$ rpki-client -vvf rpki.apnic.net/member_repository/A91EDF00/3AE0034A4E7E11EC9E298429C4F9AE02/ozzKgbVeBGVdG1p-LOaIw-RvxTA.mft File: ozzKgbVeBGVdG1p-LOaIw-RvxTA.mft (raw, json) Hash identifier: rKnUHwaJc2Rxe//lLqVNbHDREz/Pg5RWhIybcdZ6QR0= Subject key identifier: AD:3F:F9:5C:53:CB:F1:C2:FC:52:23:FF:BE:7A:A6:90:3E:49:ED:04 Authority key identifier: A3:3C:CA:81:B5:5E:04:65:5D:1B:5A:7E:2C:E6:88:C3:E4:6F:C5:30 Certificate issuer: /CN=A91EDF00/serialNumber=A33CCA81B55E04655D1B5A7E2CE688C3E46FC530 Certificate serial: 0509 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ozzKgbVeBGVdG1p-LOaIw-RvxTA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EDF00/3AE0034A4E7E11EC9E298429C4F9AE02/ozzKgbVeBGVdG1p-LOaIw-RvxTA.mft Manifest number: 0501 Signing time: Tue 24 Mar 2026 23:22:22 +0000 Manifest this update: Tue 24 Mar 2026 23:22:21 +0000 Manifest next update: Tue 31 Mar 2026 23:22:21 +0000 Files and hashes: 1: ozzKgbVeBGVdG1p-LOaIw-RvxTA.crl (hash: em+DrBEKcCLmJg2n/Pe4rk4C0syJr1j6UM2Z59Ck4IY=) 2: 1B97FEB84E8111ECA3589560C4F9AE02.roa (hash: eI8p6HpzXJysOZ1MQfoUzQgPrBgjI04EZmU1r+INUvU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EDF00/3AE0034A4E7E11EC9E298429C4F9AE02/ozzKgbVeBGVdG1p-LOaIw-RvxTA.crl rsync://rpki.apnic.net/member_repository/A91EDF00/3AE0034A4E7E11EC9E298429C4F9AE02/ozzKgbVeBGVdG1p-LOaIw-RvxTA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ozzKgbVeBGVdG1p-LOaIw-RvxTA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 23:22:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1289 (0x509) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EDF00, serialNumber=A33CCA81B55E04655D1B5A7E2CE688C3E46FC530 Validity Not Before: Mar 24 23:22:21 2026 GMT Not After : Mar 31 23:22:21 2026 GMT Subject: CN=69c31cae-339a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:25:23:6d:35:2e:69:5d:c2:21:52:3c:cb:9e: 8f:1e:2b:59:40:88:f8:d8:41:28:e4:44:0a:13:93: 29:b3:ce:15:68:2c:6f:e0:2a:13:c9:3b:fb:aa:b6: 8a:6c:a7:3b:eb:13:c8:d2:e0:66:65:61:49:39:a2: 38:f1:f2:e5:26:35:d6:43:ca:74:ce:17:42:10:7e: ee:dc:8c:dd:06:38:80:fa:93:ce:4b:a6:fb:a3:f6: 39:23:23:2a:65:9b:c1:46:b7:72:e4:5f:61:42:93: da:1c:d3:8c:e9:03:a5:b7:08:50:b1:8e:a2:c6:ba: a1:04:86:8f:13:67:13:8e:c0:d1:ef:86:41:f9:49: 8a:c8:40:29:e5:35:c7:0a:c5:79:ee:c4:1a:2a:f8: 27:96:a2:e5:47:fd:4f:bc:07:60:90:99:24:96:de: ee:2d:ba:72:3d:2a:b0:7e:83:7e:dd:b1:d8:fb:22: fd:4b:e3:4f:43:d0:ea:4f:f2:90:e9:f4:2f:d9:89: da:bb:9e:02:20:50:ff:b3:0b:f3:e8:fc:80:b2:51: 39:0b:13:d0:e5:53:b8:ea:1e:8a:2d:a6:8f:0c:6c: 1d:08:37:1b:a4:1c:a9:ca:0e:72:01:08:c1:73:3c: 20:48:ca:9a:60:6d:48:f5:53:fb:78:10:4c:1a:0b: 8c:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:3F:F9:5C:53:CB:F1:C2:FC:52:23:FF:BE:7A:A6:90:3E:49:ED:04 X509v3 Authority Key Identifier: keyid:A3:3C:CA:81:B5:5E:04:65:5D:1B:5A:7E:2C:E6:88:C3:E4:6F:C5:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EDF00/3AE0034A4E7E11EC9E298429C4F9AE02/ozzKgbVeBGVdG1p-LOaIw-RvxTA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ozzKgbVeBGVdG1p-LOaIw-RvxTA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EDF00/3AE0034A4E7E11EC9E298429C4F9AE02/ozzKgbVeBGVdG1p-LOaIw-RvxTA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:aa:5e:81:6e:69:0d:b6:59:1c:03:f1:72:a6:94:86:7b:8d: 11:e8:e0:6b:b6:2d:c3:57:55:09:cf:bf:2c:62:e7:50:3c:a3: cf:3a:3a:d5:7d:fd:4f:44:40:d1:b8:4c:87:77:ae:93:b3:53: 57:ac:46:23:29:a5:a7:ca:1d:17:f7:d2:b8:81:96:99:99:fd: ef:3d:40:0c:ae:83:f3:2e:e2:fa:4c:6c:e2:2f:63:1e:73:a8: 62:e5:9b:40:38:b4:e3:3d:8c:53:aa:c3:b1:5e:4e:39:2f:c3: 87:86:11:33:24:7f:2e:9a:0e:27:dc:61:fe:fd:e7:0d:05:78: 0b:a2:f1:c9:88:ef:d9:ec:39:7a:11:65:8a:74:96:23:24:83: 81:42:e9:ae:dd:90:53:fd:58:0f:47:46:59:18:6e:57:cd:77: d4:9e:36:37:a0:d6:eb:50:f2:fa:7d:92:ea:e8:e0:e6:e9:f5: aa:82:30:26:13:62:c2:5e:c0:04:c8:b4:17:25:4d:f5:7a:4c: cf:62:b7:41:66:2e:d3:28:db:ff:42:5a:d5:f3:05:ee:a8:7a: 5d:01:50:99:cd:f7:58:71:97:cf:04:d4:eb:66:2a:93:c0:f8: af:07:f9:85:c1:ac:ea:76:18:98:87:3c:5b:d4:fb:7a:7e:1c: c6:ce:c7:50 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBQkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RURGMDAxMTAvBgNVBAUTKEEzM0NDQTgxQjU1RTA0NjU1RDFCNUE3RTJDRTY4OEMz RTQ2RkM1MzAwHhcNMjYwMzI0MjMyMjIxWhcNMjYwMzMxMjMyMjIxWjAYMRYwFAYD VQQDEw02OWMzMWNhZS0zMzlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArCUjbTUuaV3CIVI8y56PHitZQIj42EEo5EQKE5Mps84VaCxv4CoTyTv7qraK bKc76xPI0uBmZWFJOaI48fLlJjXWQ8p0zhdCEH7u3IzdBjiA+pPOS6b7o/Y5IyMq ZZvBRrdy5F9hQpPaHNOM6QOltwhQsY6ixrqhBIaPE2cTjsDR74ZB+UmKyEAp5TXH CsV57sQaKvgnlqLlR/1PvAdgkJkklt7uLbpyPSqwfoN+3bHY+yL9S+NPQ9DqT/KQ 6fQv2Ynau54CIFD/swvz6PyAslE5CxPQ5VO46h6KLaaPDGwdCDcbpBypyg5yAQjB czwgSMqaYG1I9VP7eBBMGguMkQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFK0/+VxT y/HC/FIj/756ppA+Se0EMB8GA1UdIwQYMBaAFKM8yoG1XgRlXRtafizmiMPkb8Uw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFREYwMC8zQUUwMDM0QTRF N0UxMUVDOUUyOTg0MjlDNEY5QUUwMi9venpLZ2JWZUJHVmRHMXAtTE9hSXctUnZ4 VEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL296ektnYlZlQkdWZEcxcC1MT2FJdy1SdnhUQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF REYwMC8zQUUwMDM0QTRFN0UxMUVDOUUyOTg0MjlDNEY5QUUwMi9venpLZ2JWZUJH VmRHMXAtTE9hSXctUnZ4VEEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAnqpegW5pDbZZHAPxcqaUhnuNEejga7Ytw1dVCc+/LGLnUDyjzzo61X39T0RA 0bhMh3euk7NTV6xGIymlp8odF/fSuIGWmZn97z1ADK6D8y7i+kxs4i9jHnOoYuWb QDi04z2MU6rDsV5OOS/Dh4YRMyR/LpoOJ9xh/v3nDQV4C6LxyYjv2ew5ehFlinSW IySDgULprt2QU/1YD0dGWRhuV8131J42N6DW61Dy+n2S6ujg5un1qoIwJhNiwl7A BMi0FyVN9XpMz2K3QWYu0yjb/0Ja1fMF7qh6XQFQmc33WHGXzwTU62Yqk8D4rwf5 hcGs6nYYmIc8W9T7en4cxs7HUA== -----END CERTIFICATE-----Generated at Thu Mar 26 07:09:49 2026 by rpki-client