$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9C03/37D18A1639A311F0BAD72C3CC4F9AE02/ok2WODNZy0lmoVuakGkT61RWZXs.mft File: ok2WODNZy0lmoVuakGkT61RWZXs.mft (raw, json) Hash identifier: DiRGm0fz9vlYC24xclOiAsMgXnfz1dQ5HtnCy0o6BhQ= Subject key identifier: 6D:DA:6A:18:A5:5F:E9:3A:2D:DE:A7:49:48:7F:3D:45:35:CC:B2:15 Authority key identifier: A2:4D:96:38:33:59:CB:49:66:A1:5B:9A:90:69:13:EB:54:56:65:7B Certificate issuer: /CN=A91C9C03/serialNumber=A24D96383359CB4966A15B9A906913EB5456657B Certificate serial: AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ok2WODNZy0lmoVuakGkT61RWZXs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9C03/37D18A1639A311F0BAD72C3CC4F9AE02/ok2WODNZy0lmoVuakGkT61RWZXs.mft Manifest number: A4 Signing time: Wed 25 Mar 2026 06:34:29 +0000 Manifest this update: Wed 25 Mar 2026 06:34:28 +0000 Manifest next update: Wed 01 Apr 2026 06:34:28 +0000 Files and hashes: 1: ok2WODNZy0lmoVuakGkT61RWZXs.crl (hash: Ba7rtYiFS5ck4o2kSz7EZr7hDYFN9EkRKA323Dlw/+k=) 2: 19088D04716211F0A531A51FC4F9AE02.roa (hash: oHwH6kQQYXdRLzAcniMfc3jPRXLCLgsiuxhNwFmn1Is=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9C03/37D18A1639A311F0BAD72C3CC4F9AE02/ok2WODNZy0lmoVuakGkT61RWZXs.crl rsync://rpki.apnic.net/member_repository/A91C9C03/37D18A1639A311F0BAD72C3CC4F9AE02/ok2WODNZy0lmoVuakGkT61RWZXs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ok2WODNZy0lmoVuakGkT61RWZXs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 06:34:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 171 (0xab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9C03, serialNumber=A24D96383359CB4966A15B9A906913EB5456657B Validity Not Before: Mar 25 06:34:28 2026 GMT Not After : Apr 1 06:34:28 2026 GMT Subject: CN=69c381f5-f934 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:43:d0:d0:95:99:8a:3c:f9:46:27:4f:90:5f: f3:20:60:61:63:b0:96:58:04:f7:a0:01:b8:54:33: 91:c2:1c:00:4f:f8:98:55:df:2d:2e:58:5a:bb:d2: 86:32:96:f3:d9:2e:d3:5e:10:7e:d7:2b:6f:82:72: 92:2b:98:90:05:e6:52:41:e5:ad:c1:95:32:36:ba: 7c:74:b2:c5:33:40:4d:de:73:e5:d2:0e:02:9d:6f: f2:01:71:07:76:38:b3:50:12:64:10:c7:23:d2:da: 9c:af:d0:77:f2:1b:b3:2a:aa:63:e8:c9:33:34:96: 08:f9:6e:77:80:b5:94:94:57:7a:39:df:16:3c:6f: 68:79:34:44:e6:f2:8f:5f:56:b1:49:1d:4a:04:45: 3e:3f:89:ea:bb:dd:dc:79:ea:cb:eb:04:5f:5a:5f: a6:eb:83:04:e8:5f:b6:83:1f:72:f8:b2:93:91:9c: f8:51:33:75:a3:cc:d1:5f:77:70:06:93:ba:90:aa: 0f:13:33:23:78:fe:f7:bb:d8:56:88:f4:c7:4a:3d: 60:9a:f0:b6:44:1c:2e:4c:8f:48:f6:c2:ee:1a:32: e0:2d:98:a3:90:67:c0:96:0b:f0:d9:44:93:2d:a4: 25:fa:36:0e:75:68:6f:31:23:af:47:30:93:4f:87: b7:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:DA:6A:18:A5:5F:E9:3A:2D:DE:A7:49:48:7F:3D:45:35:CC:B2:15 X509v3 Authority Key Identifier: