$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.mft File: oZOMkSrC9KlYuT2vj0snIBWw2Ng.mft (raw, json) Hash identifier: cpY68Lx3OTezyImGvF+YPfz+tRAAST7uCAP1N+/BBjY= Subject key identifier: C1:77:CD:03:AD:08:8B:46:E0:B0:BC:37:A8:69:5B:06:DB:FE:BC:9B Authority key identifier: A1:93:8C:91:2A:C2:F4:A9:58:B9:3D:AF:8F:4B:27:20:15:B0:D8:D8 Certificate issuer: /CN=A91D9D8B/serialNumber=A1938C912AC2F4A958B93DAF8F4B272015B0D8D8 Certificate serial: 0262 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oZOMkSrC9KlYuT2vj0snIBWw2Ng.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.mft Manifest number: 025A Signing time: Sun 01 Mar 2026 23:40:22 +0000 Manifest this update: Sun 01 Mar 2026 23:40:21 +0000 Manifest next update: Sun 08 Mar 2026 23:40:21 +0000 Files and hashes: 1: oZOMkSrC9KlYuT2vj0snIBWw2Ng.crl (hash: vWHeV1H72GwWrCOca97Q/uJ1BbojflL7HHvAX/yQaZ8=) 2: 95C4C7AA7F7911ED9C1EAE19C4F9AE02.roa (hash: Ouit03LRtJZqOFfBSglxXn5xGezeH2cCBVrluC7GA64=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.crl rsync://rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oZOMkSrC9KlYuT2vj0snIBWw2Ng.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:40:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 610 (0x262) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9D8B, serialNumber=A1938C912AC2F4A958B93DAF8F4B272015B0D8D8 Validity Not Before: Mar 1 23:40:21 2026 GMT Not After : Mar 8 23:40:21 2026 GMT Subject: CN=69a4ce66-61b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:f2:3c:a3:e2:fd:72:8e:aa:b5:07:64:a0:13: 85:17:fc:97:c9:ef:a9:6c:e9:75:da:fd:5e:e6:95: 58:83:e0:50:45:da:c6:de:24:7e:b2:d4:3b:fd:0c: 26:44:30:cd:56:f9:95:c6:b0:c8:03:2e:3f:ae:e0: 6e:f0:9c:a1:3c:69:ec:b2:6a:b5:a0:79:78:2d:78: 7c:79:1e:e0:b6:7b:b2:ed:81:92:1e:bd:e3:a9:3a: 16:a0:6f:1d:bd:d5:07:a4:71:cf:ab:6d:fa:b8:32: d3:be:cd:5a:a6:37:17:2a:ed:01:a0:ed:c9:c3:6f: 62:2f:29:6b:fc:c2:27:df:8a:e3:bd:76:c6:3c:a4: ac:43:aa:bb:93:25:2b:96:51:fe:8b:16:7a:f3:44: 8e:ea:dc:42:da:cf:46:db:ca:25:7a:7d:08:c4:3d: 52:bd:bf:15:5d:ab:98:be:f8:18:c3:68:91:a7:25: a7:32:48:89:28:42:42:d2:66:9f:3e:c9:c4:d2:76: 91:1b:cd:ce:e5:c8:6e:1e:fd:f4:e4:2e:9d:d3:88: 39:bf:c1:39:d6:2f:77:90:47:1c:e3:a3:be:4a:67: c9:88:af:b9:73:96:51:e2:88:4c:96:85:25:26:63: 21:47:a3:7a:40:9b:01:93:9b:5c:20:d5:4b:51:f5: 7e:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:77:CD:03:AD:08:8B:46:E0:B0:BC:37:A8:69:5B:06:DB:FE:BC:9B X509v3 Authority Key Identifier: keyid:A1:93:8C:91:2A:C2:F4:A9:58:B9:3D:AF:8F:4B:27:20:15:B0:D8:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oZOMkSrC9KlYuT2vj0snIBWw2Ng.