$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7BC4/261D2830D50D11E9BAD6C226C4F9AE02/ovb2YTEslb8FoLUjCxNx1GIv1ic.mft File: ovb2YTEslb8FoLUjCxNx1GIv1ic.mft (raw, json) Hash identifier: Bwgu0OeuMW7x6VJHtwTPXpqyNS4nqVONltTzwzqzhaY= Subject key identifier: A3:F9:CE:3D:D6:90:56:93:A5:0E:D3:1E:8E:08:98:FD:50:36:EE:13 Authority key identifier: A2:F6:F6:61:31:2C:95:BF:05:A0:B5:23:0B:13:71:D4:62:2F:D6:27 Certificate issuer: /CN=A91E7BC4/serialNumber=A2F6F661312C95BF05A0B5230B1371D4622FD627 Certificate serial: 0DE2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ovb2YTEslb8FoLUjCxNx1GIv1ic.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7BC4/261D2830D50D11E9BAD6C226C4F9AE02/ovb2YTEslb8FoLUjCxNx1GIv1ic.mft Manifest number: 0DD7 Signing time: Tue 24 Mar 2026 17:44:45 +0000 Manifest this update: Tue 24 Mar 2026 17:44:45 +0000 Manifest next update: Tue 31 Mar 2026 17:44:45 +0000 Files and hashes: 1: ovb2YTEslb8FoLUjCxNx1GIv1ic.crl (hash: AxyJZxJw3Euar7DCnYeQO42d7OiK326DpzRNc2NN/qc=) 2: 05054224D8E411E9BEB7986DC4F9AE02.roa (hash: ob3kyKb+k6DfPg+34w85RGonL9slb2GFkKFVzFEICJQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7BC4/261D2830D50D11E9BAD6C226C4F9AE02/ovb2YTEslb8FoLUjCxNx1GIv1ic.crl rsync://rpki.apnic.net/member_repository/A91E7BC4/261D2830D50D11E9BAD6C226C4F9AE02/ovb2YTEslb8FoLUjCxNx1GIv1ic.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ovb2YTEslb8FoLUjCxNx1GIv1ic.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 17:44:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3554 (0xde2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7BC4, serialNumber=A2F6F661312C95BF05A0B5230B1371D4622FD627 Validity Not Before: Mar 24 17:44:45 2026 GMT Not After : Mar 31 17:44:45 2026 GMT Subject: CN=69c2cd8d-69a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:0b:35:75:8a:ef:eb:e8:70:e0:4c:72:e4:30: db:5f:69:36:3b:4c:27:b1:58:f3:b6:e6:a2:8c:b7: ad:22:55:db:fd:6a:b1:44:07:57:2a:f0:9c:b9:a5: 66:e6:bd:42:f6:ea:49:6c:64:83:7f:e7:42:5e:a4: 31:99:8a:0f:c6:05:01:33:e3:5c:5d:ff:63:f4:ed: e5:ce:5b:95:12:94:2d:b7:07:cf:03:e7:31:77:e7: b8:10:0c:02:03:e0:df:bf:2d:d1:02:07:ef:11:21: 24:1c:35:c5:b2:3b:a8:77:67:91:a5:01:b4:22:80: 1c:40:45:28:d2:90:e6:df:40:98:99:98:6a:80:87: 74:19:43:cc:03:0a:86:82:a5:c8:b3:16:a8:42:26: 37:d5:13:29:0d:62:15:54:fd:ab:db:6b:44:a5:a3: 1b:40:fe:e8:ac:56:db:a8:ba:f9:3e:8e:55:05:26: c4:c2:65:1d:f9:a5:c8:6a:e3:f4:01:be:98:45:0a: a2:36:73:4f:88:5b:c8:23:3b:13:cc:fd:c3:df:85: 18:5a:c4:46:67:e6:0e:ff:93:04:0c:6d:08:ea:cd: 1f:ea:4c:39:cc:c8:83:5a:07:3a:b3:b3:fe:a6:f9: ba:96:c5:fd:2c:56:79:f0:c8:20:c6:95:6a:88:13: 63:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:F9:CE:3D:D6:90:56:93:A5:0E:D3:1E:8E:08:98:FD:50:36:EE:13 X509v3 Authority Key Identifier: keyid:A2:F6:F6:61:31:2C:95:BF:05:A0:B5:23:0B:13:71:D4:62:2F:D6:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7BC4/261D2830D50D11E9BAD6C226C4F9AE02/ovb2YTEslb8FoLUjCxNx1GIv1ic.