$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5F2D/CD6D6E56989211EC8F93573BC4F9AE02/oBOxOIo5M74Qa-rt3-nzuDRtN0g.mft File: oBOxOIo5M74Qa-rt3-nzuDRtN0g.mft (raw, json) Hash identifier: s37O7alO4iM9XQjwK8JxaXuVkG07wSgqTq/vuAxTtgA= Subject key identifier: 97:83:58:95:8C:2F:F1:9C:FE:F5:0E:3A:D8:8A:87:42:9C:AC:24:17 Authority key identifier: A0:13:B1:38:8A:39:33:BE:10:6B:EA:ED:DF:E9:F3:B8:34:6D:37:48 Certificate issuer: /CN=A91D5F2D/serialNumber=A013B1388A3933BE106BEAEDDFE9F3B8346D3748 Certificate serial: 046C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oBOxOIo5M74Qa-rt3-nzuDRtN0g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5F2D/CD6D6E56989211EC8F93573BC4F9AE02/oBOxOIo5M74Qa-rt3-nzuDRtN0g.mft Manifest number: 044D Signing time: Tue 24 Mar 2026 23:55:18 +0000 Manifest this update: Tue 24 Mar 2026 23:55:18 +0000 Manifest next update: Tue 31 Mar 2026 23:55:18 +0000 Files and hashes: 1: oBOxOIo5M74Qa-rt3-nzuDRtN0g.crl (hash: eb9WxaYamP0HOG3GLycusDrNrNY+q+S0ganVXCnfsO0=) 2: 5A76CDC2989511EC821F343DC4F9AE02.roa (hash: /ti17IFC7q1Ah/qPnVmsDmKH5schjMG9yp+KWaohlII=) 3: 8F5EABBE919F11EDA7387A37C4F9AE02.roa (hash: mD2HqpNx7VAE/fzRvuWKCUkO1WROa4R3hNCfEouu84g=) 4: 17D3C6A89B2611EC8880303EC4F9AE02.roa (hash: FT+yGA0UMj3t+pSIyryVQQ/sEofGBhdL514V1fKn2KU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5F2D/CD6D6E56989211EC8F93573BC4F9AE02/oBOxOIo5M74Qa-rt3-nzuDRtN0g.crl rsync://rpki.apnic.net/member_repository/A91D5F2D/CD6D6E56989211EC8F93573BC4F9AE02/oBOxOIo5M74Qa-rt3-nzuDRtN0g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oBOxOIo5M74Qa-rt3-nzuDRtN0g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 23:55:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1132 (0x46c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5F2D, serialNumber=A013B1388A3933BE106BEAEDDFE9F3B8346D3748 Validity Not Before: Mar 24 23:55:18 2026 GMT Not After : Mar 31 23:55:18 2026 GMT Subject: CN=69c32466-d609 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:96:7c:bc:b6:b7:25:00:bb:70:5c:a6:17:89: 0e:e8:a6:66:89:ff:e1:00:50:35:ca:6a:5b:b4:fb: 57:52:fc:8d:bf:5c:3b:f7:96:e5:fb:69:5a:27:25: 24:6e:9b:3b:ae:49:01:d5:0e:22:ef:e4:f5:91:e8: 45:0b:10:38:8d:5d:69:9f:04:bd:30:fc:64:e6:1f: 27:b9:80:81:07:7c:55:ef:06:9d:46:cc:e0:c1:0c: bd:14:d7:c8:82:55:01:3f:20:5c:18:f7:23:76:28: a7:48:ac:87:d5:31:35:0d:a7:09:57:d4:7c:ed:b8: 5b:11:86:54:cd:c3:da:57:09:30:7d:c9:f9:a5:5c: 58:fa:58:7e:22:a1:3f:2d:76:2b:81:3c:34:52:61: 0c:cb:98:e2:04:2b:4a:d5:5c:2d:46:8c:e9:1c:2f: 51:a3:e5:90:f0:1a:dc:f0:0a:93:6a:3a:da:83:65: 9e:ec:84:9d:d8:10:67:bb:ba:5e:fb:f9:06:ab:74: 9e:75:b6:32:14:50:5b:d5:17:18:bb:82:e9:4a:7f: e9:ef:20:b3:e9:38:1f:ab:d3:1d:b2:9f:a8:2e:cb: d9:6e:01:9b:13:f4:d6:54:88:78:d9:86:b8:38:2b: 31:43:cd:a2:c4:f2:37:f9:51:ab:d4:fc:4f:de:64: 29:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:83:58:95:8C:2F:F1:9C:FE:F5:0E:3A:D8:8A:87:42:9C:AC:24:17 X509v3 Authority Key Identifier: keyid:A0:13:B1:38:8A:39:33:BE:10:6B:EA:ED:DF:E9:F3:B8:34:6D:37:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5F2D/CD6D6E56989211EC8F93573BC4F9AE02/oBOxOIo5M74Qa-rt3-nzuDRtN0g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oBOxOIo5M74Qa-rt3-nzuDRtN0g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5F2D/CD6D6E56989211EC8F93573BC4F9AE02/oBOxOIo5M74Qa-rt3-nzuDRtN0g.