$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.mft File: oZOMkSrC9KlYuT2vj0snIBWw2Ng.mft (raw, json) Hash identifier: 0y+Pz64avK/bQsRnDkgbrrqkI3pN4LQSGorzH+gOgoA= Subject key identifier: 35:EE:80:C2:1C:8D:DD:6A:30:31:D9:6A:90:89:4C:C1:B9:D2:AF:48 Authority key identifier: A1:93:8C:91:2A:C2:F4:A9:58:B9:3D:AF:8F:4B:27:20:15:B0:D8:D8 Certificate issuer: /CN=A91D9D8B/serialNumber=A1938C912AC2F4A958B93DAF8F4B272015B0D8D8 Certificate serial: 026F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oZOMkSrC9KlYuT2vj0snIBWw2Ng.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.mft Manifest number: 0267 Signing time: Fri 27 Mar 2026 01:40:36 +0000 Manifest this update: Fri 27 Mar 2026 01:40:35 +0000 Manifest next update: Fri 03 Apr 2026 01:40:35 +0000 Files and hashes: 1: oZOMkSrC9KlYuT2vj0snIBWw2Ng.crl (hash: Pe1nYNilKCfMubWnAFLgQBL1sq8kXC+fL/sytwOCa2E=) 2: 95C4C7AA7F7911ED9C1EAE19C4F9AE02.roa (hash: Ouit03LRtJZqOFfBSglxXn5xGezeH2cCBVrluC7GA64=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.crl rsync://rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oZOMkSrC9KlYuT2vj0snIBWw2Ng.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 01:40:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 623 (0x26f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9D8B, serialNumber=A1938C912AC2F4A958B93DAF8F4B272015B0D8D8 Validity Not Before: Mar 27 01:40:35 2026 GMT Not After : Apr 3 01:40:35 2026 GMT Subject: CN=69c5e014-e115 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:d5:f8:05:97:93:01:b0:92:41:c5:ab:df:e3: 9c:b8:b2:e6:33:b9:07:46:54:47:7c:32:ec:78:33: 10:4e:f7:41:96:8c:a9:e2:a7:61:cd:a7:0b:1b:ef: d5:5a:c6:f3:cf:bb:07:fe:81:f1:b4:1d:b5:93:3e: 37:f5:fb:b3:40:41:b0:d7:59:4c:63:b1:b1:56:16: 2f:d3:fb:dd:3f:38:e9:d9:41:21:45:0a:f1:46:9b: 96:bb:bc:cb:e7:85:bd:90:6a:fd:fd:9e:77:95:8e: 15:04:c0:98:1c:03:9d:28:e2:39:c6:26:95:c4:7d: 90:eb:82:45:de:62:89:88:78:99:89:b9:49:24:5f: 57:76:02:e8:df:06:17:2e:f9:c9:a4:98:39:3f:1d: 2b:3c:91:09:95:a8:d3:6c:29:a8:a0:d7:e9:4d:0b: e3:f9:ff:99:98:9d:ea:43:3a:70:79:af:c1:34:f0: a6:23:ef:e0:26:4c:ec:56:2c:a6:74:e1:6c:fa:b1: d8:ab:12:34:84:ec:82:b1:e1:9d:05:a8:70:f8:da: 60:13:19:ef:1c:7d:29:7e:4e:f3:81:0b:71:8b:d6: 27:87:d6:5b:68:a8:5c:5c:7b:e2:58:c4:b4:16:33: 45:87:62:bc:22:e1:93:50:40:00:61:f8:60:fa:27: 64:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:EE:80:C2:1C:8D:DD:6A:30:31:D9:6A:90:89:4C:C1:B9:D2:AF:48 X509v3 Authority Key Identifier: keyid:A1:93:8C:91:2A:C2:F4:A9:58:B9:3D:AF:8F:4B:27:20:15:B0:D8:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oZOMkSrC9KlYuT2vj0snIBWw2Ng.