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ovb2YTEslb8FoLUjCxNx1GIv1ic.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7BC4/261D2830D50D11E9BAD6C226C4F9AE02/ovb2YTEslb8FoLUjCxNx1GIv1ic.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:31:68:fd:cf:f2:de:e5:3c:d5:02:2e:52:23:5b:fe:90:a3: 55:87:bc:2a:9b:fa:6e:1a:de:26:fc:ac:f8:c8:1b:7c:f8:e6: 6d:b1:92:27:c8:17:4e:9a:e6:bf:32:3b:e6:fd:9d:c9:55:2a: 32:05:1f:e0:ee:3f:a3:61:6a:77:e6:67:be:c3:79:5c:27:1a: d2:8c:47:d4:35:fb:08:fa:09:b6:7a:60:95:5b:f7:d4:94:93: fa:71:7a:a1:7f:65:3b:e4:a2:65:92:fb:c0:20:63:fd:e7:98: 64:25:4a:cc:13:fd:f6:cd:62:88:d0:6b:e0:90:82:ea:ef:b0: a9:83:c4:f4:2d:aa:8c:67:4f:a5:0d:c0:7f:40:12:c8:6d:26: b4:9c:e2:42:27:f7:b8:a6:ad:9a:c5:ab:64:4e:c4:f0:4a:09: d2:dd:a5:44:71:d6:a5:cd:cd:92:ca:19:67:2a:cc:9c:4a:ff: 43:26:50:5e:02:ca:d5:f1:d7:dc:f7:6b:b4:de:b6:29:84:8b: 3d:dc:c6:52:cd:69:f3:c0:48:b0:70:8f:b7:26:52:b1:ab:0f: 99:d6:7a:c4:73:d2:32:40:a8:41:55:0d:fb:62:f3:5e:45:19: 3d:b2:76:f0:bd:74:c3:06:40:d8:89:78:33:b9:d2:1e:fb:57: c5:5b:36:da -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDeIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTdCQzQxMTAvBgNVBAUTKEEyRjZGNjYxMzEyQzk1QkYwNUEwQjUyMzBCMTM3MUQ0 NjIyRkQ2MjcwHhcNMjYwMzI0MTc0NDQ1WhcNMjYwMzMxMTc0NDQ1WjAYMRYwFAYD VQQDEw02OWMyY2Q4ZC02OWE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnQs1dYrv6+hw4Exy5DDbX2k2O0wnsVjztuaijLetIlXb/WqxRAdXKvCcuaVm 5r1C9upJbGSDf+dCXqQxmYoPxgUBM+NcXf9j9O3lzluVEpQttwfPA+cxd+e4EAwC A+Dfvy3RAgfvESEkHDXFsjuod2eRpQG0IoAcQEUo0pDm30CYmZhqgId0GUPMAwqG gqXIsxaoQiY31RMpDWIVVP2r22tEpaMbQP7orFbbqLr5Po5VBSbEwmUd+aXIauP0 Ab6YRQqiNnNPiFvIIzsTzP3D34UYWsRGZ+YO/5MEDG0I6s0f6kw5zMiDWgc6s7P+ pvm6lsX9LFZ58MggxpVqiBNjjQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKP5zj3W kFaTpQ7THo4ImP1QNu4TMB8GA1UdIwQYMBaAFKL29mExLJW/BaC1IwsTcdRiL9Yn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFN0JDNC8yNjFEMjgzMEQ1 MEQxMUU5QkFENkMyMjZDNEY5QUUwMi9vdmIyWVRFc2xiOEZvTFVqQ3hOeDFHSXYx aWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL292YjJZVEVzbGI4Rm9MVWpDeE54MUdJdjFpYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF N0JDNC8yNjFEMjgzMEQ1MEQxMUU5QkFENkMyMjZDNEY5QUUwMi9vdmIyWVRFc2xi OEZvTFVqQ3hOeDFHSXYxaWMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAMzFo/c/y3uU81QIuUiNb/pCjVYe8Kpv6bhreJvys+MgbfPjmbbGSJ8gXTprm vzI75v2dyVUqMgUf4O4/o2Fqd+ZnvsN5XCca0oxH1DX7CPoJtnpglVv31JST+nF6 oX9lO+SiZZL7wCBj/eeYZCVKzBP99s1iiNBr4JCC6u+wqYPE9C2qjGdPpQ3Af0AS yG0mtJziQif3uKatmsWrZE7E8EoJ0t2lRHHWpc3NksoZZyrMnEr/QyZQXgLK1fHX 3PdrtN62KYSLPdzGUs1p88BIsHCPtyZSsasPmdZ6xHPSMkCoQVUN+2LzXkUZPbJ2 8L10wwZA2Il4M7nSHvtXxVs22g== -----END CERTIFICATE-----Generated at Thu Mar 26 11:14:54 2026 by rpki-client