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:df:64:88:9d:72:05:26:3f:2a:c5:05:25:3f:c7:a3:f4:b1: 72:5b:64:cf:41:9f:a5:fe:0e:85:8f:10:1d:b7:5f:6c:05:4e: ce:de:28:94:c5:02:ab:5a:15:b2:5f:7b:e4:dd:96:44:8e:1b: 1a:59:2d:38:86:b5:2c:74:53:53:59:7b:db:e3:ca:38:4b:47: b0:f5:4a:55:90:ea:91:c4:4a:6b:b7:67:82:41:95:28:a5:66: 36:57:3b:4a:e5:62:62:88:d8:19:f3:ca:ee:ca:59:86:04:26: 33:c8:46:37:0f:fc:d6:1e:1c:36:49:03:b0:1a:1b:f6:58:99: 6a:65:62:cd:dc:ce:dc:a9:2a:4b:65:01:8a:66:04:04:17:e5: d1:40:c5:62:c5:99:e4:ad:d5:9c:18:de:4b:72:b2:c3:d0:96: 3c:61:33:50:c8:31:08:69:49:be:33:62:f3:c4:7d:47:34:1f: 3b:cf:47:fb:ed:ba:41:10:8d:44:7f:8d:b9:79:7e:d5:1c:a6: 3c:50:81:bf:05:81:8d:60:55:40:38:a3:4b:3d:4b:37:14:dd: 70:33:a1:65:3a:8c:f1:f5:8a:2e:c7:a9:c5:00:40:64:56:62: 9d:8f:1a:a3:4d:5a:d0:c5:cf:5f:c2:30:db:74:aa:a3:a1:8e: ea:f2:c7:41 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAmIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDlEOEIxMTAvBgNVBAUTKEExOTM4QzkxMkFDMkY0QTk1OEI5M0RBRjhGNEIyNzIw MTVCMEQ4RDgwHhcNMjYwMzAxMjM0MDIxWhcNMjYwMzA4MjM0MDIxWjAYMRYwFAYD VQQDEw02OWE0Y2U2Ni02MWI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArPI8o+L9co6qtQdkoBOFF/yXye+pbOl12v1e5pVYg+BQRdrG3iR+stQ7/Qwm RDDNVvmVxrDIAy4/ruBu8JyhPGnssmq1oHl4LXh8eR7gtnuy7YGSHr3jqToWoG8d vdUHpHHPq236uDLTvs1apjcXKu0BoO3Jw29iLylr/MIn34rjvXbGPKSsQ6q7kyUr llH+ixZ680SO6txC2s9G28olen0IxD1Svb8VXauYvvgYw2iRpyWnMkiJKEJC0maf PsnE0naRG83O5chuHv305C6d04g5v8E51i93kEcc46O+SmfJiK+5c5ZR4ohMloUl JmMhR6N6QJsBk5tcINVLUfV+fQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMF3zQOt CItG4LC8N6hpWwbb/rybMB8GA1UdIwQYMBaAFKGTjJEqwvSpWLk9r49LJyAVsNjY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOUQ4Qi81RjExRTAyQTdG NzUxMUVEOEFGQkU2NzNDNEY5QUUwMi9vWk9Na1NyQzlLbFl1VDJ2ajBzbklCV3cy TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29aT01rU3JDOUtsWXVUMnZqMHNuSUJXdzJOZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OUQ4Qi81RjExRTAyQTdGNzUxMUVEOEFGQkU2NzNDNEY5QUUwMi9vWk9Na1NyQzlL bFl1VDJ2ajBzbklCV3cyTmcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAgN9kiJ1yBSY/KsUFJT/Ho/Sxcltkz0Gfpf4OhY8QHbdfbAVOzt4olMUCq1oV sl975N2WRI4bGlktOIa1LHRTU1l72+PKOEtHsPVKVZDqkcRKa7dngkGVKKVmNlc7 SuViYojYGfPK7spZhgQmM8hGNw/81h4cNkkDsBob9liZamVizdzO3KkqS2UBimYE BBfl0UDFYsWZ5K3VnBjeS3Kyw9CWPGEzUMgxCGlJvjNi88R9RzQfO89H++26QRCN RH+NuXl+1RymPFCBvwWBjWBVQDijSz1LNxTdcDOhZTqM8fWKLsepxQBAZFZinY8a o01a0MXPX8Iw23Sqo6GO6vLHQQ== -----END CERTIFICATE-----Generated at Mon Mar 2 05:45:50 2026 by rpki-client