$ rpki-client -vvf rpki.apnic.net/member_repository/A91CF9B0/14C9496E9F3F11EE801B1D62C4F9AE02/oqIX1KQS-1OPXJGjSzbOcYed22U.mft File: oqIX1KQS-1OPXJGjSzbOcYed22U.mft (raw, json) Hash identifier: /hZBV7m6/FtUqwHDwcu4fiXUb49hKq6wdgsV0+LdwgI= Subject key identifier: 07:E2:1B:2E:8A:DF:FA:46:C4:30:76:0D:0D:EA:CF:2E:31:9E:99:FF Authority key identifier: A2:A2:17:D4:A4:12:FB:53:8F:5C:91:A3:4B:36:CE:71:87:9D:DB:65 Certificate issuer: /CN=A91CF9B0/serialNumber=A2A217D4A412FB538F5C91A34B36CE71879DDB65 Certificate serial: 01CD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oqIX1KQS-1OPXJGjSzbOcYed22U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CF9B0/14C9496E9F3F11EE801B1D62C4F9AE02/oqIX1KQS-1OPXJGjSzbOcYed22U.mft Manifest number: 01BB Signing time: Wed 25 Mar 2026 03:23:25 +0000 Manifest this update: Wed 25 Mar 2026 03:23:24 +0000 Manifest next update: Wed 01 Apr 2026 03:23:24 +0000 Files and hashes: 1: oqIX1KQS-1OPXJGjSzbOcYed22U.crl (hash: sxbgUXSLW36sFYxeBhJ61qyypC5lHCGfuoOwrjwHkqk=) 2: 84D917FC9F4911EEA0C5C856C4F9AE02.roa (hash: 7HiiQTV5zY5tbTdYcm8BulZ0FRGrmhKFMlzgoK8qTu8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CF9B0/14C9496E9F3F11EE801B1D62C4F9AE02/oqIX1KQS-1OPXJGjSzbOcYed22U.crl rsync://rpki.apnic.net/member_repository/A91CF9B0/14C9496E9F3F11EE801B1D62C4F9AE02/oqIX1KQS-1OPXJGjSzbOcYed22U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oqIX1KQS-1OPXJGjSzbOcYed22U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 03:23:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 461 (0x1cd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CF9B0, serialNumber=A2A217D4A412FB538F5C91A34B36CE71879DDB65 Validity Not Before: Mar 25 03:23:24 2026 GMT Not After : Apr 1 03:23:24 2026 GMT Subject: CN=69c3552d-1375 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:80:d7:f9:cc:1a:c6:43:b7:e9:0e:ff:8d:2c: 78:a2:45:fd:6d:3c:be:9e:4b:95:4e:92:2c:49:52: a5:39:2e:c4:2c:da:25:56:62:44:7f:18:c7:63:69: de:b6:15:8e:2c:ef:48:11:85:24:73:08:97:17:b8: 5e:b2:1a:86:4b:e6:69:94:39:8a:4d:a2:8b:8a:ea: 07:24:bf:97:37:38:1c:44:c5:b2:46:87:34:49:bc: 2b:99:9a:bc:52:db:21:20:cb:a6:56:77:75:fa:90: b6:7d:70:e6:6f:c2:76:a0:cd:9a:7e:46:e6:74:63: 40:e3:ab:72:38:37:7c:00:ea:e3:9a:5b:87:00:85: c5:74:c4:42:f3:32:5b:dd:3a:50:08:bb:2c:2a:b0: af:72:75:19:22:0c:26:39:e8:a5:12:d9:30:c0:a1: 2a:e5:63:71:ea:81:28:a5:2b:00:d7:b3:3b:92:15: 51:93:4c:e0:d5:04:d5:41:89:fd:44:cb:c8:86:4f: 5d:2d:c5:e3:91:89:1e:14:8d:a9:51:34:e0:1a:19: fc:86:ef:19:9f:ec:fc:c4:e8:de:6c:2b:cc:66:58: 87:ca:24:5c:8d:9e:69:4d:be:e0:2c:64:05:28:d5: 5e:ee:e9:99:89:8b:00:5a:3a:3c:3a:61:ac:5d:54: c1:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:E2:1B:2E:8A:DF:FA:46:C4:30:76:0D:0D:EA:CF:2E:31:9E:99:FF X509v3 Authority Key Identifier: keyid:A2:A2:17:D4:A4:12:FB:53:8F:5C:91:A3:4B:36:CE:71:87:9D:DB:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CF9B0/14C9496E9F3F11EE801B1D62C4F9AE02/oqIX1KQS-1OPXJGjSzbOcYed22U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oqIX1KQS-1OPXJGjSzbOcYed22U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CF9B0/14C9496E9F3F11EE801B1D62C4F9AE02/oqIX1KQS-1OPXJGjSzbOcYed22U.