$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6856/2DDB426E486311EEBC0BD213C4F9AE02/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.mft File: OmgjoQ8Dv6ykBo0zmERPNkEIVIU.mft (raw, json) Hash identifier: W+Q19UehRZeHYqvUKV7OKmwsFzFKUfaklTft6wn7RGY= Subject key identifier: 50:2D:A9:B7:D6:6C:8B:6B:D8:A0:33:7C:4C:1A:F3:7B:1A:8A:E5:CC Authority key identifier: 3A:68:23:A1:0F:03:BF:AC:A4:06:8D:33:98:44:4F:36:41:08:54:85 Certificate issuer: /CN=A91E6856/serialNumber=3A6823A10F03BFACA4068D3398444F3641085485 Certificate serial: 01ED Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6856/2DDB426E486311EEBC0BD213C4F9AE02/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.mft Manifest number: 01E7 Signing time: Tue 24 Mar 2026 17:30:16 +0000 Manifest this update: Tue 24 Mar 2026 17:30:16 +0000 Manifest next update: Tue 31 Mar 2026 17:30:16 +0000 Files and hashes: 1: OmgjoQ8Dv6ykBo0zmERPNkEIVIU.crl (hash: 7Bn66mS/DM6IGjo80mZRhaoCdpoci5yD6PAm0G9w3sE=) 2: B2C9B10A881311EE8CFB5C43C4F9AE02.roa (hash: oB4kxasRgRq+GKJ70NUc/sJMH3q5nYfTRjnemmCHnis=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6856/2DDB426E486311EEBC0BD213C4F9AE02/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.crl rsync://rpki.apnic.net/member_repository/A91E6856/2DDB426E486311EEBC0BD213C4F9AE02/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 17:30:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 493 (0x1ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6856, serialNumber=3A6823A10F03BFACA4068D3398444F3641085485 Validity Not Before: Mar 24 17:30:16 2026 GMT Not After : Mar 31 17:30:16 2026 GMT Subject: CN=69c2ca28-43d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:3b:c9:2d:2b:d3:ed:d7:fc:57:f0:a3:e1:fd: 3a:15:40:55:d7:04:18:f0:4f:44:1b:81:ed:7b:c3: 04:84:77:0a:ca:dd:96:d1:34:34:8a:b6:e8:6d:02: 8f:4a:d7:ab:fb:2d:0e:5a:e1:d6:da:54:b2:9d:69: a8:8b:da:5a:c3:71:23:b1:19:ef:3b:85:83:6b:cb: ae:93:ac:24:76:b7:db:6a:31:2a:91:ca:c5:5c:ef: fb:92:b4:11:56:8c:f1:3b:b9:03:37:bc:6c:5b:af: 33:53:9a:2e:3e:11:cc:e5:80:e9:4a:4c:7d:76:5a: 60:33:4f:28:06:25:6b:94:79:d6:2f:23:44:e6:ff: 90:f0:3c:88:8f:b1:8d:00:6c:eb:33:d0:ac:f8:81: a8:18:a1:a4:d8:20:4b:c1:e9:1e:37:d2:24:18:11: 8d:25:6f:77:7a:e7:6b:a8:d2:d0:29:96:16:20:22: e8:44:f1:d7:2d:b1:2d:a1:e6:08:2c:cd:f3:c5:df: fe:40:ec:7e:7d:de:21:3f:48:33:f5:05:1f:30:71: ee:bb:60:88:8a:5e:f0:a0:e5:c7:42:18:f5:c9:d0: 5e:11:92:78:d2:4e:8b:ce:d1:97:d3:0b:18:93:c7: 22:cd:00:10:e1:ed:15:6b:fb:8f:7b:42:e9:1a:de: 5c:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:2D:A9:B7:D6:6C:8B:6B:D8:A0:33:7C:4C:1A:F3:7B:1A:8A:E5:CC X509v3 Authority Key Identifier: keyid:3A:68:23:A1:0F:03:BF:AC:A4:06:8D:33:98:44:4F:36:41:08:54:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6856/2DDB426E486311EEBC0BD213C4F9AE02/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6856/2DDB426E486311EEBC0BD213C4F9AE02/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:40:ef:9b:30:f9:a9:67:c8:d8:ac:af:bc:37:9b:2c:8c:1f: 69:e3:32:5a:4a:66:35:b8:dc:90:21:1a:6f:aa:3e:8a:47:91: c8:d0:47:ec:a2:2c:d7:b4:34:98:74:7c:6c:82:f7:06:f4:3c: d0:7f:f4:fe:c3:7f:d0:c3:c7:4a:b6:44:7f:97:e0:af:61:2e: d1:66:d0:ba:f6:82:01:92:ea:4d:f6:3b:5e:06:95:a4:4e:1a: 96:94:82:15:86:04:b3:d5:35:6a:af:62:65:e2:12:de:82:2d: 01:97:4d:6e:f3:05:9c:e0:51:27:a7:3e:80:24:57:78:77:82: 4c:b6:44:b0:e5:ba:0c:01:ee:d0:9e:2b:70:e1:1c:38:eb:1e: 11:e5:18:7a:30:81:78:77:bf:4c:05:3f:fb:77:8a:d7:64:8e: 77:3b:3f:48:61:4d:34:7d:cd:1f:64:c1:4c:39:72:56:61:60: 57:cc:27:29:38:ae:9a:90:5f:ca:92:59:4c:30:3a:a4:24:4b: 0c:26:68:d3:5a:b5:d4:9b:f0:0e:58:97:70:1a:ed:a4:72:05: 14:6d:1c:bc:db:9e:7f:8f:eb:03:3c:bb:da:45:35:84:00:52: a2:29:f7:11:06:f3:00:63:5c:2e:89:10:be:75:45:ba:88:98: 33:b4:bb:80 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAe0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTY4NTYxMTAvBgNVBAUTKDNBNjgyM0ExMEYwM0JGQUNBNDA2OEQzMzk4NDQ0RjM2 NDEwODU0ODUwHhcNMjYwMzI0MTczMDE2WhcNMjYwMzMxMTczMDE2WjAYMRYwFAYD VQQDEw02OWMyY2EyOC00M2QwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxzvJLSvT7df8V/Cj4f06FUBV1wQY8E9EG4Hte8MEhHcKyt2W0TQ0irbobQKP Ster+y0OWuHW2lSynWmoi9paw3EjsRnvO4WDa8uuk6wkdrfbajEqkcrFXO/7krQR VozxO7kDN7xsW68zU5ouPhHM5YDpSkx9dlpgM08oBiVrlHnWLyNE5v+Q8DyIj7GN AGzrM9Cs+IGoGKGk2CBLwekeN9IkGBGNJW93eudrqNLQKZYWICLoRPHXLbEtoeYI LM3zxd/+QOx+fd4hP0gz9QUfMHHuu2CIil7woOXHQhj1ydBeEZJ40k6LztGX0wsY k8cizQAQ4e0Va/uPe0LpGt5c8wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFAtqbfW bItr2KAzfEwa83saiuXMMB8GA1UdIwQYMBaAFDpoI6EPA7+spAaNM5hETzZBCFSF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjg1Ni8yRERCNDI2RTQ4 NjMxMUVFQkMwQkQyMTNDNEY5QUUwMi9PbWdqb1E4RHY2eWtCbzB6bUVSUE5rRUlW SVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL09tZ2pvUThEdjZ5a0JvMHptRVJQTmtFSVZJVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF Njg1Ni8yRERCNDI2RTQ4NjMxMUVFQkMwQkQyMTNDNEY5QUUwMi9PbWdqb1E4RHY2 eWtCbzB6bUVSUE5rRUlWSVUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAa0DvmzD5qWfI2KyvvDebLIwfaeMyWkpmNbjckCEab6o+ikeRyNBH7KIs17Q0 mHR8bIL3BvQ80H/0/sN/0MPHSrZEf5fgr2Eu0WbQuvaCAZLqTfY7XgaVpE4alpSC FYYEs9U1aq9iZeIS3oItAZdNbvMFnOBRJ6c+gCRXeHeCTLZEsOW6DAHu0J4rcOEc OOseEeUYejCBeHe/TAU/+3eK12SOdzs/SGFNNH3NH2TBTDlyVmFgV8wnKTiumpBf ypJZTDA6pCRLDCZo01q11JvwDliXcBrtpHIFFG0cvNuef4/rAzy72kU1hABSoin3 EQbzAGNcLokQvnVFuoiYM7S7gA== -----END CERTIFICATE-----Generated at Thu Mar 26 15:30:23 2026 by rpki-client