$ rpki-client -vvf rpki.apnic.net/member_repository/A91C913E/DD0898F0C6BD11EC8963741DC4F9AE02/o0ccMVM7iNG_ikCjKn3eO6C7HL8.mft File: o0ccMVM7iNG_ikCjKn3eO6C7HL8.mft (raw, json) Hash identifier: hy7sChH4/J8J8Hl1tzM0BvENj5C0vyu1Rybwi5BJZC4= Subject key identifier: 66:00:26:3B:93:F8:32:3E:77:26:3A:12:C1:02:7C:73:58:FB:D9:ED Authority key identifier: A3:47:1C:31:53:3B:88:D1:BF:8A:40:A3:2A:7D:DE:3B:A0:BB:1C:BF Certificate issuer: /CN=A91C913E/serialNumber=A3471C31533B88D1BF8A40A32A7DDE3BA0BB1CBF Certificate serial: 03D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o0ccMVM7iNG_ikCjKn3eO6C7HL8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C913E/DD0898F0C6BD11EC8963741DC4F9AE02/o0ccMVM7iNG_ikCjKn3eO6C7HL8.mft Manifest number: 03C7 Signing time: Wed 25 Mar 2026 00:16:50 +0000 Manifest this update: Wed 25 Mar 2026 00:16:49 +0000 Manifest next update: Wed 01 Apr 2026 00:16:49 +0000 Files and hashes: 1: o0ccMVM7iNG_ikCjKn3eO6C7HL8.crl (hash: q0TdHpERDlI4QtRQs/MROd1sqns0sSX9VBGscxG2Fhg=) 2: 24578ECED56A11EFB764F716C4F9AE02.roa (hash: znPEMd590TcR/3IMAM9N/494V66QspV9NulehEdGj6g=) 3: 1445557CC6C011EC9D09EF1DC4F9AE02.roa (hash: ioqugPebSQF2gysJZ13DhVnh23alifn8w8A9RVCFn1g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C913E/DD0898F0C6BD11EC8963741DC4F9AE02/o0ccMVM7iNG_ikCjKn3eO6C7HL8.crl rsync://rpki.apnic.net/member_repository/A91C913E/DD0898F0C6BD11EC8963741DC4F9AE02/o0ccMVM7iNG_ikCjKn3eO6C7HL8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o0ccMVM7iNG_ikCjKn3eO6C7HL8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 00:16:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 978 (0x3d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C913E, serialNumber=A3471C31533B88D1BF8A40A32A7DDE3BA0BB1CBF Validity Not Before: Mar 25 00:16:49 2026 GMT Not After : Apr 1 00:16:49 2026 GMT Subject: CN=69c32971-cbf5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:91:ca:72:d5:4d:3d:fa:c4:79:0b:0d:93:4a: 27:79:5d:2c:a4:cc:5d:2e:2c:75:57:44:d7:02:65: 86:cb:5b:6e:92:4e:db:2f:95:11:63:6a:5e:cc:09: 67:12:3f:e0:aa:1c:14:12:f6:88:c2:36:2e:af:b9: 8f:f8:9c:81:88:cc:6b:5b:77:81:d0:05:02:ba:12: cb:64:81:5e:f0:5f:b7:31:77:11:63:72:b5:5f:b3: f9:bc:37:14:32:e7:58:e5:7e:48:17:a0:f0:4d:d7: c5:89:32:89:74:a1:6c:05:ff:b7:7d:5a:ed:54:4e: e0:04:8f:a6:5c:36:97:f9:db:73:6d:89:a3:d1:f9: 4e:98:25:66:ad:34:50:b4:13:70:1a:b2:ca:ab:34: b1:32:8f:e4:84:13:71:a6:aa:78:f1:9b:02:28:6a: 8b:d0:d1:38:e2:d4:69:02:10:7d:6a:4d:eb:f9:5f: 29:97:80:70:e8:80:d7:0c:bb:2c:bb:fd:e0:24:d2: 0d:21:13:b1:5a:69:4a:90:43:ea:b7:af:cf:bd:dd: 32:38:f4:92:55:0d:ca:98:85:65:89:0e:80:e2:b7: 1c:7f:e9:86:20:6c:72:cb:92:d7:4d:a8:f0:ee:8d: d1:c1:93:8b:24:bc:c6:f9:87:21:f9:77:e5:bd:c0: 83:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:00:26:3B:93:F8:32:3E:77:26:3A:12:C1:02:7C:73:58:FB:D9:ED X509v3 Authority Key Identifier: keyid:A3:47:1C:31:53:3B:88:D1:BF:8A:40:A3:2A:7D:DE:3B:A0:BB:1C:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C913E/DD0898F0C6BD11EC8963741DC4F9AE02/o0ccMVM7iNG_ikCjKn3eO6C7HL8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o0ccMVM7iNG_ikCjKn3eO6C7HL8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C913E/DD0898F0C6BD11EC8963741DC4F9AE02/o0ccMVM7iNG_ikCjKn3eO6C7HL8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:19:f7:08:7b:33:f5:50:22:8b:18:f2:c2:df:68:7e:8c:fe: 45:73:e3:03:c8:0a:cd:84:30:bf:fa:b2:0d:94:44:6d:c6:29: 26:bd:95:b3:69:ef:04:d7:cb:b5:38:83:be:8e:0e:71:61:57: 9a:31:33:7e:da:51:4f:3d:fe:62:4a:c0:58:ab:77:7f:f4:3c: ea:63:aa:01:8d:31:05:b8:ab:56:21:e6:27:a3:b7:f5:1d:ce: 2b:57:5a:ce:79:b7:27:87:fa:fc:4c:e8:86:a5:e7:18:a8:e3: fc:43:a5:8b:ed:94:50:4c:c0:b8:64:12:87:da:e1:52:30:0d: 1c:5a:27:1e:0c:1a:5b:28:16:86:82:e4:39:69:38:f7:2d:c2: 30:aa:49:0f:f1:ce:db:e3:f6:8f:3e:30:54:35:f2:4c:9e:f7: 19:58:69:2e:be:05:ee:f4:b2:57:11:1e:08:11:f0:ce:3b:0b: b5:01:fe:19:4f:a0:dc:26:a5:3f:a6:a6:f7:c1:a5:ac:45:78: 08:bb:da:7e:2a:ce:d3:93:55:6b:69:89:36:55:e5:c6:08:53: ef:77:00:ac:4b:0e:e6:ea:d6:24:db:71:85:99:80:60:6f:eb: 7c:56:50:09:df:47:5a:90:2e:e3:0f:b6:31:a6:b0:27:2f:bd: 62:d1:7e:f1 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA9IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzkxM0UxMTAvBgNVBAUTKEEzNDcxQzMxNTMzQjg4RDFCRjhBNDBBMzJBN0RERTNC QTBCQjFDQkYwHhcNMjYwMzI1MDAxNjQ5WhcNMjYwNDAxMDAxNjQ5WjAYMRYwFAYD VQQDEw02OWMzMjk3MS1jYmY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4ZHKctVNPfrEeQsNk0oneV0spMxdLix1V0TXAmWGy1tukk7bL5URY2pezAln Ej/gqhwUEvaIwjYur7mP+JyBiMxrW3eB0AUCuhLLZIFe8F+3MXcRY3K1X7P5vDcU MudY5X5IF6DwTdfFiTKJdKFsBf+3fVrtVE7gBI+mXDaX+dtzbYmj0flOmCVmrTRQ tBNwGrLKqzSxMo/khBNxpqp48ZsCKGqL0NE44tRpAhB9ak3r+V8pl4Bw6IDXDLss u/3gJNINIROxWmlKkEPqt6/Pvd0yOPSSVQ3KmIVliQ6A4rccf+mGIGxyy5LXTajw 7o3RwZOLJLzG+Ych+XflvcCDXQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGYAJjuT +DI+dyY6EsECfHNY+9ntMB8GA1UdIwQYMBaAFKNHHDFTO4jRv4pAoyp93juguxy/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTEzRS9ERDA4OThGMEM2 QkQxMUVDODk2Mzc0MURDNEY5QUUwMi9vMGNjTVZNN2lOR19pa0NqS24zZU82QzdI TDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL28wY2NNVk03aU5HX2lrQ2pLbjNlTzZDN0hMOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OTEzRS9ERDA4OThGMEM2QkQxMUVDODk2Mzc0MURDNEY5QUUwMi9vMGNjTVZNN2lO R19pa0NqS24zZU82QzdITDgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAURn3CHsz9VAiixjywt9ofoz+RXPjA8gKzYQwv/qyDZREbcYpJr2Vs2nvBNfL tTiDvo4OcWFXmjEzftpRTz3+YkrAWKt3f/Q86mOqAY0xBbirViHmJ6O39R3OK1da znm3J4f6/EzohqXnGKjj/EOli+2UUEzAuGQSh9rhUjANHFonHgwaWygWhoLkOWk4 9y3CMKpJD/HO2+P2jz4wVDXyTJ73GVhpLr4F7vSyVxEeCBHwzjsLtQH+GU+g3Cal P6am98GlrEV4CLvafirO05NVa2mJNlXlxghT73cArEsO5urWJNtxhZmAYG/rfFZQ Cd9HWpAu4w+2MaawJy+9YtF+8Q== -----END CERTIFICATE-----Generated at Thu Mar 26 08:33:19 2026 by rpki-client