$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/Oc4V2zZzmiLK7mTgz4ujH1prk0g.mft File: Oc4V2zZzmiLK7mTgz4ujH1prk0g.mft (raw, json) Hash identifier: rWPGLg2UeMEhYhcH9IWxZjU+ku1CNPtrUqIEIoAeD0I= Subject key identifier: 27:74:00:92:E9:07:97:5A:2B:59:74:F7:1B:A3:DE:F2:6B:E7:0C:5C Authority key identifier: 39:CE:15:DB:36:73:9A:22:CA:EE:64:E0:CF:8B:A3:1F:5A:6B:93:48 Certificate issuer: /CN=A91DF863/serialNumber=39CE15DB36739A22CAEE64E0CF8BA31F5A6B9348 Certificate serial: 33CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oc4V2zZzmiLK7mTgz4ujH1prk0g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/Oc4V2zZzmiLK7mTgz4ujH1prk0g.mft Manifest number: 3359 Signing time: Mon 02 Mar 2026 03:08:04 +0000 Manifest this update: Mon 02 Mar 2026 03:08:03 +0000 Manifest next update: Mon 09 Mar 2026 03:08:03 +0000 Files and hashes: 1: Oc4V2zZzmiLK7mTgz4ujH1prk0g.crl (hash: m1l6WX9r27s2RREz76ImWKpR0BmntGvPFjCx19GcJLs=) 2: 902F4AAC567011EFA451BD7CC4F9AE02.roa (hash: ywYO0R2h+KCbkByqxPNiOzqIp/WyrJLVsBz2TrN/mq0=) 3: 834D7D565BAA11EFBAF22B7FC4F9AE02.roa (hash: D3M6wzI4okhGRiWpslBcCzchggkeDwBoIQLL3NU2Nsk=) 4: 844CFD1C5BAA11EFBAF22B7FC4F9AE02.roa (hash: sVfjMKk5gEscjf/+ggoyWUQbHrSEKZRSttzymuAtyFQ=) 5: 909AA4DC567011EFA451BD7CC4F9AE02.roa (hash: YkWYNrxgO0n51u4sQpXTHmpzMu712XYl/YRt4XSQRKE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/Oc4V2zZzmiLK7mTgz4ujH1prk0g.crl rsync://rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/Oc4V2zZzmiLK7mTgz4ujH1prk0g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oc4V2zZzmiLK7mTgz4ujH1prk0g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 03:07:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13259 (0x33cb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF863, serialNumber=39CE15DB36739A22CAEE64E0CF8BA31F5A6B9348 Validity Not Before: Mar 2 03:08:03 2026 GMT Not After : Mar 9 03:08:03 2026 GMT Subject: CN=69a4ff14-65d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:df:0c:3c:b3:84:31:c6:d2:73:c3:6e:46:a5: 44:d7:b3:a3:3a:28:84:70:30:94:98:fa:3a:2e:5d: 4e:e2:28:38:19:fc:47:7d:b4:d6:ee:2d:12:8b:5c: 19:d0:75:c2:76:76:a5:68:1e:0d:e8:88:8a:c6:fa: 0e:fd:32:c1:0f:c6:29:92:94:d6:93:10:67:e3:d6: 33:ce:3b:7f:c3:e9:00:4c:e5:0a:b0:2b:c5:c7:72: b8:b0:ac:fe:bc:d6:cc:d6:8f:f6:15:82:25:c2:e4: 4d:8e:c3:a1:4f:a8:1c:cd:9f:9b:d9:ae:e6:61:84: 2b:d5:0d:c8:d4:0d:ce:57:68:11:8a:4f:41:44:70: a0:0e:c4:4f:64:85:7a:8a:fb:2f:c8:26:28:7d:09: e0:b4:8c:3c:fc:97:be:e4:be:5e:90:cf:65:95:d5: db:c3:00:25:ef:00:71:4c:d5:ff:3e:8d:19:97:37: 1c:7c:95:15:40:07:39:45:56:85:04:42:94:d2:d8: ed:76:f6:a3:fd:f3:a3:27:8d:82:32:aa:4c:60:1e: f3:05:36:91:df:01:35:e9:48:81:83:65:c4:9b:5c: 80:fb:29:b6:ba:de:7a:1c:ee:9b:2d:b3:ae:d8:73: 94:e9:aa:c1:a9:5e:6d:54:47:97:04:2d:59:15:d0: ef:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:74:00:92:E9:07:97:5A:2B:59:74:F7:1B:A3:DE:F2:6B:E7:0C:5C X509v3 Authority Key Identifier: keyid:39:CE:15:DB:36:73:9A:22:CA:EE:64:E0:CF:8B:A3:1F:5A:6B:93:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/Oc4V2zZzmiLK7mTgz4ujH1prk0g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oc4V2zZzmiLK7mTgz4ujH1prk0g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/Oc4V2zZzmiLK7mTgz4ujH1prk0g.