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c7:8c:22:e6:ad:eb:dd:3e:f6:fa:2f:f2:f2:48:7a:33:89:d0: 70:6d:76:81:0b:d1:d4:06:7a:a7:6f:0f:a1:0d:8e:d3:f4:5a: 00:d2:44:7e:08:5a:da:4b:77:ed:0e:f2:26:14:5d:60:51:e0: 13:73:33:50:3b:d2:e4:11:4e:96:6a:25:37:f7:24:21:b7:27: ab:fd:a3:86:0c:c8:76:bf:05:ea:fc:f7:62:c5:16:61:8b:78: 87:66:ee:26:82:46:50:ea:23:8f:6b:d2:1d:50:ab:0c:bf:b8: 2b:bf:e3:11:41:bd:dc:d1:1a:0e:18:60:3c:08:c9:0b:ac:54: 2d:a1:06:d9:ec:76:2f:a6:b2:e7:3f:89:4d:a3:27:ce:ae:e6: 12:ba:7a:e8:1e:c3:c8:ae:28:4d:52:7e:e3:bd:ac:7b:ab:7c: 9e:66:dc:d3:45:86:97:a6:be:73:0a:d2:3f:5c:31:e4:8c:db: db:d3:b3:99:18:78:33:3b:4f:a2:56:ad:40:29:e3:27:da:c2: 71:7f:de:ad:a6:d1:43:45:f2:58:01:50:b5:57:52:9a:23:2d: 3f:1c:03:e4:5c:cf:84:78:a9:55:79:a3:63:9c:ec:5b:40:b8: b6:c1:67:e0:72:66:13:42:54:bd:31:cb:6b:10:bc:e0:4f:81: 91:24:39:fb -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAc0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0Y5QjAxMTAvBgNVBAUTKEEyQTIxN0Q0QTQxMkZCNTM4RjVDOTFBMzRCMzZDRTcx ODc5RERCNjUwHhcNMjYwMzI1MDMyMzI0WhcNMjYwNDAxMDMyMzI0WjAYMRYwFAYD VQQDEw02OWMzNTUyZC0xMzc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu4DX+cwaxkO36Q7/jSx4okX9bTy+nkuVTpIsSVKlOS7ELNolVmJEfxjHY2ne thWOLO9IEYUkcwiXF7heshqGS+ZplDmKTaKLiuoHJL+XNzgcRMWyRoc0SbwrmZq8 UtshIMumVnd1+pC2fXDmb8J2oM2afkbmdGNA46tyODd8AOrjmluHAIXFdMRC8zJb 3TpQCLssKrCvcnUZIgwmOeilEtkwwKEq5WNx6oEopSsA17M7khVRk0zg1QTVQYn9 RMvIhk9dLcXjkYkeFI2pUTTgGhn8hu8Zn+z8xOjebCvMZliHyiRcjZ5pTb7gLGQF KNVe7umZiYsAWjo8OmGsXVTBBQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAfiGy6K 3/pGxDB2DQ3qzy4xnpn/MB8GA1UdIwQYMBaAFKKiF9SkEvtTj1yRo0s2znGHndtl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRjlCMC8xNEM5NDk2RTlG M0YxMUVFODAxQjFENjJDNEY5QUUwMi9vcUlYMUtRUy0xT1BYSkdqU3piT2NZZWQy MlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29xSVgxS1FTLTFPUFhKR2pTemJPY1llZDIyVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RjlCMC8xNEM5NDk2RTlGM0YxMUVFODAxQjFENjJDNEY5QUUwMi9vcUlYMUtRUy0x T1BYSkdqU3piT2NZZWQyMlUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAx4wi5q3r3T72+i/y8kh6M4nQcG12gQvR1AZ6p28PoQ2O0/RaANJEfgha2kt3 7Q7yJhRdYFHgE3MzUDvS5BFOlmolN/ckIbcnq/2jhgzIdr8F6vz3YsUWYYt4h2bu JoJGUOojj2vSHVCrDL+4K7/jEUG93NEaDhhgPAjJC6xULaEG2ex2L6ay5z+JTaMn zq7mErp66B7DyK4oTVJ+472se6t8nmbc00WGl6a+cwrSP1wx5Izb29OzmRh4MztP olatQCnjJ9rCcX/erabRQ0XyWAFQtVdSmiMtPxwD5FzPhHipVXmjY5zsW0C4tsFn 4HJmE0JUvTHLaxC84E+BkSQ5+w== -----END CERTIFICATE-----Generated at Thu Mar 26 13:05:38 2026 by rpki-client