$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAE16/0EACF82C5BB111E98B103B13C4F9AE02/1oC_OnlqNVsSWmAsdGa5pW00QlQ.mft File: 1oC_OnlqNVsSWmAsdGa5pW00QlQ.mft (raw, json) Hash identifier: vywxeIkyvx8Q29e86II64jHGVTx/gSiyVOucZ5VQYKM= Subject key identifier: E0:A6:1A:50:88:96:44:FD:D3:E6:5E:68:EA:EC:8A:0B:DC:62:48:90 Authority key identifier: D6:80:BF:3A:79:6A:35:5B:12:5A:60:2C:74:66:B9:A5:6D:34:42:54 Certificate issuer: /CN=A91AAE16/serialNumber=D680BF3A796A355B125A602C7466B9A56D344254 Certificate serial: 104B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1oC_OnlqNVsSWmAsdGa5pW00QlQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAE16/0EACF82C5BB111E98B103B13C4F9AE02/1oC_OnlqNVsSWmAsdGa5pW00QlQ.mft Manifest number: 1041 Signing time: Tue 24 Mar 2026 17:18:12 +0000 Manifest this update: Tue 24 Mar 2026 17:18:11 +0000 Manifest next update: Tue 31 Mar 2026 17:18:11 +0000 Files and hashes: 1: 1oC_OnlqNVsSWmAsdGa5pW00QlQ.crl (hash: YiseryWs9BJ7iI1t1o0U31eGBtPto4/yK8HYFuPc4d0=) 2: 682B76C05BB211E9BF474F16C4F9AE02.roa (hash: 3anwlMDODfaf5MLIS0BHlj7UtjNrSBoXQfLZ1YBXx/w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAE16/0EACF82C5BB111E98B103B13C4F9AE02/1oC_OnlqNVsSWmAsdGa5pW00QlQ.crl rsync://rpki.apnic.net/member_repository/A91AAE16/0EACF82C5BB111E98B103B13C4F9AE02/1oC_OnlqNVsSWmAsdGa5pW00QlQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1oC_OnlqNVsSWmAsdGa5pW00QlQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 17:18:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4171 (0x104b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAE16, serialNumber=D680BF3A796A355B125A602C7466B9A56D344254 Validity Not Before: Mar 24 17:18:11 2026 GMT Not After : Mar 31 17:18:11 2026 GMT Subject: CN=69c2c754-8edc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:91:7e:a4:ca:7e:d4:e0:d3:07:f4:76:78:7e: a9:f8:7d:79:21:25:d3:26:80:cb:6a:18:29:e3:0c: e3:cc:20:fa:86:c5:92:48:15:26:55:86:1d:c8:5a: 6d:c4:a6:14:ea:9f:80:90:f5:51:a3:c0:bc:5c:cb: c7:a3:d7:8b:c5:fd:18:72:45:f5:bb:21:19:ba:7b: 2e:65:c2:5e:57:8e:9f:e9:4f:26:30:85:4c:74:53: 5b:51:9d:38:3b:9d:9c:2e:ba:7f:c7:20:23:fa:44: dd:4c:c9:10:66:cc:4d:47:82:b6:a4:9d:17:16:88: e1:7d:87:da:7a:f1:1a:79:a3:5a:16:9e:c5:3b:95: ba:2b:4d:14:2d:f9:02:e8:80:ce:76:62:be:e7:37: 1b:4a:2b:4c:0b:98:97:44:a9:a2:ea:b0:78:51:6d: 9d:6c:7a:17:93:f7:94:2f:dd:c6:7f:69:3a:27:81: 4c:10:26:a7:4f:0f:06:7b:39:56:27:65:65:85:10: 29:e3:0a:95:8d:cd:41:67:2f:19:94:95:35:ad:11: 1c:2c:61:fb:67:9a:17:52:c0:dc:2c:70:03:a1:60: be:5d:6f:d5:28:46:a6:ac:4d:94:67:4a:a3:6f:5e: de:21:73:5a:9d:e9:ac:bb:68:e1:5a:a2:d4:ed:12: 03:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:A6:1A:50:88:96:44:FD:D3:E6:5E:68:EA:EC:8A:0B:DC:62:48:90 X509v3 Authority Key Identifier: keyid:D6:80:BF:3A:79:6A:35:5B:12:5A:60:2C:74:66:B9:A5:6D:34:42:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAE16/0EACF82C5BB111E98B103B13C4F9AE02/1oC_OnlqNVsSWmAsdGa5pW00QlQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1oC_OnlqNVsSWmAsdGa5pW00QlQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAE16/0EACF82C5BB111E98B103B13C4F9AE02/1oC_OnlqNVsSWmAsdGa5pW00QlQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:f4:f8:e6:65:4c:63:b1:7b:e4:55:28:38:16:57:7e:3c:90: 48:5c:d7:3c:61:a8:49:2c:c0:3b:f7:ee:df:1d:7b:a4:89:10: 1f:15:c3:e3:23:08:9b:5d:61:6f:40:4f:7e:29:94:97:57:81: a4:57:e7:ed:47:d6:d9:1f:84:3b:02:d2:1a:18:8a:19:e8:38: c3:ad:3b:0a:db:a7:8a:44:44:71:1e:85:9f:6c:24:c5:e6:90: d7:72:0a:4a:60:a8:95:21:5d:57:ed:af:f6:d3:a6:46:64:1a: d2:85:f5:84:01:9f:0a:c0:53:34:2e:7f:d6:ba:f9:31:19:ce: 1e:7d:e6:00:6c:13:af:b3:db:04:3d:58:66:c6:09:05:5f:44: ae:93:a8:87:bd:35:06:41:e7:1b:fd:8a:3a:08:30:8f:b8:1c: 9c:dd:95:91:87:5b:30:9d:f1:61:90:2a:bc:70:3a:07:6a:e0: 41:ec:fa:dc:de:e7:2b:56:0f:4e:6c:3a:99:18:82:dd:dd:27: d9:64:43:af:36:9d:a7:7b:31:db:2f:4a:c8:50:8b:70:ea:db: ce:c3:cb:c8:16:61:d5:9f:88:84:84:59:19:56:01:c3:a1:2e: d7:66:f4:b1:ef:d9:8d:2b:bf:bb:f3:ae:a1:43:e5:35:27:db: ff:2e:c6:3e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICEEswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFFMTYxMTAvBgNVBAUTKEQ2ODBCRjNBNzk2QTM1NUIxMjVBNjAyQzc0NjZCOUE1 NkQzNDQyNTQwHhcNMjYwMzI0MTcxODExWhcNMjYwMzMxMTcxODExWjAYMRYwFAYD VQQDEw02OWMyYzc1NC04ZWRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1pF+pMp+1ODTB/R2eH6p+H15ISXTJoDLahgp4wzjzCD6hsWSSBUmVYYdyFpt xKYU6p+AkPVRo8C8XMvHo9eLxf0YckX1uyEZunsuZcJeV46f6U8mMIVMdFNbUZ04 O52cLrp/xyAj+kTdTMkQZsxNR4K2pJ0XFojhfYfaevEaeaNaFp7FO5W6K00ULfkC 6IDOdmK+5zcbSitMC5iXRKmi6rB4UW2dbHoXk/eUL93Gf2k6J4FMECanTw8GezlW J2VlhRAp4wqVjc1BZy8ZlJU1rREcLGH7Z5oXUsDcLHADoWC+XW/VKEamrE2UZ0qj b17eIXNanemsu2jhWqLU7RIDuwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOCmGlCI lkT90+ZeaOrsigvcYkiQMB8GA1UdIwQYMBaAFNaAvzp5ajVbElpgLHRmuaVtNEJU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUUxNi8wRUFDRjgyQzVC QjExMUU5OEIxMDNCMTNDNEY5QUUwMi8xb0NfT25scU5Wc1NXbUFzZEdhNXBXMDBR bFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzFvQ19PbmxxTlZzU1dtQXNkR2E1cFcwMFFsUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUUxNi8wRUFDRjgyQzVCQjExMUU5OEIxMDNCMTNDNEY5QUUwMi8xb0NfT25scU5W c1NXbUFzZEdhNXBXMDBRbFEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAnfT45mVMY7F75FUoOBZXfjyQSFzXPGGoSSzAO/fu3x17pIkQHxXD4yMIm11h b0BPfimUl1eBpFfn7UfW2R+EOwLSGhiKGeg4w607CtunikREcR6Fn2wkxeaQ13IK SmColSFdV+2v9tOmRmQa0oX1hAGfCsBTNC5/1rr5MRnOHn3mAGwTr7PbBD1YZsYJ BV9ErpOoh701BkHnG/2KOggwj7gcnN2VkYdbMJ3xYZAqvHA6B2rgQez63N7nK1YP Tmw6mRiC3d0n2WRDrzadp3sx2y9KyFCLcOrbzsPLyBZh1Z+IhIRZGVYBw6Eu12b0 se/ZjSu/u/OuoUPlNSfb/y7GPg== -----END CERTIFICATE-----Generated at Thu Mar 26 16:02:06 2026 by rpki-client