$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1025/8D7B9BF29D8411EF817E1420C4F9AE02/OZp7H8QgfroHB6hRUZXMaOg2q_g.mft File: OZp7H8QgfroHB6hRUZXMaOg2q_g.mft (raw, json) Hash identifier: 6usWgi7QaBvHZtWSeoKIDJrAYOqAq+I4e96yys2UqJM= Subject key identifier: 0E:23:1C:83:E0:4A:3B:70:8C:C6:B5:7D:7B:C7:03:07:5D:6C:DE:58 Authority key identifier: 39:9A:7B:1F:C4:20:7E:BA:07:07:A8:51:51:95:CC:68:E8:36:AB:F8 Certificate issuer: /CN=A91C1025/serialNumber=399A7B1FC4207EBA0707A8515195CC68E836ABF8 Certificate serial: 0102 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OZp7H8QgfroHB6hRUZXMaOg2q_g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1025/8D7B9BF29D8411EF817E1420C4F9AE02/OZp7H8QgfroHB6hRUZXMaOg2q_g.mft Manifest number: FC Signing time: Sun 01 Mar 2026 23:43:06 +0000 Manifest this update: Sun 01 Mar 2026 23:43:05 +0000 Manifest next update: Sun 08 Mar 2026 23:43:05 +0000 Files and hashes: 1: OZp7H8QgfroHB6hRUZXMaOg2q_g.crl (hash: 1ffSmWvHqmKEs5wYU6d+atwVNWAp7kiGtvg24dPr24A=) 2: 4996A7209D9211EFAD3DCF45C4F9AE02.roa (hash: /TeFmAq6WUrTiuCuPlwLIq4bJylbmUbGhfodPgyaENY=) 3: 03FFD61EEF8A11F09F678C04616F56BC.roa (hash: Vq7WOAaGyHrEANMuaydXxs4oGlSE1GWybP72WD+YuWk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1025/8D7B9BF29D8411EF817E1420C4F9AE02/OZp7H8QgfroHB6hRUZXMaOg2q_g.crl rsync://rpki.apnic.net/member_repository/A91C1025/8D7B9BF29D8411EF817E1420C4F9AE02/OZp7H8QgfroHB6hRUZXMaOg2q_g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OZp7H8QgfroHB6hRUZXMaOg2q_g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:43:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 258 (0x102) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1025, serialNumber=399A7B1FC4207EBA0707A8515195CC68E836ABF8 Validity Not Before: Mar 1 23:43:05 2026 GMT Not After : Mar 8 23:43:05 2026 GMT Subject: CN=69a4cf0a-abfe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:32:15:56:bc:32:a0:73:48:79:6c:db:d7:20: 13:b8:63:93:58:18:29:24:67:e8:50:7e:5e:47:45: b3:3c:dc:ad:b3:54:f2:4c:fe:c4:4f:17:bd:21:eb: c6:03:49:cb:1d:67:de:18:9b:39:11:ed:29:29:47: 01:21:86:d1:ef:69:03:e0:9c:c4:16:31:7a:18:fc: 1e:b3:e1:39:ad:52:6c:dc:96:d1:07:0f:4d:fe:86: c3:ef:88:43:f0:b9:db:7c:05:98:fc:33:29:82:8b: bb:a4:bb:d9:1a:49:b3:fd:64:2e:57:5e:ab:fb:77: 6c:25:4c:45:36:da:3b:9f:cc:62:9f:d9:ca:7e:7d: 09:9f:a5:72:02:7d:37:64:13:1b:1e:59:67:94:b5: 6b:9a:70:40:17:6f:c2:b1:b0:29:aa:6d:e4:40:37: 31:ce:3a:82:44:9b:7d:dc:21:87:b7:6c:03:c1:d3: e9:94:7a:6f:84:79:75:9f:3c:86:11:e8:1f:f9:11: ba:45:39:8d:fd:4e:c4:38:25:d9:2f:8e:ab:a4:27: 5b:37:c1:0e:79:c3:70:7e:d8:30:09:00:46:24:28: 12:bd:ba:ed:d2:a9:b2:82:90:2a:29:20:1c:60:a3: a5:55:57:61:a1:2e:05:18:61:02:1f:e2:f2:07:f3: 1b:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:23:1C:83:E0:4A:3B:70:8C:C6:B5:7D:7B:C7:03:07:5D:6C:DE:58 X509v3 Authority Key Identifier: keyid:39:9A:7B:1F:C4:20:7E:BA:07:07:A8:51:51:95:CC:68:E8:36:AB:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1025/8D7B9BF29D8411EF817E1420C4F9AE02/OZp7H8QgfroHB6hRUZXMaOg2q_g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OZp7H8QgfroHB6hRUZXMaOg2q_g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1025/8D7B9BF29D8411EF817E1420C4F9AE02/OZp7H8QgfroHB6hRUZXMaOg2q_g.