$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.mft File: Oq-A6pfpm5UlszvBM1uwlcLSeKc.mft (raw, json) Hash identifier: WA2UyB8whAXsHAOtq/BRoQCYgaBmnd+PTq7qVTECFmw= Subject key identifier: 95:91:1D:8A:BB:1E:2C:DC:6D:95:18:53:CE:B3:F4:B9:10:29:BC:BC Authority key identifier: 3A:AF:80:EA:97:E9:9B:95:25:B3:3B:C1:33:5B:B0:95:C2:D2:78:A7 Certificate issuer: /CN=A91C4F06/serialNumber=3AAF80EA97E99B9525B33BC1335BB095C2D278A7 Certificate serial: 3617 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.mft Manifest number: 35A1 Signing time: Tue 24 Mar 2026 14:48:11 +0000 Manifest this update: Tue 24 Mar 2026 14:48:10 +0000 Manifest next update: Tue 31 Mar 2026 14:48:10 +0000 Files and hashes: 1: Oq-A6pfpm5UlszvBM1uwlcLSeKc.crl (hash: cBKiKUC8JvwmfbbH/ojA+uPaixRifBrQKZ0b3qi9Y1M=) 2: 1600DBF659C311E9A04B846FC4F9AE02.roa (hash: bGRZ0FpspSCf0cAveUKjR/NLCR8lXup6exlYiK4KDOA=) 3: 5A318E06F6A111EBB6318B7EC4F9AE02.roa (hash: Kcd6XpOFaQiuuRL3zl2swXULLS6KNUXvk+RMSSrL0Fo=) 4: 6F1612BE562511EB9470B150C4F9AE02.roa (hash: VN3fbgbN+VB5jjHGJ778LsC3bD0h86H1GfKAiCzDGbA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.crl rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 14:48:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13847 (0x3617) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C4F06, serialNumber=3AAF80EA97E99B9525B33BC1335BB095C2D278A7 Validity Not Before: Mar 24 14:48:10 2026 GMT Not After : Mar 31 14:48:10 2026 GMT Subject: CN=69c2a42b-4d40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:84:30:64:70:16:ee:88:94:b6:36:78:68:6e:35: cd:f6:9d:87:95:5a:af:47:5b:8c:75:26:b9:6d:bb: 9f:2e:8f:08:5b:18:49:f1:f1:02:c4:a9:76:df:6d: f0:8a:ab:12:7f:6f:00:f8:85:6f:4f:9f:d5:f4:08: 4f:d2:be:08:41:fe:5f:0e:1d:3f:f0:08:96:4c:d2: f2:81:ee:8f:85:ea:3a:62:7d:4a:46:01:21:ed:77: dd:83:05:b3:16:ee:29:c4:fb:ad:7d:ea:bd:c5:cf: 67:c2:aa:a0:bb:b1:5a:9a:1c:08:fa:02:71:fd:98: fa:e5:68:46:b7:6b:b9:f4:97:9d:31:b3:6b:ed:ca: 1d:14:0b:b7:4e:a7:27:82:8e:e8:92:ec:c4:72:8e: 0e:13:86:0e:01:7e:30:48:c5:ae:a3:fb:29:0f:c4: e4:48:ce:30:55:44:c3:fa:67:a3:92:fd:f6:2e:da: c4:ad:0f:86:3c:66:95:02:82:e8:03:3e:f8:0d:af: 85:04:4f:3d:0f:04:4e:27:ab:45:cc:a2:48:b2:18: db:95:fa:91:ef:47:ba:da:c1:62:8a:fa:a9:16:fa: b5:b8:18:0d:42:a2:00:8b:b6:f1:e1:f5:61:9d:77: f7:b0:35:6f:20:c8:fa:fa:c2:25:32:b0:98:fc:9e: c3:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:91:1D:8A:BB:1E:2C:DC:6D:95:18:53:CE:B3:F4:B9:10:29:BC:BC X509v3 Authority Key Identifier: