$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/Oc4V2zZzmiLK7mTgz4ujH1prk0g.mft File: Oc4V2zZzmiLK7mTgz4ujH1prk0g.mft (raw, json) Hash identifier: +CatTJhMWU0N0lqLWOBJ6yv/yUNMnt+QfmM0sQu1SCo= Subject key identifier: 22:29:2F:90:24:EA:AA:8D:C7:69:39:F4:CF:C9:4A:BD:F8:63:B7:4A Authority key identifier: 39:CE:15:DB:36:73:9A:22:CA:EE:64:E0:CF:8B:A3:1F:5A:6B:93:48 Certificate issuer: /CN=A91DF863/serialNumber=39CE15DB36739A22CAEE64E0CF8BA31F5A6B9348 Certificate serial: 33D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oc4V2zZzmiLK7mTgz4ujH1prk0g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/Oc4V2zZzmiLK7mTgz4ujH1prk0g.mft Manifest number: 3365 Signing time: Tue 24 Mar 2026 15:22:13 +0000 Manifest this update: Tue 24 Mar 2026 15:22:13 +0000 Manifest next update: Tue 31 Mar 2026 15:22:13 +0000 Files and hashes: 1: Oc4V2zZzmiLK7mTgz4ujH1prk0g.crl (hash: Ri3SjP8Yohsw3UmCjQukiD+T1M+hLL3+A/NN5UrxLXI=) 2: 902F4AAC567011EFA451BD7CC4F9AE02.roa (hash: ywYO0R2h+KCbkByqxPNiOzqIp/WyrJLVsBz2TrN/mq0=) 3: 834D7D565BAA11EFBAF22B7FC4F9AE02.roa (hash: D3M6wzI4okhGRiWpslBcCzchggkeDwBoIQLL3NU2Nsk=) 4: 909AA4DC567011EFA451BD7CC4F9AE02.roa (hash: YkWYNrxgO0n51u4sQpXTHmpzMu712XYl/YRt4XSQRKE=) 5: 844CFD1C5BAA11EFBAF22B7FC4F9AE02.roa (hash: sVfjMKk5gEscjf/+ggoyWUQbHrSEKZRSttzymuAtyFQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/Oc4V2zZzmiLK7mTgz4ujH1prk0g.crl rsync://rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/Oc4V2zZzmiLK7mTgz4ujH1prk0g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oc4V2zZzmiLK7mTgz4ujH1prk0g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 15:22:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13271 (0x33d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF863, serialNumber=39CE15DB36739A22CAEE64E0CF8BA31F5A6B9348 Validity Not Before: Mar 24 15:22:13 2026 GMT Not After : Mar 31 15:22:13 2026 GMT Subject: CN=69c2ac25-ece7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:0c:c7:35:f4:89:e7:f5:11:4c:e1:49:a7:72: aa:20:5e:00:ed:ce:bb:b7:0e:b8:36:e4:75:21:6b: 86:87:81:cc:aa:4b:66:f2:15:b4:d9:b8:c5:0b:62: c7:31:b8:55:57:0b:d7:81:33:95:60:3c:7e:30:0c: 9d:6c:e3:a0:cf:40:22:af:74:41:a9:4d:d5:56:f8: 5b:5c:4b:7c:fe:3a:c7:e3:88:fe:46:d0:e8:98:3f: 40:e1:3c:89:9e:e7:d1:3c:b7:01:a6:00:a4:6b:3d: d7:72:a6:68:1a:b2:fb:71:4a:3a:0c:20:05:74:ee: 63:ba:7f:49:91:de:f2:c6:03:56:7e:1e:c9:a5:44: 8d:16:e1:95:67:b7:d8:6f:6c:53:0a:d0:ef:6a:48: d6:8f:20:f9:db:b7:b0:58:89:69:df:89:9a:3c:1e: 08:7a:35:7a:26:64:be:e4:53:55:a0:84:96:41:df: bf:09:d8:ae:d7:c5:d4:41:5c:57:03:d3:52:c1:a7: 45:3a:ee:bb:6f:e1:6d:60:e7:2e:82:be:43:74:e7: 9c:bf:44:ae:b4:45:11:de:6b:07:94:73:50:d2:1c: d3:29:fa:6b:f3:6b:3e:f4:1e:91:4d:e4:14:51:b4: e0:68:34:fb:e4:50:44:34:38:51:99:e0:07:8a:2b: 72:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:29:2F:90:24:EA:AA:8D:C7:69:39:F4:CF:C9:4A:BD:F8:63:B7:4A X509v3 Authority Key Identifier: keyid:39:CE:15:DB:36:73:9A:22:CA:EE:64:E0:CF:8B:A3:1F:5A:6B:93:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/Oc4V2zZzmiLK7mTgz4ujH1prk0g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oc4V2zZzmiLK7mTgz4ujH1prk0g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/Oc4V2zZzmiLK7mTgz4ujH1prk0g.