$ rpki-client -vvf rpki.apnic.net/member_repository/A91FB68C/17D103A8EAB211EF846F1337C4F9AE02/oiiPiWTWFpqHlfL07wXg1ebhOwk.mft File: oiiPiWTWFpqHlfL07wXg1ebhOwk.mft (raw, json) Hash identifier: QU/CDqdQMg+oOWc2sqW0TVxqp5zv0mlsaMxje7jmBJ4= Subject key identifier: 37:53:B2:A5:D0:12:CC:56:0C:16:FF:17:A5:58:B5:78:9D:FE:68:F4 Authority key identifier: A2:28:8F:89:64:D6:16:9A:87:95:F2:F4:EF:05:E0:D5:E6:E1:3B:09 Certificate issuer: /CN=A91FB68C/serialNumber=A2288F8964D6169A8795F2F4EF05E0D5E6E13B09 Certificate serial: F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiiPiWTWFpqHlfL07wXg1ebhOwk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FB68C/17D103A8EAB211EF846F1337C4F9AE02/oiiPiWTWFpqHlfL07wXg1ebhOwk.mft Manifest number: E2 Signing time: Wed 25 Mar 2026 06:44:08 +0000 Manifest this update: Wed 25 Mar 2026 06:44:07 +0000 Manifest next update: Wed 01 Apr 2026 06:44:07 +0000 Files and hashes: 1: oiiPiWTWFpqHlfL07wXg1ebhOwk.crl (hash: Uy8HfKvApOHNC/lDKYsEsnBUwkCTuxwVdVy9PTXJbE4=) 2: 965254F8278811F09217002CC4F9AE02.roa (hash: 0RhsOifNGasCmCxCAJFq65+7Iqu3gbPwoj7AcEDMVxI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FB68C/17D103A8EAB211EF846F1337C4F9AE02/oiiPiWTWFpqHlfL07wXg1ebhOwk.crl rsync://rpki.apnic.net/member_repository/A91FB68C/17D103A8EAB211EF846F1337C4F9AE02/oiiPiWTWFpqHlfL07wXg1ebhOwk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiiPiWTWFpqHlfL07wXg1ebhOwk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 06:44:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 240 (0xf0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FB68C, serialNumber=A2288F8964D6169A8795F2F4EF05E0D5E6E13B09 Validity Not Before: Mar 25 06:44:07 2026 GMT Not After : Apr 1 06:44:07 2026 GMT Subject: CN=69c38438-f53c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:2d:42:c0:44:56:87:20:e8:92:87:3a:e3:ba: 34:b3:d9:87:11:38:6c:68:cc:7a:48:83:7c:73:e7: ce:00:3a:f6:d8:e7:43:6d:fa:07:50:9d:00:de:ce: 6b:79:1b:a6:90:b7:ee:60:60:a2:45:56:2d:fb:de: 7c:e1:cb:c4:39:dd:79:99:44:cc:21:d2:35:9c:71: 71:11:6f:a2:7a:f6:e5:fa:fb:1b:be:e8:04:97:00: e0:81:c2:8f:98:f1:8a:6d:93:0c:97:1e:41:4f:a1: 4b:21:aa:a3:cb:93:71:a0:1a:32:33:a5:a3:f9:d0: fe:7f:08:77:22:c6:4a:f2:7c:e4:71:a7:ea:01:b7: 86:48:86:6c:ff:d7:b1:d4:d1:43:97:cd:3b:96:77: 18:00:92:38:4d:1b:45:d9:1b:03:99:20:e9:29:b3: 81:ea:30:b1:29:bc:7d:20:3a:39:6a:9d:2b:4e:75: 26:24:63:10:31:7b:69:f0:ff:22:1a:ee:a4:1a:b5: 3e:27:63:4a:61:1b:4f:c3:a0:60:60:29:68:c5:ae: fd:42:e9:e9:8d:1a:aa:09:65:a4:7d:b8:1d:cd:ef: 1b:d6:d8:21:a6:38:de:81:8c:08:c2:72:49:c9:0b: 23:ba:4f:40:ab:4b:20:39:4e:35:da:f7:ca:3a:06: 89:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:53:B2:A5:D0:12:CC:56:0C:16:FF:17:A5:58:B5:78:9D:FE:68:F4 X509v3 Authority Key Identifier: keyid:A2:28:8F:89:64:D6:16:9A:87:95:F2:F4:EF:05:E0:D5:E6:E1:3B:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FB68C/17D103A8EAB211EF846F1337C4F9AE02/oiiPiWTWFpqHlfL07wXg1ebhOwk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiiPiWTWFpqHlfL07wXg1ebhOwk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FB68C/17D103A8EAB211EF846F1337C4F9AE02/oiiPiWTWFpqHlfL07wXg1ebhOwk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:bb:6f:fd:d4:ac:1d:b7:a7:ae:b0:bb:49:0f:ad:c5:b5:51: ef:4e:a2:ab:38:6c:2b:68:de:04:05:b6:2f:ef:1b:01:27:24: c5:04:43:65:a2:e3:f7:75:7e:ad:59:68:1b:74:ff:b1:1f:bd: 13:40:29:b6:99:1e:46:3d:ad:4f:79:f5:23:73:36:9f:80:b4: 70:5c:1c:c3:12:ce:54:51:16:65:b8:07:24:36:fd:b3:19:6a: 60:90:f1:ab:13:bb:72:1e:08:9d:c4:c7:ed:83:8d:5b:ac:63: aa:8c:ce:d1:83:4b:53:1d:96:90:55:00:d8:33:b0:16:dd:67: 23:e2:6e:8d:b0:5d:f7:f7:70:65:ec:6f:a4:57:08:66:4b:36: ca:e4:fb:b2:4b:d8:4a:5d:bb:25:65:24:2a:a5:27:2a:d3:c4: 96:73:20:2c:66:a6:1e:07:a5:93:ef:49:6b:cc:2c:17:74:1b: 15:0f:f2:19:45:2f:20:30:93:b1:61:60:8d:6f:4f:71:d7:92: d7:af:17:56:e6:2a:b7:53:5c:ec:da:76:2b:30:41:fa:a4:e6: 51:77:cc:be:cb:e4:95:2f:3d:63:a0:57:c3:74:ed:86:32:f3: cf:20:ba:5e:8d:24:87:f3:7d:25:6f:d3:ba:e2:b2:9d:ef:0a: 30:b9:de:fb -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAPAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkI2OEMxMTAvBgNVBAUTKEEyMjg4Rjg5NjRENjE2OUE4Nzk1RjJGNEVGMDVFMEQ1 RTZFMTNCMDkwHhcNMjYwMzI1MDY0NDA3WhcNMjYwNDAxMDY0NDA3WjAYMRYwFAYD VQQDEw02OWMzODQzOC1mNTNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkS1CwERWhyDokoc647o0s9mHEThsaMx6SIN8c+fOADr22OdDbfoHUJ0A3s5r eRumkLfuYGCiRVYt+9584cvEOd15mUTMIdI1nHFxEW+ievbl+vsbvugElwDggcKP mPGKbZMMlx5BT6FLIaqjy5NxoBoyM6Wj+dD+fwh3IsZK8nzkcafqAbeGSIZs/9ex 1NFDl807lncYAJI4TRtF2RsDmSDpKbOB6jCxKbx9IDo5ap0rTnUmJGMQMXtp8P8i Gu6kGrU+J2NKYRtPw6BgYCloxa79QunpjRqqCWWkfbgdze8b1tghpjjegYwIwnJJ yQsjuk9Aq0sgOU412vfKOgaJJwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDdTsqXQ EsxWDBb/F6VYtXid/mj0MB8GA1UdIwQYMBaAFKIoj4lk1haah5Xy9O8F4NXm4TsJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQjY4Qy8xN0QxMDNBOEVB QjIxMUVGODQ2RjEzMzdDNEY5QUUwMi9vaWlQaVdUV0ZwcUhsZkwwN3dYZzFlYmhP d2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29paVBpV1RXRnBxSGxmTDA3d1hnMWViaE93ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QjY4Qy8xN0QxMDNBOEVBQjIxMUVGODQ2RjEzMzdDNEY5QUUwMi9vaWlQaVdUV0Zw cUhsZkwwN3dYZzFlYmhPd2subWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAPLtv/dSsHbenrrC7SQ+txbVR706iqzhsK2jeBAW2L+8bASckxQRDZaLj93V+ rVloG3T/sR+9E0AptpkeRj2tT3n1I3M2n4C0cFwcwxLOVFEWZbgHJDb9sxlqYJDx qxO7ch4IncTH7YONW6xjqozO0YNLUx2WkFUA2DOwFt1nI+JujbBd9/dwZexvpFcI Zks2yuT7skvYSl27JWUkKqUnKtPElnMgLGamHgelk+9Ja8wsF3QbFQ/yGUUvIDCT sWFgjW9PcdeS168XVuYqt1Nc7Np2KzBB+qTmUXfMvsvklS89Y6BXw3TthjLzzyC6 Xo0kh/N9JW/TuuKyne8KMLne+w== -----END CERTIFICATE-----Generated at Thu Mar 26 02:34:45 2026 by rpki-client