$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft File: oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft (raw, json) Hash identifier: 3aDIBs00tb+Jb3bMe/a980OL+Dmcfuv3rU8PslNsyLs= Subject key identifier: 31:62:33:AE:13:BD:8C:77:9D:7E:C8:63:7E:87:63:F0:9A:25:DB:AE Authority key identifier: A0:AC:42:7E:95:7B:37:4D:02:67:FA:76:48:DD:3F:F8:57:02:DA:B1 Certificate issuer: /CN=A91FA024/serialNumber=A0AC427E957B374D0267FA7648DD3FF85702DAB1 Certificate serial: 087F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKxCfpV7N00CZ_p2SN0_-FcC2rE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft Manifest number: 0875 Signing time: Thu 26 Mar 2026 20:32:10 +0000 Manifest this update: Thu 26 Mar 2026 20:32:10 +0000 Manifest next update: Thu 02 Apr 2026 20:32:10 +0000 Files and hashes: 1: oKxCfpV7N00CZ_p2SN0_-FcC2rE.crl (hash: y4TghN43s/dLXIMkIC/q353lZUQn73x+4xdFp89Vruc=) 2: FE1FDB12BCD011EC8283681EC4F9AE02.roa (hash: D7POOiqxGTRBfPXL5kT6B+2budcwWwPlgdAg9UBfD4U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.crl rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKxCfpV7N00CZ_p2SN0_-FcC2rE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 20:32:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2175 (0x87f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA024, serialNumber=A0AC427E957B374D0267FA7648DD3FF85702DAB1 Validity Not Before: Mar 26 20:32:10 2026 GMT Not After : Apr 2 20:32:10 2026 GMT Subject: CN=69c597ca-16b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:0b:bc:0e:9d:27:a6:3d:d5:3d:ad:ef:6a:bf: be:4a:b7:88:44:8a:77:2f:71:d0:2f:c0:b3:83:1f: 25:7e:59:aa:f7:0f:3d:05:0d:c6:ba:9c:a0:8c:a8: 82:04:08:df:47:6c:2f:89:c4:a8:32:40:f9:03:a7: 78:b4:d6:c3:1e:f9:ba:6f:0b:03:6a:a2:71:de:6c: 13:a3:1a:5d:9e:7c:1e:b5:15:32:fc:84:db:73:e6: 82:1b:5a:57:60:4e:8e:eb:3e:bd:50:63:e4:19:45: 1d:0e:40:02:eb:07:da:f0:dd:3e:e0:1a:1e:5e:b5: e4:82:bc:50:15:dd:c9:55:7d:c8:60:07:51:19:cf: 5e:04:5a:5d:d0:d9:57:d3:11:f9:e7:3b:50:b0:02: bb:4b:78:73:e8:0e:c1:cb:6f:b1:71:dc:be:f0:ba: 0c:bc:a0:0d:c9:de:e3:7e:45:02:36:21:e2:06:84: 7d:4a:0c:ad:9a:a4:49:f8:37:f4:59:c8:be:9f:70: 21:47:32:ea:c6:ab:20:b4:90:aa:3b:4f:7f:33:a9: 33:0a:fd:25:e9:6d:1f:ec:10:4a:bb:a6:1c:ad:e9: 03:7d:51:cc:ce:dd:a3:bd:27:db:a7:d8:9c:7e:38: 34:77:00:96:18:72:df:c4:f2:36:7b:7a:0d:15:e8: 68:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:62:33:AE:13:BD:8C:77:9D:7E:C8:63:7E:87:63:F0:9A:25:DB:AE X509v3 Authority Key Identifier: keyid:A0:AC:42:7E:95:7B:37:4D:02:67:FA:76:48:DD:3F:F8:57:02:DA:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKxCfpV7N00CZ_p2SN0_-FcC2rE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:98:52:6e:b9:85:36:13:9a:6f:ab:89:3d:2c:f7:d8:b4:7a: ea:96:5d:a0:9d:cd:6b:2b:8c:21:de:d3:e9:6f:c8:74:da:ca: 7d:66:30:04:ec:c5:04:12:13:b7:25:28:a0:1a:6e:ea:55:a0: 99:61:ee:29:a8:41:a9:6c:29:f6:3a:e4:4a:85:f0:d7:5a:e4: ae:04:f6:08:e4:be:45:8c:9f:50:b5:f8:c6:77:e4:fe:fb:69: 89:8b:e0:b1:b8:1b:3b:dd:38:7c:ff:ee:5c:ef:42:9e:9a:b3: 21:50:74:63:db:01:e3:4d:19:38:24:ff:02:93:c9:6d:06:0d: 62:fc:ba:44:bf:74:e7:76:c3:bd:36:70:49:25:6c:b7:54:06: 5a:d7:d3:30:03:c8:d4:e0:b3:13:35:58:3b:63:b6:90:c3:b0: 8a:16:e6:7a:c8:c1:c9:3a:1f:df:23:5c:cf:d0:7b:29:60:d5: 9d:88:d7:b0:21:76:8c:5f:a2:9e:82:37:21:51:43:db:d6:2f: 09:ec:43:79:08:8c:42:8d:46:4e:49:23:54:3e:74:34:3f:7e: 28:52:fc:a0:69:c5:90:04:a3:c0:54:0f:f0:ce:5d:ff:3b:81: 29:ea:28:02:f5:44:3f:c4:55:17:3c:d5:55:b3:92:8f:20:c3: ee:bd:65:4f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCH8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkEwMjQxMTAvBgNVBAUTKEEwQUM0MjdFOTU3QjM3NEQwMjY3RkE3NjQ4REQzRkY4 NTcwMkRBQjEwHhcNMjYwMzI2MjAzMjEwWhcNMjYwNDAyMjAzMjEwWjAYMRYwFAYD VQQDEw02OWM1OTdjYS0xNmIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApQu8Dp0npj3VPa3var++SreIRIp3L3HQL8Czgx8lflmq9w89BQ3GupygjKiC BAjfR2wvicSoMkD5A6d4tNbDHvm6bwsDaqJx3mwToxpdnnwetRUy/ITbc+aCG1pX YE6O6z69UGPkGUUdDkAC6wfa8N0+4BoeXrXkgrxQFd3JVX3IYAdRGc9eBFpd0NlX 0xH55ztQsAK7S3hz6A7By2+xcdy+8LoMvKANyd7jfkUCNiHiBoR9SgytmqRJ+Df0 Wci+n3AhRzLqxqsgtJCqO09/M6kzCv0l6W0f7BBKu6YcrekDfVHMzt2jvSfbp9ic fjg0dwCWGHLfxPI2e3oNFehoFQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDFiM64T vYx3nX7IY36HY/CaJduuMB8GA1UdIwQYMBaAFKCsQn6VezdNAmf6dkjdP/hXAtqx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTAyNC9EMzNBNDc5NEYx ODgxMUVBOUU4MEY3MUVDNEY5QUUwMi9vS3hDZnBWN04wMENaX3AyU04wXy1GY0My ckUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29LeENmcFY3TjAwQ1pfcDJTTjBfLUZjQzJyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QTAyNC9EMzNBNDc5NEYxODgxMUVBOUU4MEY3MUVDNEY5QUUwMi9vS3hDZnBWN04w MENaX3AyU04wXy1GY0MyckUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAqphSbrmFNhOab6uJPSz32LR66pZdoJ3NayuMId7T6W/IdNrKfWYwBOzFBBIT tyUooBpu6lWgmWHuKahBqWwp9jrkSoXw11rkrgT2COS+RYyfULX4xnfk/vtpiYvg sbgbO904fP/uXO9CnpqzIVB0Y9sB400ZOCT/ApPJbQYNYvy6RL9053bDvTZwSSVs t1QGWtfTMAPI1OCzEzVYO2O2kMOwihbmesjByTof3yNcz9B7KWDVnYjXsCF2jF+i noI3IVFD29YvCexDeQiMQo1GTkkjVD50ND9+KFL8oGnFkASjwFQP8M5d/zuBKeoo AvVEP8RVFzzVVbOSjyDD7r1lTw== -----END CERTIFICATE-----Generated at Fri Mar 27 07:09:16 2026 by rpki-client