$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA5F7/F0DCCDD4F1F111F0AB21F93B456F56BC/mOmVvDpP8s0IxuNVS2Y3S2aXknA.mft File: mOmVvDpP8s0IxuNVS2Y3S2aXknA.mft (raw, json) Hash identifier: vxwaFCQsYZXKzlJ7P6nHBn+rQM2dCVw43n0uk/QqLNc= Subject key identifier: 38:AF:87:D5:D2:BC:48:93:36:1B:B2:CD:7C:18:BA:C1:FE:DD:EE:DA Authority key identifier: 98:E9:95:BC:3A:4F:F2:CD:08:C6:E3:55:4B:66:37:4B:66:97:92:70 Certificate issuer: /CN=A91DA5F7/serialNumber=98E995BC3A4FF2CD08C6E3554B66374B66979270 Certificate serial: 2F Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/mOmVvDpP8s0IxuNVS2Y3S2aXknA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA5F7/F0DCCDD4F1F111F0AB21F93B456F56BC/mOmVvDpP8s0IxuNVS2Y3S2aXknA.mft Manifest number: 2A Signing time: Fri 27 Mar 2026 08:20:14 +0000 Manifest this update: Fri 27 Mar 2026 08:20:13 +0000 Manifest next update: Fri 03 Apr 2026 08:20:13 +0000 Files and hashes: 1: mOmVvDpP8s0IxuNVS2Y3S2aXknA.crl (hash: IQbu5lq3e1HEl7ZvduGueck1SMMw21Hga+Gb9IIdR3k=) 2: 3150E4A4F1F211F0B442E9B1456F56BC.roa (hash: NONLn4Akv/l6YL+qj6DEc725hoLYdC323Fs/6ORru7c=) 3: 30D2517AF1F211F0B442E9B1456F56BC.roa (hash: UAtyjnkkGVt2+haohA8ppdzMqX4q+YbKNZp+6njQiaY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA5F7/F0DCCDD4F1F111F0AB21F93B456F56BC/mOmVvDpP8s0IxuNVS2Y3S2aXknA.crl rsync://rpki.apnic.net/member_repository/A91DA5F7/F0DCCDD4F1F111F0AB21F93B456F56BC/mOmVvDpP8s0IxuNVS2Y3S2aXknA.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/mOmVvDpP8s0IxuNVS2Y3S2aXknA.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 08:20:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47 (0x2f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA5F7, serialNumber=98E995BC3A4FF2CD08C6E3554B66374B66979270 Validity Not Before: Mar 27 08:20:13 2026 GMT Not After : Apr 3 08:20:13 2026 GMT Subject: CN=69c63dbe-4333 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:76:b4:63:00:c8:8f:3c:a9:67:7d:1a:e7:06: 8f:f1:1f:99:e4:47:be:35:c6:99:bb:db:be:a9:6d: 64:3f:a3:19:ce:59:53:a5:4d:1b:91:3e:aa:34:df: 17:d9:da:4f:37:dc:36:0a:28:11:3c:cd:e2:80:97: c9:18:33:1c:88:0d:63:b1:de:d7:0c:3c:f8:06:71: a0:e2:b1:12:d0:0b:6e:66:ec:a5:c0:e3:09:5c:cf: a7:70:b2:fb:de:e9:fc:0f:c7:0d:e0:5e:53:ff:dc: 1e:fa:b3:d2:a6:e7:2c:08:80:4f:ae:b6:67:d1:03: d4:ad:a6:4e:3d:c1:a9:20:3d:22:8b:24:c9:1d:75: ec:a2:2f:37:1c:bd:10:e8:06:5b:8c:07:b4:f2:7e: c6:ce:49:8e:7a:9e:b0:ec:99:15:3f:8f:96:d5:2b: c9:42:c6:75:80:db:62:e9:db:16:af:ae:c6:68:28: a8:27:e3:3f:eb:b8:72:86:35:6e:c7:e1:df:fc:6d: f8:32:39:fb:cb:c1:9b:8c:7c:a8:14:85:a0:db:fe: fe:b4:f6:5f:09:bc:89:fa:f7:49:22:ef:07:37:e0: b0:84:ae:49:4a:72:4c:c2:90:33:0d:fd:96:98:c7: eb:93:33:b3:3a:f2:01:17:4b:98:f9:be:37:4f:69: 0c:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:AF:87:D5:D2:BC:48:93:36:1B:B2:CD:7C:18:BA:C1:FE:DD:EE:DA X509v3 Authority Key Identifier: