$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD584/327073829CB111EFAEA00D25C4F9AE02/oPojd21UTId5RsrHxId0ZRmTfbg.mft File: oPojd21UTId5RsrHxId0ZRmTfbg.mft (raw, json) Hash identifier: RSeYoRT+5Z++Kst3t/oZnemnlDIAPP0rt4S5dPQeCJA= Subject key identifier: 92:74:FB:95:09:EE:8C:11:D4:9D:21:7C:63:5E:1E:E6:04:11:7F:EA Authority key identifier: A0:FA:23:77:6D:54:4C:87:79:46:CA:C7:C4:87:74:65:19:93:7D:B8 Certificate issuer: /CN=A91DD584/serialNumber=A0FA23776D544C877946CAC7C487746519937DB8 Certificate serial: FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oPojd21UTId5RsrHxId0ZRmTfbg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD584/327073829CB111EFAEA00D25C4F9AE02/oPojd21UTId5RsrHxId0ZRmTfbg.mft Manifest number: F8 Signing time: Sun 01 Mar 2026 07:19:45 +0000 Manifest this update: Sun 01 Mar 2026 07:19:44 +0000 Manifest next update: Sun 08 Mar 2026 07:19:44 +0000 Files and hashes: 1: oPojd21UTId5RsrHxId0ZRmTfbg.crl (hash: 6QL2+upf4Hri+pXPrVz+5pq9JowChFXleKLCNE492eo=) 2: B4C685B09CB111EFA6F8E627C4F9AE02.roa (hash: GuNo7IUV7Thwoh9B3txt8mnx9fY3g5B8M+APQokJxqg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD584/327073829CB111EFAEA00D25C4F9AE02/oPojd21UTId5RsrHxId0ZRmTfbg.crl rsync://rpki.apnic.net/member_repository/A91DD584/327073829CB111EFAEA00D25C4F9AE02/oPojd21UTId5RsrHxId0ZRmTfbg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oPojd21UTId5RsrHxId0ZRmTfbg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 07:19:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 251 (0xfb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD584, serialNumber=A0FA23776D544C877946CAC7C487746519937DB8 Validity Not Before: Mar 1 07:19:44 2026 GMT Not After : Mar 8 07:19:44 2026 GMT Subject: CN=69a3e891-8f1a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:5c:55:78:6a:ba:a3:13:cb:f2:a5:f5:4d:d3: d3:d9:3c:3a:39:4d:c2:33:00:fd:82:e5:8f:bc:79: 56:95:18:77:7a:93:9f:98:ed:17:17:06:af:41:08: 2d:75:79:c8:56:f5:8e:27:73:67:13:fb:26:a3:e8: 4e:d4:09:a0:02:b5:20:1b:17:7b:24:dd:d3:76:e3: 4a:17:2a:ba:3a:b5:4d:61:53:0f:35:e0:38:b0:1b: 25:9e:2d:9e:e2:c6:97:02:b8:1c:8f:08:fd:4b:41: 16:96:e1:f2:06:43:22:7a:e8:d0:87:48:79:83:94: 15:b0:59:c6:ef:54:7a:bf:7d:c2:60:9f:ae:b1:0a: 4c:fa:08:95:c3:74:e7:4c:97:89:30:8e:df:93:e1: 12:b0:90:34:d5:b4:21:31:47:84:4b:cb:50:42:f4: 1d:7a:7d:5b:7e:11:7f:38:8c:67:0e:6d:5e:e6:74: 98:3d:5a:1b:ef:11:6a:e1:39:cd:bd:a9:a5:93:27: 8e:4c:87:10:73:68:23:31:32:35:1a:74:56:7c:1f: e5:97:17:f1:f6:4c:b4:6b:d8:7e:1e:49:cd:49:2d: 77:66:8a:d8:34:d7:fd:98:55:92:51:3f:3f:21:fe: f3:8c:59:5d:c7:94:eb:a0:81:fc:cb:3b:36:48:4a: 9f:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:74:FB:95:09:EE:8C:11:D4:9D:21:7C:63:5E:1E:E6:04:11:7F:EA X509v3 Authority Key Identifier: keyid:A0:FA:23:77:6D:54:4C:87:79:46:CA:C7:C4:87:74:65:19:93:7D:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD584/327073829CB111EFAEA00D25C4F9AE02/oPojd21UTId5RsrHxId0ZRmTfbg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oPojd21UTId5RsrHxId0ZRmTfbg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD584/327073829CB111EFAEA00D25C4F9AE02/oPojd21UTId5RsrHxId0ZRmTfbg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:d1:ec:d4:bd:1b:bf:08:f7:53:b5:1a:75:c3:a0:1c:81:aa: 9f:77:d2:bb:02:2f:cb:95:cc:66:57:38:61:79:47:3e:99:93: 02:76:b6:f8:1d:77:05:4e:c2:67:f8:fc:7f:19:91:9a:09:47: 46:c1:d7:59:14:d1:e0:f2:9a:e2:62:3f:cf:29:4f:4f:19:eb: 71:16:be:ed:42:be:e1:30:b8:d4:2d:c2:34:62:f2:9f:1a:de: db:0f:8d:2a:14:d8:31:58:a6:b5:0c:1a:2e:33:4f:01:de:46: a5:7b:b1:34:52:00:01:26:88:59:c0:f1:c0:30:b3:71:55:d7: 2b:e6:8b:7b:52:3e:3b:c6:65:f9:6e:d7:65:a4:4a:ff:15:88: 82:b7:8b:71:31:70:b8:09:04:bc:a4:6c:cc:5d:aa:34:b3:ac: 1f:5b:64:d0:f7:2d:52:50:98:b9:32:a0:20:99:61:16:a7:13: e8:31:a4:dd:a9:ac:49:b8:35:dc:6f:e7:05:e9:8f:15:f2:0c: 30:18:cf:cd:04:89:31:ce:89:57:5d:c0:b6:9b:ec:3f:69:d8: 1c:c9:4f:d0:a8:82:c0:37:1b:bf:69:9d:0f:23:f7:51:b6:c8: 9b:ef:bd:fe:f3:83:72:db:7e:b5:4d:16:ca:88:1d:e1:7d:26: 49:a0:f1:f9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAPswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REQ1ODQxMTAvBgNVBAUTKEEwRkEyMzc3NkQ1NDRDODc3OTQ2Q0FDN0M0ODc3NDY1 MTk5MzdEQjgwHhcNMjYwMzAxMDcxOTQ0WhcNMjYwMzA4MDcxOTQ0WjAYMRYwFAYD VQQDEw02OWEzZTg5MS04ZjFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArVxVeGq6oxPL8qX1TdPT2Tw6OU3CMwD9guWPvHlWlRh3epOfmO0XFwavQQgt dXnIVvWOJ3NnE/smo+hO1AmgArUgGxd7JN3TduNKFyq6OrVNYVMPNeA4sBslni2e 4saXArgcjwj9S0EWluHyBkMieujQh0h5g5QVsFnG71R6v33CYJ+usQpM+giVw3Tn TJeJMI7fk+ESsJA01bQhMUeES8tQQvQden1bfhF/OIxnDm1e5nSYPVob7xFq4TnN vamlkyeOTIcQc2gjMTI1GnRWfB/llxfx9ky0a9h+HknNSS13ZorYNNf9mFWSUT8/ If7zjFldx5TroIH8yzs2SEqfKQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJJ0+5UJ 7owR1J0hfGNeHuYEEX/qMB8GA1UdIwQYMBaAFKD6I3dtVEyHeUbKx8SHdGUZk324 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERDU4NC8zMjcwNzM4MjlD QjExMUVGQUVBMDBEMjVDNEY5QUUwMi9vUG9qZDIxVVRJZDVSc3JIeElkMFpSbVRm YmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29Qb2pkMjFVVElkNVJzckh4SWQwWlJtVGZiZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RDU4NC8zMjcwNzM4MjlDQjExMUVGQUVBMDBEMjVDNEY5QUUwMi9vUG9qZDIxVVRJ ZDVSc3JIeElkMFpSbVRmYmcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAMtHs1L0bvwj3U7UadcOgHIGqn3fSuwIvy5XMZlc4YXlHPpmTAna2+B13BU7C Z/j8fxmRmglHRsHXWRTR4PKa4mI/zylPTxnrcRa+7UK+4TC41C3CNGLynxre2w+N KhTYMVimtQwaLjNPAd5GpXuxNFIAASaIWcDxwDCzcVXXK+aLe1I+O8Zl+W7XZaRK /xWIgreLcTFwuAkEvKRszF2qNLOsH1tk0PctUlCYuTKgIJlhFqcT6DGk3amsSbg1 3G/nBemPFfIMMBjPzQSJMc6JV13AtpvsP2nYHMlP0KiCwDcbv2mdDyP3UbbIm++9 /vODctt+tU0Wyogd4X0mSaDx+Q== -----END CERTIFICATE-----Generated at Mon Mar 2 03:14:31 2026 by rpki-client