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:36:63:02:9e:f4:f6:81:0f:84:6f:14:76:94:04:ba:df:6b: 27:c4:7b:65:c0:b0:7b:c5:14:0c:9a:02:ca:58:a9:e9:1d:b9: f6:f6:b2:72:bd:97:3f:06:5a:40:ed:4f:46:a1:b9:c3:02:89: 90:9f:74:5f:65:4e:e2:d3:d8:4d:99:af:14:e4:3c:9f:56:67: 92:a9:7b:d6:d7:43:10:d3:22:85:71:35:c3:42:e7:d3:d6:57: 89:d7:3b:51:d3:78:dd:a4:b1:b7:29:5d:3e:3a:18:25:86:d4: c5:11:06:a6:ca:80:cf:ab:a0:cb:5d:ba:18:aa:e0:8e:3b:62: 2b:1a:b7:f2:e9:e0:20:f2:12:30:9c:bb:cb:25:5b:6b:a8:12: 6f:40:5b:4f:89:79:11:b6:66:43:c3:5f:79:ee:f7:e2:05:13: 68:e3:07:dd:c9:fc:ba:b0:32:a0:b8:2d:58:5c:f9:ba:32:b6: fa:52:71:b6:7f:cc:4d:68:0c:cf:fc:ad:ad:59:69:ef:29:40: ef:a0:fd:d0:f6:83:a4:28:44:cd:87:ca:22:52:54:24:1c:b8: d3:65:7a:f1:5a:cf:05:02:09:d5:33:08:07:cd:01:2d:8c:6e: d3:46:93:ea:a2:1f:36:7d:7f:ec:bc:02:0d:02:7d:df:ec:b4: ad:21:04:09 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICM9cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REY4NjMxMTAvBgNVBAUTKDM5Q0UxNURCMzY3MzlBMjJDQUVFNjRFMENGOEJBMzFG NUE2QjkzNDgwHhcNMjYwMzI0MTUyMjEzWhcNMjYwMzMxMTUyMjEzWjAYMRYwFAYD VQQDEw02OWMyYWMyNS1lY2U3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuwzHNfSJ5/URTOFJp3KqIF4A7c67tw64NuR1IWuGh4HMqktm8hW02bjFC2LH MbhVVwvXgTOVYDx+MAydbOOgz0Air3RBqU3VVvhbXEt8/jrH44j+RtDomD9A4TyJ nufRPLcBpgCkaz3XcqZoGrL7cUo6DCAFdO5jun9Jkd7yxgNWfh7JpUSNFuGVZ7fY b2xTCtDvakjWjyD527ewWIlp34maPB4IejV6JmS+5FNVoISWQd+/Cdiu18XUQVxX A9NSwadFOu67b+FtYOcugr5DdOecv0SutEUR3msHlHNQ0hzTKfpr82s+9B6RTeQU UbTgaDT75FBENDhRmeAHiityBQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCIpL5Ak 6qqNx2k59M/JSr34Y7dKMB8GA1UdIwQYMBaAFDnOFds2c5oiyu5k4M+Lox9aa5NI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjg2My9CRkU1NEE2ODgx NUIxMUUyOUI1OEE3M0IzMjkyQjVFOC9PYzRWMnpaem1pTEs3bVRnejR1akgxcHJr MGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09jNFYyelp6bWlMSzdtVGd6NHVqSDFwcmswZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE Rjg2My9CRkU1NEE2ODgxNUIxMUUyOUI1OEE3M0IzMjkyQjVFOC9PYzRWMnpaem1p TEs3bVRnejR1akgxcHJrMGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEApTZjAp709oEPhG8UdpQEut9rJ8R7ZcCwe8UUDJoCylip6R259vaycr2XPwZa QO1PRqG5wwKJkJ90X2VO4tPYTZmvFOQ8n1Znkql71tdDENMihXE1w0Ln09ZXidc7 UdN43aSxtyldPjoYJYbUxREGpsqAz6ugy126GKrgjjtiKxq38ungIPISMJy7yyVb a6gSb0BbT4l5EbZmQ8Nfee734gUTaOMH3cn8urAyoLgtWFz5ujK2+lJxtn/MTWgM z/ytrVlp7ylA76D90PaDpChEzYfKIlJUJBy402V68VrPBQIJ1TMIB80BLYxu00aT 6qIfNn1/7LwCDQJ93+y0rSEECQ== -----END CERTIFICATE-----Generated at Thu Mar 26 15:08:35 2026 by rpki-client