$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2AAE/57537D5E704511EA8A941D1AC4F9AE02/o7CyBZyzB2t17aMkt2UH08KVUoM.mft File: o7CyBZyzB2t17aMkt2UH08KVUoM.mft (raw, json) Hash identifier: po4TPfGWKTRIiJqGv/srtqCtxuo21/uG3UTmQuPyI1g= Subject key identifier: CA:15:3B:07:DC:3A:BA:D2:3B:E5:33:38:81:C0:5C:9F:23:B5:69:77 Authority key identifier: A3:B0:B2:05:9C:B3:07:6B:75:ED:A3:24:B7:65:07:D3:C2:95:52:83 Certificate issuer: /CN=A91C2AAE/serialNumber=A3B0B2059CB3076B75EDA324B76507D3C2955283 Certificate serial: 0AC7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o7CyBZyzB2t17aMkt2UH08KVUoM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2AAE/57537D5E704511EA8A941D1AC4F9AE02/o7CyBZyzB2t17aMkt2UH08KVUoM.mft Manifest number: 0ABC Signing time: Thu 26 Mar 2026 19:22:17 +0000 Manifest this update: Thu 26 Mar 2026 19:22:16 +0000 Manifest next update: Thu 02 Apr 2026 19:22:16 +0000 Files and hashes: 1: o7CyBZyzB2t17aMkt2UH08KVUoM.crl (hash: arjF7cLNvSQqhoxvah7+poNYY2nO9bw5XtX/afkS2+M=) 2: 631E45669D2511F092B08685C4F9AE02.roa (hash: 1Rw9i7rb41bC8teZOhnIM2irj9ZN6lPefYHAKfVyVtA=) 3: 62B22A709D2511F092B08685C4F9AE02.roa (hash: ErQTXPCIzakeWcJuA9lBP6QkWK++bQEbr4xrlufhJWw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2AAE/57537D5E704511EA8A941D1AC4F9AE02/o7CyBZyzB2t17aMkt2UH08KVUoM.crl rsync://rpki.apnic.net/member_repository/A91C2AAE/57537D5E704511EA8A941D1AC4F9AE02/o7CyBZyzB2t17aMkt2UH08KVUoM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o7CyBZyzB2t17aMkt2UH08KVUoM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 19:22:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2759 (0xac7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2AAE, serialNumber=A3B0B2059CB3076B75EDA324B76507D3C2955283 Validity Not Before: Mar 26 19:22:16 2026 GMT Not After : Apr 2 19:22:16 2026 GMT Subject: CN=69c58769-0c0b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:4b:bf:fb:05:ad:dc:8a:d7:34:2c:12:b8:78: c9:fe:4a:f9:93:c2:61:89:6c:14:c2:1c:77:c2:a6: 26:5b:e4:48:27:da:46:81:37:76:bc:ab:38:d6:64: 14:a0:b2:27:d9:c0:1d:00:96:de:59:74:f5:e6:47: e0:b1:0f:0f:1c:36:d4:9b:cf:76:41:9a:0b:7b:d7: 14:50:2a:59:8e:a1:6c:e9:76:84:db:9e:f9:0d:77: 92:be:f0:17:ef:d6:a7:15:d3:52:ed:53:4d:22:37: 99:06:05:f3:e8:b2:5a:ba:01:47:79:f3:40:c8:de: 2a:3e:34:60:2a:6c:31:69:44:03:2c:29:23:5b:85: e2:93:0b:28:59:4f:b6:48:41:3b:39:17:93:b6:fd: e0:a2:97:c0:a3:23:64:cd:68:83:42:58:fe:b9:bd: ff:25:84:dd:4c:ee:81:76:f0:ad:e3:d1:79:46:24: 3e:4a:7e:e3:3f:d1:57:3e:de:7f:10:8c:4b:b2:55: e5:1e:1e:6d:f3:01:65:74:66:fa:bd:73:1f:da:02: 0e:b0:1c:33:a4:6a:69:41:b4:96:ce:59:7d:a4:70: b6:79:c7:63:b9:08:d5:34:6d:f3:2c:ff:77:0b:ab: 6e:49:17:66:68:00:32:90:2f:e9:93:c1:cd:13:8d: 29:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:15:3B:07:DC:3A:BA:D2:3B:E5:33:38:81:C0:5C:9F:23:B5:69:77 X509v3 Authority Key Identifier: keyid:A3:B0:B2:05:9C:B3:07:6B:75:ED:A3:24:B7:65:07:D3:C2:95:52:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2AAE/57537D5E704511EA8A941D1AC4F9AE02/o7CyBZyzB2t17aMkt2UH08KVUoM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o7CyBZyzB2t17aMkt2UH08KVUoM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2AAE/57537D5E704511EA8A941D1AC4F9AE02/o7CyBZyzB2t17aMkt2UH08KVUoM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:2d:c3:e1:f0:00:95:f9:67:51:21:a2:ce:f1:d9:84:a0:4e: d9:d9:b9:90:73:21:40:39:64:c2:59:a1:46:ff:11:76:1f:fa: 75:20:9e:cd:51:eb:10:0a:3f:36:96:a1:e0:03:17:70:ed:18: 63:71:b1:cb:d3:84:30:4d:a2:d7:e8:6e:e6:f2:4f:c3:8f:7c: f5:c5:e3:8d:65:70:f2:1d:12:2d:93:2d:41:16:10:2d:be:7d: ac:72:9b:43:be:da:fa:66:00:be:f9:d4:59:b4:bb:5e:d0:8c: e5:e6:d6:3f:da:ba:c6:e5:84:67:dd:18:29:94:2c:fb:06:96: 81:e2:8a:ea:b5:b2:86:ec:62:26:11:ba:72:27:d0:d2:5c:31: e7:90:9c:3b:f4:14:2c:a8:07:42:b7:03:41:52:3e:b3:cb:de: 65:e1:a1:e9:f6:67:a9:ce:be:6f:5e:3c:34:bb:97:0a:ec:24: ae:a0:7a:42:43:a5:57:67:0e:f0:15:a1:32:d6:ae:54:6c:8b: 6e:ca:8c:26:8e:67:0c:23:ca:3d:48:3f:8a:8c:cd:ea:e1:f0: 21:e6:85:3f:2b:ac:a1:08:fa:a8:de:88:7a:5a:0d:fb:a0:03: 9f:16:c6:8c:18:7f:46:7a:65:22:12:d3:ea:f7:1a:ba:8b:75: ee:e7:f6:32 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCscwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzJBQUUxMTAvBgNVBAUTKEEzQjBCMjA1OUNCMzA3NkI3NUVEQTMyNEI3NjUwN0Qz QzI5NTUyODMwHhcNMjYwMzI2MTkyMjE2WhcNMjYwNDAyMTkyMjE2WjAYMRYwFAYD VQQDEw02OWM1ODc2OS0wYzBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsUu/+wWt3IrXNCwSuHjJ/kr5k8JhiWwUwhx3wqYmW+RIJ9pGgTd2vKs41mQU oLIn2cAdAJbeWXT15kfgsQ8PHDbUm892QZoLe9cUUCpZjqFs6XaE2575DXeSvvAX 79anFdNS7VNNIjeZBgXz6LJaugFHefNAyN4qPjRgKmwxaUQDLCkjW4XikwsoWU+2 SEE7OReTtv3gopfAoyNkzWiDQlj+ub3/JYTdTO6BdvCt49F5RiQ+Sn7jP9FXPt5/ EIxLslXlHh5t8wFldGb6vXMf2gIOsBwzpGppQbSWzll9pHC2ecdjuQjVNG3zLP93 C6tuSRdmaAAykC/pk8HNE40pMwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMoVOwfc OrrSO+UzOIHAXJ8jtWl3MB8GA1UdIwQYMBaAFKOwsgWcswdrde2jJLdlB9PClVKD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMkFBRS81NzUzN0Q1RTcw NDUxMUVBOEE5NDFEMUFDNEY5QUUwMi9vN0N5Qlp5ekIydDE3YU1rdDJVSDA4S1ZV b00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL283Q3lCWnl6QjJ0MTdhTWt0MlVIMDhLVlVvTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MkFBRS81NzUzN0Q1RTcwNDUxMUVBOEE5NDFEMUFDNEY5QUUwMi9vN0N5Qlp5ekIy dDE3YU1rdDJVSDA4S1ZVb00ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAhS3D4fAAlflnUSGizvHZhKBO2dm5kHMhQDlkwlmhRv8Rdh/6dSCezVHrEAo/ Npah4AMXcO0YY3Gxy9OEME2i1+hu5vJPw4989cXjjWVw8h0SLZMtQRYQLb59rHKb Q77a+mYAvvnUWbS7XtCM5ebWP9q6xuWEZ90YKZQs+waWgeKK6rWyhuxiJhG6cifQ 0lwx55CcO/QULKgHQrcDQVI+s8veZeGh6fZnqc6+b148NLuXCuwkrqB6QkOlV2cO 8BWhMtauVGyLbsqMJo5nDCPKPUg/iozN6uHwIeaFPyusoQj6qN6IeloN+6ADnxbG jBh/RnplIhLT6vcauot17uf2Mg== -----END CERTIFICATE-----Generated at Fri Mar 27 04:15:11 2026 by rpki-client