$ rpki-client -vvf rpki.apnic.net/member_repository/A9198267/02C86EAA78CB11EA820D7274C4F9AE02/OPsGr2SfQA9ROZSTW-335JJwyKo.mft File: OPsGr2SfQA9ROZSTW-335JJwyKo.mft (raw, json) Hash identifier: e8MXr0EGBtp5xmaLKXTIlJ0UunDY7QRif5LnIuJVoD8= Subject key identifier: FF:7C:DF:AC:3E:D0:F7:A2:62:45:CA:87:C5:44:73:FB:72:D9:39:B1 Authority key identifier: 38:FB:06:AF:64:9F:40:0F:51:39:94:93:5B:ED:F7:E4:92:70:C8:AA Certificate issuer: /CN=A9198267/serialNumber=38FB06AF649F400F513994935BEDF7E49270C8AA Certificate serial: 0A98 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OPsGr2SfQA9ROZSTW-335JJwyKo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198267/02C86EAA78CB11EA820D7274C4F9AE02/OPsGr2SfQA9ROZSTW-335JJwyKo.mft Manifest number: 0A88 Signing time: Mon 02 Mar 2026 00:01:41 +0000 Manifest this update: Mon 02 Mar 2026 00:01:39 +0000 Manifest next update: Mon 09 Mar 2026 00:01:39 +0000 Files and hashes: 1: OPsGr2SfQA9ROZSTW-335JJwyKo.crl (hash: 3EttPvGBRTEg1uIudiDlDNoNkaMDjbertmT6TE/slmA=) 2: 2F43EE7278CC11EAB69DAC75C4F9AE02.roa (hash: MAXacxJ/RMDMxYMvqaQnbiqd4rfD3qFy66FNBQszakU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198267/02C86EAA78CB11EA820D7274C4F9AE02/OPsGr2SfQA9ROZSTW-335JJwyKo.crl rsync://rpki.apnic.net/member_repository/A9198267/02C86EAA78CB11EA820D7274C4F9AE02/OPsGr2SfQA9ROZSTW-335JJwyKo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OPsGr2SfQA9ROZSTW-335JJwyKo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:01:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2712 (0xa98) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198267, serialNumber=38FB06AF649F400F513994935BEDF7E49270C8AA Validity Not Before: Mar 2 00:01:39 2026 GMT Not After : Mar 9 00:01:39 2026 GMT Subject: CN=69a4d364-15fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:61:0f:dc:58:17:7c:b8:76:3f:8a:ba:87:21: 8d:bf:6d:8b:11:1e:3c:30:40:69:aa:7f:9c:01:18: e8:6b:ea:b0:64:dc:38:3e:19:fe:66:4b:41:87:10: 11:46:54:2e:ee:33:47:5e:c9:2a:f4:26:bf:63:3c: 78:e7:b6:a4:0b:15:9f:62:81:2f:fc:b9:52:31:d9: e4:52:5f:84:b5:34:94:fe:3e:f6:52:19:5f:2f:03: 07:f7:9b:a1:f5:a6:35:9d:51:87:05:9a:c7:e7:76: 8a:32:b9:63:da:d3:3d:cf:37:5f:80:37:de:73:f0: 60:9c:2b:f2:ca:95:4d:0f:61:f1:21:d2:20:76:85: 64:76:0a:2b:65:b9:39:7c:a8:08:fc:6c:90:b0:a4: a1:45:5f:22:6f:d8:c8:c8:2c:e5:41:58:90:95:5f: 12:0f:05:02:2d:e7:1f:d7:1d:e2:fb:08:d6:4f:ab: ef:5e:0c:d1:23:6f:9f:51:e3:a1:4a:1e:e1:dd:c1: 61:4f:5c:2c:39:ce:76:4c:36:59:f1:1a:e4:7a:70: e3:eb:45:8a:aa:67:06:5f:75:8b:91:79:b0:9b:35: 6b:8a:bd:2d:8e:10:37:0a:0f:8a:c1:1f:da:8c:c9: bc:4d:61:f3:36:73:60:db:8c:7f:77:37:31:33:8d: 0e:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:7C:DF:AC:3E:D0:F7:A2:62:45:CA:87:C5:44:73:FB:72:D9:39:B1 X509v3 Authority Key Identifier: keyid:38:FB:06:AF:64:9F:40:0F:51:39:94:93:5B:ED:F7:E4:92:70:C8:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198267/02C86EAA78CB11EA820D7274C4F9AE02/OPsGr2SfQA9ROZSTW-335JJwyKo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OPsGr2SfQA9ROZSTW-335JJwyKo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198267/02C86EAA78CB11EA820D7274C4F9AE02/OPsGr2SfQA9ROZSTW-335JJwyKo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:4f:54:2d:7c:80:ae:30:ac:f9:d5:4f:cf:3c:9e:2f:4b:6a: 76:69:47:1f:a3:ff:31:99:02:8e:8a:68:6b:a1:f9:a9:f8:5c: 04:8e:3f:8a:12:ca:3d:35:b8:c5:69:e1:67:76:6a:71:c2:9d: 48:78:f7:e9:59:68:56:94:84:62:a5:d5:45:af:d2:78:fd:f3: 62:dc:c0:f1:23:1a:e0:85:0e:57:a1:94:8c:0c:a3:f4:55:1f: 34:c5:d3:5d:8c:07:89:4e:cc:e5:08:50:95:d8:a0:b3:7f:a0: 53:a5:a6:4f:da:97:5f:a2:cb:b4:24:52:84:9f:49:9e:1d:bf: 3b:2c:5c:7d:63:bc:08:44:a5:53:53:cf:4d:e4:de:e8:c9:f3: 61:06:2b:9a:95:94:9f:77:5a:18:50:70:73:ee:e0:c0:52:92: 34:5a:f0:6a:ab:09:2f:8a:e4:11:f7:19:fe:53:6d:7d:6c:0c: 59:32:28:b2:c1:a4:b3:35:fe:c4:0e:10:fa:bb:d1:49:f3:1c: cb:96:6a:f7:f6:c4:f7:b7:fb:b2:98:45:02:60:9d:fb:56:6a: 6b:03:61:e7:a2:f5:1d:5e:74:aa:cb:11:40:bd:51:9e:ae:a8: 82:45:e8:77:c2:67:57:e9:71:42:2a:9b:12:2f:60:9c:6e:95: 5c:b2:12:24 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCpgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTgyNjcxMTAvBgNVBAUTKDM4RkIwNkFGNjQ5RjQwMEY1MTM5OTQ5MzVCRURGN0U0 OTI3MEM4QUEwHhcNMjYwMzAyMDAwMTM5WhcNMjYwMzA5MDAwMTM5WjAYMRYwFAYD VQQDEw02OWE0ZDM2NC0xNWZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4GEP3FgXfLh2P4q6hyGNv22LER48MEBpqn+cARjoa+qwZNw4Phn+ZktBhxAR RlQu7jNHXskq9Ca/Yzx457akCxWfYoEv/LlSMdnkUl+EtTSU/j72UhlfLwMH95uh 9aY1nVGHBZrH53aKMrlj2tM9zzdfgDfec/BgnCvyypVND2HxIdIgdoVkdgorZbk5 fKgI/GyQsKShRV8ib9jIyCzlQViQlV8SDwUCLecf1x3i+wjWT6vvXgzRI2+fUeOh Sh7h3cFhT1wsOc52TDZZ8RrkenDj60WKqmcGX3WLkXmwmzVrir0tjhA3Cg+KwR/a jMm8TWHzNnNg24x/dzcxM40O8QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFP9836w+ 0PeiYkXKh8VEc/ty2TmxMB8GA1UdIwQYMBaAFDj7Bq9kn0APUTmUk1vt9+SScMiq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5ODI2Ny8wMkM4NkVBQTc4 Q0IxMUVBODIwRDcyNzRDNEY5QUUwMi9PUHNHcjJTZlFBOVJPWlNUVy0zMzVKSnd5 S28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09Qc0dyMlNmUUE5Uk9aU1RXLTMzNUpKd3lLby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 ODI2Ny8wMkM4NkVBQTc4Q0IxMUVBODIwRDcyNzRDNEY5QUUwMi9PUHNHcjJTZlFB OVJPWlNUVy0zMzVKSnd5S28ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAUE9ULXyArjCs+dVPzzyeL0tqdmlHH6P/MZkCjopoa6H5qfhcBI4/ihLKPTW4 xWnhZ3ZqccKdSHj36VloVpSEYqXVRa/SeP3zYtzA8SMa4IUOV6GUjAyj9FUfNMXT XYwHiU7M5QhQldigs3+gU6WmT9qXX6LLtCRShJ9Jnh2/OyxcfWO8CESlU1PPTeTe 6MnzYQYrmpWUn3daGFBwc+7gwFKSNFrwaqsJL4rkEfcZ/lNtfWwMWTIossGkszX+ xA4Q+rvRSfMcy5Zq9/bE97f7sphFAmCd+1ZqawNh56L1HV50qssRQL1Rnq6ogkXo d8JnV+lxQiqbEi9gnG6VXLISJA== -----END CERTIFICATE-----Generated at Mon Mar 2 15:34:35 2026 by rpki-client