy/CYtOSheLLTPCFKqG4CmxTD1v77X9X1y68mAzk+U8XBal81Llv7Y/YTo81145 wPW/hXwFscfbucDXHHVS3bUi1qsiPPI2J0+tyipvQH9j4Api2Kw0HNkQOBIUPOHP i63rhqTEcWbnangGRGNQqui1P20bABKhiYzn4pOWx5Lp1idR8HHlwUNp7UloJrGm 7UNJVkkwLyLaffZPRbKjpeS1bg== -----END CERTIFICATE-----Generated at Thu Mar 26 13:11:21 2026 by rpki-client