$ rpki-client -vvf rpki.apnic.net/member_repository/A91454F3/1EF7866805DC11EA9743BA5FC4F9AE02/bOklSpy_oHBCJDc13OT79-VGEWY.mft File: bOklSpy_oHBCJDc13OT79-VGEWY.mft (raw, json) Hash identifier: nGUE8hZZcuUGFMO72jcWL7Y0NmTjx9SzEyJwYPv0zUc= Subject key identifier: DF:34:A7:B7:48:B9:74:11:72:2C:07:05:D7:0A:EC:FA:B1:7F:04:28 Authority key identifier: 6C:E9:25:4A:9C:BF:A0:70:42:24:37:35:DC:E4:FB:F7:E5:46:11:66 Certificate issuer: /CN=A91454F3/serialNumber=6CE9254A9CBFA07042243735DCE4FBF7E5461166 Certificate serial: 0CD2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bOklSpy_oHBCJDc13OT79-VGEWY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91454F3/1EF7866805DC11EA9743BA5FC4F9AE02/bOklSpy_oHBCJDc13OT79-VGEWY.mft Manifest number: 0CCB Signing time: Sat 28 Feb 2026 18:27:03 +0000 Manifest this update: Sat 28 Feb 2026 18:27:02 +0000 Manifest next update: Sat 07 Mar 2026 18:27:02 +0000 Files and hashes: 1: bOklSpy_oHBCJDc13OT79-VGEWY.crl (hash: LjPPu48w9HMzPAPeWu7tTljsRrakc6PVziyyLbgEqqw=) 2: 9DDA09EC05DC11EA9B6B0560C4F9AE02.roa (hash: zg4ngSvDnII0EgnGozN5wPgIbLHYCQwnbwFPTUFG8lU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91454F3/1EF7866805DC11EA9743BA5FC4F9AE02/bOklSpy_oHBCJDc13OT79-VGEWY.crl rsync://rpki.apnic.net/member_repository/A91454F3/1EF7866805DC11EA9743BA5FC4F9AE02/bOklSpy_oHBCJDc13OT79-VGEWY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bOklSpy_oHBCJDc13OT79-VGEWY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 18:27:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3282 (0xcd2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91454F3, serialNumber=6CE9254A9CBFA07042243735DCE4FBF7E5461166 Validity Not Before: Feb 28 18:27:02 2026 GMT Not After : Mar 7 18:27:02 2026 GMT Subject: CN=69a33376-3c0c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:81:6c:29:11:b5:c7:53:6f:62:d7:cf:04:42: da:e3:f1:b1:25:84:11:be:4d:31:c2:70:10:e3:f0: 4b:aa:06:b7:a5:1f:64:63:e4:ce:fb:af:bb:03:a1: 52:d4:6d:11:23:f9:4a:53:09:39:66:ca:d3:78:9a: 42:36:cc:48:90:41:f9:50:5e:49:22:20:41:e5:52: 17:30:7a:c1:c3:70:d3:ea:f1:2b:f3:b4:24:b8:a6: 96:33:62:8c:13:df:87:1d:cf:c7:76:e4:61:9b:f8: 70:09:7e:59:2e:bb:6a:10:fa:6c:0a:f1:2f:8e:2d: c3:8a:65:36:c4:b2:5f:0f:bb:fe:e2:b6:d2:eb:03: 28:99:2b:bf:f0:e0:32:08:61:98:a3:b1:11:c7:60: b0:a8:4c:d1:54:88:d1:73:23:ef:9c:8c:34:58:98: 77:d0:b7:8f:2f:f2:9b:65:5f:e2:71:c6:f3:ae:09: bd:b0:d9:88:e3:26:ad:cb:93:33:5e:16:47:12:08: 4a:a0:a2:cb:b2:f4:40:97:ac:49:b2:78:a4:b9:78: 68:60:aa:70:ea:9f:23:6e:e2:1b:45:b4:75:06:fa: 5b:16:bd:77:7b:c2:0e:aa:4d:0e:1d:7e:85:70:23: 81:36:53:83:f1:9f:99:1d:f0:4d:05:6c:f4:ba:58: ca:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:34:A7:B7:48:B9:74:11:72:2C:07:05:D7:0A:EC:FA:B1:7F:04:28 X509v3 Authority Key Identifier: keyid:6C:E9:25:4A:9C:BF:A0:70:42:24:37:35:DC:E4:FB:F7:E5:46:11:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91454F3/1EF7866805DC11EA9743BA5FC4F9AE02/bOklSpy_oHBCJDc13OT79-VGEWY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bOklSpy_oHBCJDc13OT79-VGEWY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91454F3/1EF7866805DC11EA9743BA5FC4F9AE02/bOklSpy_oHBCJDc13OT79-VGEWY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:71:76:43:81:a3:95:b0:d0:d4:54:17:dd:74:2b:11:39:6b: 17:69:59:67:fd:73:22:c7:6e:bd:50:55:10:a3:fb:dc:41:ff: 58:d8:53:92:70:00:89:5b:3f:1b:c8:1d:a6:a2:05:5f:96:ad: 3f:e9:e9:03:21:68:ff:c7:a0:71:6e:fa:d1:44:78:92:27:a2: ef:73:1d:6f:81:1e:13:4a:ed:1d:f1:09:9e:19:ad:e0:38:34: e1:fb:24:b9:68:57:80:79:3a:d2:7c:26:52:97:6d:55:a9:76: 8d:c0:73:f8:48:9e:12:8d:0e:69:be:52:85:0a:97:0b:ee:fd: 49:59:1f:89:20:e4:f1:84:92:cc:a4:db:e1:b4:86:ce:e8:ef: 31:d8:01:dc:a7:2d:c3:3f:4a:18:6b:6c:e9:23:44:f8:61:82: 39:2e:70:68:d0:3c:21:99:3c:df:8b:b6:78:34:89:e8:6c:d5: b0:da:b7:2b:3c:91:34:f4:39:4b:5d:b8:f8:39:f3:21:cb:31: 6f:d2:68:00:c0:42:eb:7b:ef:ac:a4:2f:dc:71:33:e8:94:02: 20:16:75:2b:6a:00:6b:7e:b5:5e:e4:fe:dd:69:99:e2:09:9b: d5:19:91:ac:d3:9a:b8:06:55:eb:47:ab:40:8f:e2:59:26:61: 69:bd:5b:f8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDNIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDU0RjMxMTAvBgNVBAUTKDZDRTkyNTRBOUNCRkEwNzA0MjI0MzczNURDRTRGQkY3 RTU0NjExNjYwHhcNMjYwMjI4MTgyNzAyWhcNMjYwMzA3MTgyNzAyWjAYMRYwFAYD VQQDDA02OWEzMzM3Ni0zYzBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqIFsKRG1x1NvYtfPBELa4/GxJYQRvk0xwnAQ4/BLqga3pR9kY+TO+6+7A6FS 1G0RI/lKUwk5ZsrTeJpCNsxIkEH5UF5JIiBB5VIXMHrBw3DT6vEr87QkuKaWM2KM E9+HHc/HduRhm/hwCX5ZLrtqEPpsCvEvji3DimU2xLJfD7v+4rbS6wMomSu/8OAy CGGYo7ERx2CwqEzRVIjRcyPvnIw0WJh30LePL/KbZV/iccbzrgm9sNmI4yaty5Mz XhZHEghKoKLLsvRAl6xJsnikuXhoYKpw6p8jbuIbRbR1BvpbFr13e8IOqk0OHX6F cCOBNlOD8Z+ZHfBNBWz0uljK9wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFN80p7dI uXQRciwHBdcK7PqxfwQoMB8GA1UdIwQYMBaAFGzpJUqcv6BwQiQ3Ndzk+/flRhFm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NTRGMy8xRUY3ODY2ODA1 REMxMUVBOTc0M0JBNUZDNEY5QUUwMi9iT2tsU3B5X29IQkNKRGMxM09UNzktVkdF V1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JPa2xTcHlfb0hCQ0pEYzEzT1Q3OS1WR0VXWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NTRGMy8xRUY3ODY2ODA1REMxMUVBOTc0M0JBNUZDNEY5QUUwMi9iT2tsU3B5X29I QkNKRGMxM09UNzktVkdFV1kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAEnF2Q4GjlbDQ1FQX3XQrETlrF2lZZ/1zIsduvVBVEKP73EH/WNhTknAAiVs/ G8gdpqIFX5atP+npAyFo/8egcW760UR4kiei73Mdb4EeE0rtHfEJnhmt4Dg04fsk uWhXgHk60nwmUpdtVal2jcBz+EieEo0Oab5ShQqXC+79SVkfiSDk8YSSzKTb4bSG zujvMdgB3Kctwz9KGGts6SNE+GGCOS5waNA8IZk834u2eDSJ6GzVsNq3KzyRNPQ5 S124+DnzIcsxb9JoAMBC63vvrKQv3HEz6JQCIBZ1K2oAa361XuT+3WmZ4gmb1RmR rNOauAZV60erQI/iWSZhab1b+A== -----END CERTIFICATE-----Generated at Sun Mar 1 22:39:37 2026 by rpki-client