$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1621/35EDA92ECF0D11EF92F1EC36C4F9AE02/oCcZWkgg89cmSk1X7pqdTCoQySM.mft File: oCcZWkgg89cmSk1X7pqdTCoQySM.mft (raw, json) Hash identifier: nZA4b/G+4W33nJKXgirojtzCbCBYoS2oXr4gAnWVZfA= Subject key identifier: B8:1C:23:65:AE:A9:BF:56:FD:BD:70:16:67:E9:69:AC:A3:7A:F7:1B Authority key identifier: A0:27:19:5A:48:20:F3:D7:26:4A:4D:57:EE:9A:9D:4C:2A:10:C9:23 Certificate issuer: /CN=A91C1621/serialNumber=A027195A4820F3D7264A4D57EE9A9D4C2A10C923 Certificate serial: F3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oCcZWkgg89cmSk1X7pqdTCoQySM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1621/35EDA92ECF0D11EF92F1EC36C4F9AE02/oCcZWkgg89cmSk1X7pqdTCoQySM.mft Manifest number: EC Signing time: Thu 26 Mar 2026 14:16:15 +0000 Manifest this update: Thu 26 Mar 2026 14:16:14 +0000 Manifest next update: Thu 02 Apr 2026 14:16:14 +0000 Files and hashes: 1: oCcZWkgg89cmSk1X7pqdTCoQySM.crl (hash: i9D8ldsoe4ICq2uK+7uXZXWvq8rATZN73urmJ2xM7cU=) 2: 81E4D4A2053011F09C73001FC4F9AE02.roa (hash: DA85ff4aMzWQg5AImUfIHcT74CRXr+XSDwxZJMl53Eg=) 3: 8AE793B2E9E311F0A43C19FF656F56BC.roa (hash: iLjsYldebmEc4jQ39cKvj356cAs2Ip03tkyos/Cg+/w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1621/35EDA92ECF0D11EF92F1EC36C4F9AE02/oCcZWkgg89cmSk1X7pqdTCoQySM.crl rsync://rpki.apnic.net/member_repository/A91C1621/35EDA92ECF0D11EF92F1EC36C4F9AE02/oCcZWkgg89cmSk1X7pqdTCoQySM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oCcZWkgg89cmSk1X7pqdTCoQySM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 14:06:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 243 (0xf3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1621, serialNumber=A027195A4820F3D7264A4D57EE9A9D4C2A10C923 Validity Not Before: Mar 26 14:16:14 2026 GMT Not After : Apr 2 14:16:14 2026 GMT Subject: CN=69c53faf-29a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:4c:6e:35:71:4e:21:c2:dd:0a:f7:1c:dd:f1: ce:05:fc:08:7f:02:b7:b8:c1:70:ee:c9:fe:49:19: 86:65:cd:35:b9:f4:89:90:0a:f5:e5:b7:42:4f:fe: 72:73:9d:4e:82:e3:3f:be:52:1c:e2:01:9d:65:89: 47:d1:19:f3:99:5c:96:1f:b5:ae:95:09:07:9c:7d: 14:a3:ee:56:fa:f3:58:45:a0:7f:3f:04:07:95:85: ef:32:f4:14:ab:c6:2f:92:30:7b:4b:8e:f3:a9:f5: 6e:89:48:cd:95:0f:fd:d2:78:ca:8c:b0:32:6a:f9: c4:a0:87:15:37:05:1d:56:f2:8d:27:c3:74:1e:99: f3:5d:26:3f:d6:19:31:07:dc:0c:b5:ce:e6:26:98: 72:00:63:71:91:4f:87:6a:32:22:ad:36:ef:85:34: 9a:aa:03:1c:a0:29:7c:1b:d3:79:31:b1:73:2d:51: 9b:92:e3:f8:3e:d9:d2:0b:a8:dc:f8:be:6a:af:4d: f3:2a:1c:52:36:06:db:23:c0:c5:7d:40:97:18:a5: b7:e0:b9:c6:fd:77:9f:d2:8c:c2:6f:8c:27:be:56: 5a:b9:14:56:18:18:3e:0b:ab:37:70:74:ae:93:f0: a5:78:3e:97:18:08:a4:16:f8:44:67:c7:3c:90:0c: 67:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:1C:23:65:AE:A9:BF:56:FD:BD:70:16:67:E9:69:AC:A3:7A:F7:1B X509v3 Authority Key Identifier: keyid:A0:27:19:5A:48:20:F3:D7:26:4A:4D:57:EE:9A:9D:4C:2A:10:C9:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1621/35EDA92ECF0D11EF92F1EC36C4F9AE02/oCcZWkgg89cmSk1X7pqdTCoQySM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oCcZWkgg89cmSk1X7pqdTCoQySM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1621/35EDA92ECF0D11EF92F1EC36C4F9AE02/oCcZWkgg89cmSk1X7pqdTCoQySM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:e5:95:cc:20:2a:79:f4:8a:fa:0a:b6:ca:5c:02:62:6a:7e: b2:e6:91:50:a2:0c:b0:6a:a4:80:d4:db:50:78:1b:4f:a0:14: 94:e4:bc:cf:77:2c:04:22:91:d0:e1:4f:95:ab:8b:1f:6e:74: b8:6a:ad:02:76:94:70:49:bc:34:79:36:5f:08:ca:f5:5f:aa: 08:c7:0d:2e:cd:95:0c:d0:10:4a:49:ea:de:3a:42:d6:cc:45: 09:66:ec:d2:b9:42:8a:ce:e8:a9:d1:f2:47:34:4c:57:7d:7d: 80:1b:ef:b8:d1:90:46:b2:76:ed:b9:74:be:11:14:e3:12:0e: da:41:b3:a4:f1:19:89:5f:03:b2:38:2f:4f:52:5f:88:f8:29: 96:30:41:69:63:14:a6:c2:ea:ba:af:3d:30:02:10:33:9a:95: a7:93:74:68:cb:3f:6a:2a:35:1d:ce:fa:50:8f:2b:f8:e6:b2: b3:bf:ae:b1:c9:46:1b:7f:62:0b:68:b3:5c:08:87:6a:d2:41: 4a:fa:27:34:1c:67:81:18:48:a3:56:80:ff:01:4b:bf:ac:37: 50:ec:21:e3:dd:e7:fa:a0:fc:10:89:99:06:e9:37:e5:11:f4: 6b:21:b9:e1:b8:9e:17:17:00:f9:3f:eb:ac:81:69:d1:81:46: b1:79:b7:57 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAPMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzE2MjExMTAvBgNVBAUTKEEwMjcxOTVBNDgyMEYzRDcyNjRBNEQ1N0VFOUE5RDRD MkExMEM5MjMwHhcNMjYwMzI2MTQxNjE0WhcNMjYwNDAyMTQxNjE0WjAYMRYwFAYD VQQDEw02OWM1M2ZhZi0yOWExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0ExuNXFOIcLdCvcc3fHOBfwIfwK3uMFw7sn+SRmGZc01ufSJkAr15bdCT/5y c51OguM/vlIc4gGdZYlH0RnzmVyWH7WulQkHnH0Uo+5W+vNYRaB/PwQHlYXvMvQU q8YvkjB7S47zqfVuiUjNlQ/90njKjLAyavnEoIcVNwUdVvKNJ8N0HpnzXSY/1hkx B9wMtc7mJphyAGNxkU+HajIirTbvhTSaqgMcoCl8G9N5MbFzLVGbkuP4PtnSC6jc +L5qr03zKhxSNgbbI8DFfUCXGKW34LnG/Xef0ozCb4wnvlZauRRWGBg+C6s3cHSu k/CleD6XGAikFvhEZ8c8kAxnIwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLgcI2Wu qb9W/b1wFmfpaayjevcbMB8GA1UdIwQYMBaAFKAnGVpIIPPXJkpNV+6anUwqEMkj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTYyMS8zNUVEQTkyRUNG MEQxMUVGOTJGMUVDMzZDNEY5QUUwMi9vQ2NaV2tnZzg5Y21TazFYN3BxZFRDb1F5 U00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL29DY1pXa2dnODljbVNrMVg3cHFkVENvUXlTTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MTYyMS8zNUVEQTkyRUNGMEQxMUVGOTJGMUVDMzZDNEY5QUUwMi9vQ2NaV2tnZzg5 Y21TazFYN3BxZFRDb1F5U00ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAc+WVzCAqefSK+gq2ylwCYmp+suaRUKIMsGqkgNTbUHgbT6AUlOS8z3csBCKR 0OFPlauLH250uGqtAnaUcEm8NHk2XwjK9V+qCMcNLs2VDNAQSknq3jpC1sxFCWbs 0rlCis7oqdHyRzRMV319gBvvuNGQRrJ27bl0vhEU4xIO2kGzpPEZiV8DsjgvT1Jf iPgpljBBaWMUpsLquq89MAIQM5qVp5N0aMs/aio1Hc76UI8r+Oays7+usclGG39i C2izXAiHatJBSvonNBxngRhIo1aA/wFLv6w3UOwh493n+qD8EImZBuk35RH0ayG5 4bieFxcA+T/rrIFp0YFGsXm3Vw== -----END CERTIFICATE-----Generated at Thu Mar 26 17:32:13 2026 by rpki-client