keyid:3A:AF:80:EA:97:E9:9B:95:25:B3:3B:C1:33:5B:B0:95:C2:D2:78:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c9:b5:a2:7d:27:41:d9:e3:dd:18:fd:ce:88:87:a6:00:9f:b3: 21:9c:89:bb:55:9a:e0:64:3c:bf:f9:3e:df:cc:f7:d2:ad:7b: e0:56:ad:5b:e8:20:91:3d:c9:e9:3a:8c:5d:41:49:f2:c2:80: 0a:11:b4:bf:a9:d6:56:2a:d1:8e:ea:2c:da:03:76:58:8b:d8: a1:29:d7:36:ba:84:3e:d4:7c:79:1c:2b:33:3a:a7:09:77:c1: e5:06:25:87:20:61:a4:c4:89:c8:31:74:0d:c2:62:cb:4b:7a: 91:64:c1:a3:60:bd:bf:cd:57:ae:4a:d6:9f:c6:00:cc:6a:dd: 7e:d7:d8:2f:11:97:c3:15:a8:a6:19:58:8d:75:cb:a9:14:1a: b2:b0:6e:ed:19:0b:3e:77:94:24:97:83:b1:36:c2:ea:15:56: f7:b6:9c:3a:7d:75:96:ff:f3:42:d1:85:ce:40:fc:03:e2:8f: 65:0a:58:a4:78:57:a8:c8:9b:90:e8:29:00:56:ea:5a:8e:80: 21:90:8e:da:48:68:81:21:10:c6:d2:b6:b1:f0:fa:05:10:3c: 83:e6:5c:0f:a9:a2:b6:c7:8f:9c:90:da:cc:19:75:c9:de:bf: e8:80:a4:bb:f7:87:8c:1a:90:35:b5:1f:d6:13:99:ee:39:d2: 2b:12:eb:70 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNhcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzRGMDYxMTAvBgNVBAUTKDNBQUY4MEVBOTdFOTlCOTUyNUIzM0JDMTMzNUJCMDk1 QzJEMjc4QTcwHhcNMjYwMzI0MTQ0ODEwWhcNMjYwMzMxMTQ0ODEwWjAYMRYwFAYD VQQDEw02OWMyYTQyYi00ZDQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAhDBkcBbuiJS2NnhobjXN9p2HlVqvR1uMdSa5bbufLo8IWxhJ8fECxKl2323w iqsSf28A+IVvT5/V9AhP0r4IQf5fDh0/8AiWTNLyge6Pheo6Yn1KRgEh7XfdgwWz Fu4pxPutfeq9xc9nwqqgu7FamhwI+gJx/Zj65WhGt2u59JedMbNr7codFAu3Tqcn go7okuzEco4OE4YOAX4wSMWuo/spD8TkSM4wVUTD+mejkv32LtrErQ+GPGaVAoLo Az74Da+FBE89DwROJ6tFzKJIshjblfqR70e62sFiivqpFvq1uBgNQqIAi7bx4fVh nXf3sDVvIMj6+sIlMrCY/J7DvQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJWRHYq7 HizcbZUYU86z9LkQKby8MB8GA1UdIwQYMBaAFDqvgOqX6ZuVJbM7wTNbsJXC0nin MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNEYwNi83NkUxQzQ3RTFE OTUxMUUyQkU1OTVFN0QwOEIwMkNEMi9PcS1BNnBmcG01VWxzenZCTTF1d2xjTFNl S2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09xLUE2cGZwbTVVbHN6dkJNMXV3bGNMU2VLYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NEYwNi83NkUxQzQ3RTFEOTUxMUUyQkU1OTVFN0QwOEIwMkNEMi9PcS1BNnBmcG01 VWxzenZCTTF1d2xjTFNlS2MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAybWifSdB2ePdGP3OiIemAJ+zIZyJu1Wa4GQ8v/k+38z30q174FatW+ggkT3J 6TqMXUFJ8sKAChG0v6nWVirRjuos2gN2WIvYoSnXNrqEPtR8eRwrMzqnCXfB5QYl hyBhpMSJyDF0DcJiy0t6kWTBo2C9v81XrkrWn8YAzGrdftfYLxGXwxWophlYjXXL qRQasrBu7RkLPneUJJeDsTbC6hVW97acOn11lv/zQtGFzkD8A+KPZQpYpHhXqMib kOgpAFbqWo6AIZCO2khogSEQxtK2sfD6BRA8g+ZcD6mitsePnJDazBl1yd6/6ICk u/eHjBqQNbUf1hOZ7jnSKxLrcA== -----END CERTIFICATE-----Generated at Thu Mar 26 00:50:46 2026 by rpki-client