keyid:98:E9:95:BC:3A:4F:F2:CD:08:C6:E3:55:4B:66:37:4B:66:97:92:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA5F7/F0DCCDD4F1F111F0AB21F93B456F56BC/mOmVvDpP8s0IxuNVS2Y3S2aXknA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/mOmVvDpP8s0IxuNVS2Y3S2aXknA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA5F7/F0DCCDD4F1F111F0AB21F93B456F56BC/mOmVvDpP8s0IxuNVS2Y3S2aXknA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:9e:a2:6d:7f:8e:4b:a7:57:c5:a4:f9:92:65:48:4a:0d:90: 1a:11:f3:db:5f:64:34:07:21:89:e2:c6:5a:85:55:51:51:27: 74:1e:bd:92:e2:3f:59:be:c6:6a:03:67:f0:8c:61:55:fc:27: cf:cc:1c:cf:a9:ec:b8:87:a2:c0:ee:00:ee:4f:1d:b0:6c:b0: 7e:f7:7a:b6:0b:ad:62:d7:6b:8f:bb:3b:f7:d7:69:7d:15:06: b7:f0:19:a7:8c:e9:66:64:06:d1:a7:d8:97:6c:c7:bf:02:db: 53:ea:b9:0f:cc:41:e4:fb:21:32:5c:f7:a6:af:e4:1e:06:51: 3a:52:4e:80:66:83:be:6a:94:3f:d5:28:01:8e:cb:b4:9b:8d: a7:e5:3a:3b:be:42:34:1c:9b:bb:58:2d:7b:d7:75:b9:55:a4: 18:6e:36:7f:7b:56:b1:c8:d2:ad:02:98:5e:fb:01:a7:ee:36: f4:83:dc:91:c4:39:69:bf:5b:e8:46:6c:bc:b7:56:70:e4:6f: 5f:c4:23:0d:39:3e:7d:ed:57:25:ea:7a:06:79:40:11:15:0f: ea:88:ab:e9:5d:1d:a8:a6:74:83:ab:e5:cb:1b:7a:80:18:db: 1f:df:84:46:dc:5f:9c:13:00:8f:48:31:3f:5b:db:6d:a7:9b: 3e:af:4d:c0 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBLzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE QTVGNzExMC8GA1UEBRMoOThFOTk1QkMzQTRGRjJDRDA4QzZFMzU1NEI2NjM3NEI2 Njk3OTI3MDAeFw0yNjAzMjcwODIwMTNaFw0yNjA0MDMwODIwMTNaMBgxFjAUBgNV BAMTDTY5YzYzZGJlLTQzMzMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCbdrRjAMiPPKlnfRrnBo/xH5nkR741xpm7276pbWQ/oxnOWVOlTRuRPqo03xfZ 2k833DYKKBE8zeKAl8kYMxyIDWOx3tcMPPgGcaDisRLQC25m7KXA4wlcz6dwsvve 6fwPxw3gXlP/3B76s9Km5ywIgE+utmfRA9Stpk49wakgPSKLJMkddeyiLzccvRDo BluMB7TyfsbOSY56nrDsmRU/j5bVK8lCxnWA22Lp2xavrsZoKKgn4z/ruHKGNW7H 4d/8bfgyOfvLwZuMfKgUhaDb/v609l8JvIn690ki7wc34LCErklKckzCkDMN/ZaY x+uTM7M68gEXS5j5vjdPaQwJAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUOK+H1dK8 SJM2G7LNfBi6wf7d7towHwYDVR0jBBgwFoAUmOmVvDpP8s0IxuNVS2Y3S2aXknAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURBNUY3L0YwRENDREQ0RjFG MTExRjBBQjIxRjkzQjQ1NkY1NkJDL21PbVZ2RHBQOHMwSXh1TlZTMlkzUzJhWGtu QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIvbU9tVnZEcFA4czBJeHVOVlMyWTNTMmFYa25BLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURB NUY3L0YwRENDREQ0RjFGMTExRjBBQjIxRjkzQjQ1NkY1NkJDL21PbVZ2RHBQOHMw SXh1TlZTMlkzUzJhWGtuQS5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQAWnqJtf45Lp1fFpPmSZUhKDZAaEfPbX2Q0ByGJ4sZahVVRUSd0Hr2S4j9ZvsZq A2fwjGFV/CfPzBzPqey4h6LA7gDuTx2wbLB+93q2C61i12uPuzv312l9FQa38Bmn jOlmZAbRp9iXbMe/AttT6rkPzEHk+yEyXPemr+QeBlE6Uk6AZoO+apQ/1SgBjsu0 m42n5To7vkI0HJu7WC1713W5VaQYbjZ/e1axyNKtAphe+wGn7jb0g9yRxDlpv1vo Rmy8t1Zw5G9fxCMNOT597Vcl6noGeUARFQ/qiKvpXR2opnSDq+XLG3qAGNsf34RG 3F+cEwCPSDE/W9ttp5s+r03A -----END CERTIFICATE-----Generated at Sat Mar 28 10:34:53 2026 by rpki-client