$ rpki-client -vvf rpki.apnic.net/member_repository/A91E953B/C8D039226C9A11EE85BFDF4FC4F9AE02/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.mft File: oiQ2hCI9LCXGrxdqXwL6ArJPaAs.mft (raw, json) Hash identifier: GS1WVBlc2gpbi1r/RVMPHbok6UfKShzEHerCt0RkRRM= Subject key identifier: 4F:E6:3B:70:CA:C7:C3:63:28:D1:7F:EE:82:4B:65:B2:1F:FD:6D:B9 Authority key identifier: A2:24:36:84:22:3D:2C:25:C6:AF:17:6A:5F:02:FA:02:B2:4F:68:0B Certificate issuer: /CN=A91E953B/serialNumber=A2243684223D2C25C6AF176A5F02FA02B24F680B Certificate serial: 01D1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E953B/C8D039226C9A11EE85BFDF4FC4F9AE02/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.mft Manifest number: 01CC Signing time: Fri 27 Mar 2026 03:10:57 +0000 Manifest this update: Fri 27 Mar 2026 03:10:56 +0000 Manifest next update: Fri 03 Apr 2026 03:10:56 +0000 Files and hashes: 1: oiQ2hCI9LCXGrxdqXwL6ArJPaAs.crl (hash: Nqj38i3nUMABeOyNsUamjjZ0xmgkHhpOMNBn2q3JE4o=) 2: 12E1FD886C9C11EE9F3C5653C4F9AE02.roa (hash: 5SIEytqj/kUtficVvfQzNkbf84VZDuhF0/ee1j7nlyY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E953B/C8D039226C9A11EE85BFDF4FC4F9AE02/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.crl rsync://rpki.apnic.net/member_repository/A91E953B/C8D039226C9A11EE85BFDF4FC4F9AE02/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 03:10:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 465 (0x1d1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E953B, serialNumber=A2243684223D2C25C6AF176A5F02FA02B24F680B Validity Not Before: Mar 27 03:10:56 2026 GMT Not After : Apr 3 03:10:56 2026 GMT Subject: CN=69c5f541-414e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:3f:23:2d:ff:6e:e8:59:ed:ae:54:30:13:8a: 26:86:77:29:95:97:73:6f:cb:de:e8:60:70:66:c6: ca:3e:cb:e8:bb:c3:a5:2e:b3:da:f6:8c:ed:a3:34: ab:6c:fc:71:a7:b7:a3:c2:1b:9d:44:c5:23:30:cd: 9e:0a:74:98:10:50:e8:d9:b7:6f:b7:e7:8f:5e:b9: b5:bd:2c:0c:87:21:a9:8f:64:5d:61:6e:b6:2a:28: 63:d2:74:4a:8b:ba:07:4a:04:ae:2f:29:a6:0f:cb: 15:a9:6b:e1:0e:1f:ca:28:51:ae:0c:e8:54:53:38: a2:63:c6:4b:97:73:cc:0c:d3:0f:45:41:ef:d3:7b: 44:9a:0c:cf:0c:10:2e:f3:70:71:34:7c:34:80:c2: 18:06:99:cb:53:40:18:3b:d6:3c:24:73:6d:83:38: a1:a3:e0:ec:e2:1d:7d:b1:31:70:9b:dc:c8:7c:b5: e4:ca:7b:e8:43:66:0e:83:58:cf:2b:ca:00:2d:f6: 98:32:66:8c:af:3d:a9:73:f3:f5:70:90:5b:49:a7: 07:0d:b4:a7:9f:3a:8f:a4:e4:79:eb:d1:a9:8a:e4: 1f:23:e2:36:d9:4d:56:4a:f7:81:bd:6f:7d:cd:df: f5:f8:02:78:73:95:5a:c4:db:20:c3:eb:dd:90:0f: 53:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:E6:3B:70:CA:C7:C3:63:28:D1:7F:EE:82:4B:65:B2:1F:FD:6D:B9 X509v3 Authority Key Identifier: keyid:A2:24:36:84:22:3D:2C:25:C6:AF:17:6A:5F:02:FA:02:B2:4F:68:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E953B/C8D039226C9A11EE85BFDF4FC4F9AE02/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E953B/C8D039226C9A11EE85BFDF4FC4F9AE02/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:ec:d9:fe:47:0a:19:b4:e4:a4:6b:7b:df:ee:85:83:2f:10: f4:a7:9b:46:cf:fc:1b:e1:98:12:4c:43:e9:bd:29:62:49:1a: f1:81:7e:e8:30:83:4d:36:76:fd:c8:2c:b5:69:03:49:25:9a: da:4d:ad:36:1b:7a:31:c5:2b:c0:38:35:b4:e7:e8:22:a7:db: b6:2a:7f:df:31:ea:46:33:5f:2a:d6:ab:5a:e6:14:52:3e:28: 17:61:cc:0f:32:53:94:1b:d9:7f:f1:4f:a4:90:02:a1:75:66: 7c:a8:de:dc:9f:ec:58:85:30:f6:05:02:25:c1:94:2b:ba:97: 19:43:70:19:8c:ef:51:c4:0f:7c:8d:e5:bf:82:ff:c0:98:0b: b1:74:8e:d5:27:bd:6d:a7:d8:79:1f:0a:78:b0:bd:82:f3:1d: 22:7f:e3:0e:dc:c0:4e:5c:11:d0:5a:1d:da:a8:4a:a9:fd:24: 9b:b0:b5:07:3f:f8:46:97:52:bb:db:7e:53:3a:79:8f:b4:6d: f1:5a:bf:7e:68:a9:05:51:e5:06:fb:20:df:ff:0d:36:a4:8d: b1:c4:f9:e8:dd:32:17:fc:7c:9f:74:4c:c4:77:8e:9a:69:a1: bd:55:1b:59:30:40:56:f8:36:50:e8:64:8e:9a:98:01:da:24: 79:34:36:80 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAdEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTk1M0IxMTAvBgNVBAUTKEEyMjQzNjg0MjIzRDJDMjVDNkFGMTc2QTVGMDJGQTAy QjI0RjY4MEIwHhcNMjYwMzI3MDMxMDU2WhcNMjYwNDAzMDMxMDU2WjAYMRYwFAYD VQQDEw02OWM1ZjU0MS00MTRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArz8jLf9u6FntrlQwE4omhncplZdzb8ve6GBwZsbKPsvou8OlLrPa9oztozSr bPxxp7ejwhudRMUjMM2eCnSYEFDo2bdvt+ePXrm1vSwMhyGpj2RdYW62Kihj0nRK i7oHSgSuLymmD8sVqWvhDh/KKFGuDOhUUziiY8ZLl3PMDNMPRUHv03tEmgzPDBAu 83BxNHw0gMIYBpnLU0AYO9Y8JHNtgziho+Ds4h19sTFwm9zIfLXkynvoQ2YOg1jP K8oALfaYMmaMrz2pc/P1cJBbSacHDbSnnzqPpOR569GpiuQfI+I22U1WSveBvW99 zd/1+AJ4c5VaxNsgw+vdkA9T/QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFE/mO3DK x8NjKNF/7oJLZbIf/W25MB8GA1UdIwQYMBaAFKIkNoQiPSwlxq8Xal8C+gKyT2gL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOTUzQi9DOEQwMzkyMjZD OUExMUVFODVCRkRGNEZDNEY5QUUwMi9vaVEyaENJOUxDWEdyeGRxWHdMNkFySlBh QXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29pUTJoQ0k5TENYR3J4ZHFYd0w2QXJKUGFBcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OTUzQi9DOEQwMzkyMjZDOUExMUVFODVCRkRGNEZDNEY5QUUwMi9vaVEyaENJOUxD WEdyeGRxWHdMNkFySlBhQXMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEABOzZ/kcKGbTkpGt73+6Fgy8Q9KebRs/8G+GYEkxD6b0pYkka8YF+6DCDTTZ2 /cgstWkDSSWa2k2tNht6McUrwDg1tOfoIqfbtip/3zHqRjNfKtarWuYUUj4oF2HM DzJTlBvZf/FPpJACoXVmfKje3J/sWIUw9gUCJcGUK7qXGUNwGYzvUcQPfI3lv4L/ wJgLsXSO1Se9bafYeR8KeLC9gvMdIn/jDtzATlwR0Fod2qhKqf0km7C1Bz/4RpdS u9t+Uzp5j7Rt8Vq/fmipBVHlBvsg3/8NNqSNscT56N0yF/x8n3RMxHeOmmmhvVUb WTBAVvg2UOhkjpqYAdokeTQ2gA== -----END CERTIFICATE-----Generated at Sat Mar 28 12:09:59 2026 by rpki-client