$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4E32/720959FC01C011EDBD7C6F58C4F9AE02/oYXAxXSCnF_NcURUSeU0za70E5Y.mft File: oYXAxXSCnF_NcURUSeU0za70E5Y.mft (raw, json) Hash identifier: pHH50hNXQNFnAjT9UGmUCwLlrJL1ALCYmr4SlI90+sU= Subject key identifier: 24:F1:07:92:28:8F:86:47:16:0B:5A:C8:48:C2:CB:F6:44:20:B5:EF Authority key identifier: A1:85:C0:C5:74:82:9C:5F:CD:71:44:54:49:E5:34:CD:AE:F4:13:96 Certificate issuer: /CN=A91E4E32/serialNumber=A185C0C574829C5FCD71445449E534CDAEF41396 Certificate serial: 0407 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oYXAxXSCnF_NcURUSeU0za70E5Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4E32/720959FC01C011EDBD7C6F58C4F9AE02/oYXAxXSCnF_NcURUSeU0za70E5Y.mft Manifest number: 0399 Signing time: Wed 25 Mar 2026 00:40:15 +0000 Manifest this update: Wed 25 Mar 2026 00:40:15 +0000 Manifest next update: Wed 01 Apr 2026 00:40:15 +0000 Files and hashes: 1: oYXAxXSCnF_NcURUSeU0za70E5Y.crl (hash: jABhjIE37A3HJOBmkp4I9WuKCrFgENau+1epA22MoSw=) 2: 1C8BEF04E24511EF96354978C4F9AE02.roa (hash: LdPaVpIHiFCviJ4atJWEzsKTvmcrhcuE0nckBT360kM=) 3: CD90ED68057211F0B6E2301BC4F9AE02.roa (hash: 9yLq1fcTY/+ONs/+aAdKdKRJn1+ep6hUevFi1Yok7fo=) 4: 2D153A4648B711F0B6D4592EC4F9AE02.roa (hash: eZ62tcC+oCrr0OwV7JhPtt2KQGPwxM8cNygG2lJcXC0=) 5: 2C155C38E62911F0B525CBC56F6F56BC.roa (hash: SGksm6VTqM61tXFsVwhp+M8haNtlkDq4gGqjHiqh65E=) 6: C5FA2070D5BE11F08FAD3430C4F9AE02.roa (hash: o5WlhFegrunl298udJ6RMR3PSjbICpygcszPCkIxPQQ=) 7: 205AD1805C8A11F09D065A67C4F9AE02.roa (hash: jzliHD9p9VBPFQH3cs9dpYZduyBWUj6S6T4IuIvTvCc=) 8: F2F59366E93211F0977E0D6F386F56BC.roa (hash: mJMHg3iUauwTmfzAX67ctynfw2aWN8PZsnA4LlIG7Ko=) 9: 212691F85C8A11F09D065A67C4F9AE02.roa (hash: GpFi4qWfLH3/Bor9liB/z27o/eFfVUNzo/Spgg2Kwhc=) 10: A3571FDE47EC11EFB51C3666C4F9AE02.roa (hash: HZqCvdeGHsP/6NvJbld74YoHrCzB+uyqkSUL6rM4Krs=) 11: B111111288B411EF80480527C4F9AE02.roa (hash: ERFGJsSUFqUqUH2+aB83gavANEDKi02Z8fvMs7VPc/s=) 12: F9C0DF84BC4111F09D031660C4F9AE02.roa (hash: v+IMCk1QKXV1myDls8FZGCVLQkvmM82UNEFppPlEWlM=) 13: 5F9F1738A37B11F0B0ADF652C4F9AE02.roa (hash: eynEZAFOoFMy/xuYyuLdNHt4VeaWDqCeHNzL/ERhSTY=) 14: 836865ECD0DB11F086463D52C4F9AE02.roa (hash: ceAxo9+Fdyi5P0HsH2wnjJofUWLA3mwVeu0l0LHg0Tw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4E32/720959FC01C011EDBD7C6F58C4F9AE02/oYXAxXSCnF_NcURUSeU0za70E5Y.crl rsync://rpki.apnic.net/member_repository/A91E4E32/720959FC01C011EDBD7C6F58C4F9AE02/oYXAxXSCnF_NcURUSeU0za70E5Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oYXAxXSCnF_NcURUSeU0za70E5Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 00:40:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1031 (0x407) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4E32, serialNumber=A185C0C574829C5FCD71445449E534CDAEF41396 Validity Not Before: Mar 25 00:40:15 2026 GMT Not After : Apr 1 00:40:15 2026 GMT Subject: CN=69c32eef-d80a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:d7:5d:a4:9c:3b:ee:16:e7:35:45:4f:77:22: e1:9f:c2:d8:8c:2c:e4:aa:b6:d1:4a:58:92:c6:63: 60:77:d6:53:a1:aa:73:8d:31:79:2c:c8:ac:63:58: 51:98:59:3a:16:d1:bb:4f:d2:53:b6:dc:10:7e:c2: d6:02:67:73:57:09:63:58:3a:06:f3:00:10:99:38: e8:94:ba:89:1c:aa:c5:de:7e:7d:e1:9d:c0:5c:2b: f4:d2:9c:af:18:a7:fa:ca:7c:7d:b2:3e:3e:9e:94: 02:61:10:56:89:a8:a4:ff:99:1e:01:8b:f3:fb:8b: ff:b5:72:6d:73:66:97:a1:d3:77:05:b7:4e:8b:04: 