$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/OBfP4ApfGsw2O0cvT2nag761ZhM.mft File: OBfP4ApfGsw2O0cvT2nag761ZhM.mft (raw, json) Hash identifier: rJ3Xdfd4jhBipr0ANBmjlgDy1E2W1wP/aI8WPnEkwz8= Subject key identifier: F1:E1:5E:49:E9:C2:4B:21:4E:0D:DF:B5:8E:0B:B2:81:FD:A7:75:5E Authority key identifier: 38:17:CF:E0:0A:5F:1A:CC:36:3B:47:2F:4F:69:DA:83:BE:B5:66:13 Certificate issuer: /CN=A91B9AB9/serialNumber=3817CFE00A5F1ACC363B472F4F69DA83BEB56613 Certificate serial: 012B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBfP4ApfGsw2O0cvT2nag761ZhM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/OBfP4ApfGsw2O0cvT2nag761ZhM.mft Manifest number: 0123 Signing time: Fri 27 Mar 2026 05:12:03 +0000 Manifest this update: Fri 27 Mar 2026 05:12:02 +0000 Manifest next update: Fri 03 Apr 2026 05:12:02 +0000 Files and hashes: 1: OBfP4ApfGsw2O0cvT2nag761ZhM.crl (hash: gE/sWyvTk89oVChJfbGlaaGHV5VaE6lw68g/Cmsqlz8=) 2: A06AB21E6E8811EF95434073C4F9AE02.roa (hash: 1cWKe61JXoqpcmn6lNJya/Zcn9d/497NYBSEDuJwXJY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/OBfP4ApfGsw2O0cvT2nag761ZhM.crl rsync://rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/OBfP4ApfGsw2O0cvT2nag761ZhM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBfP4ApfGsw2O0cvT2nag761ZhM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 05:12:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 299 (0x12b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9AB9, serialNumber=3817CFE00A5F1ACC363B472F4F69DA83BEB56613 Validity Not Before: Mar 27 05:12:02 2026 GMT Not After : Apr 3 05:12:02 2026 GMT Subject: CN=69c611a3-0a77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:7c:83:8a:7b:4e:5a:fa:95:f4:0a:93:a7:ea: c0:b4:1d:3f:f3:a6:4b:24:4b:66:b3:71:b1:fc:48: 93:58:fe:79:45:eb:ed:22:0c:b3:46:0d:1b:72:2e: 25:f4:48:d5:6f:5f:b8:39:d0:c1:3b:c9:8a:3b:ae: a8:d4:f8:75:ab:61:48:d4:23:18:3c:90:9e:d9:d3: 40:30:bf:2d:18:c1:6f:c1:97:43:97:e8:9d:05:1e: 8c:db:fe:57:52:e3:21:33:30:25:91:57:25:33:18: e0:09:32:65:35:96:b2:3b:39:8b:eb:35:e5:1a:f1: f1:4b:c1:cc:d7:8b:7a:1c:47:aa:08:83:d2:74:85: d2:09:bb:9d:05:4d:13:72:7b:63:d0:41:85:cb:66: 85:f6:11:45:ee:bf:fa:19:cb:12:0d:f3:2f:b0:47: 31:1e:f5:f7:b8:59:33:69:bb:10:64:1b:03:e3:0e: f1:77:fd:8c:4a:c2:5d:aa:59:b4:ba:2d:72:fa:9a: a7:ef:76:c7:08:49:fc:63:48:71:89:6e:10:32:45: e9:a0:5c:cc:b1:b8:61:7a:f5:f4:83:93:39:a1:f4: e5:b2:42:79:37:28:f1:38:2f:4c:7a:5d:cf:c2:40: ca:b6:05:9f:b7:d0:16:23:e7:18:9a:dd:f6:61:78: 21:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:E1:5E:49:E9:C2:4B:21:4E:0D:DF:B5:8E:0B:B2:81:FD:A7:75:5E X509v3 Authority Key Identifier: keyid:38:17:CF:E0:0A:5F:1A:CC:36:3B:47:2F:4F:69:DA:83:BE:B5:66:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/OBfP4ApfGsw2O0cvT2nag761ZhM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBfP4ApfGsw2O0cvT2nag761ZhM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/OBfP4ApfGsw2O0cvT2nag761ZhM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:13:17:25:3a:a1:09:a5:93:49:55:4f:33:f2:4a:7d:56:61: 6f:96:83:27:9d:24:4d:c2:e3:af:5c:67:45:70:15:f5:96:ae: c3:8c:17:59:79:63:b6:f4:3c:08:4f:4c:db:2d:9b:39:01:8f: f3:92:55:f3:32:59:c6:5a:13:36:10:44:e3:0f:7d:03:ff:05: 31:86:32:19:a4:c4:16:8a:63:d0:65:ec:2a:bf:13:5c:94:bd: 45:8e:d0:a1:70:3c:71:6b:40:9b:14:4e:69:cb:2a:5d:72:58: fb:b2:6f:9d:8b:1a:f6:42:2e:b6:dc:23:6b:09:5b:17:5d:27: 4b:fa:0a:c6:c1:7b:28:cd:12:20:d4:2d:3a:b9:61:ac:47:dd: 3d:8d:39:fd:c6:3c:ad:af:ec:fc:ee:ce:d8:0a:bf:1c:05:4d: c5:e7:e3:05:7c:e5:9a:67:c5:1b:cd:23:23:83:f5:f1:7f:88: 13:47:c1:9b:fa:41:2e:b9:77:1f:d6:a5:09:d3:3d:08:10:69: 97:ed:59:76:15:4b:40:8c:b3:80:38:4e:e4:f8:8e:ff:01:27: 0a:36:8e:c3:5c:6c:d5:e4:0c:1c:59:29:00:ad:43:c5:62:87: 98:96:54:c9:36:bc:e5:92:8b:03:1e:fe:a1:5a:f7:5a:e6:19: a9:35:7d:d1 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICASswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjlBQjkxMTAvBgNVBAUTKDM4MTdDRkUwMEE1RjFBQ0MzNjNCNDcyRjRGNjlEQTgz QkVCNTY2MTMwHhcNMjYwMzI3MDUxMjAyWhcNMjYwNDAzMDUxMjAyWjAYMRYwFAYD VQQDEw02OWM2MTFhMy0wYTc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwnyDintOWvqV9AqTp+rAtB0/86ZLJEtms3Gx/EiTWP55RevtIgyzRg0bci4l 9EjVb1+4OdDBO8mKO66o1Ph1q2FI1CMYPJCe2dNAML8tGMFvwZdDl+idBR6M2/5X UuMhMzAlkVclMxjgCTJlNZayOzmL6zXlGvHxS8HM14t6HEeqCIPSdIXSCbudBU0T cntj0EGFy2aF9hFF7r/6GcsSDfMvsEcxHvX3uFkzabsQZBsD4w7xd/2MSsJdqlm0 ui1y+pqn73bHCEn8Y0hxiW4QMkXpoFzMsbhhevX0g5M5ofTlskJ5NyjxOC9Mel3P wkDKtgWft9AWI+cYmt32YXghzQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPHhXknp wkshTg3ftY4LsoH9p3VeMB8GA1UdIwQYMBaAFDgXz+AKXxrMNjtHL09p2oO+tWYT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOUFCOS9EMTE4QzBCQzZF ODQxMUVGQTNDRDk4M0ZDNEY5QUUwMi9PQmZQNEFwZkdzdzJPMGN2VDJuYWc3NjFa aE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09CZlA0QXBmR3N3Mk8wY3ZUMm5hZzc2MVpoTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OUFCOS9EMTE4QzBCQzZFODQxMUVGQTNDRDk4M0ZDNEY5QUUwMi9PQmZQNEFwZkdz dzJPMGN2VDJuYWc3NjFaaE0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEALRMXJTqhCaWTSVVPM/JKfVZhb5aDJ50kTcLjr1xnRXAV9Zauw4wXWXljtvQ8 CE9M2y2bOQGP85JV8zJZxloTNhBE4w99A/8FMYYyGaTEFopj0GXsKr8TXJS9RY7Q oXA8cWtAmxROacsqXXJY+7JvnYsa9kIuttwjawlbF10nS/oKxsF7KM0SINQtOrlh rEfdPY05/cY8ra/s/O7O2Aq/HAVNxefjBXzlmmfFG80jI4P18X+IE0fBm/pBLrl3 H9alCdM9CBBpl+1ZdhVLQIyzgDhO5PiO/wEnCjaOw1xs1eQMHFkpAK1DxWKHmJZU yTa85ZKLAx7+oVr3WuYZqTV90Q== -----END CERTIFICATE-----Generated at Sat Mar 28 08:42:53 2026 by rpki-client