$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9C03/37D18A1639A311F0BAD72C3CC4F9AE02/ok2WODNZy0lmoVuakGkT61RWZXs.mft File: ok2WODNZy0lmoVuakGkT61RWZXs.mft (raw, json) Hash identifier: CAwuldBOzAonIM5ODcwmP+cTktjBL7tPlwAPbbS7djA= Subject key identifier: ED:BD:A3:EC:0E:62:57:63:E1:09:EA:E5:C0:56:52:A4:C0:8C:C9:B4 Authority key identifier: A2:4D:96:38:33:59:CB:49:66:A1:5B:9A:90:69:13:EB:54:56:65:7B Certificate issuer: /CN=A91C9C03/serialNumber=A24D96383359CB4966A15B9A906913EB5456657B Certificate serial: 9F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ok2WODNZy0lmoVuakGkT61RWZXs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9C03/37D18A1639A311F0BAD72C3CC4F9AE02/ok2WODNZy0lmoVuakGkT61RWZXs.mft Manifest number: 98 Signing time: Sun 01 Mar 2026 08:48:13 +0000 Manifest this update: Sun 01 Mar 2026 08:48:13 +0000 Manifest next update: Sun 08 Mar 2026 08:48:13 +0000 Files and hashes: 1: ok2WODNZy0lmoVuakGkT61RWZXs.crl (hash: QVfx8HNXTmEuVrpkJGxizOL/3Cxz1VR7It6+QDQ9+nM=) 2: 19088D04716211F0A531A51FC4F9AE02.roa (hash: oHwH6kQQYXdRLzAcniMfc3jPRXLCLgsiuxhNwFmn1Is=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9C03/37D18A1639A311F0BAD72C3CC4F9AE02/ok2WODNZy0lmoVuakGkT61RWZXs.crl rsync://rpki.apnic.net/member_repository/A91C9C03/37D18A1639A311F0BAD72C3CC4F9AE02/ok2WODNZy0lmoVuakGkT61RWZXs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ok2WODNZy0lmoVuakGkT61RWZXs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 08:48:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 159 (0x9f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9C03, serialNumber=A24D96383359CB4966A15B9A906913EB5456657B Validity Not Before: Mar 1 08:48:13 2026 GMT Not After : Mar 8 08:48:13 2026 GMT Subject: CN=69a3fd4d-ba44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:19:32:3b:65:17:00:88:9a:08:75:66:5a:21: 7c:48:98:72:21:05:6a:02:fe:c6:8b:d5:59:48:16: 13:34:88:99:16:30:62:c9:46:e4:36:17:16:f6:5a: 47:b1:2e:f0:a5:8f:13:5d:b2:1e:14:1b:f7:27:a9: 14:97:ed:ee:3f:0d:40:e4:cc:e8:9e:78:02:50:30: 67:c8:9b:0a:00:5e:de:35:b0:89:0f:be:81:a8:81: b9:65:76:67:81:4f:e5:57:d8:70:7c:20:fa:79:e1: 8e:71:10:53:0a:c7:ba:fc:d0:b0:13:96:93:4d:23: f7:24:a6:fa:53:c6:cd:b9:cc:c4:b9:f4:04:e9:8f: 09:e3:36:15:0b:c3:7d:d1:d5:88:e2:56:19:27:35: 25:98:06:eb:63:2e:40:a4:73:b5:15:61:e2:5a:cc: b9:e3:db:3c:fa:59:0c:3c:cb:0b:c4:af:3a:f6:70: f1:07:c2:21:f9:bb:fc:df:d2:10:f0:67:48:35:33: 10:34:a5:a2:b5:31:73:96:b4:41:ec:7a:e4:ee:6c: f7:41:cb:ef:3d:bf:41:dc:3a:8b:90:e8:9e:e0:f5: 5f:70:67:03:e2:3c:86:2b:ca:c0:02:bd:98:96:9f: 26:2f:87:d6:53:c7:e5:91:88:1c:80:0e:8d:2a:22: 18:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:BD:A3:EC:0E:62:57:63:E1:09:EA:E5:C0:56:52:A4:C0:8C:C9:B4 X509v3 Authority Key Identifier: keyid:A2:4D:96:38:33:59:CB:49:66:A1:5B:9A:90:69:13:EB:54:56:65:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9C03/37D18A1639A311F0BAD72C3CC4F9AE02/ok2WODNZy0lmoVuakGkT61RWZXs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ok2WODNZy0lmoVuakGkT61RWZXs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9C03/37D18A1639A311F0BAD72C3CC4F9AE02/ok2WODNZy0lmoVuakGkT61RWZXs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:90:77:c9:08:1f:fb:b2:1b:dd:c0:a7:ec:f4:61:26:0a:08: 9a:49:7a:e4:48:9b:27:f2:17:2d:97:b0:07:f8:b0:66:6c:cc: 72:9b:02:d2:fd:4b:e9:c2:72:39:d8:7f:5b:99:ff:6d:e6:0d: a9:21:47:2c:6f:0a:50:b8:db:74:93:9f:02:47:d2:d3:5a:3a: 95:91:1b:3d:c4:38:26:63:99:c3:78:0d:a9:fc:43:b7:4e:d9: 16:8f:cb:5a:c7:f2:97:eb:d6:93:cd:b7:db:2b:94:f3:3b:c9: 0e:15:1b:a1:8f:cf:60:85:f6:88:c3:04:ef:80:50:50:9c:34: fd:46:91:35:1d:48:a5:03:8f:9f:19:0a:4e:fd:e5:c7:a5:88: 74:5f:f3:c7:0c:07:73:27:74:6d:90:01:c8:ca:31:ff:5a:a9: 0b:77:cf:d6:80:a3:2c:3d:6e:21:4f:15:5d:cc:3e:e0:9b:52: d4:71:77:20:59:04:fe:1d:f0:fb:e9:28:49:64:52:c0:1c:b1: 38:36:b7:89:08:84:50:50:57:bf:8e:e3:83:bc:65:f0:c2:50: 33:5e:53:6f:39:e6:1f:1d:53:8e:c4:da:91:0c:3f:fc:4d:8e: 70:fe:ff:32:5f:56:79:dc:6e:12:9b:20:30:e3:08:8e:43:a8: 8d:02:01:c9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAJ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzlDMDMxMTAvBgNVBAUTKEEyNEQ5NjM4MzM1OUNCNDk2NkExNUI5QTkwNjkxM0VC NTQ1NjY1N0IwHhcNMjYwMzAxMDg0ODEzWhcNMjYwMzA4MDg0ODEzWjAYMRYwFAYD VQQDEw02OWEzZmQ0ZC1iYTQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxBkyO2UXAIiaCHVmWiF8SJhyIQVqAv7Gi9VZSBYTNIiZFjBiyUbkNhcW9lpH sS7wpY8TXbIeFBv3J6kUl+3uPw1A5MzonngCUDBnyJsKAF7eNbCJD76BqIG5ZXZn gU/lV9hwfCD6eeGOcRBTCse6/NCwE5aTTSP3JKb6U8bNuczEufQE6Y8J4zYVC8N9 0dWI4lYZJzUlmAbrYy5ApHO1FWHiWsy549s8+lkMPMsLxK869nDxB8Ih+bv839IQ 8GdINTMQNKWitTFzlrRB7Hrk7mz3QcvvPb9B3DqLkOie4PVfcGcD4jyGK8rAAr2Y lp8mL4fWU8flkYgcgA6NKiIYDwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFO29o+wO Yldj4Qnq5cBWUqTAjMm0MB8GA1UdIwQYMBaAFKJNljgzWctJZqFbmpBpE+tUVmV7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOUMwMy8zN0QxOEExNjM5 QTMxMUYwQkFENzJDM0NDNEY5QUUwMi9vazJXT0ROWnkwbG1vVnVha0drVDYxUlda WHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29rMldPRE5aeTBsbW9WdWFrR2tUNjFSV1pYcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OUMwMy8zN0QxOEExNjM5QTMxMUYwQkFENzJDM0NDNEY5QUUwMi9vazJXT0ROWnkw bG1vVnVha0drVDYxUldaWHMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEATpB3yQgf+7Ib3cCn7PRhJgoImkl65EibJ/IXLZewB/iwZmzMcpsC0v1L6cJy Odh/W5n/beYNqSFHLG8KULjbdJOfAkfS01o6lZEbPcQ4JmOZw3gNqfxDt07ZFo/L Wsfyl+vWk8232yuU8zvJDhUboY/PYIX2iMME74BQUJw0/UaRNR1IpQOPnxkKTv3l x6WIdF/zxwwHcyd0bZAByMox/1qpC3fP1oCjLD1uIU8VXcw+4JtS1HF3IFkE/h3w ++koSWRSwByxODa3iQiEUFBXv47jg7xl8MJQM15TbznmHx1TjsTakQw//E2OcP7/ Ml9WedxuEpsgMOMIjkOojQIByQ== -----END CERTIFICATE-----Generated at Mon Mar 2 00:38:16 2026 by rpki-client