$ rpki-client -vvf rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/OYN8tL7K9qYmyRaulgJBtgnmsgo.mft File: OYN8tL7K9qYmyRaulgJBtgnmsgo.mft (raw, json) Hash identifier: oSQkB5cuVDdJ8Q/BrknDU61SIVAPrqPAuyrz++j3EhM= Subject key identifier: 24:F8:FE:9E:BC:6D:85:9E:17:9C:D0:3F:F1:A9:13:14:C8:E9:E6:00 Authority key identifier: 39:83:7C:B4:BE:CA:F6:A6:26:C9:16:AE:96:02:41:B6:09:E6:B2:0A Certificate issuer: /CN=A918C3B7/serialNumber=39837CB4BECAF6A626C916AE960241B609E6B20A Certificate serial: 01AA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OYN8tL7K9qYmyRaulgJBtgnmsgo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/OYN8tL7K9qYmyRaulgJBtgnmsgo.mft Manifest number: 01A5 Signing time: Mon 02 Mar 2026 02:37:25 +0000 Manifest this update: Mon 02 Mar 2026 02:37:24 +0000 Manifest next update: Mon 09 Mar 2026 02:37:24 +0000 Files and hashes: 1: OYN8tL7K9qYmyRaulgJBtgnmsgo.crl (hash: XkCc8Kcvv/KDsqcLZoIH/Y7dV9rHtxF9RqBsIBWeHi8=) 2: C635D41E611411EF9B00D029C4F9AE02.roa (hash: qPZmH+RzKdBapUzs7XCJ/A/488q//71nojcQCK0muRk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/OYN8tL7K9qYmyRaulgJBtgnmsgo.crl rsync://rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/OYN8tL7K9qYmyRaulgJBtgnmsgo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OYN8tL7K9qYmyRaulgJBtgnmsgo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:37:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 426 (0x1aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918C3B7, serialNumber=39837CB4BECAF6A626C916AE960241B609E6B20A Validity Not Before: Mar 2 02:37:24 2026 GMT Not After : Mar 9 02:37:24 2026 GMT Subject: CN=69a4f7e5-be12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:a4:d5:c4:1a:49:1e:eb:32:9e:ba:81:60:ff: a8:35:97:9e:ab:79:8c:11:fe:74:ef:6d:3b:b2:00: 5c:17:82:90:1d:26:7e:6a:5d:f3:c0:f3:06:c4:d2: cc:46:99:12:f3:3f:1b:76:c2:b3:92:a8:cf:66:81: 69:46:1e:f7:f6:a5:07:3f:af:26:51:35:d2:35:31: f3:59:a2:49:1d:4d:95:7d:2e:72:04:66:56:9b:7a: cb:87:9c:ec:67:d3:77:6e:12:58:6f:15:1d:5c:71: 97:bc:67:0b:f2:d2:57:d3:69:68:f6:20:b8:2c:02: f3:99:32:6d:12:cf:41:ab:8c:47:b8:58:36:d6:60: b7:9e:d1:88:90:53:fe:31:db:70:78:5b:6b:57:a6: 12:bb:9d:d6:be:9e:58:4c:d0:f8:c4:6d:ba:4c:4e: 80:da:55:26:1d:fe:36:ef:5e:68:e1:5d:72:e4:e1: 24:ce:2f:9c:df:0d:4b:63:c8:87:d0:a9:e3:f9:6a: 89:84:d0:c4:ea:10:cb:52:23:5d:23:7e:dd:df:ce: 17:fe:46:56:d2:0c:da:c9:03:e1:01:b4:87:6b:e4: cc:71:94:1c:0e:14:f3:88:48:ae:7e:61:20:e6:ff: c9:98:21:b6:f8:d5:3f:82:3b:3e:ec:db:c1:c7:f1: 9d:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:F8:FE:9E:BC:6D:85:9E:17:9C:D0:3F:F1:A9:13:14:C8:E9:E6:00 X509v3 Authority Key Identifier: keyid:39:83:7C:B4:BE:CA:F6:A6:26:C9:16:AE:96:02:41:B6:09:E6:B2:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/OYN8tL7K9qYmyRaulgJBtgnmsgo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OYN8tL7K9qYmyRaulgJBtgnmsgo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/OYN8tL7K9qYmyRaulgJBtgnmsgo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:fe:7b:b0:ed:b3:ac:11:38:b1:ce:ca:f7:73:26:b3:e0:f9: d8:44:75:fd:b6:bf:e0:d9:a3:98:d0:ed:eb:59:cc:2f:6a:45: fe:84:d6:c6:c9:42:25:05:88:c9:81:0f:6a:c6:e0:40:76:5d: 21:43:0b:02:c6:a2:24:ee:95:1d:5a:3a:d4:c9:a3:6c:e7:e6: 1a:e0:ec:c5:35:9c:46:61:0e:a6:ef:02:bb:ee:3b:26:7f:ab: 5a:3d:28:b5:a9:f7:e8:01:a0:eb:4c:a7:1c:c9:f8:aa:b3:b7: e0:38:98:e1:0e:91:77:dc:73:07:cc:cc:55:20:0d:8b:b0:8d: 8f:e8:fa:08:de:de:db:71:f0:6e:dc:da:17:db:bf:16:23:bc: bc:2e:2d:10:88:69:b5:0e:66:da:4b:6c:1d:d2:60:1e:1f:1f: e2:2d:34:d2:96:91:86:e5:00:5c:46:22:ff:8f:eb:28:51:8e: 1d:ab:83:a4:f1:3a:e1:04:88:da:b5:d0:cc:65:2f:16:4c:5d: 39:d1:5a:5a:5a:12:01:b9:5b:aa:b5:1f:59:df:29:96:ff:f4: 79:72:66:31:d3:d9:ec:5c:33:9c:68:3d:65:7f:3f:7c:10:22: b8:b4:5f:1b:6e:31:bf:7b:ac:21:8c:41:8b:11:74:e9:07:d8: 50:04:19:ce -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAaowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEMzQjcxMTAvBgNVBAUTKDM5ODM3Q0I0QkVDQUY2QTYyNkM5MTZBRTk2MDI0MUI2 MDlFNkIyMEEwHhcNMjYwMzAyMDIzNzI0WhcNMjYwMzA5MDIzNzI0WjAYMRYwFAYD VQQDEw02OWE0ZjdlNS1iZTEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAk6TVxBpJHusynrqBYP+oNZeeq3mMEf507207sgBcF4KQHSZ+al3zwPMGxNLM RpkS8z8bdsKzkqjPZoFpRh739qUHP68mUTXSNTHzWaJJHU2VfS5yBGZWm3rLh5zs Z9N3bhJYbxUdXHGXvGcL8tJX02lo9iC4LALzmTJtEs9Bq4xHuFg21mC3ntGIkFP+ MdtweFtrV6YSu53Wvp5YTND4xG26TE6A2lUmHf42715o4V1y5OEkzi+c3w1LY8iH 0Knj+WqJhNDE6hDLUiNdI37d384X/kZW0gzayQPhAbSHa+TMcZQcDhTziEiufmEg 5v/JmCG2+NU/gjs+7NvBx/GdpQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCT4/p68 bYWeF5zQP/GpExTI6eYAMB8GA1UdIwQYMBaAFDmDfLS+yvamJskWrpYCQbYJ5rIK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QzNCNy8xNTlBNEFEMDkz MjUxMUVFQkU5ODdGNjBDNEY5QUUwMi9PWU44dEw3SzlxWW15UmF1bGdKQnRnbm1z Z28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL09ZTjh0TDdLOXFZbXlSYXVsZ0pCdGdubXNnby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QzNCNy8xNTlBNEFEMDkzMjUxMUVFQkU5ODdGNjBDNEY5QUUwMi9PWU44dEw3Szlx WW15UmF1bGdKQnRnbm1zZ28ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAl/57sO2zrBE4sc7K93Mms+D52ER1/ba/4NmjmNDt61nML2pF/oTWxslCJQWI yYEPasbgQHZdIUMLAsaiJO6VHVo61MmjbOfmGuDsxTWcRmEOpu8Cu+47Jn+rWj0o tan36AGg60ynHMn4qrO34DiY4Q6Rd9xzB8zMVSANi7CNj+j6CN7e23HwbtzaF9u/ FiO8vC4tEIhptQ5m2ktsHdJgHh8f4i000paRhuUAXEYi/4/rKFGOHauDpPE64QSI 2rXQzGUvFkxdOdFaWloSAblbqrUfWd8plv/0eXJmMdPZ7FwznGg9ZX8/fBAiuLRf G24xv3usIYxBixF06QfYUAQZzg== -----END CERTIFICATE-----Generated at Mon Mar 2 09:24:24 2026 by rpki-client