$ rpki-client -vvf rpki.apnic.net/member_repository/A91CAB4E/2CA47066997011E8861DD057C4F9AE02/OhSUJb4yhdYRSwH2wvyIoXr_S-w.mft File: OhSUJb4yhdYRSwH2wvyIoXr_S-w.mft (raw, json) Hash identifier: Kl8KMPDVrvm5UoCY7IjlnRGhG7XVHJXMhi8L8WdcEbs= Subject key identifier: 0B:EE:64:58:B3:EE:FD:C5:7E:9B:2B:57:27:A7:6C:DC:ED:05:01:4E Authority key identifier: 3A:14:94:25:BE:32:85:D6:11:4B:01:F6:C2:FC:88:A1:7A:FF:4B:EC Certificate issuer: /CN=A91CAB4E/serialNumber=3A149425BE3285D6114B01F6C2FC88A17AFF4BEC Certificate serial: 141E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhSUJb4yhdYRSwH2wvyIoXr_S-w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CAB4E/2CA47066997011E8861DD057C4F9AE02/OhSUJb4yhdYRSwH2wvyIoXr_S-w.mft Manifest number: 1412 Signing time: Mon 02 Mar 2026 02:24:10 +0000 Manifest this update: Mon 02 Mar 2026 02:24:08 +0000 Manifest next update: Mon 09 Mar 2026 02:24:08 +0000 Files and hashes: 1: OhSUJb4yhdYRSwH2wvyIoXr_S-w.crl (hash: Ac/6aSRLSEKXXhtCmjEl9tUaliyrP0/hHeYgrjXvGFo=) 2: 7F662C72997011E8B0FDEF57C4F9AE02.roa (hash: 3poz9WeE/VQCro0QqBaX5PdACtIqSQyu6Jy9OGfa5do=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CAB4E/2CA47066997011E8861DD057C4F9AE02/OhSUJb4yhdYRSwH2wvyIoXr_S-w.crl rsync://rpki.apnic.net/member_repository/A91CAB4E/2CA47066997011E8861DD057C4F9AE02/OhSUJb4yhdYRSwH2wvyIoXr_S-w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhSUJb4yhdYRSwH2wvyIoXr_S-w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:24:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5150 (0x141e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CAB4E, serialNumber=3A149425BE3285D6114B01F6C2FC88A17AFF4BEC Validity Not Before: Mar 2 02:24:08 2026 GMT Not After : Mar 9 02:24:08 2026 GMT Subject: CN=69a4f4ca-c31f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:ca:18:4f:9c:71:ef:0c:2e:30:fb:dc:6a:85: 5c:35:7c:42:f1:b2:01:4a:da:8d:4e:a8:e4:8e:9e: b9:75:b5:32:b9:1d:0d:4c:9c:91:53:7c:bf:3c:86: a1:a8:2d:5c:0f:ec:85:a8:fd:89:a5:07:4e:19:4f: 8a:74:dc:31:aa:0f:58:73:d3:22:f6:7b:3e:ad:2b: 0c:7a:7c:e4:a0:f2:69:39:8a:81:65:af:a1:1b:c3: b1:26:a2:dd:29:1e:68:6a:d0:eb:23:73:21:f6:f5: e9:7b:5d:25:ef:05:7d:d3:02:c6:e3:5d:69:72:8f: f2:d6:b7:66:0a:bf:e1:3d:cb:c1:c8:53:63:f4:86: 70:de:ff:a5:18:78:cb:6c:7b:b0:a7:20:76:5a:75: ad:76:94:da:4e:02:dd:0e:96:ca:7a:73:6f:3b:ee: ff:f2:07:04:1e:e5:64:82:0e:3d:4f:d4:16:bc:83: 93:27:8e:11:da:b2:00:b7:41:27:60:41:d8:04:6a: e7:80:19:49:fd:b8:43:6f:34:02:f2:22:a1:84:ce: d2:16:d8:3a:22:40:75:a9:03:e6:8d:78:27:0d:63: 0b:40:42:69:ba:a1:dd:95:6a:e7:8b:ff:86:9d:17: 8c:49:1c:fe:c9:d5:36:30:ec:71:22:e5:98:06:39: 49:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:EE:64:58:B3:EE:FD:C5:7E:9B:2B:57:27:A7:6C:DC:ED:05:01:4E X509v3 Authority Key Identifier: keyid:3A:14:94:25:BE:32:85:D6:11:4B:01:F6:C2:FC:88:A1:7A:FF:4B:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CAB4E/2CA47066997011E8861DD057C4F9AE02/OhSUJb4yhdYRSwH2wvyIoXr_S-w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhSUJb4yhdYRSwH2wvyIoXr_S-w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CAB4E/2CA47066997011E8861DD057C4F9AE02/OhSUJb4yhdYRSwH2wvyIoXr_S-w.