32:48:f8:4a:80:c1:56:50:63:86:7b:25:2e:86:bd: 61:3c:aa:8a:b7:07:77:a9:48:c7:1d:ef:ee:5c:1c: 0d:98:07:69:f8:b2:a5:3e:13:59:95:e1:a4:a6:1a: 8d:a4:34:09:4a:7e:0b:86:ae:bc:c7:5f:d6:88:bb: 23:48:2a:87:7c:ec:fb:70:cb:9a:b1:0c:23:ca:0c: 0b:19:f7:73:42:49:85:61:ff:36:79:a0:82:af:c6: 32:86:dd:53:f5:b1:3a:4c:0b:34:63:ec:44:0f:1a: af:dc:37:e0:43:eb:28:fd:49:be:29:62:75:78:81: f2:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:F1:07:92:28:8F:86:47:16:0B:5A:C8:48:C2:CB:F6:44:20:B5:EF X509v3 Authority Key Identifier: keyid:A1:85:C0:C5:74:82:9C:5F:CD:71:44:54:49:E5:34:CD:AE:F4:13:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4E32/720959FC01C011EDBD7C6F58C4F9AE02/oYXAxXSCnF_NcURUSeU0za70E5Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oYXAxXSCnF_NcURUSeU0za70E5Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4E32/720959FC01C011EDBD7C6F58C4F9AE02/oYXAxXSCnF_NcURUSeU0za70E5Y.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:cb:a1:db:60:fe:ce:24:18:0c:72:b4:30:cf:77:b2:55:38: 56:83:6a:cd:41:df:db:b2:a1:a3:c0:f1:86:29:c5:a0:47:ba: 8d:2e:0f:9d:61:9b:38:a3:54:5b:b1:03:72:d9:b7:e2:72:28: ad:03:ae:45:ed:54:b8:d7:9f:68:18:ed:78:c5:df:f5:af:9c: eb:59:15:11:6f:03:27:ea:61:f1:61:a5:40:87:cc:1e:1a:d1: f7:97:15:0c:43:e0:c8:c0:56:7d:3a:0f:3f:69:ec:21:d7:dd: 58:33:13:1c:4a:21:34:c8:97:cd:2f:04:e6:e0:52:cb:a3:60: 75:63:f9:bd:e7:89:bc:05:8d:f2:d9:21:37:20:46:3f:d9:1d: d6:08:85:82:d1:0f:7b:e1:20:2e:42:0f:53:89:d6:e7:2a:71: d3:7b:cf:ae:07:d3:30:32:9b:62:b7:b8:15:e6:3c:07:79:b4: 46:05:3f:d2:ea:28:59:ac:c6:06:59:e1:cd:73:6e:e1:5b:e4: b9:e5:ac:d2:14:e7:ac:f9:00:36:2c:7b:6e:57:44:ef:f6:7e: 35:00:86:29:7c:fa:8d:6f:3d:b9:37:18:68:ec:84:df:36:d4: 6b:0c:7c:a8:2e:21:58:2e:f3:33:7f:8c:24:60:e9:10:f5:b2: 24:8d:1e:bb -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBAcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTRFMzIxMTAvBgNVBAUTKEExODVDMEM1NzQ4MjlDNUZDRDcxNDQ1NDQ5RTUzNENE QUVGNDEzOTYwHhcNMjYwMzI1MDA0MDE1WhcNMjYwNDAxMDA0MDE1WjAYMRYwFAYD VQQDEw02OWMzMmVlZi1kODBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAttddpJw77hbnNUVPdyLhn8LYjCzkqrbRSliSxmNgd9ZToapzjTF5LMisY1hR mFk6FtG7T9JTttwQfsLWAmdzVwljWDoG8wAQmTjolLqJHKrF3n594Z3AXCv00pyv GKf6ynx9sj4+npQCYRBWiaik/5keAYvz+4v/tXJtc2aXodN3BbdOiwQySPhKgMFW UGOGeyUuhr1hPKqKtwd3qUjHHe/uXBwNmAdp+LKlPhNZleGkphqNpDQJSn4Lhq68 x1/WiLsjSCqHfOz7cMuasQwjygwLGfdzQkmFYf82eaCCr8Yyht1T9bE6TAs0Y+xE Dxqv3DfgQ+so/Um+KWJ1eIHyIQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCTxB5Io j4ZHFgtayEjCy/ZEILXvMB8GA1UdIwQYMBaAFKGFwMV0gpxfzXFEVEnlNM2u9BOW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEUzMi83MjA5NTlGQzAx QzAxMUVEQkQ3QzZGNThDNEY5QUUwMi9vWVhBeFhTQ25GX05jVVJVU2VVMHphNzBF NVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29ZWEF4WFNDbkZfTmNVUlVTZVUwemE3MEU1WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NEUzMi83MjA5NTlGQzAxQzAxMUVEQkQ3QzZGNThDNEY5QUUwMi9vWVhBeFhTQ25G X05jVVJVU2VVMHphNzBFNVkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAKMuh22D+ziQYDHK0MM93slU4VoNqzUHf27Kho8DxhinFoEe6jS4PnWGbOKNU W7EDctm34nIorQOuRe1UuNefaBjteMXf9a+c61kVEW8DJ+ph8WGlQIfMHhrR95cV DEPgyMBWfToPP2nsIdfdWDMTHEohNMiXzS8E5uBSy6NgdWP5veeJvAWN8tkhNyBG P9kd1giFgtEPe+EgLkIPU4nW5ypx03vPrgfTMDKbYre4FeY8B3m0RgU/0uooWazG BlnhzXNu4VvkueWs0hTnrPkANix7bldE7/Z+NQCGKXz6jW89uTcYaOyE3zbUawx8 qC4hWC7zM3+MJGDpEPWyJI0euw== -----END CERTIFICATE-----Generated at Thu Mar 26 10:08:58 2026 by rpki-client