$ rpki-client -vvf rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.mft File: oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.mft (raw, json) Hash identifier: 96MUk8PHePMUfw6n23SqfR5DBIdF3BS2HbUePhCF5xs= Subject key identifier: C4:98:20:1B:6F:CB:97:6E:08:96:16:45:EE:C7:DE:EA:B3:A5:23:4D Authority key identifier: A1:0F:57:83:C8:F9:A6:D9:4D:29:B4:AA:90:C5:6E:01:6B:B5:14:56 Certificate issuer: /CN=A91B65AC/serialNumber=A10F5783C8F9A6D94D29B4AA90C56E016BB51456 Certificate serial: 018B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.mft Manifest number: 0183 Signing time: Wed 25 Mar 2026 03:52:21 +0000 Manifest this update: Wed 25 Mar 2026 03:52:21 +0000 Manifest next update: Wed 01 Apr 2026 03:52:21 +0000 Files and hashes: 1: oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.crl (hash: fHheXkfVtxEAdkLfaJniqDOMm0FRkUzNjCPRXI1pwyk=) 2: 48005D9EE5AE11EE9ECE4023C4F9AE02.roa (hash: Km37wq6aDw75/u5KZyWOq+MrrDlARwtAXstjS4OwvhE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.crl rsync://rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 03:52:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 395 (0x18b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B65AC, serialNumber=A10F5783C8F9A6D94D29B4AA90C56E016BB51456 Validity Not Before: Mar 25 03:52:21 2026 GMT Not After : Apr 1 03:52:21 2026 GMT Subject: CN=69c35bf5-d32b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:9a:e3:54:a9:eb:1d:53:4c:f7:e4:14:a4:9b: f1:d4:c3:51:2d:da:7a:7e:96:24:df:7c:97:bb:69: a0:76:d4:78:2e:80:58:2d:7f:62:34:f7:16:64:86: 5f:68:fe:b8:38:d7:37:bb:af:53:f8:ad:c9:3d:2c: 1b:79:4a:06:c2:48:87:36:fd:3f:4f:ab:d6:4b:85: c1:75:73:fe:67:4e:00:b5:1b:6b:e3:ea:50:db:21: 81:f9:57:e5:b7:07:fb:51:00:06:c1:1d:41:7c:93: d4:0b:a7:bf:f2:c2:c8:30:d2:b1:41:0b:9f:a0:c8: 52:66:8c:c1:aa:ab:65:63:d0:b2:fc:1f:d6:fc:ad: e3:ae:a8:dc:d5:3b:c4:d0:98:36:2a:e5:2a:9b:1c: f4:7a:0f:49:5a:68:d4:b8:71:34:8e:00:e1:d7:99: 76:d1:82:ce:b2:e4:4c:4c:5b:f8:ca:10:7d:b9:66: a0:3e:3b:2d:27:bf:5e:8a:3d:64:6a:c7:c9:43:3f: 55:d7:03:a4:3b:ea:c6:b8:b3:1b:fc:4a:b6:02:94: 06:6d:dc:6a:8c:cc:0c:ba:7c:60:ac:2a:19:0f:93: 26:49:bd:22:a0:43:25:20:a0:81:69:0c:a9:5e:77: ea:79:a6:59:4a:86:27:f3:d9:bf:76:d6:e9:4c:e5: 48:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:98:20:1B:6F:CB:97:6E:08:96:16:45:EE:C7:DE:EA:B3:A5:23:4D X509v3 Authority Key Identifier: keyid:A1:0F:57:83:C8:F9:A6:D9:4D:29:B4:AA:90:C5:6E:01:6B:B5:14:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:97:c1:a7:97:30:53:15:1c:07:7a:38:56:f8:0a:e3:f5:eb: e9:6a:dc:94:d4:ab:44:e1:82:69:8c:6d:44:57:dc:cf:90:08: 20:2d:02:95:90:21:41:e8:be:25:52:cc:1b:f5:33:ef:41:48: ff:8e:79:c0:b6:bb:8b:61:0a:96:b8:cd:14:9a:49:7a:36:1c: 4e:ec:16:67:3a:27:60:06:da:11:4d:6f:36:09:84:3d:d5:d7: 88:39:d9:98:18:8a:26:75:97:94:04:0c:4a:e9:2b:df:62:ca: 19:34:86:04:91:27:59:9d:08:dc:1c:6d:79:d7:32:37:c9:f8: 65:40:35:f7:7c:05:84:45:69:e5:64:b0:38:1d:ff:b6:c1:92: 19:60:6f:b3:ae:fc:99:ce:be:ca:b2:e9:0d:29:62:fc:bd:41: f5:6b:7f:22:b2:95:b3:35:0a:53:01:f7:f7:27:fb:b8:67:a2: 73:11:7b:f6:03:f0:fa:11:d4:6a:f9:4e:3a:46:ee:5e:ea:56: 26:5a:7b:38:6d:d1:0d:11:20:c3:ed:4a:07:16:ff:85:df:a0: ea:3a:7a:c9:eb:8a:1b:1b:34:82:3d:cb:cc:02:d3:77:1e:8f: c8:9f:75:18:fa:dd:e6:6c:26:cb:5e:cc:a3:92:40:a1:83:7d: 17:b7:3c:92 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAYswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjY1QUMxMTAvBgNVBAUTKEExMEY1NzgzQzhGOUE2RDk0RDI5QjRBQTkwQzU2RTAx NkJCNTE0NTYwHhcNMjYwMzI1MDM1MjIxWhcNMjYwNDAxMDM1MjIxWjAYMRYwFAYD VQQDEw02OWMzNWJmNS1kMzJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAk5rjVKnrHVNM9+QUpJvx1MNRLdp6fpYk33yXu2mgdtR4LoBYLX9iNPcWZIZf aP64ONc3u69T+K3JPSwbeUoGwkiHNv0/T6vWS4XBdXP+Z04AtRtr4+pQ2yGB+Vfl twf7UQAGwR1BfJPUC6e/8sLIMNKxQQufoMhSZozBqqtlY9Cy/B/W/K3jrqjc1TvE 0Jg2KuUqmxz0eg9JWmjUuHE0jgDh15l20YLOsuRMTFv4yhB9uWagPjstJ79eij1k asfJQz9V1wOkO+rGuLMb/Eq2ApQGbdxqjMwMunxgrCoZD5MmSb0ioEMlIKCBaQyp XnfqeaZZSoYn89m/dtbpTOVI6wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMSYIBtv y5duCJYWRe7H3uqzpSNNMB8GA1UdIwQYMBaAFKEPV4PI+abZTSm0qpDFbgFrtRRW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjVBQy9DQjc0RjhCRUUx RTAxMUVFQUY2RTFFNjhDNEY5QUUwMi9vUTlYZzhqNXB0bE5LYlNxa01WdUFXdTFG RlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL29ROVhnOGo1cHRsTktiU3FrTVZ1QVd1MUZGWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NjVBQy9DQjc0RjhCRUUxRTAxMUVFQUY2RTFFNjhDNEY5QUUwMi9vUTlYZzhqNXB0 bE5LYlNxa01WdUFXdTFGRlkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAs5fBp5cwUxUcB3o4VvgK4/Xr6WrclNSrROGCaYxtRFfcz5AIIC0ClZAhQei+ JVLMG/Uz70FI/455wLa7i2EKlrjNFJpJejYcTuwWZzonYAbaEU1vNgmEPdXXiDnZ mBiKJnWXlAQMSukr32LKGTSGBJEnWZ0I3BxtedcyN8n4ZUA193wFhEVp5WSwOB3/ tsGSGWBvs678mc6+yrLpDSli/L1B9Wt/IrKVszUKUwH39yf7uGeicxF79gPw+hHU avlOOkbuXupWJlp7OG3RDREgw+1KBxb/hd+g6jp6yeuKGxs0gj3LzALTdx6PyJ91 GPrd5mwmy17Mo5JAoYN9F7c8kg== -----END CERTIFICATE-----Generated at Thu Mar 26 13:23:25 2026 by rpki-client