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:c2:98:61:b2:da:2d:fa:66:fe:06:3a:3d:f0:9b:7f:76:f1: 6b:e5:f5:0e:ff:79:bd:e3:7e:f0:38:af:81:b3:6b:5e:f5:1e: ec:32:af:0d:2e:27:31:a5:f4:73:39:85:37:b3:6d:62:bc:cb: 5e:d5:07:56:a1:68:f5:9f:20:c2:eb:83:87:03:5d:9c:d1:d7: 01:f9:79:d7:61:f5:0f:ff:76:24:e8:da:04:8f:ec:7a:5c:33: de:ad:7e:2b:1d:7d:15:2b:3a:e9:48:50:a0:2e:e6:be:b0:57: 29:86:59:2f:4b:09:fa:d2:4e:46:97:11:cd:16:28:8b:c7:f3: 92:7e:3f:b0:31:64:70:7a:d5:81:e7:a6:51:4c:c7:4d:01:ab: d9:a7:58:98:e5:f5:f5:a5:e0:d3:a3:bc:04:63:75:54:17:48: 42:b0:05:d8:c2:d8:df:5e:d7:b5:c5:78:0f:59:d0:a9:c4:bb: 86:e1:c2:b6:27:50:ff:06:a1:f3:93:34:27:1f:7b:2b:7b:74: 73:b9:b1:33:80:38:5d:39:ef:44:3e:f4:23:1d:4f:55:7c:ad: fb:5c:ff:d9:19:df:48:57:e7:6d:d0:bf:ab:19:2c:6a:0f:c7: 9a:06:df:b1:d8:9c:68:b9:ad:5b:43:f8:8a:d0:3a:d0:0c:8c: 93:35:57:64 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICFB4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0FCNEUxMTAvBgNVBAUTKDNBMTQ5NDI1QkUzMjg1RDYxMTRCMDFGNkMyRkM4OEEx N0FGRjRCRUMwHhcNMjYwMzAyMDIyNDA4WhcNMjYwMzA5MDIyNDA4WjAYMRYwFAYD VQQDEw02OWE0ZjRjYS1jMzFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu8oYT5xx7wwuMPvcaoVcNXxC8bIBStqNTqjkjp65dbUyuR0NTJyRU3y/PIah qC1cD+yFqP2JpQdOGU+KdNwxqg9Yc9Mi9ns+rSsMenzkoPJpOYqBZa+hG8OxJqLd KR5oatDrI3Mh9vXpe10l7wV90wLG411pco/y1rdmCr/hPcvByFNj9IZw3v+lGHjL bHuwpyB2WnWtdpTaTgLdDpbKenNvO+7/8gcEHuVkgg49T9QWvIOTJ44R2rIAt0En YEHYBGrngBlJ/bhDbzQC8iKhhM7SFtg6IkB1qQPmjXgnDWMLQEJpuqHdlWrni/+G nReMSRz+ydU2MOxxIuWYBjlJXQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAvuZFiz 7v3FfpsrVyenbNztBQFOMB8GA1UdIwQYMBaAFDoUlCW+MoXWEUsB9sL8iKF6/0vs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQUI0RS8yQ0E0NzA2Njk5 NzAxMUU4ODYxREQwNTdDNEY5QUUwMi9PaFNVSmI0eWhkWVJTd0gyd3Z5SW9Ycl9T LXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09oU1VKYjR5aGRZUlN3SDJ3dnlJb1hyX1Mtdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QUI0RS8yQ0E0NzA2Njk5NzAxMUU4ODYxREQwNTdDNEY5QUUwMi9PaFNVSmI0eWhk WVJTd0gyd3Z5SW9Ycl9TLXcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAlcKYYbLaLfpm/gY6PfCbf3bxa+X1Dv95veN+8DivgbNrXvUe7DKvDS4nMaX0 czmFN7NtYrzLXtUHVqFo9Z8gwuuDhwNdnNHXAfl512H1D/92JOjaBI/selwz3q1+ Kx19FSs66UhQoC7mvrBXKYZZL0sJ+tJORpcRzRYoi8fzkn4/sDFkcHrVgeemUUzH TQGr2adYmOX19aXg06O8BGN1VBdIQrAF2MLY317XtcV4D1nQqcS7huHCtidQ/wah 85M0Jx97K3t0c7mxM4A4XTnvRD70Ix1PVXyt+1z/2RnfSFfnbdC/qxksag/Hmgbf sdicaLmtW0P4itA60AyMkzVXZA== -----END CERTIFICATE-----Generated at Mon Mar 2 11:47:22 2026 by rpki-client