$ rpki-client -vvf rpki.apnic.net/member_repository/A91F6ADE/28739D3A41DF11ECA3DC2F85C4F9AE02/cOaM6FoDjZ4wcEODfKbmsaZglu4.mft File: cOaM6FoDjZ4wcEODfKbmsaZglu4.mft (raw, json) Hash identifier: 1zqMn+dNkRMNdFXvZD2N41QyQ5i04lH9aWgYOgnY0JM= Subject key identifier: 8F:6B:5B:34:88:E3:69:B1:E0:8E:9A:39:8D:AA:AB:22:C3:15:F0:CD Authority key identifier: 70:E6:8C:E8:5A:03:8D:9E:30:70:43:83:7C:A6:E6:B1:A6:60:96:EE Certificate issuer: /CN=A91F6ADE/serialNumber=70E68CE85A038D9E307043837CA6E6B1A66096EE Certificate serial: 0527 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cOaM6FoDjZ4wcEODfKbmsaZglu4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F6ADE/28739D3A41DF11ECA3DC2F85C4F9AE02/cOaM6FoDjZ4wcEODfKbmsaZglu4.mft Manifest number: 051E Signing time: Thu 26 Mar 2026 23:22:57 +0000 Manifest this update: Thu 26 Mar 2026 23:22:57 +0000 Manifest next update: Thu 02 Apr 2026 23:22:57 +0000 Files and hashes: 1: cOaM6FoDjZ4wcEODfKbmsaZglu4.crl (hash: cGHmA+6RGmjx98PN5nN0tSMmt0pob7mJ8kbgLyrWNiQ=) 2: FD0DCDCA41E111EC98FA0C0AC4F9AE02.roa (hash: y73S8++lP8l3+TCAjF9+DFuZKIlJNrek0vx4sh6FeCE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F6ADE/28739D3A41DF11ECA3DC2F85C4F9AE02/cOaM6FoDjZ4wcEODfKbmsaZglu4.crl rsync://rpki.apnic.net/member_repository/A91F6ADE/28739D3A41DF11ECA3DC2F85C4F9AE02/cOaM6FoDjZ4wcEODfKbmsaZglu4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cOaM6FoDjZ4wcEODfKbmsaZglu4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 23:22:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1319 (0x527) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F6ADE, serialNumber=70E68CE85A038D9E307043837CA6E6B1A66096EE Validity Not Before: Mar 26 23:22:57 2026 GMT Not After : Apr 2 23:22:57 2026 GMT Subject: CN=69c5bfd1-df68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:51:d1:1e:92:a2:77:18:4d:b9:78:76:ee:ba: 01:1f:b9:ce:93:1f:d5:cc:73:1e:ee:04:b9:a7:88: af:19:4e:82:90:dd:43:35:dd:af:5b:e7:92:21:6f: 0f:c2:4a:ed:06:86:ba:02:e0:23:86:64:76:16:e4: c6:45:b8:87:52:3d:87:cf:28:15:b5:8b:2b:2c:2e: 01:16:98:6a:71:39:cd:34:4b:d9:02:b0:fe:73:13: 68:71:49:a0:2a:70:8b:7e:5a:41:4e:a4:17:01:2f: d4:d6:2f:f9:52:b1:2a:75:22:c9:6f:e0:09:3c:9b: b5:24:95:80:4b:d3:3d:db:8c:02:f3:6c:3a:05:21: 3e:e2:e3:d7:10:20:f5:2d:1c:d7:a0:9a:d3:1c:49: 3d:a7:aa:b7:b8:e2:78:6e:e7:db:73:b0:70:69:68: f0:f1:a4:2c:1f:2c:4b:9c:e4:b3:7a:3a:0c:ba:d4: 8d:c3:48:34:2e:b9:7c:e1:cc:bd:70:f1:af:a6:f0: 68:1e:14:89:71:af:b8:e6:26:52:33:6e:c6:a7:74: 7b:0e:f8:2a:df:66:d1:2c:eb:5b:cd:85:90:eb:cf: 5e:af:dd:0e:dd:4e:70:99:83:61:40:d8:f2:b4:7a: c7:ab:90:7e:51:36:ee:99:e0:d9:c6:19:1a:46:48: 32:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:6B:5B:34:88:E3:69:B1:E0:8E:9A:39:8D:AA:AB:22:C3:15:F0:CD X509v3 Authority Key Identifier: keyid:70:E6:8C:E8:5A:03:8D:9E:30:70:43:83:7C:A6:E6:B1:A6:60:96:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F6ADE/28739D3A41DF11ECA3DC2F85C4F9AE02/cOaM6FoDjZ4wcEODfKbmsaZglu4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cOaM6FoDjZ4wcEODfKbmsaZglu4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F6ADE/28739D3A41DF11ECA3DC2F85C4F9AE02/cOaM6FoDjZ4wcEODfKbmsaZglu4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:84:cc:d7:86:5e:89:c9:4d:61:22:62:02:72:71:1d:96:9f: 60:8f:38:4e:de:4d:22:f1:05:b8:d5:05:35:ac:fb:81:ae:f5: b9:d5:71:3a:33:5f:dd:d0:f4:b4:85:31:06:46:a5:f1:c1:7d: 1f:91:7c:07:5a:d8:3b:cb:0f:d2:0f:5e:65:f8:b2:cd:fc:e8: aa:86:01:3f:8f:11:17:6e:4e:85:61:e9:a0:19:f0:01:b4:91: e5:bf:f2:33:ff:ea:b5:bb:82:5f:d2:16:0f:a8:b1:72:39:ea: c2:76:ab:09:96:43:6f:e6:19:2f:58:e6:7c:56:51:2f:e3:88: 39:de:e9:2b:f3:19:3b:ca:43:35:89:1a:4c:f0:be:6c:18:e4: ca:39:b1:98:5e:80:13:49:3b:fc:ea:f3:88:e2:02:4a:28:c3: 05:91:82:af:10:d0:35:fb:cb:42:32:3a:4c:6d:21:e7:02:74: 78:3c:45:94:ac:80:ea:e1:31:69:19:1f:37:cf:67:81:12:e8: cf:76:d7:f0:fc:78:c2:bb:43:77:53:14:16:80:b0:0e:a2:e0: 51:2a:d8:8a:d6:f0:a4:ce:74:86:94:4b:25:63:a8:03:af:61: dd:b7:2d:76:c5:e9:79:b9:b4:d5:64:0a:90:23:51:33:50:95: b2:ec:84:87 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBScwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjZBREUxMTAvBgNVBAUTKDcwRTY4Q0U4NUEwMzhEOUUzMDcwNDM4MzdDQTZFNkIx QTY2MDk2RUUwHhcNMjYwMzI2MjMyMjU3WhcNMjYwNDAyMjMyMjU3WjAYMRYwFAYD VQQDEw02OWM1YmZkMS1kZjY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm1HRHpKidxhNuXh27roBH7nOkx/VzHMe7gS5p4ivGU6CkN1DNd2vW+eSIW8P wkrtBoa6AuAjhmR2FuTGRbiHUj2HzygVtYsrLC4BFphqcTnNNEvZArD+cxNocUmg KnCLflpBTqQXAS/U1i/5UrEqdSLJb+AJPJu1JJWAS9M924wC82w6BSE+4uPXECD1 LRzXoJrTHEk9p6q3uOJ4bufbc7BwaWjw8aQsHyxLnOSzejoMutSNw0g0Lrl84cy9 cPGvpvBoHhSJca+45iZSM27Gp3R7Dvgq32bRLOtbzYWQ689er90O3U5wmYNhQNjy tHrHq5B+UTbumeDZxhkaRkgy1wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFI9rWzSI 42mx4I6aOY2qqyLDFfDNMB8GA1UdIwQYMBaAFHDmjOhaA42eMHBDg3ym5rGmYJbu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNkFERS8yODczOUQzQTQx REYxMUVDQTNEQzJGODVDNEY5QUUwMi9jT2FNNkZvRGpaNHdjRU9EZktibXNhWmds dTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NPYU02Rm9Ealo0d2NFT0RmS2Jtc2FaZ2x1NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NkFERS8yODczOUQzQTQxREYxMUVDQTNEQzJGODVDNEY5QUUwMi9jT2FNNkZvRGpa NHdjRU9EZktibXNhWmdsdTQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAfYTM14ZeiclNYSJiAnJxHZafYI84Tt5NIvEFuNUFNaz7ga71udVxOjNf3dD0 tIUxBkal8cF9H5F8B1rYO8sP0g9eZfiyzfzoqoYBP48RF25OhWHpoBnwAbSR5b/y M//qtbuCX9IWD6ixcjnqwnarCZZDb+YZL1jmfFZRL+OIOd7pK/MZO8pDNYkaTPC+ bBjkyjmxmF6AE0k7/OrziOICSijDBZGCrxDQNfvLQjI6TG0h5wJ0eDxFlKyA6uEx aRkfN89ngRLoz3bX8Px4wrtDd1MUFoCwDqLgUSrYitbwpM50hpRLJWOoA69h3bct dsXpebm01WQKkCNRM1CVsuyEhw== -----END CERTIFICATE-----Generated at Sat Mar 28 12:07:24 2026 by rpki-client