$ rpki-client -vvf rpki.apnic.net/member_repository/A91778D4/D9D5693A905111ECA3699615C4F9AE02/OIes3fccvvSnUh2EUe7LrrJRnv0.mft File: OIes3fccvvSnUh2EUe7LrrJRnv0.mft (raw, json) Hash identifier: aCsTbw5/V7/K+BGWVfTA4ro4VivSIdAkPl1ImjFFCL8= Subject key identifier: 9D:4E:31:0E:F0:2E:DB:BA:49:C1:C1:EA:39:22:7A:C3:D0:14:E7:E8 Authority key identifier: 38:87:AC:DD:F7:1C:BE:F4:A7:52:1D:84:51:EE:CB:AE:B2:51:9E:FD Certificate issuer: /CN=A91778D4/serialNumber=3887ACDDF71CBEF4A7521D8451EECBAEB2519EFD Certificate serial: 0449 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OIes3fccvvSnUh2EUe7LrrJRnv0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91778D4/D9D5693A905111ECA3699615C4F9AE02/OIes3fccvvSnUh2EUe7LrrJRnv0.mft Manifest number: 0444 Signing time: Sun 01 Mar 2026 01:01:45 +0000 Manifest this update: Sun 01 Mar 2026 01:01:45 +0000 Manifest next update: Sun 08 Mar 2026 01:01:45 +0000 Files and hashes: 1: OIes3fccvvSnUh2EUe7LrrJRnv0.crl (hash: wQfD81nTIAAnTkj5hQ9ApXY4vI/WDh95rPOnGgCKEpU=) 2: 13F9F650905511EC9A978D19C4F9AE02.roa (hash: LsezswxbsYTDkD8XmvSpL4OSBTZlfRn5UeJiOefMqvA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91778D4/D9D5693A905111ECA3699615C4F9AE02/OIes3fccvvSnUh2EUe7LrrJRnv0.crl rsync://rpki.apnic.net/member_repository/A91778D4/D9D5693A905111ECA3699615C4F9AE02/OIes3fccvvSnUh2EUe7LrrJRnv0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OIes3fccvvSnUh2EUe7LrrJRnv0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 01:01:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1097 (0x449) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91778D4, serialNumber=3887ACDDF71CBEF4A7521D8451EECBAEB2519EFD Validity Not Before: Mar 1 01:01:45 2026 GMT Not After : Mar 8 01:01:45 2026 GMT Subject: CN=69a38ff9-e606 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:aa:c9:d6:3b:b7:01:11:f2:19:f3:66:3c:88: a6:88:b7:bf:38:60:3c:c7:b3:db:fe:2c:71:37:33: 11:c6:e4:d6:9f:54:ad:0a:2c:b4:93:f3:68:c1:2e: 79:2a:dd:7d:3c:af:41:f7:87:11:f1:ef:93:77:55: cf:41:46:ac:c9:a4:40:ec:54:69:59:97:c2:e0:1c: a7:fb:71:c5:23:79:4b:0f:e8:ac:82:b4:5b:5b:48: 28:17:74:1f:6f:88:54:fd:e3:f7:07:e0:ae:ab:07: 74:12:9c:ef:d4:a0:43:b3:9e:77:31:f7:a2:6e:df: df:a2:bf:85:4e:e3:bc:fa:25:af:ae:0b:fa:7f:d0: 75:67:fe:01:a3:8d:37:fb:59:32:ad:12:ad:a4:d2: 5d:54:37:43:47:df:6e:62:43:64:49:42:44:d4:fd: 36:5b:87:1a:0f:0d:e3:21:33:a9:c5:41:6f:98:e7: 95:9b:49:6d:27:9b:17:d8:09:79:51:bb:3d:00:9b: 42:8a:5a:13:8a:84:8e:60:3e:b8:d9:92:f3:50:3d: 48:39:36:6b:ae:94:81:e2:f7:c6:75:3b:b3:23:b2: f9:d6:34:c9:31:95:cd:46:4c:ed:52:2e:76:06:dd: 26:3c:c1:a3:2c:5c:59:1f:91:e3:5e:e6:0e:f6:ca: fb:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:4E:31:0E:F0:2E:DB:BA:49:C1:C1:EA:39:22:7A:C3:D0:14:E7:E8 X509v3 Authority Key Identifier: keyid:38:87:AC:DD:F7:1C:BE:F4:A7:52:1D:84:51:EE:CB:AE:B2:51:9E:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91778D4/D9D5693A905111ECA3699615C4F9AE02/OIes3fccvvSnUh2EUe7LrrJRnv0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OIes3fccvvSnUh2EUe7LrrJRnv0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91778D4/D9D5693A905111ECA3699615C4F9AE02/OIes3fccvvSnUh2EUe7LrrJRnv0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:be:82:11:eb:3d:92:ef:2d:16:89:45:5b:86:3a:fa:97:76: c0:46:4a:e8:54:28:b3:f4:34:87:9f:1f:e7:8e:ef:19:dd:8d: a3:59:90:96:d7:b3:77:9f:64:5a:25:fc:69:ad:70:8c:be:87: 50:64:e7:65:e7:81:1a:d7:5e:19:dc:ad:38:06:fe:bd:6a:77: 48:2b:ea:dd:0a:7b:d8:94:71:d4:3c:b9:52:0e:28:cb:9d:d6: 69:d4:ef:c8:7a:7e:f5:a9:82:16:5c:da:a0:97:3f:41:1c:7f: ec:8a:4c:f6:a4:29:71:8d:47:85:71:b4:61:2b:ec:4f:8d:db: 45:33:4e:0f:96:a1:09:7c:ab:1f:cd:c7:32:cb:0b:3d:b5:e9: 3a:ff:43:cb:78:94:93:98:8d:cf:96:61:c6:dd:88:ff:e5:6e: bf:fa:4e:6d:43:44:bb:e7:44:49:8c:e8:7b:4e:f8:dc:23:42: 14:93:49:79:b3:bf:12:86:a7:f3:36:55:23:b0:76:ba:98:12: 4f:e0:d5:a9:bf:ea:b1:96:16:d8:86:06:cf:bd:7f:57:c9:6c: 0b:9c:14:53:4f:36:8c:e0:96:66:d6:78:2c:6e:dd:0d:03:75: db:81:43:a2:4f:a2:2d:48:3e:a2:58:ff:b2:4e:7e:f1:b8:eb: 89:98:73:c6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBEkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzc4RDQxMTAvBgNVBAUTKDM4ODdBQ0RERjcxQ0JFRjRBNzUyMUQ4NDUxRUVDQkFF QjI1MTlFRkQwHhcNMjYwMzAxMDEwMTQ1WhcNMjYwMzA4MDEwMTQ1WjAYMRYwFAYD VQQDDA02OWEzOGZmOS1lNjA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo6rJ1ju3ARHyGfNmPIimiLe/OGA8x7Pb/ixxNzMRxuTWn1StCiy0k/NowS55 Kt19PK9B94cR8e+Td1XPQUasyaRA7FRpWZfC4Byn+3HFI3lLD+isgrRbW0goF3Qf b4hU/eP3B+Cuqwd0Epzv1KBDs553Mfeibt/for+FTuO8+iWvrgv6f9B1Z/4Bo403 +1kyrRKtpNJdVDdDR99uYkNkSUJE1P02W4caDw3jITOpxUFvmOeVm0ltJ5sX2Al5 Ubs9AJtCiloTioSOYD642ZLzUD1IOTZrrpSB4vfGdTuzI7L51jTJMZXNRkztUi52 Bt0mPMGjLFxZH5HjXuYO9sr7cwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJ1OMQ7w Ltu6ScHB6jkiesPQFOfoMB8GA1UdIwQYMBaAFDiHrN33HL70p1IdhFHuy66yUZ79 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NzhENC9EOUQ1NjkzQTkw NTExMUVDQTM2OTk2MTVDNEY5QUUwMi9PSWVzM2ZjY3Z2U25VaDJFVWU3THJySlJu djAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09JZXMzZmNjdnZTblVoMkVVZTdMcnJKUm52MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NzhENC9EOUQ1NjkzQTkwNTExMUVDQTM2OTk2MTVDNEY5QUUwMi9PSWVzM2ZjY3Z2 U25VaDJFVWU3THJySlJudjAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAcr6CEes9ku8tFolFW4Y6+pd2wEZK6FQos/Q0h58f547vGd2No1mQltezd59k WiX8aa1wjL6HUGTnZeeBGtdeGdytOAb+vWp3SCvq3Qp72JRx1Dy5Ug4oy53WadTv yHp+9amCFlzaoJc/QRx/7IpM9qQpcY1HhXG0YSvsT43bRTNOD5ahCXyrH83HMssL PbXpOv9Dy3iUk5iNz5Zhxt2I/+Vuv/pObUNEu+dESYzoe0743CNCFJNJebO/Eoan 8zZVI7B2upgST+DVqb/qsZYW2IYGz71/V8lsC5wUU082jOCWZtZ4LG7dDQN124FD ok+iLUg+olj/sk5+8bjriZhzxg== -----END CERTIFICATE-----Generated at Sun Mar 1 22:40:09 2026 by rpki-client