keyid:A2:4D:96:38:33:59:CB:49:66:A1:5B:9A:90:69:13:EB:54:56:65:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9C03/37D18A1639A311F0BAD72C3CC4F9AE02/ok2WODNZy0lmoVuakGkT61RWZXs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ok2WODNZy0lmoVuakGkT61RWZXs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9C03/37D18A1639A311F0BAD72C3CC4F9AE02/ok2WODNZy0lmoVuakGkT61RWZXs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:e2:2c:08:0e:7b:71:dd:b0:6c:c6:a9:d0:47:15:7c:05:72: e1:26:0e:55:1e:30:78:a5:c1:14:78:43:32:71:7e:08:79:d6: 2b:8e:14:d5:f6:cb:e4:93:30:e8:a6:5e:2c:1f:38:66:46:98: 27:2a:07:8f:40:17:36:1a:b1:ad:12:53:af:90:4a:cb:0a:9d: c3:59:f8:70:04:61:13:b7:f7:46:fa:44:d5:85:f8:8d:6d:01: 7a:40:7b:25:c0:31:73:8d:bf:1a:ed:c5:09:59:0c:9b:70:2a: 2b:ee:7e:e5:59:9b:61:51:ed:51:a1:70:31:e6:21:46:07:e8: 3d:a2:58:cc:9c:f2:e0:f0:60:cf:90:ed:75:1a:80:f1:c0:1e: e8:7c:12:92:bf:b3:ef:3b:04:ef:9c:79:a2:e4:4f:ec:bb:65: b6:cb:c7:02:5e:01:58:b4:12:02:d4:fb:20:1a:ed:84:9d:d7: c8:71:dc:55:d8:5d:b5:91:5a:9a:7a:9d:f7:67:34:a9:98:f9: 0b:d9:a6:39:15:d6:3b:ff:e6:57:dd:91:f0:99:48:c3:a2:e1: c6:62:83:21:0b:db:e4:bd:87:dd:2e:e5:07:1f:98:29:8a:bd: 13:be:24:de:d6:3b:80:6d:02:3a:cb:24:b9:d2:2c:1a:67:2f: a5:c3:d0:b2 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAKswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzlDMDMxMTAvBgNVBAUTKEEyNEQ5NjM4MzM1OUNCNDk2NkExNUI5QTkwNjkxM0VC NTQ1NjY1N0IwHhcNMjYwMzI1MDYzNDI4WhcNMjYwNDAxMDYzNDI4WjAYMRYwFAYD VQQDEw02OWMzODFmNS1mOTM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqkPQ0JWZijz5RidPkF/zIGBhY7CWWAT3oAG4VDORwhwAT/iYVd8tLlhau9KG Mpbz2S7TXhB+1ytvgnKSK5iQBeZSQeWtwZUyNrp8dLLFM0BN3nPl0g4CnW/yAXEH djizUBJkEMcj0tqcr9B38huzKqpj6MkzNJYI+W53gLWUlFd6Od8WPG9oeTRE5vKP X1axSR1KBEU+P4nqu93ceerL6wRfWl+m64ME6F+2gx9y+LKTkZz4UTN1o8zRX3dw BpO6kKoPEzMjeP73u9hWiPTHSj1gmvC2RBwuTI9I9sLuGjLgLZijkGfAlgvw2UST LaQl+jYOdWhvMSOvRzCTT4e39wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFG3aahil X+k6Ld6nSUh/PUU1zLIVMB8GA1UdIwQYMBaAFKJNljgzWctJZqFbmpBpE+tUVmV7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOUMwMy8zN0QxOEExNjM5 QTMxMUYwQkFENzJDM0NDNEY5QUUwMi9vazJXT0ROWnkwbG1vVnVha0drVDYxUlda WHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29rMldPRE5aeTBsbW9WdWFrR2tUNjFSV1pYcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OUMwMy8zN0QxOEExNjM5QTMxMUYwQkFENzJDM0NDNEY5QUUwMi9vazJXT0ROWnkw bG1vVnVha0drVDYxUldaWHMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEABeIsCA57cd2wbMap0EcVfAVy4SYOVR4weKXBFHhDMnF+CHnWK44U1fbL5JMw 6KZeLB84ZkaYJyoHj0AXNhqxrRJTr5BKywqdw1n4cARhE7f3RvpE1YX4jW0BekB7 JcAxc42/Gu3FCVkMm3AqK+5+5VmbYVHtUaFwMeYhRgfoPaJYzJzy4PBgz5DtdRqA 8cAe6HwSkr+z7zsE75x5ouRP7LtltsvHAl4BWLQSAtT7IBrthJ3XyHHcVdhdtZFa mnqd92c0qZj5C9mmORXWO//mV92R8JlIw6LhxmKDIQvb5L2H3S7lBx+YKYq9E74k 3tY7gG0COsskudIsGmcvpcPQsg== -----END CERTIFICATE-----Generated at Thu Mar 26 00:52:51 2026 by rpki-client