$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.mft File: Oq-A6pfpm5UlszvBM1uwlcLSeKc.mft (raw, json) Hash identifier: 1eaLQpRFL0klZvh0XkI2ECK96UXXLNk7RUoeTFgXWYg= Subject key identifier: 10:E8:34:BC:C5:77:2A:D2:76:73:86:0E:CA:0D:97:F8:9C:6B:FB:04 Authority key identifier: 3A:AF:80:EA:97:E9:9B:95:25:B3:3B:C1:33:5B:B0:95:C2:D2:78:A7 Certificate issuer: /CN=A91C4F06/serialNumber=3AAF80EA97E99B9525B33BC1335BB095C2D278A7 Certificate serial: 35F6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.mft Manifest number: 3592 Signing time: Sat 28 Feb 2026 14:50:02 +0000 Manifest this update: Sat 28 Feb 2026 14:50:01 +0000 Manifest next update: Sat 07 Mar 2026 14:50:01 +0000 Files and hashes: 1: Oq-A6pfpm5UlszvBM1uwlcLSeKc.crl (hash: xlMJvXR0g8qKuDn5geXMZxfC4nrSdPG5qnooo4pbgDs=) 2: 5A318E06F6A111EBB6318B7EC4F9AE02.roa (hash: g01plAkOdieV4NPIP7/omEljoKEhVOT/UK1CPH/JcfQ=) 3: 1600DBF659C311E9A04B846FC4F9AE02.roa (hash: Rp2RG1hF6yB5oGrywiGWXTiVHqNq8sdwd+lk50rYEfg=) 4: 6F1612BE562511EB9470B150C4F9AE02.roa (hash: BrIt4ULt/nWqzogqGuBCD8Hp7rvk2fEABSPjkLFLvVw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.crl rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 14:50:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13814 (0x35f6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C4F06, serialNumber=3AAF80EA97E99B9525B33BC1335BB095C2D278A7 Validity Not Before: Feb 28 14:50:01 2026 GMT Not After : Mar 7 14:50:01 2026 GMT Subject: CN=69a3009a-a5df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:fc:b3:42:70:6d:15:36:03:a7:a7:4b:47:50: 70:09:93:e6:33:df:9f:98:74:85:49:f7:4d:1d:a3: 78:b6:45:14:f1:46:c0:b8:0c:f9:3a:27:72:14:61: 0e:63:0c:58:93:3b:d7:b5:84:e4:46:9e:7a:fc:3d: 66:cf:c8:e2:ed:86:9d:8f:d0:ad:11:bc:e3:fb:d8: ad:46:ec:ed:78:fb:62:34:65:d8:3c:13:48:19:2c: e9:b9:8b:3e:66:c4:52:ea:17:63:9d:26:ae:02:a8: 02:1c:7f:b8:aa:a2:07:4c:d5:b4:a6:9b:ec:a2:b4: 9b:45:db:e0:4c:61:af:be:d6:ca:50:0f:34:cf:aa: cc:83:ab:bc:a7:61:b0:75:57:48:c2:4c:4c:9b:01: 97:96:49:a9:2c:e2:5c:46:97:ad:7b:2b:98:aa:aa: d6:15:03:dd:8b:d4:10:27:58:1d:c9:f1:5f:3a:bf: 29:45:02:a3:25:db:13:ab:4f:81:ee:bf:5e:29:8b: 07:78:40:68:ce:d3:2d:43:e2:6c:47:49:39:0a:92: 42:2f:fc:51:93:8e:23:b5:93:b6:2f:31:a7:9d:9c: e2:99:62:ec:a3:44:b6:1a:19:54:f5:be:bd:76:fd: 7d:68:a8:2f:d7:7b:e2:3a:8b:2c:91:fc:f9:7d:db: 38:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:E8:34:BC:C5:77:2A:D2:76:73:86:0E:CA:0D:97:F8:9C:6B:FB:04 X509v3 Authority Key Identifier: keyid:3A:AF:80:EA:97:E9:9B:95:25:B3:3B:C1:33:5B:B0:95:C2:D2:78:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:c8:89:07:5d:73:83:3d:54:84:3f:8a:00:bf:57:eb:1c:bb: 69:b7:a2:f7:e6:3d:50:23:fa:d3:99:8f:92:a4:83:cd:12:5e: bf:17:eb:97:b8:1a:8c:7e:c8:d0:a8:ca:45:43:37:23:5c:e0: ab:33:ea:da:49:40:bb:06:d4:7a:27:2f:ae:1e:11:af:a9:5f: 4b:38:69:5c:68:7e:85:39:b2:ff:b5:da:86:ca:4e:b8:5e:c8: f2:0a:6a:5c:dc:0f:8c:65:f6:d9:51:a1:12:ad:1b:13:c6:44: e1:b6:1f:69:41:20:0b:cf:53:46:64:28:85:bf:90:49:db:de: 89:ab:30:19:14:92:6e:c1:97:26:f3:3f:8c:29:c5:f6:c6:1a: 01:23:22:1e:2f:f4:37:83:98:72:52:88:a7:11:a2:4c:84:a7: 17:12:85:77:e7:01:d3:c6:4a:67:ca:70:f4:c9:1d:2c:86:3d: e0:51:6f:9c:23:f8:98:7e:0d:2c:6e:25:01:0a:bd:f2:94:6b: a5:13:5d:c0:1b:2f:f8:d7:fb:38:f6:01:ad:26:f9:49:26:15: 9a:0e:e0:1a:20:22:9f:dc:36:3b:32:40:ff:a2:8d:5f:96:a9: 51:61:c8:28:57:36:28:bc:38:92:05:e6:9b:1e:4e:77:05:0b: 93:9e:ae:11 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNfYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzRGMDYxMTAvBgNVBAUTKDNBQUY4MEVBOTdFOTlCOTUyNUIzM0JDMTMzNUJCMDk1 QzJEMjc4QTcwHhcNMjYwMjI4MTQ1MDAxWhcNMjYwMzA3MTQ1MDAxWjAYMRYwFAYD VQQDDA02OWEzMDA5YS1hNWRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqPyzQnBtFTYDp6dLR1BwCZPmM9+fmHSFSfdNHaN4tkUU8UbAuAz5OidyFGEO YwxYkzvXtYTkRp56/D1mz8ji7Yadj9CtEbzj+9itRuztePtiNGXYPBNIGSzpuYs+ ZsRS6hdjnSauAqgCHH+4qqIHTNW0ppvsorSbRdvgTGGvvtbKUA80z6rMg6u8p2Gw dVdIwkxMmwGXlkmpLOJcRpeteyuYqqrWFQPdi9QQJ1gdyfFfOr8pRQKjJdsTq0+B 7r9eKYsHeEBoztMtQ+JsR0k5CpJCL/xRk44jtZO2LzGnnZzimWLso0S2GhlU9b69 dv19aKgv13viOosskfz5fds4ywIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBDoNLzF dyrSdnOGDsoNl/ica/sEMB8GA1UdIwQYMBaAFDqvgOqX6ZuVJbM7wTNbsJXC0nin MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNEYwNi83NkUxQzQ3RTFE OTUxMUUyQkU1OTVFN0QwOEIwMkNEMi9PcS1BNnBmcG01VWxzenZCTTF1d2xjTFNl S2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09xLUE2cGZwbTVVbHN6dkJNMXV3bGNMU2VLYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NEYwNi83NkUxQzQ3RTFEOTUxMUUyQkU1OTVFN0QwOEIwMkNEMi9PcS1BNnBmcG01 VWxzenZCTTF1d2xjTFNlS2MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEATMiJB11zgz1UhD+KAL9X6xy7abei9+Y9UCP605mPkqSDzRJevxfrl7gajH7I 0KjKRUM3I1zgqzPq2klAuwbUeicvrh4Rr6lfSzhpXGh+hTmy/7XahspOuF7I8gpq XNwPjGX22VGhEq0bE8ZE4bYfaUEgC89TRmQohb+QSdveiaswGRSSbsGXJvM/jCnF 9sYaASMiHi/0N4OYclKIpxGiTISnFxKFd+cB08ZKZ8pw9MkdLIY94FFvnCP4mH4N LG4lAQq98pRrpRNdwBsv+Nf7OPYBrSb5SSYVmg7gGiAin9w2OzJA/6KNX5apUWHI KFc2KLw4kgXmmx5OdwULk56uEQ== -----END CERTIFICATE-----Generated at Mon Mar 2 00:24:52 2026 by rpki-client