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:92:b5:6b:ae:74:fc:51:5d:84:e4:67:ca:57:c5:8c:77:b3: 74:6a:5f:9e:e4:93:65:14:d4:0f:9f:fc:06:e3:51:1f:94:39: c5:38:19:4e:71:13:1f:62:25:c7:e2:f4:58:95:a2:e2:3c:4f: e9:28:7e:4d:7e:2b:71:27:d1:1c:fa:65:04:39:74:b2:bc:8b: e6:89:2c:43:53:1d:d9:f9:fb:2d:e2:34:0d:f4:0b:59:21:d3: e1:60:41:6e:5a:39:bd:70:80:77:98:83:8e:37:5f:51:23:18: 52:f4:5e:e2:72:2a:31:eb:57:61:ae:c1:83:96:37:be:5a:e1: b3:a8:20:8a:db:0a:c5:67:d3:5f:2b:e3:4d:f6:97:af:da:b1: 86:db:71:dc:1e:04:6a:f0:1b:48:70:42:7e:4e:04:e9:9a:3f: e5:27:c5:0a:a5:f1:a8:bd:37:2a:ec:3b:1c:c5:92:9c:5e:91: 73:4f:b6:9d:a2:9f:b4:0d:dd:b1:89:68:46:39:88:85:7b:86: f3:03:b0:fd:d2:7d:d8:c7:af:93:cf:35:1d:94:12:21:c6:75: 74:55:a7:3d:bf:f4:c9:5e:54:5a:3c:dc:f9:0b:38:0d:11:70: 03:cf:35:59:7e:68:d0:aa:9c:9c:0a:bf:35:89:23:f7:dd:0f: 65:2c:1e:4d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAm8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDlEOEIxMTAvBgNVBAUTKEExOTM4QzkxMkFDMkY0QTk1OEI5M0RBRjhGNEIyNzIw MTVCMEQ4RDgwHhcNMjYwMzI3MDE0MDM1WhcNMjYwNDAzMDE0MDM1WjAYMRYwFAYD VQQDEw02OWM1ZTAxNC1lMTE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAztX4BZeTAbCSQcWr3+OcuLLmM7kHRlRHfDLseDMQTvdBloyp4qdhzacLG+/V Wsbzz7sH/oHxtB21kz439fuzQEGw11lMY7GxVhYv0/vdPzjp2UEhRQrxRpuWu7zL 54W9kGr9/Z53lY4VBMCYHAOdKOI5xiaVxH2Q64JF3mKJiHiZiblJJF9XdgLo3wYX LvnJpJg5Px0rPJEJlajTbCmooNfpTQvj+f+ZmJ3qQzpwea/BNPCmI+/gJkzsViym dOFs+rHYqxI0hOyCseGdBahw+NpgExnvHH0pfk7zgQtxi9Ynh9ZbaKhcXHviWMS0 FjNFh2K8IuGTUEAAYfhg+idkYQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDXugMIc jd1qMDHZapCJTMG50q9IMB8GA1UdIwQYMBaAFKGTjJEqwvSpWLk9r49LJyAVsNjY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOUQ4Qi81RjExRTAyQTdG NzUxMUVEOEFGQkU2NzNDNEY5QUUwMi9vWk9Na1NyQzlLbFl1VDJ2ajBzbklCV3cy TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29aT01rU3JDOUtsWXVUMnZqMHNuSUJXdzJOZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OUQ4Qi81RjExRTAyQTdGNzUxMUVEOEFGQkU2NzNDNEY5QUUwMi9vWk9Na1NyQzlL bFl1VDJ2ajBzbklCV3cyTmcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAUpK1a650/FFdhORnylfFjHezdGpfnuSTZRTUD5/8BuNRH5Q5xTgZTnETH2Il x+L0WJWi4jxP6Sh+TX4rcSfRHPplBDl0sryL5oksQ1Md2fn7LeI0DfQLWSHT4WBB blo5vXCAd5iDjjdfUSMYUvRe4nIqMetXYa7Bg5Y3vlrhs6ggitsKxWfTXyvjTfaX r9qxhttx3B4EavAbSHBCfk4E6Zo/5SfFCqXxqL03Kuw7HMWSnF6Rc0+2naKftA3d sYloRjmIhXuG8wOw/dJ92Mevk881HZQSIcZ1dFWnPb/0yV5UWjzc+Qs4DRFwA881 WX5o0KqcnAq/NYkj990PZSweTQ== -----END CERTIFICATE-----Generated at Sat Mar 28 12:09:58 2026 by rpki-client