$ rpki-client -vvf rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft File: oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft (raw, json) Hash identifier: 8RNsRQ7VaAsIOEFJeDE4M4MSoqX9TwFN1mbfTV1PwlA= Subject key identifier: 8F:CE:38:7A:71:15:EE:8E:CB:10:B1:0C:AC:11:C7:FE:9E:F3:B6:98 Authority key identifier: A0:7A:F0:CC:B2:98:35:CC:76:42:97:4B:AC:9E:15:02:B9:CF:82:D0 Certificate issuer: /CN=A91E29CB/serialNumber=A07AF0CCB29835CC7642974BAC9E1502B9CF82D0 Certificate serial: 0343 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oHrwzLKYNcx2QpdLrJ4VArnPgtA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft Manifest number: 0331 Signing time: Wed 25 Mar 2026 00:43:47 +0000 Manifest this update: Wed 25 Mar 2026 00:43:46 +0000 Manifest next update: Wed 01 Apr 2026 00:43:46 +0000 Files and hashes: 1: oHrwzLKYNcx2QpdLrJ4VArnPgtA.crl (hash: cmeOW2qf4X6dyzmXfcmSZA87RDf5zWWLdr98GVBLZHQ=) 2: C258B0D0E03C11EF991E147AC4F9AE02.roa (hash: X4W03lfAeMlljE4GAKwUtjHV/L977l42ii4F4eQTOn8=) 3: C08A3ED6E03C11EF991E147AC4F9AE02.roa (hash: ANsNQMN5H1ys5fOhAufw9rrJ9wcoujUNZdhr222CU5I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.crl rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oHrwzLKYNcx2QpdLrJ4VArnPgtA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 00:43:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 835 (0x343) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E29CB, serialNumber=A07AF0CCB29835CC7642974BAC9E1502B9CF82D0 Validity Not Before: Mar 25 00:43:46 2026 GMT Not After : Apr 1 00:43:46 2026 GMT Subject: CN=69c32fc2-981f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:fd:fd:0a:32:95:ac:27:0d:d2:03:45:ec:88: 83:de:40:28:85:d2:99:bf:fd:23:07:1d:03:19:35: f0:44:e2:f5:86:bd:1a:3f:02:11:10:e0:74:52:23: 68:b6:8f:a5:ad:0a:5f:49:71:5f:e6:f8:3d:1c:26: 2c:65:7e:c3:90:c1:d5:a0:30:36:d7:e7:b6:16:7c: 25:aa:dc:f7:18:58:5e:b5:03:e3:94:df:69:b2:be: 43:15:c2:06:e9:fe:f8:05:20:e4:16:51:9e:04:3c: 01:49:39:11:de:d3:68:2e:e6:fb:92:98:ae:60:b5: b3:25:19:b5:a2:d8:24:9f:44:d8:38:89:eb:67:35: 29:12:27:9e:db:35:c5:a7:3a:0e:5f:a4:30:b8:c9: f7:59:9f:46:15:18:4b:b9:7c:d8:5f:44:1e:b2:9f: ee:a7:93:22:f6:ab:1c:e2:b3:cb:38:d0:fb:00:43: 2f:f4:2f:f8:c5:c8:4e:5d:d2:53:ce:6b:65:47:28: c5:4d:92:ab:dc:0b:1d:86:68:6d:f8:d9:7d:3f:8b: 46:d2:6b:11:e3:69:50:eb:e3:ac:2a:38:49:bb:9b: cc:d7:5b:8a:45:d6:7e:9e:c3:c2:09:db:cd:9f:47: c5:00:11:0b:ba:8f:f6:69:1d:b5:dc:a4:60:72:9e: aa:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:CE:38:7A:71:15:EE:8E:CB:10:B1:0C:AC:11:C7:FE:9E:F3:B6:98 X509v3 Authority Key Identifier: keyid:A0:7A:F0:CC:B2:98:35:CC:76:42:97:4B:AC:9E:15:02:B9:CF:82:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oHrwzLKYNcx2QpdLrJ4VArnPgtA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:9e:08:ce:d2:fb:74:24:8c:1e:74:44:7b:d5:ef:80:8f:b1: 1d:4d:12:dc:7a:2d:3c:11:67:70:c6:79:c2:a2:2a:3f:e5:7e: 19:a5:69:82:27:ed:b3:c9:e6:4a:e5:23:20:23:a8:46:1d:43: 6d:10:ba:a0:ab:eb:13:85:46:9c:d1:19:e3:5d:7b:f2:2a:28: 62:ab:00:4a:97:8a:98:22:8a:7c:e8:31:cf:a0:0e:20:28:26: 3d:14:0f:1c:aa:2b:83:76:f8:ec:9f:e4:02:b1:93:71:c7:ed: ab:c4:0e:94:fc:7a:0f:33:6f:30:47:05:ac:19:4d:59:54:39: 70:39:f1:f5:dd:fc:37:3f:1d:f8:3d:03:46:6a:b2:cc:9e:5e: 9e:68:f8:15:f8:ef:5f:c0:cb:d0:a3:ca:d6:30:af:40:4b:76: 39:10:1e:42:b0:26:9c:6f:29:48:f1:da:a0:54:68:7a:2e:25: 7c:b4:b0:f1:88:16:13:1c:2f:66:04:e2:2a:97:38:b6:bf:4b: 6d:a3:dc:8e:e2:ed:e8:d5:37:41:96:7a:0e:66:7f:ad:2c:17: fb:96:14:12:ca:a4:07:95:8f:36:6a:45:9d:b0:e6:ac:86:a1: 59:13:47:3b:fb:43:ac:5d:43:41:95:93:56:59:0c:9f:3a:ee: 05:b0:f5:4f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA0MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI5Q0IxMTAvBgNVBAUTKEEwN0FGMENDQjI5ODM1Q0M3NjQyOTc0QkFDOUUxNTAy QjlDRjgyRDAwHhcNMjYwMzI1MDA0MzQ2WhcNMjYwNDAxMDA0MzQ2WjAYMRYwFAYD VQQDEw02OWMzMmZjMi05ODFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlf39CjKVrCcN0gNF7IiD3kAohdKZv/0jBx0DGTXwROL1hr0aPwIREOB0UiNo to+lrQpfSXFf5vg9HCYsZX7DkMHVoDA21+e2Fnwlqtz3GFhetQPjlN9psr5DFcIG 6f74BSDkFlGeBDwBSTkR3tNoLub7kpiuYLWzJRm1otgkn0TYOInrZzUpEiee2zXF pzoOX6QwuMn3WZ9GFRhLuXzYX0Qesp/up5Mi9qsc4rPLOND7AEMv9C/4xchOXdJT zmtlRyjFTZKr3Asdhmht+Nl9P4tG0msR42lQ6+OsKjhJu5vM11uKRdZ+nsPCCdvN n0fFABELuo/2aR213KRgcp6qHwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFI/OOHpx Fe6OyxCxDKwRx/6e87aYMB8GA1UdIwQYMBaAFKB68MyymDXMdkKXS6yeFQK5z4LQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjlDQi8xRjkwMkIwRTA1 QUYxMUVEQTcxNzY0MkJDNEY5QUUwMi9vSHJ3ekxLWU5jeDJRcGRMcko0VkFyblBn dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29Icnd6TEtZTmN4MlFwZExySjRWQXJuUGd0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MjlDQi8xRjkwMkIwRTA1QUYxMUVEQTcxNzY0MkJDNEY5QUUwMi9vSHJ3ekxLWU5j eDJRcGRMcko0VkFyblBndEEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAr54IztL7dCSMHnREe9XvgI+xHU0S3HotPBFncMZ5wqIqP+V+GaVpgifts8nm SuUjICOoRh1DbRC6oKvrE4VGnNEZ41178iooYqsASpeKmCKKfOgxz6AOICgmPRQP HKorg3b47J/kArGTccftq8QOlPx6DzNvMEcFrBlNWVQ5cDnx9d38Nz8d+D0DRmqy zJ5enmj4FfjvX8DL0KPK1jCvQEt2ORAeQrAmnG8pSPHaoFRoei4lfLSw8YgWExwv ZgTiKpc4tr9LbaPcjuLt6NU3QZZ6DmZ/rSwX+5YUEsqkB5WPNmpFnbDmrIahWRNH O/tDrF1DQZWTVlkMnzruBbD1Tw== -----END CERTIFICATE-----Generated at Thu Mar 26 16:04:50 2026 by rpki-client