$ rpki-client -vvf rpki.apnic.net/member_repository/A91B268A/84FB4C9CDDA111E8A2E78A69C4F9AE02/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.mft File: -O7OfTwM9ZIuo9gDVTY4gj-u6gg.mft (raw, json) Hash identifier: G92e7CBoY/iiE90v/nZqtwKuSQA07ZSBbvqQ4oO8J+Y= Subject key identifier: 21:90:AC:6C:9E:03:92:4E:B0:F2:A5:3D:BF:35:38:95:B0:9B:5B:62 Authority key identifier: F8:EE:CE:7D:3C:0C:F5:92:2E:A3:D8:03:55:36:38:82:3F:AE:EA:08 Certificate issuer: /CN=A91B268A/serialNumber=F8EECE7D3C0CF5922EA3D803553638823FAEEA08 Certificate serial: 12E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B268A/84FB4C9CDDA111E8A2E78A69C4F9AE02/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.mft Manifest number: 12CC Signing time: Tue 24 Mar 2026 16:57:05 +0000 Manifest this update: Tue 24 Mar 2026 16:57:04 +0000 Manifest next update: Tue 31 Mar 2026 16:57:04 +0000 Files and hashes: 1: -O7OfTwM9ZIuo9gDVTY4gj-u6gg.crl (hash: xhsKsPdE76sgQtgqC/jdKOsyVVj4B2jiUuRsdO9tlic=) 2: 801B5CA0D49711EFBF7D3414C4F9AE02.roa (hash: h19/MR9hkMVPGpl7f/+5Vxrt7msI3muNoOIhYt+wOkY=) 3: 0AF12B12DDA411E88E25E96FC4F9AE02.roa (hash: ENmiPhNmvPrhbRyvAeBKsSY9zQmQ1uUazbQzc4bFAXc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B268A/84FB4C9CDDA111E8A2E78A69C4F9AE02/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.crl rsync://rpki.apnic.net/member_repository/A91B268A/84FB4C9CDDA111E8A2E78A69C4F9AE02/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 16:57:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4841 (0x12e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B268A, serialNumber=F8EECE7D3C0CF5922EA3D803553638823FAEEA08 Validity Not Before: Mar 24 16:57:04 2026 GMT Not After : Mar 31 16:57:04 2026 GMT Subject: CN=69c2c261-50cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:1e:39:3d:4d:c2:d5:b5:84:4e:14:af:4e:8f: 0f:c0:eb:fc:12:23:d4:54:ec:68:a0:00:33:4d:f0: cb:0c:06:3d:8c:9e:dd:52:ce:ac:b3:fc:f7:92:f0: c9:e5:f8:f5:ea:1f:5e:ff:40:a0:a3:26:41:12:8d: c0:20:06:ec:1d:b0:44:cc:bc:fe:ba:b8:08:9d:09: 87:8f:0e:0b:e4:8a:d4:48:4e:02:3a:9f:69:da:70: 32:bb:28:81:6c:8e:66:ad:d5:51:02:87:9c:82:c9: f1:98:a1:1e:16:00:c7:0d:0a:0b:67:2a:42:e4:46: d8:c6:18:90:02:a7:7b:34:ce:ed:da:62:ef:c7:9b: cd:2f:ad:f0:f2:db:e9:66:44:b5:9e:1a:3a:6f:ce: c0:30:d5:a2:4a:58:51:3b:82:66:38:53:08:e3:01: fb:49:02:d0:6c:df:fb:a3:07:22:c2:45:f7:a9:06: f3:2c:20:3c:4d:fd:cb:09:f3:c9:6d:8f:46:f2:d7: 84:a5:f4:6c:67:89:bd:80:f8:86:52:05:57:98:d0: a2:4d:a0:46:bc:fc:4d:9c:3a:e6:96:cf:48:1a:a8: 24:f8:12:9b:c1:3b:89:20:79:97:72:6f:42:15:e3: 32:42:3f:45:32:0a:0b:bf:b5:da:07:4f:3c:9d:1d: 28:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:90:AC:6C:9E:03:92:4E:B0:F2:A5:3D:BF:35:38:95:B0:9B:5B:62 X509v3 Authority Key Identifier: keyid:F8:EE:CE:7D:3C:0C:F5:92:2E:A3:D8:03:55:36:38:82:3F:AE:EA:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B268A/84FB4C9CDDA111E8A2E78A69C4F9AE02/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B268A/84FB4C9CDDA111E8A2E78A69C4F9AE02/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:d5:bc:9d:0f:50:e7:8b:56:bc:ab:ee:28:73:18:ae:6c:ba: b0:ea:97:f1:ca:27:44:49:92:85:60:c5:c8:81:e0:5c:d9:df: 27:3f:29:72:bb:9c:67:a6:1b:fe:e1:7a:d2:2e:ea:ab:28:35: 0d:27:75:33:f1:e3:dd:2d:13:91:df:d9:db:ae:a6:ee:a8:54: 8b:ef:17:4a:fe:bb:e3:8d:49:22:ea:74:10:f0:fa:e0:9c:92: 45:c3:72:6b:e5:f2:9d:b6:5d:2a:03:a9:27:c7:9a:e1:c6:b8: 5b:56:61:d7:32:ff:78:cb:ef:6b:50:74:d0:e0:06:e1:13:2f: a7:95:b4:b7:17:d0:10:73:0e:89:4f:c5:f6:98:c6:e3:8a:94: 76:9a:a2:76:4c:1d:ba:e8:e0:bf:82:a5:fd:bd:b9:88:e1:fc: ec:3e:fe:b4:60:38:d4:47:d4:00:be:9d:6b:a5:73:87:5c:d4: e9:6b:c9:1d:7f:56:6d:20:b9:8c:cd:f5:29:ce:b5:d4:72:92: de:aa:0b:92:09:25:ee:c8:15:fe:cb:96:c0:55:52:57:28:0b: ab:fe:6e:37:59:a3:f5:21:c3:d1:91:46:c0:fe:d5:93:8d:90: bf:5d:2b:35:71:19:42:40:1a:96:45:bd:73:a9:ef:ee:b7:e6: a2:1c:98:48 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICEukwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjI2OEExMTAvBgNVBAUTKEY4RUVDRTdEM0MwQ0Y1OTIyRUEzRDgwMzU1MzYzODgy M0ZBRUVBMDgwHhcNMjYwMzI0MTY1NzA0WhcNMjYwMzMxMTY1NzA0WjAYMRYwFAYD VQQDEw02OWMyYzI2MS01MGNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvB45PU3C1bWEThSvTo8PwOv8EiPUVOxooAAzTfDLDAY9jJ7dUs6ss/z3kvDJ 5fj16h9e/0CgoyZBEo3AIAbsHbBEzLz+urgInQmHjw4L5IrUSE4COp9p2nAyuyiB bI5mrdVRAoecgsnxmKEeFgDHDQoLZypC5EbYxhiQAqd7NM7t2mLvx5vNL63w8tvp ZkS1nho6b87AMNWiSlhRO4JmOFMI4wH7SQLQbN/7owciwkX3qQbzLCA8Tf3LCfPJ bY9G8teEpfRsZ4m9gPiGUgVXmNCiTaBGvPxNnDrmls9IGqgk+BKbwTuJIHmXcm9C FeMyQj9FMgoLv7XaB088nR0oywIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCGQrGye A5JOsPKlPb81OJWwm1tiMB8GA1UdIwQYMBaAFPjuzn08DPWSLqPYA1U2OII/ruoI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjY4QS84NEZCNEM5Q0RE QTExMUU4QTJFNzhBNjlDNEY5QUUwMi8tTzdPZlR3TTlaSXVvOWdEVlRZNGdqLXU2 Z2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1PN09mVHdNOVpJdW85Z0RWVFk0Z2otdTZnZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MjY4QS84NEZCNEM5Q0REQTExMUU4QTJFNzhBNjlDNEY5QUUwMi8tTzdPZlR3TTla SXVvOWdEVlRZNGdqLXU2Z2cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAX9W8nQ9Q54tWvKvuKHMYrmy6sOqX8conREmShWDFyIHgXNnfJz8pcrucZ6Yb /uF60i7qqyg1DSd1M/Hj3S0Tkd/Z266m7qhUi+8XSv67441JIup0EPD64JySRcNy a+XynbZdKgOpJ8ea4ca4W1Zh1zL/eMvva1B00OAG4RMvp5W0txfQEHMOiU/F9pjG 44qUdpqidkwduujgv4Kl/b25iOH87D7+tGA41EfUAL6da6Vzh1zU6WvJHX9WbSC5 jM31Kc611HKS3qoLkgkl7sgV/suWwFVSVygLq/5uN1mj9SHD0ZFGwP7Vk42Qv10r NXEZQkAalkW9c6nv7rfmohyYSA== -----END CERTIFICATE-----Generated at Thu Mar 26 02:28:02 2026 by rpki-client