$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1621/35EDA92ECF0D11EF92F1EC36C4F9AE02/oCcZWkgg89cmSk1X7pqdTCoQySM.mft File: oCcZWkgg89cmSk1X7pqdTCoQySM.mft (raw, json) Hash identifier: M458wrgDyMnoiycXDTATCCd9zhMZN6VkhUqyANiYWkI= Subject key identifier: B3:35:A9:82:AA:06:53:0E:84:12:BC:26:4B:00:BD:CE:C9:32:C6:8A Authority key identifier: A0:27:19:5A:48:20:F3:D7:26:4A:4D:57:EE:9A:9D:4C:2A:10:C9:23 Certificate issuer: /CN=A91C1621/serialNumber=A027195A4820F3D7264A4D57EE9A9D4C2A10C923 Certificate serial: E1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oCcZWkgg89cmSk1X7pqdTCoQySM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1621/35EDA92ECF0D11EF92F1EC36C4F9AE02/oCcZWkgg89cmSk1X7pqdTCoQySM.mft Manifest number: DD Signing time: Sat 28 Feb 2026 14:16:19 +0000 Manifest this update: Sat 28 Feb 2026 14:16:19 +0000 Manifest next update: Sat 07 Mar 2026 14:16:19 +0000 Files and hashes: 1: oCcZWkgg89cmSk1X7pqdTCoQySM.crl (hash: vIYvYXK3qiBhHYrzic60f0nCCh289H4tnI45Eln7J2A=) 2: 81E4D4A2053011F09C73001FC4F9AE02.roa (hash: BG8Qcl3ND1x5a+MIHh/xpmjjxkGhO2Fu+dtsOmd2KRo=) 3: 8AE793B2E9E311F0A43C19FF656F56BC.roa (hash: +D9ta68UqOf0mI1P55Q22PhToE48yax/TkcASp/oTO0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1621/35EDA92ECF0D11EF92F1EC36C4F9AE02/oCcZWkgg89cmSk1X7pqdTCoQySM.crl rsync://rpki.apnic.net/member_repository/A91C1621/35EDA92ECF0D11EF92F1EC36C4F9AE02/oCcZWkgg89cmSk1X7pqdTCoQySM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oCcZWkgg89cmSk1X7pqdTCoQySM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 14:16:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 225 (0xe1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1621, serialNumber=A027195A4820F3D7264A4D57EE9A9D4C2A10C923 Validity Not Before: Feb 28 14:16:19 2026 GMT Not After : Mar 7 14:16:19 2026 GMT Subject: CN=69a2f8b3-894d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:ae:70:c7:eb:12:b0:4d:e3:03:32:51:12:47: 71:8a:a3:51:e0:d9:ba:65:e2:e9:47:2f:33:49:1e: 0c:0e:a1:a6:c5:5c:d7:20:01:84:ff:51:84:0a:32: 9d:67:f5:a8:a9:25:bf:e4:c5:ea:46:5a:11:b4:cb: 0a:89:70:13:ed:1f:77:06:e3:53:cb:39:5a:79:b3: 70:7a:02:aa:5a:ed:e8:ca:a3:4b:df:f2:d2:b4:ef: ca:72:34:f6:90:bf:ac:76:1e:f0:a8:45:02:04:39: d1:ad:e0:04:01:b4:c4:d3:44:8d:fd:37:6b:31:b1: f3:9d:c1:81:21:8a:3c:1b:62:ca:5d:1a:87:f2:ff: b4:32:33:e3:d4:ed:bb:b0:e3:ec:94:9e:59:06:d8: 27:96:b3:15:c2:8d:14:d1:fd:2e:73:e3:ee:b7:13: f7:93:33:64:d6:47:df:71:a8:3f:ec:d3:ca:83:32: 3a:43:97:08:7d:0f:6d:ce:bb:c2:63:7b:68:ef:cc: a7:74:72:98:fe:f7:4f:8b:23:28:95:3a:79:3f:62: a2:4c:03:be:21:eb:51:40:32:cf:f3:36:c7:2d:5b: 6f:3a:38:bd:29:87:27:e2:e0:82:d4:f6:d2:35:30: e1:d8:57:db:04:4a:e2:7f:38:31:ab:5d:fa:1f:e5: a1:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:35:A9:82:AA:06:53:0E:84:12:BC:26:4B:00:BD:CE:C9:32:C6:8A X509v3 Authority Key Identifier: keyid:A0:27:19:5A:48:20:F3:D7:26:4A:4D:57:EE:9A:9D:4C:2A:10:C9:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1621/35EDA92ECF0D11EF92F1EC36C4F9AE02/oCcZWkgg89cmSk1X7pqdTCoQySM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oCcZWkgg89cmSk1X7pqdTCoQySM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1621/35EDA92ECF0D11EF92F1EC36C4F9AE02/oCcZWkgg89cmSk1X7pqdTCoQySM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:1f:b9:53:f0:5a:0a:33:8d:5e:7a:e3:f5:f5:0d:f1:65:e9: f5:a7:e6:f1:c6:14:9c:35:88:3e:89:18:0b:15:fe:38:67:3e: 66:45:16:2c:92:6e:be:7d:51:5d:3b:96:8f:c2:12:cc:22:27: ce:25:df:30:8b:65:50:cc:95:1e:83:a8:7d:af:58:ba:8a:25: 43:c5:32:cc:c6:55:77:13:88:64:1b:05:29:13:d8:58:77:84: dd:60:32:d9:f1:c8:29:48:fc:d6:59:3b:ee:5c:0f:98:5e:12: fe:af:95:a9:c3:d6:94:3d:43:f2:fa:e0:5d:89:8f:50:e9:04: d9:9b:94:4c:53:d1:cf:d9:4f:a6:5b:a4:5f:80:55:11:95:65: 7e:40:60:0e:d3:25:42:73:77:fa:f7:db:dc:a2:54:1e:01:80: 25:1a:a8:25:6c:c9:ea:d4:96:00:52:71:a2:e3:57:7b:db:90: d2:66:52:bb:7e:bf:7b:f9:e0:d9:1a:b3:d0:3e:e3:05:7c:7b: c5:11:c7:5e:42:46:9e:ea:ec:35:c9:71:f2:b5:2f:71:39:d5: a9:5f:46:e7:e9:b1:1e:80:c7:ed:08:9f:9f:8a:77:fb:76:32: 52:29:c7:c9:0c:f9:79:ce:9a:d9:b3:69:a3:48:a1:48:ec:24: 61:69:2f:db -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAOEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzE2MjExMTAvBgNVBAUTKEEwMjcxOTVBNDgyMEYzRDcyNjRBNEQ1N0VFOUE5RDRD MkExMEM5MjMwHhcNMjYwMjI4MTQxNjE5WhcNMjYwMzA3MTQxNjE5WjAYMRYwFAYD VQQDDA02OWEyZjhiMy04OTRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8q5wx+sSsE3jAzJREkdxiqNR4Nm6ZeLpRy8zSR4MDqGmxVzXIAGE/1GECjKd Z/WoqSW/5MXqRloRtMsKiXAT7R93BuNTyzlaebNwegKqWu3oyqNL3/LStO/KcjT2 kL+sdh7wqEUCBDnRreAEAbTE00SN/TdrMbHzncGBIYo8G2LKXRqH8v+0MjPj1O27 sOPslJ5ZBtgnlrMVwo0U0f0uc+PutxP3kzNk1kffcag/7NPKgzI6Q5cIfQ9tzrvC Y3to78yndHKY/vdPiyMolTp5P2KiTAO+IetRQDLP8zbHLVtvOji9KYcn4uCC1PbS NTDh2FfbBErifzgxq136H+Wh3wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLM1qYKq BlMOhBK8JksAvc7JMsaKMB8GA1UdIwQYMBaAFKAnGVpIIPPXJkpNV+6anUwqEMkj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTYyMS8zNUVEQTkyRUNG MEQxMUVGOTJGMUVDMzZDNEY5QUUwMi9vQ2NaV2tnZzg5Y21TazFYN3BxZFRDb1F5 U00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL29DY1pXa2dnODljbVNrMVg3cHFkVENvUXlTTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MTYyMS8zNUVEQTkyRUNGMEQxMUVGOTJGMUVDMzZDNEY5QUUwMi9vQ2NaV2tnZzg5 Y21TazFYN3BxZFRDb1F5U00ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAih+5U/BaCjONXnrj9fUN8WXp9afm8cYUnDWIPokYCxX+OGc+ZkUWLJJuvn1R XTuWj8ISzCInziXfMItlUMyVHoOofa9YuoolQ8UyzMZVdxOIZBsFKRPYWHeE3WAy 2fHIKUj81lk77lwPmF4S/q+VqcPWlD1D8vrgXYmPUOkE2ZuUTFPRz9lPplukX4BV EZVlfkBgDtMlQnN3+vfb3KJUHgGAJRqoJWzJ6tSWAFJxouNXe9uQ0mZSu36/e/ng 2Rqz0D7jBXx7xRHHXkJGnursNclx8rUvcTnVqV9G5+mxHoDH7Qifn4p3+3YyUinH yQz5ec6a2bNpo0ihSOwkYWkv2w== -----END CERTIFICATE-----Generated at Mon Mar 2 02:12:23 2026 by rpki-client