$ rpki-client -vvf rpki.apnic.net/member_repository/A912383B/FBBA9E9CE02311EA9922DE42C4F9AE02/OAHjYU99QEcCrkIssnnlHcnRTKI.mft File: OAHjYU99QEcCrkIssnnlHcnRTKI.mft (raw, json) Hash identifier: fma1h6loPXoP9EEqsolq56almASTp/xXTRTmAJc0Uag= Subject key identifier: 11:25:CF:21:2E:BE:41:C1:68:64:A8:FB:0D:A9:DB:B9:88:E0:99:70 Authority key identifier: 38:01:E3:61:4F:7D:40:47:02:AE:42:2C:B2:79:E5:1D:C9:D1:4C:A2 Certificate issuer: /CN=A912383B/serialNumber=3801E3614F7D404702AE422CB279E51DC9D14CA2 Certificate serial: 08A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OAHjYU99QEcCrkIssnnlHcnRTKI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912383B/FBBA9E9CE02311EA9922DE42C4F9AE02/OAHjYU99QEcCrkIssnnlHcnRTKI.mft Manifest number: 0898 Signing time: Sun 01 Mar 2026 23:53:51 +0000 Manifest this update: Sun 01 Mar 2026 23:53:50 +0000 Manifest next update: Sun 08 Mar 2026 23:53:50 +0000 Files and hashes: 1: OAHjYU99QEcCrkIssnnlHcnRTKI.crl (hash: zJfRexx929BJuV+i4q738tuZU4CI2xi5VoqUeLjmrAI=) 2: 4E4AF4A2C2B111EBABFFA212C4F9AE02.roa (hash: IYSmLvKDDFybIzJE/k0J2LFQgVw7pM2NwhpUrLtH0AM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912383B/FBBA9E9CE02311EA9922DE42C4F9AE02/OAHjYU99QEcCrkIssnnlHcnRTKI.crl rsync://rpki.apnic.net/member_repository/A912383B/FBBA9E9CE02311EA9922DE42C4F9AE02/OAHjYU99QEcCrkIssnnlHcnRTKI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OAHjYU99QEcCrkIssnnlHcnRTKI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:53:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2208 (0x8a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912383B, serialNumber=3801E3614F7D404702AE422CB279E51DC9D14CA2 Validity Not Before: Mar 1 23:53:50 2026 GMT Not After : Mar 8 23:53:50 2026 GMT Subject: CN=69a4d18f-b0d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:e6:d6:2d:1a:78:06:12:32:4e:84:2e:48:f3: 19:87:6d:d9:07:a2:bf:34:7e:e0:c7:81:2c:ac:fb: d6:e6:a3:33:15:60:cf:ab:44:1c:79:15:3c:3b:9d: f3:17:d5:3a:f8:56:78:31:a0:ee:dc:bc:d2:2e:c1: f2:32:97:25:ae:d1:1e:47:62:69:9a:c1:bf:98:bc: 16:28:cf:d6:11:b8:67:14:9f:b5:f9:c2:37:a1:b5: 04:22:41:a9:3c:94:e3:a3:c6:fd:ad:5b:c3:3f:cf: bb:6f:2a:57:2f:14:84:00:68:49:39:b8:a0:0b:e2: 40:2f:b8:ee:f5:f1:7a:a1:de:19:b3:9b:ec:a1:99: 05:20:48:81:9f:11:93:be:95:e4:fb:07:0a:dd:88: 8d:51:48:ce:2b:c7:9f:28:ef:10:f7:5a:58:d6:8f: 01:e5:e9:09:25:4e:12:65:8b:93:91:fe:fb:6b:36: 44:51:4b:9e:1e:d7:66:18:37:a0:60:eb:e3:ff:ed: 28:73:bf:dd:9d:8c:03:ba:25:7a:f5:8e:6c:95:03: a1:68:5a:dd:50:5d:70:35:85:5e:98:44:97:dd:61: ec:61:d8:80:2a:d7:e2:2c:5b:f5:96:6c:52:9e:d1: 64:a3:b1:25:a6:6b:26:5e:15:6a:da:2e:50:46:23: 68:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:25:CF:21:2E:BE:41:C1:68:64:A8:FB:0D:A9:DB:B9:88:E0:99:70 X509v3 Authority Key Identifier: keyid:38:01:E3:61:4F:7D:40:47:02:AE:42:2C:B2:79:E5:1D:C9:D1:4C:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912383B/FBBA9E9CE02311EA9922DE42C4F9AE02/OAHjYU99QEcCrkIssnnlHcnRTKI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OAHjYU99QEcCrkIssnnlHcnRTKI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912383B/FBBA9E9CE02311EA9922DE42C4F9AE02/OAHjYU99QEcCrkIssnnlHcnRTKI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:1b:34:65:8e:ff:c5:65:28:7d:b9:44:45:67:17:87:d6:cd: 84:a4:93:62:ed:7c:5a:ae:86:7a:e8:e7:77:61:b5:e2:d4:e8: b5:2e:64:4a:77:82:f0:46:e8:64:4c:fe:8b:ee:8f:78:95:8d: b7:18:aa:a7:f8:40:06:53:66:45:ee:4d:f7:d4:28:e0:9d:1c: 8d:b4:0a:fd:a4:ba:02:5a:4a:f7:8d:9c:32:4b:47:fd:20:de: 33:9a:d0:af:2e:5d:51:53:c3:94:c4:0d:40:45:5a:d4:f0:25: 66:d4:48:e1:ea:cc:56:ce:3e:a1:36:28:cf:da:61:61:a3:26: 2d:f7:40:c4:60:9b:dc:7c:52:34:4a:99:3e:65:4f:5b:c9:34: ac:0b:64:66:24:14:c3:88:7c:23:be:c6:48:ae:36:be:54:f8: a7:35:7f:43:fa:4b:99:54:8d:12:2a:2c:3a:98:0e:01:c3:78: 55:8a:46:e3:c2:56:a4:94:c0:84:7b:b8:a2:46:3e:69:1e:f9: dc:fe:59:66:55:ea:91:a5:20:90:03:c6:03:ed:18:ea:49:72: 7c:a0:2a:03:8e:6d:d8:8f:ed:3b:23:3a:1d:78:88:ea:b4:1a: a3:2b:d6:fb:dc:e4:13:11:d5:a9:e5:f8:ad:92:45:55:6c:cd: 3f:e3:75:13 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCKAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjM4M0IxMTAvBgNVBAUTKDM4MDFFMzYxNEY3RDQwNDcwMkFFNDIyQ0IyNzlFNTFE QzlEMTRDQTIwHhcNMjYwMzAxMjM1MzUwWhcNMjYwMzA4MjM1MzUwWjAYMRYwFAYD VQQDEw02OWE0ZDE4Zi1iMGQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqObWLRp4BhIyToQuSPMZh23ZB6K/NH7gx4EsrPvW5qMzFWDPq0QceRU8O53z F9U6+FZ4MaDu3LzSLsHyMpclrtEeR2JpmsG/mLwWKM/WEbhnFJ+1+cI3obUEIkGp PJTjo8b9rVvDP8+7bypXLxSEAGhJObigC+JAL7ju9fF6od4Zs5vsoZkFIEiBnxGT vpXk+wcK3YiNUUjOK8efKO8Q91pY1o8B5ekJJU4SZYuTkf77azZEUUueHtdmGDeg YOvj/+0oc7/dnYwDuiV69Y5slQOhaFrdUF1wNYVemESX3WHsYdiAKtfiLFv1lmxS ntFko7ElpmsmXhVq2i5QRiNomQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBElzyEu vkHBaGSo+w2p27mI4JlwMB8GA1UdIwQYMBaAFDgB42FPfUBHAq5CLLJ55R3J0Uyi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMzgzQi9GQkJBOUU5Q0Uw MjMxMUVBOTkyMkRFNDJDNEY5QUUwMi9PQUhqWVU5OVFFY0Nya0lzc25ubEhjblJU S0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09BSGpZVTk5UUVjQ3JrSXNzbm5sSGNuUlRLSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MzgzQi9GQkJBOUU5Q0UwMjMxMUVBOTkyMkRFNDJDNEY5QUUwMi9PQUhqWVU5OVFF Y0Nya0lzc25ubEhjblJUS0kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAnRs0ZY7/xWUofblERWcXh9bNhKSTYu18Wq6Geujnd2G14tTotS5kSneC8Ebo ZEz+i+6PeJWNtxiqp/hABlNmRe5N99Qo4J0cjbQK/aS6AlpK942cMktH/SDeM5rQ ry5dUVPDlMQNQEVa1PAlZtRI4erMVs4+oTYoz9phYaMmLfdAxGCb3HxSNEqZPmVP W8k0rAtkZiQUw4h8I77GSK42vlT4pzV/Q/pLmVSNEiosOpgOAcN4VYpG48JWpJTA hHu4okY+aR753P5ZZlXqkaUgkAPGA+0Y6klyfKAqA45t2I/tOyM6HXiI6rQaoyvW +9zkExHVqeX4rZJFVWzNP+N1Ew== -----END CERTIFICATE-----Generated at Mon Mar 2 17:55:06 2026 by rpki-client