$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE620/3AA59ADC919011EE87FEE00BC4F9AE02/oWw_hyQag9GqVIDUKnT099HOXS4.mft File: oWw_hyQag9GqVIDUKnT099HOXS4.mft (raw, json) Hash identifier: 83k81ZRTg+XKfALZvCtSojE1zf9fFcjVQv4eMPbLK9A= Subject key identifier: F9:84:1E:5B:5A:43:D6:72:8E:85:B7:30:A8:15:53:74:85:B2:5B:30 Authority key identifier: A1:6C:3F:87:24:1A:83:D1:AA:54:80:D4:2A:74:F4:F7:D1:CE:5D:2E Certificate issuer: /CN=A91CE620/serialNumber=A16C3F87241A83D1AA5480D42A74F4F7D1CE5D2E Certificate serial: 01AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oWw_hyQag9GqVIDUKnT099HOXS4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE620/3AA59ADC919011EE87FEE00BC4F9AE02/oWw_hyQag9GqVIDUKnT099HOXS4.mft Manifest number: 01A5 Signing time: Sun 01 Mar 2026 23:30:50 +0000 Manifest this update: Sun 01 Mar 2026 23:30:46 +0000 Manifest next update: Sun 08 Mar 2026 23:30:46 +0000 Files and hashes: 1: oWw_hyQag9GqVIDUKnT099HOXS4.crl (hash: xwrZjWFTtJfaXZlyYmDi5L6LZBndAP7fxw6reYDvB1M=) 2: 1960E628919111EE9A03A712C4F9AE02.roa (hash: I602UprS0PuPZg6+swMqCR4Z7j5cFK9kxKEJsn7QaM4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE620/3AA59ADC919011EE87FEE00BC4F9AE02/oWw_hyQag9GqVIDUKnT099HOXS4.crl rsync://rpki.apnic.net/member_repository/A91CE620/3AA59ADC919011EE87FEE00BC4F9AE02/oWw_hyQag9GqVIDUKnT099HOXS4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oWw_hyQag9GqVIDUKnT099HOXS4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:30:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 426 (0x1aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE620, serialNumber=A16C3F87241A83D1AA5480D42A74F4F7D1CE5D2E Validity Not Before: Mar 1 23:30:46 2026 GMT Not After : Mar 8 23:30:46 2026 GMT Subject: CN=69a4cc29-1288 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:55:a8:7a:45:f9:c5:99:8b:80:91:4a:a9:a7: c7:63:33:c6:33:b4:d1:61:dd:4e:e6:7f:39:f8:83: 37:c7:7e:4c:51:c4:23:32:4d:2b:22:cf:7d:3e:32: 78:19:ff:e4:6c:9a:3a:b7:9f:d5:56:82:a3:28:71: be:0e:9e:73:c9:92:87:ed:a9:07:8e:65:a2:f0:db: 57:58:34:12:0c:21:00:6b:45:6e:31:1e:11:cc:f3: f6:87:2d:6f:0f:d8:6e:fd:7a:fe:a0:c6:b3:7a:6b: d6:d0:28:83:df:b6:5a:49:31:6c:8f:97:67:d5:df: 3d:40:f2:8f:5c:81:df:4c:5e:62:e5:21:ee:e3:a8: 45:0c:9b:0b:0c:2b:03:e1:e1:10:7f:81:51:8e:f1: e7:d4:bb:45:e2:f6:2f:1e:d0:ba:15:c0:88:c1:c6: e5:29:cc:1f:17:51:20:21:49:98:af:b0:20:fb:f0: d9:6e:5b:6b:b6:32:03:8c:ae:d2:af:20:7f:22:79: b1:97:83:be:70:8f:f6:9e:ec:b3:f1:14:2d:2c:08: ed:ee:d8:b3:4e:ae:d6:4d:10:33:af:c9:24:6a:76: ca:7d:bf:bc:17:21:e5:fd:99:59:0d:df:ec:2f:df: c6:a0:82:15:3a:ae:98:09:a8:6b:b2:23:c0:e2:2c: de:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:84:1E:5B:5A:43:D6:72:8E:85:B7:30:A8:15:53:74:85:B2:5B:30 X509v3 Authority Key Identifier: keyid:A1:6C:3F:87:24:1A:83:D1:AA:54:80:D4:2A:74:F4:F7:D1:CE:5D:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE620/3AA59ADC919011EE87FEE00BC4F9AE02/oWw_hyQag9GqVIDUKnT099HOXS4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oWw_hyQag9GqVIDUKnT099HOXS4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE620/3AA59ADC919011EE87FEE00BC4F9AE02/oWw_hyQag9GqVIDUKnT099HOXS4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:94:d0:d4:93:aa:20:7e:e6:f9:f5:65:49:c3:be:47:25:5a: c5:80:35:02:11:f1:e3:11:6a:6c:5f:61:87:04:b6:f4:f3:6f: d1:1e:25:2b:09:fc:59:78:39:f6:06:b5:68:6d:68:ea:72:ec: 4c:f2:83:93:fb:50:bc:68:e2:24:14:68:71:c4:f9:e1:73:a6: 12:33:24:49:a7:db:a8:3d:e8:01:56:26:ee:71:b5:e8:3e:fe: a8:76:c2:2d:a4:73:77:ce:7b:e5:ed:51:87:9d:f1:5c:b3:6d: 65:bf:15:da:ac:37:5d:24:f6:bd:7b:70:39:17:49:67:0a:4c: 1a:84:50:18:b7:d2:62:7d:02:8a:d8:11:ec:b6:db:0e:f5:0b: e7:dd:6c:b2:9b:e7:ba:be:54:22:c9:f8:d9:71:df:8a:d2:ef: 2c:07:b9:fd:00:0c:2b:6d:38:e3:5b:60:4c:7c:e1:76:c3:59: 2e:ef:36:65:bf:1d:06:76:f2:37:cc:d3:b8:32:bf:77:34:af: 41:8e:9f:e9:ff:a9:29:49:df:e7:e6:f7:39:01:c8:e4:1a:da: 5b:00:67:46:08:40:8b:ed:9c:12:cc:ae:b0:16:fe:7f:b5:75: eb:e1:98:f6:d3:1b:1b:d8:b1:04:bc:a6:cb:29:8d:d2:72:f7: 06:55:92:0c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAaowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U2MjAxMTAvBgNVBAUTKEExNkMzRjg3MjQxQTgzRDFBQTU0ODBENDJBNzRGNEY3 RDFDRTVEMkUwHhcNMjYwMzAxMjMzMDQ2WhcNMjYwMzA4MjMzMDQ2WjAYMRYwFAYD VQQDEw02OWE0Y2MyOS0xMjg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzFWoekX5xZmLgJFKqafHYzPGM7TRYd1O5n85+IM3x35MUcQjMk0rIs99PjJ4 Gf/kbJo6t5/VVoKjKHG+Dp5zyZKH7akHjmWi8NtXWDQSDCEAa0VuMR4RzPP2hy1v D9hu/Xr+oMazemvW0CiD37ZaSTFsj5dn1d89QPKPXIHfTF5i5SHu46hFDJsLDCsD 4eEQf4FRjvHn1LtF4vYvHtC6FcCIwcblKcwfF1EgIUmYr7Ag+/DZbltrtjIDjK7S ryB/Inmxl4O+cI/2nuyz8RQtLAjt7tizTq7WTRAzr8kkanbKfb+8FyHl/ZlZDd/s L9/GoIIVOq6YCahrsiPA4ize2QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPmEHlta Q9ZyjoW3MKgVU3SFslswMB8GA1UdIwQYMBaAFKFsP4ckGoPRqlSA1Cp09PfRzl0u MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTYyMC8zQUE1OUFEQzkx OTAxMUVFODdGRUUwMEJDNEY5QUUwMi9vV3dfaHlRYWc5R3FWSURVS25UMDk5SE9Y UzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29Xd19oeVFhZzlHcVZJRFVLblQwOTlIT1hTNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTYyMC8zQUE1OUFEQzkxOTAxMUVFODdGRUUwMEJDNEY5QUUwMi9vV3dfaHlRYWc5 R3FWSURVS25UMDk5SE9YUzQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAipTQ1JOqIH7m+fVlScO+RyVaxYA1AhHx4xFqbF9hhwS29PNv0R4lKwn8WXg5 9ga1aG1o6nLsTPKDk/tQvGjiJBRoccT54XOmEjMkSafbqD3oAVYm7nG16D7+qHbC LaRzd8575e1Rh53xXLNtZb8V2qw3XST2vXtwORdJZwpMGoRQGLfSYn0CitgR7Lbb DvUL591sspvnur5UIsn42XHfitLvLAe5/QAMK20441tgTHzhdsNZLu82Zb8dBnby N8zTuDK/dzSvQY6f6f+pKUnf5+b3OQHI5BraWwBnRghAi+2cEsyusBb+f7V16+GY 9tMbG9ixBLymyymN0nL3BlWSDA== -----END CERTIFICATE-----Generated at Mon Mar 2 18:34:56 2026 by rpki-client