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:23:bb:06:0a:46:ed:e1:c3:22:35:56:47:30:9c:b2:b7:fa: 25:14:37:72:2e:74:04:d5:c5:d8:12:a3:90:b4:30:18:35:35: c6:a6:66:00:eb:c1:c8:65:78:a9:23:6b:46:d2:aa:00:36:2b: 8f:b3:74:eb:80:db:b2:8e:38:89:30:9c:b0:16:9a:a8:9f:21: ee:cb:db:26:56:06:05:73:25:ad:e7:d7:59:6d:5b:ab:50:d4: 06:61:16:5b:6f:1e:95:6a:7a:33:7c:e4:96:84:18:0f:fe:f9: f6:93:44:6b:89:59:c6:8b:f5:8b:82:ff:8e:8a:a5:0a:fb:e8: 9e:8d:3e:0b:9d:25:4d:03:74:5b:da:d6:85:47:59:1f:a7:be: d8:f5:58:27:61:cf:02:96:74:7f:a1:30:f0:47:68:66:a1:be: a3:d3:1e:a4:c7:e7:bf:2f:83:f8:28:9a:d0:0a:df:ad:5b:22: 11:b9:28:72:ff:6c:bd:f2:ac:02:c7:78:8d:c3:9d:85:4a:f0: 08:0d:2b:61:21:76:97:c6:a8:d7:aa:4c:6e:61:de:e0:c4:f9: 53:70:0c:a6:a1:49:09:10:1b:73:c3:54:8b:4a:e2:a2:81:b0: 65:0a:1a:49:39:cf:bf:a6:8c:31:de:98:ce:8c:4b:04:f3:ef: fb:c0:1b:e0 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBGwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDVGMkQxMTAvBgNVBAUTKEEwMTNCMTM4OEEzOTMzQkUxMDZCRUFFRERGRTlGM0I4 MzQ2RDM3NDgwHhcNMjYwMzI0MjM1NTE4WhcNMjYwMzMxMjM1NTE4WjAYMRYwFAYD VQQDEw02OWMzMjQ2Ni1kNjA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuZZ8vLa3JQC7cFymF4kO6KZmif/hAFA1ympbtPtXUvyNv1w795bl+2laJyUk bps7rkkB1Q4i7+T1kehFCxA4jV1pnwS9MPxk5h8nuYCBB3xV7wadRszgwQy9FNfI glUBPyBcGPcjdiinSKyH1TE1DacJV9R87bhbEYZUzcPaVwkwfcn5pVxY+lh+IqE/ LXYrgTw0UmEMy5jiBCtK1VwtRozpHC9Ro+WQ8Brc8AqTajrag2We7ISd2BBnu7pe +/kGq3SedbYyFFBb1RcYu4LpSn/p7yCz6Tgfq9Mdsp+oLsvZbgGbE/TWVIh42Ya4 OCsxQ82ixPI3+VGr1PxP3mQpYQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJeDWJWM L/Gc/vUOOtiKh0KcrCQXMB8GA1UdIwQYMBaAFKATsTiKOTO+EGvq7d/p87g0bTdI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENUYyRC9DRDZENkU1Njk4 OTIxMUVDOEY5MzU3M0JDNEY5QUUwMi9vQk94T0lvNU03NFFhLXJ0My1uenVEUnRO MGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29CT3hPSW81TTc0UWEtcnQzLW56dURSdE4wZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NUYyRC9DRDZENkU1Njk4OTIxMUVDOEY5MzU3M0JDNEY5QUUwMi9vQk94T0lvNU03 NFFhLXJ0My1uenVEUnROMGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAMyO7BgpG7eHDIjVWRzCcsrf6JRQ3ci50BNXF2BKjkLQwGDU1xqZmAOvByGV4 qSNrRtKqADYrj7N064Dbso44iTCcsBaaqJ8h7svbJlYGBXMlrefXWW1bq1DUBmEW W28elWp6M3zkloQYD/759pNEa4lZxov1i4L/joqlCvvono0+C50lTQN0W9rWhUdZ H6e+2PVYJ2HPApZ0f6Ew8EdoZqG+o9MepMfnvy+D+Cia0ArfrVsiEbkocv9svfKs Asd4jcOdhUrwCA0rYSF2l8ao16pMbmHe4MT5U3AMpqFJCRAbc8NUi0riooGwZQoa STnPv6aMMd6YzoxLBPPv+8Ab4A== -----END CERTIFICATE-----Generated at Thu Mar 26 02:27:08 2026 by rpki-client