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:df:c3:4b:55:78:bc:eb:ca:e1:a2:98:16:4b:a5:0b:9d:d3: a5:73:9c:9b:4f:00:47:41:08:ef:88:42:38:16:a2:e8:ba:25: f9:26:03:13:1f:42:64:32:cf:43:2a:80:04:f4:8a:5d:2a:f2: 61:0a:fa:65:58:7e:b5:37:fa:f9:7b:96:51:cb:51:62:3f:52: 87:e0:79:fe:79:34:b5:30:de:ba:67:f4:f8:a5:73:00:eb:03: a0:29:90:b2:87:71:8a:9f:c7:a7:a3:f5:96:e0:fb:b5:12:f1: 09:60:bd:ce:88:f1:4d:76:95:df:f9:7b:3a:10:23:a4:ae:57: cb:0e:d1:cb:7b:b5:26:b2:16:0c:cb:3a:bd:4e:e2:03:f1:7e: 7a:bc:bc:d1:25:52:7f:46:0e:fb:20:98:1f:dc:18:35:4d:7e: e1:b3:76:1b:a2:c0:9b:d7:a7:56:69:f5:36:58:4e:ad:b3:f6: 6b:ee:55:1c:d6:c6:6d:03:49:74:e1:dc:09:dd:44:99:bd:b1: 5c:d8:52:c5:0f:f5:60:d8:8b:0a:a6:4c:1f:8e:59:21:d5:a2: a0:c0:93:57:51:19:91:dc:e7:85:ae:55:10:65:4a:77:77:74: 1a:19:07:e9:2b:e3:6e:fc:1d:7d:fd:5d:a2:c1:40:0e:07:8c: 6f:de:e1:af -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAQIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzEwMjUxMTAvBgNVBAUTKDM5OUE3QjFGQzQyMDdFQkEwNzA3QTg1MTUxOTVDQzY4 RTgzNkFCRjgwHhcNMjYwMzAxMjM0MzA1WhcNMjYwMzA4MjM0MzA1WjAYMRYwFAYD VQQDEw02OWE0Y2YwYS1hYmZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoDIVVrwyoHNIeWzb1yATuGOTWBgpJGfoUH5eR0WzPNyts1TyTP7ETxe9IevG A0nLHWfeGJs5Ee0pKUcBIYbR72kD4JzEFjF6GPwes+E5rVJs3JbRBw9N/obD74hD 8LnbfAWY/DMpgou7pLvZGkmz/WQuV16r+3dsJUxFNto7n8xin9nKfn0Jn6VyAn03 ZBMbHllnlLVrmnBAF2/CsbApqm3kQDcxzjqCRJt93CGHt2wDwdPplHpvhHl1nzyG Eegf+RG6RTmN/U7EOCXZL46rpCdbN8EOecNwftgwCQBGJCgSvbrt0qmygpAqKSAc YKOlVVdhoS4FGGECH+LyB/MbuQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFA4jHIPg SjtwjMa1fXvHAwddbN5YMB8GA1UdIwQYMBaAFDmaex/EIH66BweoUVGVzGjoNqv4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTAyNS84RDdCOUJGMjlE ODQxMUVGODE3RTE0MjBDNEY5QUUwMi9PWnA3SDhRZ2Zyb0hCNmhSVVpYTWFPZzJx X2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL09acDdIOFFnZnJvSEI2aFJVWlhNYU9nMnFfZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MTAyNS84RDdCOUJGMjlEODQxMUVGODE3RTE0MjBDNEY5QUUwMi9PWnA3SDhRZ2Zy b0hCNmhSVVpYTWFPZzJxX2cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAS9/DS1V4vOvK4aKYFkulC53TpXOcm08AR0EI74hCOBai6Lol+SYDEx9CZDLP QyqABPSKXSryYQr6ZVh+tTf6+XuWUctRYj9Sh+B5/nk0tTDeumf0+KVzAOsDoCmQ sodxip/Hp6P1luD7tRLxCWC9zojxTXaV3/l7OhAjpK5Xyw7Ry3u1JrIWDMs6vU7i A/F+ery80SVSf0YO+yCYH9wYNU1+4bN2G6LAm9enVmn1NlhOrbP2a+5VHNbGbQNJ dOHcCd1Emb2xXNhSxQ/1YNiLCqZMH45ZIdWioMCTV1EZkdznha5VEGVKd3d0GhkH 6Svjbvwdff1dosFADgeMb97hrw== -----END CERTIFICATE-----Generated at Mon Mar 2 13:39:12 2026 by rpki-client