$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB077/DB7B7006482411E794041D2DC4F9AE02/OG9viqHmbFJU6h5HiIwQP0U2Iio.mft File: OG9viqHmbFJU6h5HiIwQP0U2Iio.mft (raw, json) Hash identifier: ROI6drXD0RE4zwX3VKmPLOMKI5sM1IlGynoSeyIuF9M= Subject key identifier: D8:E2:0C:50:07:00:B9:FD:0F:E8:6E:DD:85:AA:13:3F:EA:47:DD:BA Authority key identifier: 38:6F:6F:8A:A1:E6:6C:52:54:EA:1E:47:88:8C:10:3F:45:36:22:2A Certificate issuer: /CN=A91EB077/serialNumber=386F6F8AA1E66C5254EA1E47888C103F4536222A Certificate serial: 1B2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OG9viqHmbFJU6h5HiIwQP0U2Iio.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB077/DB7B7006482411E794041D2DC4F9AE02/OG9viqHmbFJU6h5HiIwQP0U2Iio.mft Manifest number: 1AEB Signing time: Tue 24 Mar 2026 16:13:22 +0000 Manifest this update: Tue 24 Mar 2026 16:13:22 +0000 Manifest next update: Tue 31 Mar 2026 16:13:22 +0000 Files and hashes: 1: OG9viqHmbFJU6h5HiIwQP0U2Iio.crl (hash: cW44JWoW25Xt6WP6gAG7TrEJ4jWZ6Bs85AyZPDo37iY=) 2: 6C897E54597B11EDB603273AC4F9AE02.roa (hash: fP8rdjghW91d7DBR4Mk+FZBBVOglCuNXIGDqW+k30dg=) 3: 63B4F05E482611E7ABDEF831C4F9AE02.roa (hash: 2kYQB/1ehx0OoDHYCfNabfp1Bn54gGxKktYjFpVzelU=) 4: 6E44CE88597B11EDB603273AC4F9AE02.roa (hash: PvtMMvRNMPGCgPjUomYAzBPP82pQ3wtSPc9J0LkkG3o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB077/DB7B7006482411E794041D2DC4F9AE02/OG9viqHmbFJU6h5HiIwQP0U2Iio.crl rsync://rpki.apnic.net/member_repository/A91EB077/DB7B7006482411E794041D2DC4F9AE02/OG9viqHmbFJU6h5HiIwQP0U2Iio.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OG9viqHmbFJU6h5HiIwQP0U2Iio.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 16:13:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6954 (0x1b2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB077, serialNumber=386F6F8AA1E66C5254EA1E47888C103F4536222A Validity Not Before: Mar 24 16:13:22 2026 GMT Not After : Mar 31 16:13:22 2026 GMT Subject: CN=69c2b822-acc9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:75:f4:d0:f0:50:20:57:d0:94:8e:c3:d9:18: d2:99:38:35:4a:25:e3:40:bb:71:14:e0:45:1f:45: 0f:66:04:6a:07:6e:28:f8:55:25:7d:09:17:ca:1c: c3:90:42:bf:98:11:0d:ae:82:47:ea:b0:ed:27:5f: c7:73:6c:d7:9e:83:2e:0d:d8:53:35:56:4a:40:db: dd:2e:b3:7c:06:80:e4:85:e5:1c:6b:7f:0e:2e:f3: a3:dd:97:ea:27:44:e5:00:36:4b:c7:70:7b:43:1e: 1c:43:31:9a:ab:d1:8f:c0:ee:dd:19:83:a6:6a:09: 04:92:2a:a2:ce:a2:bd:8c:01:fc:e9:64:6f:04:04: 6d:4c:29:73:b1:d9:5a:2c:30:e8:c1:ec:04:54:18: 43:99:6e:dd:38:54:c2:4a:de:3d:6e:78:b1:a4:31: 10:aa:65:62:02:46:1f:5f:c0:58:e4:25:02:78:cc: 0c:f8:1f:60:2d:5c:ef:0f:d9:51:33:6b:5d:25:a8: ec:da:46:5c:78:8f:a7:60:d5:1a:0b:98:ee:f3:1b: aa:1d:4b:0d:7d:fe:28:24:47:fe:6b:3c:11:aa:1e: e5:83:d1:4c:2d:b9:fd:08:90:7e:d1:99:23:e0:61: 39:ed:9c:4e:78:65:87:df:1f:02:b8:61:64:75:f1: 04:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:E2:0C:50:07:00:B9:FD:0F:E8:6E:DD:85:AA:13:3F:EA:47:DD:BA X509v3 Authority Key Identifier: keyid:38:6F:6F:8A:A1:E6:6C:52:54:EA:1E:47:88:8C:10:3F:45:36:22:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB077/DB7B7006482411E794041D2DC4F9AE02/OG9viqHmbFJU6h5HiIwQP0U2Iio.