$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC302/4EA48E84FBA911E4A8B34C23C4F9AE02/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.mft File: Ob-WmUq0xUyYPuD1EDZfT9mEFUE.mft (raw, json) Hash identifier: 9hY66rG1RYR3m6KM/fx+3zS9LsUr5iYCantV2UIKcAg= Subject key identifier: 9B:A3:1F:76:C9:B8:1F:1D:32:B6:C3:F6:85:1C:B2:A8:C4:9F:19:3C Authority key identifier: 39:BF:96:99:4A:B4:C5:4C:98:3E:E0:F5:10:36:5F:4F:D9:84:15:41 Certificate issuer: /CN=A91DC302/serialNumber=39BF96994AB4C54C983EE0F510365F4FD9841541 Certificate serial: 26CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC302/4EA48E84FBA911E4A8B34C23C4F9AE02/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.mft Manifest number: 26AC Signing time: Tue 24 Mar 2026 15:37:27 +0000 Manifest this update: Tue 24 Mar 2026 15:37:26 +0000 Manifest next update: Tue 31 Mar 2026 15:37:26 +0000 Files and hashes: 1: Ob-WmUq0xUyYPuD1EDZfT9mEFUE.crl (hash: OjR2BigJWNkeQky1FWgr/ggM4gBsJDy1ouVzOEZMNGs=) 2: E54E5FF6632311ED8D313442C4F9AE02.roa (hash: 854w7PdZ+GVBnud2Squ7BH42nMJN3ruaV+ahUGF7ddM=) 3: BA61C87692D911F083913E3DC4F9AE02.roa (hash: afAWZLC+mw9EyDI9/JJmoeXdskWuwhW3nTaeQPUOC20=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC302/4EA48E84FBA911E4A8B34C23C4F9AE02/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.crl rsync://rpki.apnic.net/member_repository/A91DC302/4EA48E84FBA911E4A8B34C23C4F9AE02/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 15:37:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9932 (0x26cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC302, serialNumber=39BF96994AB4C54C983EE0F510365F4FD9841541 Validity Not Before: Mar 24 15:37:26 2026 GMT Not After : Mar 31 15:37:26 2026 GMT Subject: CN=69c2afb7-6edc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:c5:d0:f5:48:70:ed:b0:44:5d:14:c0:2b:3a: 3f:06:b6:b2:d0:be:7b:18:f4:eb:b7:fb:37:1e:e9: 77:e5:fb:73:06:84:95:5f:93:ec:5b:aa:f4:bb:c7: f2:d9:e3:4d:42:d8:63:9b:bc:8a:4a:b1:ce:51:ed: fa:fd:00:64:30:16:fd:09:f7:bf:2d:05:69:e3:8a: 16:00:7b:e5:0c:e2:25:c4:b0:fd:e1:c1:9d:b6:51: 80:d4:90:8c:76:96:f7:fa:d1:23:99:79:86:de:6d: 93:12:10:2a:09:78:bd:31:be:61:c4:59:10:0a:c6: 43:61:3f:b2:20:85:8d:ec:87:e4:69:df:44:80:92: 3e:93:e8:b6:03:61:4d:4f:64:8f:69:26:1a:a8:a7: 73:8b:a6:b7:55:d1:7a:8b:c7:16:04:e0:f0:28:eb: fc:60:97:2b:39:47:83:ba:29:1c:db:87:fd:aa:4e: 26:61:9f:75:f6:02:1a:41:c6:ee:c5:61:c9:e8:e4: 1e:8a:b2:d2:fb:d7:83:3e:6b:00:b9:d7:2c:67:63: d6:24:32:67:cd:6b:27:9b:c2:39:e1:90:cb:f5:d5: 4c:cb:a9:aa:2f:a9:17:f4:fc:31:e5:8c:20:e8:cd: a0:b4:0c:17:50:da:c2:f4:89:fc:3b:ae:1b:33:05: ce:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:A3:1F:76:C9:B8:1F:1D:32:B6:C3:F6:85:1C:B2:A8:C4:9F:19:3C X509v3 Authority Key Identifier: keyid:39:BF:96:99:4A:B4:C5:4C:98:3E:E0:F5:10:36:5F:4F:D9:84:15:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC302/4EA48E84FBA911E4A8B34C23C4F9AE02/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC302/4EA48E84FBA911E4A8B34C23C4F9AE02/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:c6:10:32:5b:38:fd:4a:31:75:ac:13:bf:87:af:2b:b3:9f: df:d1:bc:66:f5:7f:44:f6:ed:b5:3d:a5:7d:58:4c:99:a0:9f: 46:d7:37:68:4f:65:e9:bf:a5:64:6f:8e:5b:48:81:a4:94:11: de:42:56:45:4f:ca:d1:46:1a:09:04:ff:5c:86:28:a8:55:ea: 35:e9:3f:77:87:fb:22:9b:3e:0b:dc:52:73:81:81:b3:26:67: f8:bf:62:fc:5b:78:72:35:24:af:c5:73:0e:2f:2f:bc:df:43: 33:41:a9:3b:e3:69:80:2c:df:51:76:c4:a8:21:8c:7b:06:d4: 84:a2:ce:33:ac:0b:39:59:96:c9:a5:47:ba:a1:67:55:df:36: 33:39:3d:46:bd:45:71:0f:ee:e8:8f:fe:b4:b1:44:81:3e:bc: c2:3a:7a:ac:c2:47:15:4b:e7:7b:5d:c6:70:fc:12:6e:06:a3: 8d:51:9f:c1:9d:74:05:eb:1c:a8:87:bf:b0:c2:87:f3:94:c5: 6a:a3:f5:d2:43:46:04:2e:de:8a:de:89:f0:e7:fe:88:ae:0e: 4b:5d:27:8c:17:2a:5f:4b:17:3d:9e:bb:a3:36:f3:75:db:03: 30:3e:7a:5a:1e:4d:d4:a1:e2:65:4f:ef:d8:b0:fa:f3:d8:1b: de:c4:b1:b2 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICJswwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REMzMDIxMTAvBgNVBAUTKDM5QkY5Njk5NEFCNEM1NEM5ODNFRTBGNTEwMzY1RjRG RDk4NDE1NDEwHhcNMjYwMzI0MTUzNzI2WhcNMjYwMzMxMTUzNzI2WjAYMRYwFAYD VQQDEw02OWMyYWZiNy02ZWRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxMXQ9Uhw7bBEXRTAKzo/Bray0L57GPTrt/s3Hul35ftzBoSVX5PsW6r0u8fy 2eNNQthjm7yKSrHOUe36/QBkMBb9Cfe/LQVp44oWAHvlDOIlxLD94cGdtlGA1JCM dpb3+tEjmXmG3m2TEhAqCXi9Mb5hxFkQCsZDYT+yIIWN7Ifkad9EgJI+k+i2A2FN T2SPaSYaqKdzi6a3VdF6i8cWBODwKOv8YJcrOUeDuikc24f9qk4mYZ919gIaQcbu xWHJ6OQeirLS+9eDPmsAudcsZ2PWJDJnzWsnm8I54ZDL9dVMy6mqL6kX9Pwx5Ywg 6M2gtAwXUNrC9In8O64bMwXO2QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJujH3bJ uB8dMrbD9oUcsqjEnxk8MB8GA1UdIwQYMBaAFDm/lplKtMVMmD7g9RA2X0/ZhBVB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzMwMi80RUE0OEU4NEZC QTkxMUU0QThCMzRDMjNDNEY5QUUwMi9PYi1XbVVxMHhVeVlQdUQxRURaZlQ5bUVG VUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09iLVdtVXEweFV5WVB1RDFFRFpmVDltRUZVRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzMwMi80RUE0OEU4NEZCQTkxMUU0QThCMzRDMjNDNEY5QUUwMi9PYi1XbVVxMHhV eVlQdUQxRURaZlQ5bUVGVUUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEABMYQMls4/UoxdawTv4evK7Of39G8ZvV/RPbttT2lfVhMmaCfRtc3aE9l6b+l ZG+OW0iBpJQR3kJWRU/K0UYaCQT/XIYoqFXqNek/d4f7Ips+C9xSc4GBsyZn+L9i /Ft4cjUkr8VzDi8vvN9DM0GpO+NpgCzfUXbEqCGMewbUhKLOM6wLOVmWyaVHuqFn Vd82Mzk9Rr1FcQ/u6I/+tLFEgT68wjp6rMJHFUvne13GcPwSbgajjVGfwZ10Besc qIe/sMKH85TFaqP10kNGBC7eit6J8Of+iK4OS10njBcqX0sXPZ67ozbzddsDMD56 Wh5N1KHiZU/v2LD689gb3sSxsg== -----END CERTIFICATE-----Generated at Thu Mar 26 16:30:42 2026 by rpki-client