$ rpki-client -vvf rpki.apnic.net/member_repository/A91579E2/73AF2F7AF2B011EDA42B4470C4F9AE02/O2JAfi5U9C-AkOLA2G_Sw6YTMLM.mft File: O2JAfi5U9C-AkOLA2G_Sw6YTMLM.mft (raw, json) Hash identifier: gLN8OepNFFkXkRCv8lYLO3MRTEu4JJa226U53NUgnDM= Subject key identifier: 83:BB:38:2E:E7:55:E0:7B:64:12:DE:B1:03:BC:BC:56:E1:FC:41:22 Authority key identifier: 3B:62:40:7E:2E:54:F4:2F:80:90:E2:C0:D8:6F:D2:C3:A6:13:30:B3 Certificate issuer: /CN=A91579E2/serialNumber=3B62407E2E54F42F8090E2C0D86FD2C3A61330B3 Certificate serial: 0210 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O2JAfi5U9C-AkOLA2G_Sw6YTMLM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91579E2/73AF2F7AF2B011EDA42B4470C4F9AE02/O2JAfi5U9C-AkOLA2G_Sw6YTMLM.mft Manifest number: 0209 Signing time: Sun 01 Mar 2026 03:44:12 +0000 Manifest this update: Sun 01 Mar 2026 03:44:12 +0000 Manifest next update: Sun 08 Mar 2026 03:44:12 +0000 Files and hashes: 1: O2JAfi5U9C-AkOLA2G_Sw6YTMLM.crl (hash: WVGMjHu0PDuyS8GvTtEKPHwJFUlzYTjRllER8iYVIEY=) 2: 631D6D82F2B711EDAA29717AC4F9AE02.roa (hash: Ugoz9OgYhjx5n/wKBryzHZ0lteBuyiXAGZkUzpN/sg4=) 3: 62923A1EF2B711EDAA29717AC4F9AE02.roa (hash: oxGjZ2qP5KAlzJWT8zUJKcB63LEiuvqe3on36ROaH3g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91579E2/73AF2F7AF2B011EDA42B4470C4F9AE02/O2JAfi5U9C-AkOLA2G_Sw6YTMLM.crl rsync://rpki.apnic.net/member_repository/A91579E2/73AF2F7AF2B011EDA42B4470C4F9AE02/O2JAfi5U9C-AkOLA2G_Sw6YTMLM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O2JAfi5U9C-AkOLA2G_Sw6YTMLM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 03:44:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 528 (0x210) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91579E2, serialNumber=3B62407E2E54F42F8090E2C0D86FD2C3A61330B3 Validity Not Before: Mar 1 03:44:12 2026 GMT Not After : Mar 8 03:44:12 2026 GMT Subject: CN=69a3b60c-790d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:0c:7c:63:45:af:a5:6b:f8:37:65:79:e5:cc: d7:e1:15:21:49:21:b0:a5:ea:1f:44:f8:1c:39:ce: 38:30:09:90:1e:ea:46:b7:3f:dd:87:43:56:63:a4: 71:da:43:64:0e:71:53:d7:37:12:33:fd:bb:8e:24: 61:19:3d:55:71:67:3b:39:9e:43:58:2d:89:d2:5f: de:59:fd:28:0b:73:a6:49:cf:14:c2:7c:a3:8b:77: 3c:d1:e8:82:4f:74:be:22:37:55:a7:07:fb:4f:6c: 8f:ad:cb:78:de:de:5b:c8:fe:7e:b8:33:9d:37:03: aa:27:fd:92:a7:46:b2:b0:65:3b:e1:eb:94:43:b8: bf:f7:bf:81:02:8a:a7:6d:16:81:41:46:1a:04:8d: d2:cf:ab:63:7e:82:00:e6:1d:89:d0:c3:94:c4:fb: b9:37:82:52:95:0c:6a:53:9c:05:6e:76:f6:b3:28: 25:e5:4d:fc:87:54:6f:71:f2:26:0b:91:a2:39:87: 4c:a1:74:0d:e9:0e:83:cb:44:d6:76:85:dd:ec:32: b2:91:6d:4c:c1:c3:f8:ab:29:2f:22:6b:1a:22:23: 1a:37:2f:ff:3e:ec:7f:83:e6:75:2c:3a:11:01:62: bc:c6:56:ff:43:46:19:bf:1c:06:a9:c0:3a:48:b7: 02:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:BB:38:2E:E7:55:E0:7B:64:12:DE:B1:03:BC:BC:56:E1:FC:41:22 X509v3 Authority Key Identifier: keyid:3B:62:40:7E:2E:54:F4:2F:80:90:E2:C0:D8:6F:D2:C3:A6:13:30:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91579E2/73AF2F7AF2B011EDA42B4470C4F9AE02/O2JAfi5U9C-AkOLA2G_Sw6YTMLM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O2JAfi5U9C-AkOLA2G_Sw6YTMLM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91579E2/73AF2F7AF2B011EDA42B4470C4F9AE02/O2JAfi5U9C-AkOLA2G_Sw6YTMLM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:e1:10:12:b2:e8:24:60:ee:e5:d4:b0:bd:99:f4:41:00:12: b7:09:8f:3a:f1:de:3c:4f:fc:77:95:fe:68:e9:33:43:76:2b: 6f:fa:2c:ed:37:56:4c:8c:37:16:ec:6d:f9:1a:89:68:97:78: fd:80:4e:db:28:9c:d9:87:2a:80:f7:40:91:d9:80:91:2f:b0: 63:5a:49:e8:15:4a:dd:cb:3b:a0:ed:a8:c5:90:c2:45:d1:80: 79:5a:93:61:b9:ef:34:02:69:46:f3:73:ee:92:6a:96:a3:58: 8a:f5:ea:65:6e:6d:d1:19:57:9e:1d:e8:7e:8b:87:e0:47:5b: f2:02:25:a6:ac:ad:c6:1e:ae:bb:88:cd:64:8c:5c:dc:68:a3: 9d:47:34:d1:ae:94:db:76:e3:d9:1b:29:51:2c:71:3b:ba:c4: fe:20:7d:9c:0d:e4:3a:39:dc:97:4c:50:9d:29:06:13:85:1e: b7:f8:09:ca:5d:f4:23:b6:42:76:87:cd:da:da:2b:04:31:0c: 7f:b2:b0:64:25:fc:f6:c2:58:a6:aa:55:06:96:db:17:bf:4b: 07:2e:1c:15:a1:7d:80:b7:81:b8:b0:f5:c4:8d:97:ee:de:ff: bd:4a:73:39:ff:f2:b5:2d:97:61:9f:9e:40:f6:e1:d2:1b:c1: 53:33:85:67 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAhAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTc5RTIxMTAvBgNVBAUTKDNCNjI0MDdFMkU1NEY0MkY4MDkwRTJDMEQ4NkZEMkMz QTYxMzMwQjMwHhcNMjYwMzAxMDM0NDEyWhcNMjYwMzA4MDM0NDEyWjAYMRYwFAYD VQQDDA02OWEzYjYwYy03OTBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuQx8Y0WvpWv4N2V55czX4RUhSSGwpeofRPgcOc44MAmQHupGtz/dh0NWY6Rx 2kNkDnFT1zcSM/27jiRhGT1VcWc7OZ5DWC2J0l/eWf0oC3OmSc8Uwnyji3c80eiC T3S+IjdVpwf7T2yPrct43t5byP5+uDOdNwOqJ/2Sp0aysGU74euUQ7i/97+BAoqn bRaBQUYaBI3Sz6tjfoIA5h2J0MOUxPu5N4JSlQxqU5wFbnb2sygl5U38h1RvcfIm C5GiOYdMoXQN6Q6Dy0TWdoXd7DKykW1MwcP4qykvImsaIiMaNy//Pux/g+Z1LDoR AWK8xlb/Q0YZvxwGqcA6SLcCfQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIO7OC7n VeB7ZBLesQO8vFbh/EEiMB8GA1UdIwQYMBaAFDtiQH4uVPQvgJDiwNhv0sOmEzCz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NzlFMi83M0FGMkY3QUYy QjAxMUVEQTQyQjQ0NzBDNEY5QUUwMi9PMkpBZmk1VTlDLUFrT0xBMkdfU3c2WVRN TE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL08ySkFmaTVVOUMtQWtPTEEyR19TdzZZVE1MTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NzlFMi83M0FGMkY3QUYyQjAxMUVEQTQyQjQ0NzBDNEY5QUUwMi9PMkpBZmk1VTlD LUFrT0xBMkdfU3c2WVRNTE0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEApuEQErLoJGDu5dSwvZn0QQAStwmPOvHePE/8d5X+aOkzQ3Yrb/os7TdWTIw3 Fuxt+RqJaJd4/YBO2yic2YcqgPdAkdmAkS+wY1pJ6BVK3cs7oO2oxZDCRdGAeVqT YbnvNAJpRvNz7pJqlqNYivXqZW5t0RlXnh3ofouH4Edb8gIlpqytxh6uu4jNZIxc 3GijnUc00a6U23bj2RspUSxxO7rE/iB9nA3kOjncl0xQnSkGE4Uet/gJyl30I7ZC dofN2torBDEMf7KwZCX89sJYpqpVBpbbF79LBy4cFaF9gLeBuLD1xI2X7t7/vUpz Of/ytS2XYZ+eQPbh0hvBUzOFZw== -----END CERTIFICATE-----Generated at Sun Mar 1 21:42:20 2026 by rpki-client