$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8E3D/0AB4386A584E11EC9FCF1779C4F9AE02/Oq_7t-pKYNd7tEKErL8lw5i6mm0.mft File: Oq_7t-pKYNd7tEKErL8lw5i6mm0.mft (raw, json) Hash identifier: 48vuwCBXoXy7i4NzuV4xE4Q2HAdJuHMPPJZlL2XBfu0= Subject key identifier: 77:CD:F0:E2:F9:9C:71:C7:4D:D2:D1:2E:49:F2:DE:2B:99:E5:6C:42 Authority key identifier: 3A:AF:FB:B7:EA:4A:60:D7:7B:B4:42:84:AC:BF:25:C3:98:BA:9A:6D Certificate issuer: /CN=A91F8E3D/serialNumber=3AAFFBB7EA4A60D77BB44284ACBF25C398BA9A6D Certificate serial: 0517 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oq_7t-pKYNd7tEKErL8lw5i6mm0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8E3D/0AB4386A584E11EC9FCF1779C4F9AE02/Oq_7t-pKYNd7tEKErL8lw5i6mm0.mft Manifest number: 04FE Signing time: Tue 24 Mar 2026 23:27:47 +0000 Manifest this update: Tue 24 Mar 2026 23:27:47 +0000 Manifest next update: Tue 31 Mar 2026 23:27:47 +0000 Files and hashes: 1: Oq_7t-pKYNd7tEKErL8lw5i6mm0.crl (hash: 0K1yqdL8znRP+B4919luhSoaerQ/+dlyIjzkOGHjLSw=) 2: 23AF59F0EC5E11F0BAE87BA74C6F56BC.roa (hash: nAW7sLq/u3ibmVv8IggrLJMCC/imIfpqlXLWRrpvrN8=) 3: FF9D89B6AB4C11ECB0C94F67C4F9AE02.roa (hash: SKiH7V+tod/z4lBCc83CPJIwiI1zwMJD2gQincrwEEU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8E3D/0AB4386A584E11EC9FCF1779C4F9AE02/Oq_7t-pKYNd7tEKErL8lw5i6mm0.crl rsync://rpki.apnic.net/member_repository/A91F8E3D/0AB4386A584E11EC9FCF1779C4F9AE02/Oq_7t-pKYNd7tEKErL8lw5i6mm0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oq_7t-pKYNd7tEKErL8lw5i6mm0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 23:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1303 (0x517) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8E3D, serialNumber=3AAFFBB7EA4A60D77BB44284ACBF25C398BA9A6D Validity Not Before: Mar 24 23:27:47 2026 GMT Not After : Mar 31 23:27:47 2026 GMT Subject: CN=69c31df3-647f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:56:c0:8c:8d:66:b2:24:a3:4e:0d:d3:ec:ea: 91:2d:78:d2:7e:63:b9:47:07:bd:93:9c:04:b3:3d: 69:95:e0:1f:fe:81:dc:ed:20:90:9a:cf:4d:76:79: 9e:c7:33:15:95:dc:7f:f2:8c:90:70:b2:ad:67:04: ee:a5:7d:18:cc:25:c1:ef:54:f3:cf:f1:46:ea:db: d0:39:02:51:b8:52:67:ad:14:b0:92:f8:6d:b3:a7: b2:91:16:9b:21:4d:c9:d9:98:9c:b9:81:b1:cc:ec: 5e:ea:cd:81:d8:49:66:d0:2b:0c:d4:45:e9:3d:0f: 5f:6c:0d:a9:27:de:2a:0f:bd:69:43:81:b9:b7:6a: da:5c:a1:67:c1:5c:b1:72:46:09:0c:6c:46:81:9c: 7d:08:92:ca:49:5c:56:5e:43:47:41:d5:9b:a2:d3: 43:ad:a3:cb:83:05:6b:da:01:3c:c6:79:1b:60:63: 76:c0:ee:0a:a8:d5:69:10:64:c3:dc:3a:36:e9:ad: b1:f2:37:d2:f2:c8:ef:57:7c:d3:7e:81:b0:48:b3: 36:c6:67:6e:d7:e2:57:8e:d1:80:b6:9f:62:6c:06: b6:7c:bc:22:5b:b5:01:17:a4:47:54:ed:e4:c5:55: 1b:a0:78:db:b7:07:1d:1a:59:f9:6c:41:a9:07:6a: 22:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:CD:F0:E2:F9:9C:71:C7:4D:D2:D1:2E:49:F2:DE:2B:99:E5:6C:42 X509v3 Authority Key Identifier: keyid:3A:AF:FB:B7:EA:4A:60:D7:7B:B4:42:84:AC:BF:25:C3:98:BA:9A:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8E3D/0AB4386A584E11EC9FCF1779C4F9AE02/Oq_7t-pKYNd7tEKErL8lw5i6mm0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oq_7t-pKYNd7tEKErL8lw5i6mm0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8E3D/0AB4386A584E11EC9FCF1779C4F9AE02/Oq_7t-pKYNd7tEKErL8lw5i6mm0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:79:b0:6d:f6:3e:6a:2e:a9:44:de:4c:10:c2:25:e8:c5:71: 8a:e0:56:75:96:91:77:d3:77:1b:37:7d:ac:8c:1b:5d:8a:80: 69:fe:cd:f4:37:74:40:eb:33:48:13:0c:51:a3:31:8f:cc:84: 08:9d:dd:ca:65:e7:ec:d4:d9:bf:0b:49:c4:85:6b:3b:9f:a8: f4:f9:3b:60:93:15:3b:37:1b:1d:af:59:29:3b:99:a6:59:92: 98:93:f3:55:cb:d2:b9:98:fd:37:50:9c:9f:5c:69:04:96:01: 59:45:b7:1a:a2:f2:8e:3b:20:bc:95:13:3a:06:69:e2:3b:d6: 91:82:b3:da:0e:62:f5:72:0d:7a:4b:a6:1a:76:b8:9a:26:05: d8:5c:79:db:31:a3:1f:0e:9e:97:7a:40:9a:fe:d0:48:a1:2e: 83:6d:11:32:21:41:26:72:af:51:e1:f8:c2:f4:00:41:44:65: 11:d4:81:7a:1b:c0:4e:29:09:82:38:b5:18:a8:0c:42:4d:af: b6:16:64:79:ee:27:b1:0e:83:d5:1c:2d:a9:b7:5f:bc:de:7c: 03:37:2a:42:5d:ef:e1:5a:e1:a0:fd:33:17:51:ba:99:a4:bf: e4:34:f8:40:0e:c2:b6:08:3e:7e:5f:5e:a3:da:bf:6f:2c:f5: 60:b7:f2:39 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBRcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjhFM0QxMTAvBgNVBAUTKDNBQUZGQkI3RUE0QTYwRDc3QkI0NDI4NEFDQkYyNUMz OThCQTlBNkQwHhcNMjYwMzI0MjMyNzQ3WhcNMjYwMzMxMjMyNzQ3WjAYMRYwFAYD VQQDEw02OWMzMWRmMy02NDdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtFbAjI1msiSjTg3T7OqRLXjSfmO5Rwe9k5wEsz1pleAf/oHc7SCQms9Ndnme xzMVldx/8oyQcLKtZwTupX0YzCXB71Tzz/FG6tvQOQJRuFJnrRSwkvhts6eykRab IU3J2ZicuYGxzOxe6s2B2Elm0CsM1EXpPQ9fbA2pJ94qD71pQ4G5t2raXKFnwVyx ckYJDGxGgZx9CJLKSVxWXkNHQdWbotNDraPLgwVr2gE8xnkbYGN2wO4KqNVpEGTD 3Do26a2x8jfS8sjvV3zTfoGwSLM2xmdu1+JXjtGAtp9ibAa2fLwiW7UBF6RHVO3k xVUboHjbtwcdGln5bEGpB2oiIQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHfN8OL5 nHHHTdLRLkny3iuZ5WxCMB8GA1UdIwQYMBaAFDqv+7fqSmDXe7RChKy/JcOYuppt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOEUzRC8wQUI0Mzg2QTU4 NEUxMUVDOUZDRjE3NzlDNEY5QUUwMi9PcV83dC1wS1lOZDd0RUtFckw4bHc1aTZt bTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09xXzd0LXBLWU5kN3RFS0VyTDhsdzVpNm1tMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OEUzRC8wQUI0Mzg2QTU4NEUxMUVDOUZDRjE3NzlDNEY5QUUwMi9PcV83dC1wS1lO ZDd0RUtFckw4bHc1aTZtbTAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAS3mwbfY+ai6pRN5MEMIl6MVxiuBWdZaRd9N3Gzd9rIwbXYqAaf7N9Dd0QOsz SBMMUaMxj8yECJ3dymXn7NTZvwtJxIVrO5+o9Pk7YJMVOzcbHa9ZKTuZplmSmJPz VcvSuZj9N1Ccn1xpBJYBWUW3GqLyjjsgvJUTOgZp4jvWkYKz2g5i9XINekumGna4 miYF2Fx52zGjHw6el3pAmv7QSKEug20RMiFBJnKvUeH4wvQAQURlEdSBehvATikJ gji1GKgMQk2vthZkee4nsQ6D1RwtqbdfvN58AzcqQl3v4VrhoP0zF1G6maS/5DT4 QA7Ctgg+fl9eo9q/byz1YLfyOQ== -----END CERTIFICATE-----Generated at Thu Mar 26 18:10:18 2026 by rpki-client