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OG9viqHmbFJU6h5HiIwQP0U2Iio.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB077/DB7B7006482411E794041D2DC4F9AE02/OG9viqHmbFJU6h5HiIwQP0U2Iio.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:0c:8e:6d:3d:4f:0c:87:51:f7:a6:34:3e:c4:fc:a9:00:9b: 4a:2e:df:dc:d5:00:48:98:4d:f2:0f:03:c2:46:8b:48:58:76: 06:bf:44:38:62:2c:e4:bc:da:c1:66:fd:b1:e5:41:e0:c0:fc: ca:f5:0f:c9:51:23:18:54:c5:cf:f0:43:32:25:9d:39:95:94: 84:ac:ac:7d:69:9d:ab:18:e5:cd:f9:d5:2a:26:c1:03:ff:48: 4b:d5:90:43:55:05:4c:e6:b5:c5:1c:59:b6:8c:50:f9:8e:8f: fa:7c:ff:7c:21:4e:ed:28:30:ba:3c:1f:03:ab:6f:5d:b8:fd: 90:e3:32:08:c5:86:d0:7f:1e:43:d5:d7:29:57:82:1b:e9:2d: 0c:c9:77:d7:01:9a:ae:c1:2a:da:3b:68:45:ba:1d:2b:55:ec: 84:aa:eb:44:a2:34:d4:17:ae:90:98:07:b2:d1:a0:24:37:a3: de:06:24:ec:23:a7:c7:4a:e3:72:ef:f1:84:36:a8:43:96:77: f8:49:1f:5c:9b:c9:9c:0a:09:6f:2a:5a:8f:d4:57:4f:e4:b9: 2e:3a:49:7e:cd:4d:92:ca:df:39:3c:bc:64:51:2c:90:fa:56: 5b:31:3d:5b:27:d5:96:87:91:b0:a4:f7:e6:66:8d:11:bf:ad: 8c:e2:e4:ac -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICGyowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUIwNzcxMTAvBgNVBAUTKDM4NkY2RjhBQTFFNjZDNTI1NEVBMUU0Nzg4OEMxMDNG NDUzNjIyMkEwHhcNMjYwMzI0MTYxMzIyWhcNMjYwMzMxMTYxMzIyWjAYMRYwFAYD VQQDEw02OWMyYjgyMi1hY2M5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAinX00PBQIFfQlI7D2RjSmTg1SiXjQLtxFOBFH0UPZgRqB24o+FUlfQkXyhzD kEK/mBENroJH6rDtJ1/Hc2zXnoMuDdhTNVZKQNvdLrN8BoDkheUca38OLvOj3Zfq J0TlADZLx3B7Qx4cQzGaq9GPwO7dGYOmagkEkiqizqK9jAH86WRvBARtTClzsdla LDDowewEVBhDmW7dOFTCSt49bnixpDEQqmViAkYfX8BY5CUCeMwM+B9gLVzvD9lR M2tdJajs2kZceI+nYNUaC5ju8xuqHUsNff4oJEf+azwRqh7lg9FMLbn9CJB+0Zkj 4GE57ZxOeGWH3x8CuGFkdfEEVQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNjiDFAH ALn9D+hu3YWqEz/qR926MB8GA1UdIwQYMBaAFDhvb4qh5mxSVOoeR4iMED9FNiIq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjA3Ny9EQjdCNzAwNjQ4 MjQxMUU3OTQwNDFEMkRDNEY5QUUwMi9PRzl2aXFIbWJGSlU2aDVIaUl3UVAwVTJJ aW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09HOXZpcUhtYkZKVTZoNUhpSXdRUDBVMklpby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QjA3Ny9EQjdCNzAwNjQ4MjQxMUU3OTQwNDFEMkRDNEY5QUUwMi9PRzl2aXFIbWJG SlU2aDVIaUl3UVAwVTJJaW8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAZwyObT1PDIdR96Y0PsT8qQCbSi7f3NUASJhN8g8DwkaLSFh2Br9EOGIs5Lza wWb9seVB4MD8yvUPyVEjGFTFz/BDMiWdOZWUhKysfWmdqxjlzfnVKibBA/9IS9WQ Q1UFTOa1xRxZtoxQ+Y6P+nz/fCFO7SgwujwfA6tvXbj9kOMyCMWG0H8eQ9XXKVeC G+ktDMl31wGarsEq2jtoRbodK1XshKrrRKI01BeukJgHstGgJDej3gYk7COnx0rj cu/xhDaoQ5Z3+EkfXJvJnAoJbypaj9RXT+S5LjpJfs1NksrfOTy8ZFEskPpWWzE9 WyfVloeRsKT35maNEb+tjOLkrA== -----END CERTIFICATE-----Generated at Thu Mar 26 09:47:23 2026 by rpki-client