$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8F68/6B60BFBA3A3111EDA10CA761C4F9AE02/o9wYjy1VW0FacV8lkDahpg_8uNk.mft File: o9wYjy1VW0FacV8lkDahpg_8uNk.mft (raw, json) Hash identifier: QaXXDpq/Qk+SbRcPvyEtjIIBKPhWlfelfxMZfZ68Mx8= Subject key identifier: 36:3F:49:20:43:4B:A8:8B:12:49:76:E4:54:2F:8B:7B:72:4D:AB:9A Authority key identifier: A3:DC:18:8F:2D:55:5B:41:5A:71:5F:25:90:36:A1:A6:0F:FC:B8:D9 Certificate issuer: /CN=A91C8F68/serialNumber=A3DC188F2D555B415A715F259036A1A60FFCB8D9 Certificate serial: 02A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9wYjy1VW0FacV8lkDahpg_8uNk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8F68/6B60BFBA3A3111EDA10CA761C4F9AE02/o9wYjy1VW0FacV8lkDahpg_8uNk.mft Manifest number: 02A2 Signing time: Fri 27 Mar 2026 01:14:35 +0000 Manifest this update: Fri 27 Mar 2026 01:14:35 +0000 Manifest next update: Fri 03 Apr 2026 01:14:35 +0000 Files and hashes: 1: o9wYjy1VW0FacV8lkDahpg_8uNk.crl (hash: DsWnEJ3gsT0yFTKMh3UkBP0NhH+8MnYOscShaO1YlkY=) 2: 2A766EA23A3411EDA1B7D863C4F9AE02.roa (hash: 4HjNDDfKFJrgWK5K6rpjz8dvflAC5Isd+SEG9GMgXhw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8F68/6B60BFBA3A3111EDA10CA761C4F9AE02/o9wYjy1VW0FacV8lkDahpg_8uNk.crl rsync://rpki.apnic.net/member_repository/A91C8F68/6B60BFBA3A3111EDA10CA761C4F9AE02/o9wYjy1VW0FacV8lkDahpg_8uNk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9wYjy1VW0FacV8lkDahpg_8uNk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 01:09:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 681 (0x2a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8F68, serialNumber=A3DC188F2D555B415A715F259036A1A60FFCB8D9 Validity Not Before: Mar 27 01:14:35 2026 GMT Not After : Apr 3 01:14:35 2026 GMT Subject: CN=69c5d9fb-dcba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:11:71:f4:68:5c:6b:fc:b5:85:d0:40:54:1d: 04:99:8e:ab:06:4f:b0:52:eb:01:85:9e:25:f3:3f: 4b:2d:f4:9e:ba:74:c8:3d:90:7d:54:ba:80:f2:ee: f4:c3:56:a7:b6:04:26:87:a6:d2:6f:22:42:cc:fd: 88:38:34:bf:08:fa:ea:e0:55:f9:36:46:a8:42:a0: c7:4c:c0:9f:42:c4:7e:a6:cf:f9:c0:8d:2e:b3:ba: 0f:11:52:0d:c9:cb:8a:75:ac:9b:26:2b:d0:0e:73: 8c:8d:ce:ca:2f:61:e3:2f:e5:ea:cd:1c:fa:07:2b: 0d:1b:ac:0d:69:ab:a5:3a:ff:b7:de:30:c0:7f:c7: fb:59:d7:f3:cb:02:c1:f3:49:87:15:bc:eb:18:0b: 7c:6a:94:ef:49:7f:20:16:6c:1d:ae:a6:9e:0c:b0: 25:50:b9:5d:60:cd:40:52:d6:84:cb:9e:1c:c6:68: 30:ae:17:18:5f:ac:9d:db:4a:9e:7f:44:8c:fa:6d: 43:81:b0:8c:cc:8b:9d:93:4b:61:88:bd:98:00:e9: 3e:15:b8:3b:0a:be:95:be:6b:eb:c4:21:75:af:26: 59:ac:cf:93:a3:41:3c:7c:0e:3d:29:08:8f:59:17: 35:4c:97:08:de:8f:3f:8f:6b:b3:d6:c5:65:b4:64: b8:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:3F:49:20:43:4B:A8:8B:12:49:76:E4:54:2F:8B:7B:72:4D:AB:9A X509v3 Authority Key Identifier: keyid:A3:DC:18:8F:2D:55:5B:41:5A:71:5F:25:90:36:A1:A6:0F:FC:B8:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8F68/6B60BFBA3A3111EDA10CA761C4F9AE02/o9wYjy1VW0FacV8lkDahpg_8uNk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9wYjy1VW0FacV8lkDahpg_8uNk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8F68/6B60BFBA3A3111EDA10CA761C4F9AE02/o9wYjy1VW0FacV8lkDahpg_8uNk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:7a:73:59:32:41:fd:2d:7e:9f:fc:9b:88:3a:4c:31:3b:9a: dd:69:1e:2f:28:85:47:6e:3f:ea:51:45:6c:4f:5a:04:aa:9e: ad:e0:f3:29:c9:21:1d:72:ba:88:91:6b:97:de:6d:fd:c2:ae: dc:ce:9a:f1:40:8c:ca:10:67:f3:4d:ea:20:64:a8:4e:1f:c3: 03:e1:71:21:ae:66:38:b4:ae:61:5b:c7:71:9a:b5:00:db:6c: 2d:a8:52:47:c4:39:fa:a3:c7:18:6d:4d:ce:23:7b:dd:3f:ad: 73:f8:79:30:c3:82:63:fa:5f:e6:a5:be:09:98:00:01:76:11: 54:5c:dd:2d:cb:59:24:62:7e:27:f2:84:f8:d9:2a:6c:4a:80: a3:54:60:19:65:69:c1:c3:9d:2f:dc:cc:22:53:bd:fa:ca:21: 01:d6:26:88:70:81:b8:13:bb:a6:06:f5:14:4a:54:de:6b:1a: f9:f9:e5:b6:87:4b:3c:02:a2:6c:97:82:e6:60:11:85:e2:2d: 14:cd:7f:e9:fe:8f:7d:c3:20:d4:4f:ae:6f:0f:0e:2f:11:7c: 39:11:dc:8e:e8:e0:b3:f3:44:11:0d:56:e6:42:24:e7:65:3b: 91:89:fd:f8:e9:29:40:70:62:44:54:d3:0e:0a:b9:d8:12:88: 08:a1:3d:13 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAqkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhGNjgxMTAvBgNVBAUTKEEzREMxODhGMkQ1NTVCNDE1QTcxNUYyNTkwMzZBMUE2 MEZGQ0I4RDkwHhcNMjYwMzI3MDExNDM1WhcNMjYwNDAzMDExNDM1WjAYMRYwFAYD VQQDEw02OWM1ZDlmYi1kY2JhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0RFx9Ghca/y1hdBAVB0EmY6rBk+wUusBhZ4l8z9LLfSeunTIPZB9VLqA8u70 w1antgQmh6bSbyJCzP2IODS/CPrq4FX5NkaoQqDHTMCfQsR+ps/5wI0us7oPEVIN ycuKdaybJivQDnOMjc7KL2HjL+XqzRz6BysNG6wNaaulOv+33jDAf8f7WdfzywLB 80mHFbzrGAt8apTvSX8gFmwdrqaeDLAlULldYM1AUtaEy54cxmgwrhcYX6yd20qe f0SM+m1DgbCMzIudk0thiL2YAOk+Fbg7Cr6VvmvrxCF1ryZZrM+To0E8fA49KQiP WRc1TJcI3o8/j2uz1sVltGS4+wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDY/SSBD S6iLEkl25FQvi3tyTauaMB8GA1UdIwQYMBaAFKPcGI8tVVtBWnFfJZA2oaYP/LjZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOEY2OC82QjYwQkZCQTNB MzExMUVEQTEwQ0E3NjFDNEY5QUUwMi9vOXdZankxVlcwRmFjVjhsa0RhaHBnXzh1 TmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL285d1lqeTFWVzBGYWNWOGxrRGFocGdfOHVOay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OEY2OC82QjYwQkZCQTNBMzExMUVEQTEwQ0E3NjFDNEY5QUUwMi9vOXdZankxVlcw RmFjVjhsa0RhaHBnXzh1TmsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAS3pzWTJB/S1+n/ybiDpMMTua3WkeLyiFR24/6lFFbE9aBKqereDzKckhHXK6 iJFrl95t/cKu3M6a8UCMyhBn803qIGSoTh/DA+FxIa5mOLSuYVvHcZq1ANtsLahS R8Q5+qPHGG1NziN73T+tc/h5MMOCY/pf5qW+CZgAAXYRVFzdLctZJGJ+J/KE+Nkq bEqAo1RgGWVpwcOdL9zMIlO9+sohAdYmiHCBuBO7pgb1FEpU3msa+fnltodLPAKi bJeC5mARheItFM1/6f6PfcMg1E+ubw8OLxF8ORHcjujgs/NEEQ1W5kIk52U7kYn9 +OkpQHBiRFTTDgq52BKICKE9Ew== -----END CERTIFICATE-----Generated at Fri Mar 27 04:13:43 2026 by rpki-client