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:92:fe:37:04:f9:7e:13:80:0a:12:b3:a9:f1:70:4c:4d:f2: d6:2c:94:b0:47:71:86:b0:a4:1e:f7:4b:51:94:16:f1:d5:83: 80:d1:a0:da:69:0e:b0:bf:ff:60:fd:c1:69:01:9f:af:5f:da: ab:0b:8b:e4:b4:8d:73:cc:76:3b:41:74:9f:f6:6c:0b:08:63: c8:33:2c:bf:48:62:8f:01:3c:f4:be:8c:5f:19:c3:a1:f3:eb: a2:05:24:1e:d5:0d:ea:9e:58:3a:05:06:b1:f6:7b:87:da:a9: 67:cc:1e:12:c4:77:31:19:4b:a7:68:e3:c9:24:53:1b:ba:2a: fa:e6:dc:f0:fe:6e:ab:fe:84:1d:ad:88:79:b4:e4:20:90:e8: 15:e9:e0:cd:71:8e:38:76:3a:4e:4b:0b:21:e4:78:e3:23:0a: 1f:c0:e0:0c:96:a7:3a:95:fe:64:e8:51:18:b6:da:65:ca:f3: 5f:8c:17:02:79:1f:0d:db:cf:41:5d:26:8c:a0:f7:67:a9:4a: 21:0c:44:70:af:16:50:3d:90:e4:0f:2b:04:d6:2c:d7:f7:be: 1c:80:bd:ee:1a:f8:e6:80:65:df:fb:7f:27:50:10:6d:ce:64: f4:d6:a2:26:e2:8b:b0:81:07:32:06:c1:f7:3b:ba:92:20:9c: f9:e9:d1:4f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICM8swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REY4NjMxMTAvBgNVBAUTKDM5Q0UxNURCMzY3MzlBMjJDQUVFNjRFMENGOEJBMzFG NUE2QjkzNDgwHhcNMjYwMzAyMDMwODAzWhcNMjYwMzA5MDMwODAzWjAYMRYwFAYD VQQDEw02OWE0ZmYxNC02NWQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz98MPLOEMcbSc8NuRqVE17OjOiiEcDCUmPo6Ll1O4ig4GfxHfbTW7i0Si1wZ 0HXCdnalaB4N6IiKxvoO/TLBD8YpkpTWkxBn49Yzzjt/w+kATOUKsCvFx3K4sKz+ vNbM1o/2FYIlwuRNjsOhT6gczZ+b2a7mYYQr1Q3I1A3OV2gRik9BRHCgDsRPZIV6 ivsvyCYofQngtIw8/Je+5L5ekM9lldXbwwAl7wBxTNX/Po0ZlzccfJUVQAc5RVaF BEKU0tjtdvaj/fOjJ42CMqpMYB7zBTaR3wE16UiBg2XEm1yA+ym2ut56HO6bLbOu 2HOU6arBqV5tVEeXBC1ZFdDvUwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCd0AJLp B5daK1l09xuj3vJr5wxcMB8GA1UdIwQYMBaAFDnOFds2c5oiyu5k4M+Lox9aa5NI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjg2My9CRkU1NEE2ODgx NUIxMUUyOUI1OEE3M0IzMjkyQjVFOC9PYzRWMnpaem1pTEs3bVRnejR1akgxcHJr MGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09jNFYyelp6bWlMSzdtVGd6NHVqSDFwcmswZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE Rjg2My9CRkU1NEE2ODgxNUIxMUUyOUI1OEE3M0IzMjkyQjVFOC9PYzRWMnpaem1p TEs3bVRnejR1akgxcHJrMGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAbpL+NwT5fhOAChKzqfFwTE3y1iyUsEdxhrCkHvdLUZQW8dWDgNGg2mkOsL// YP3BaQGfr1/aqwuL5LSNc8x2O0F0n/ZsCwhjyDMsv0hijwE89L6MXxnDofProgUk HtUN6p5YOgUGsfZ7h9qpZ8weEsR3MRlLp2jjySRTG7oq+ubc8P5uq/6EHa2IebTk IJDoFengzXGOOHY6TksLIeR44yMKH8DgDJanOpX+ZOhRGLbaZcrzX4wXAnkfDdvP QV0mjKD3Z6lKIQxEcK8WUD2Q5A8rBNYs1/e+HIC97hr45oBl3/t/J1AQbc5k9Nai JuKLsIEHMgbB9zu6kiCc+enRTw== -----END CERTIFICATE-----Generated at Mon Mar 2 12:50:47 2026 by rpki-client