$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.mft File: Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.mft (raw, json) Hash identifier: tdl418qn9RzJbcy6BOrLkTVq30SjU/RYZH0nDUgVJVo= Subject key identifier: 19:11:87:D0:97:9A:9C:63:1D:E6:50:ED:6C:8A:47:BD:50:84:52:05 Authority key identifier: 3A:CC:B6:95:39:AC:9F:42:88:BC:D0:F0:A5:42:50:D5:92:F5:40:D4 Certificate issuer: /CN=A91F0EBF/serialNumber=3ACCB69539AC9F4288BCD0F0A54250D592F540D4 Certificate serial: 2296 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.mft Manifest number: 223C Signing time: Tue 24 Mar 2026 15:48:34 +0000 Manifest this update: Tue 24 Mar 2026 15:48:34 +0000 Manifest next update: Tue 31 Mar 2026 15:48:34 +0000 Files and hashes: 1: Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.crl (hash: 8T4gg1/nZ7h3PkjFLz58tuoVWAIVMGN6FT3C2LihJug=) 2: 63BFE4C0292811EEAF894530C4F9AE02.roa (hash: sVanteUBCWSFVUaHrZ5yntV/JIzyhq/72ORLRX744ZU=) 3: A73C0BF6D93511E6B2617F7BC4F9AE02.roa (hash: 9Wh8912cu3W7SvBPurOS5rCjf4J0gjpN7uj92f3pmsg=) 4: 5F649D88F27E11EE8704D12FC4F9AE02.roa (hash: 9WmU8Y4ZcOpIMboLEtIMfgE7BVSSzD6O48vbK37ECCM=) 5: 11DE1CDA467611EC988CDC09C4F9AE02.roa (hash: MfV4ukOu3FWI/jsl4kHuM58dQAKJFj/LhFrUhOuLtaI=) 6: 586B33AEF44611EBA78C117AC4F9AE02.roa (hash: fTK97vrMBpL2ZoSynxsGZ4U3KEvxzaz+0BewP/ZQJbc=) 7: 2D477384D9C711F098E1B70271D3641D.roa (hash: GJ6jqaxX7BHT2XHEY46Q7jZx0gkdB0fTcOfm2Nfw3us=) 8: 5480D316764D11EA8CB5C039C4F9AE02.roa (hash: mJF9eHW945FqOhcOebNZDCr93WVmTQPVaMtl9lfF/sA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.crl rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 15:48:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8854 (0x2296) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0EBF, serialNumber=3ACCB69539AC9F4288BCD0F0A54250D592F540D4 Validity Not Before: Mar 24 15:48:34 2026 GMT Not After : Mar 31 15:48:34 2026 GMT Subject: CN=69c2b252-599e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:17:5e:71:3b:e1:97:e8:c2:77:6d:ce:49:07: 35:aa:b6:36:1e:1f:df:32:85:54:0e:70:b0:26:2c: 88:24:45:f3:f4:6a:1e:fc:d9:b6:39:32:6e:50:b4: d0:f4:46:07:2c:3d:21:99:3f:52:d0:a1:fd:9d:1c: e2:55:57:04:72:6e:68:bd:de:15:44:95:01:82:fe: 25:a7:34:89:6f:16:39:74:2f:7b:18:0f:33:0e:b2: c1:39:09:fc:51:72:25:37:b9:f1:34:b6:cb:0f:9a: 56:79:da:8b:5d:8f:02:80:d4:f0:af:ad:94:1f:d5: 16:85:1a:4c:90:af:c9:85:26:5a:85:85:74:36:25: 24:58:c3:51:7f:df:d0:35:5c:0b:10:01:d7:9c:69: 38:db:4c:b5:c4:4c:0e:70:a9:13:2b:ad:77:2d:35: 62:5c:62:b9:fb:fd:b4:80:43:30:ab:08:1a:16:d0: bb:71:26:3a:03:29:25:1f:37:11:36:cf:e4:4c:f9: 8a:f2:51:dd:aa:ea:b8:6a:ec:f7:38:6a:e9:4d:60: 4e:1a:cd:a4:b4:32:81:75:85:d1:c9:d6:ef:84:6e: f1:39:af:3a:c2:3e:41:db:f8:f0:d1:1a:ab:32:75: c2:d1:2c:72:3e:8e:92:1e:af:23:9e:b0:10:fa:6d: a2:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:11:87:D0:97:9A:9C:63:1D:E6:50:ED:6C:8A:47:BD:50:84:52:05 X509v3 Authority Key Identifier: keyid:3A:CC:B6:95:39:AC:9F:42:88:BC:D0:F0:A5:42:50:D5:92:F5:40:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:1a:60:eb:5e:6c:6f:79:77:53:10:fc:7d:ef:b3:e6:fd:c7: e3:b9:c5:36:92:0e:63:71:0d:86:c7:e9:92:c6:69:01:50:1b: 55:11:3c:a7:51:5b:d5:71:bb:38:0f:f8:c8:b0:72:3e:9d:d2: 94:f8:e2:bb:d4:8d:0c:62:cd:32:0d:33:f6:75:70:5f:fa:49: d7:85:1a:7d:e6:20:e1:6b:a7:6c:de:d7:a8:24:9b:e2:26:ea: 4a:9a:84:a4:b8:36:59:37:f1:f5:17:60:9e:0f:2c:7d:03:5c: 6f:f2:75:ef:66:25:92:09:b1:93:d9:60:66:bc:2a:3b:66:e1: 49:85:1d:db:61:68:54:b4:a4:82:b4:0c:3f:9f:dd:8a:40:24: 35:7d:3a:87:04:5e:3c:c8:c1:be:05:de:ba:bf:90:7c:0c:68: 0a:99:34:c6:60:41:97:4f:b1:b6:03:be:91:8b:01:14:47:3a: 12:4e:f2:90:16:c2:0f:af:5b:2d:9a:ae:16:d3:b9:6f:fa:dd: 14:4c:d7:ec:74:a1:a2:2e:88:f1:90:e1:22:30:d9:7c:53:58: 1c:68:8c:7d:3a:4a:81:66:52:f3:d8:f8:a2:91:e0:b4:6c:45: ec:0c:2a:65:e4:e8:bc:85:25:dd:ef:bf:01:44:6d:79:53:c8: da:bd:d0:66 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICIpYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBFQkYxMTAvBgNVBAUTKDNBQ0NCNjk1MzlBQzlGNDI4OEJDRDBGMEE1NDI1MEQ1 OTJGNTQwRDQwHhcNMjYwMzI0MTU0ODM0WhcNMjYwMzMxMTU0ODM0WjAYMRYwFAYD VQQDEw02OWMyYjI1Mi01OTllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvxdecTvhl+jCd23OSQc1qrY2Hh/fMoVUDnCwJiyIJEXz9Goe/Nm2OTJuULTQ 9EYHLD0hmT9S0KH9nRziVVcEcm5ovd4VRJUBgv4lpzSJbxY5dC97GA8zDrLBOQn8 UXIlN7nxNLbLD5pWedqLXY8CgNTwr62UH9UWhRpMkK/JhSZahYV0NiUkWMNRf9/Q NVwLEAHXnGk420y1xEwOcKkTK613LTViXGK5+/20gEMwqwgaFtC7cSY6AyklHzcR Ns/kTPmK8lHdquq4auz3OGrpTWBOGs2ktDKBdYXRydbvhG7xOa86wj5B2/jw0Rqr MnXC0SxyPo6SHq8jnrAQ+m2iAQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBkRh9CX mpxjHeZQ7WyKR71QhFIFMB8GA1UdIwQYMBaAFDrMtpU5rJ9CiLzQ8KVCUNWS9UDU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEVCRi81Rjg0RDdEOERC ODAxMUU1OUFCN0VEMUVDNEY5QUUwMi9Pc3kybFRtc24wS0l2TkR3cFVKUTFaTDFR TlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09zeTJsVG1zbjBLSXZORHdwVUpRMVpMMVFOUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MEVCRi81Rjg0RDdEOERCODAxMUU1OUFCN0VEMUVDNEY5QUUwMi9Pc3kybFRtc24w S0l2TkR3cFVKUTFaTDFRTlEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAaxpg615sb3l3UxD8fe+z5v3H47nFNpIOY3ENhsfpksZpAVAbVRE8p1Fb1XG7 OA/4yLByPp3SlPjiu9SNDGLNMg0z9nVwX/pJ14UafeYg4WunbN7XqCSb4ibqSpqE pLg2WTfx9Rdgng8sfQNcb/J172Ylkgmxk9lgZrwqO2bhSYUd22FoVLSkgrQMP5/d ikAkNX06hwRePMjBvgXeur+QfAxoCpk0xmBBl0+xtgO+kYsBFEc6Ek7ykBbCD69b LZquFtO5b/rdFEzX7HShoi6I8ZDhIjDZfFNYHGiMfTpKgWZS89j4opHgtGxF7Awq ZeTovIUl3e+/AURteVPI2r3QZg== -----END CERTIFICATE-----Generated at Thu Mar 26 06:12:40 2026 by rpki-client