$ rpki-client -vvf rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft File: oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft (raw, json) Hash identifier: V+7F4RMKEXig9CWUygZOlfdU2A9wptktf3Qa/naIyhw= Subject key identifier: 59:4D:27:D8:36:E5:40:EE:24:29:54:55:9E:37:AB:0A:37:CC:2B:3D Authority key identifier: A0:7A:F0:CC:B2:98:35:CC:76:42:97:4B:AC:9E:15:02:B9:CF:82:D0 Certificate issuer: /CN=A91E29CB/serialNumber=A07AF0CCB29835CC7642974BAC9E1502B9CF82D0 Certificate serial: 0337 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oHrwzLKYNcx2QpdLrJ4VArnPgtA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft Manifest number: 0325 Signing time: Mon 02 Mar 2026 02:47:18 +0000 Manifest this update: Mon 02 Mar 2026 02:47:16 +0000 Manifest next update: Mon 09 Mar 2026 02:47:16 +0000 Files and hashes: 1: oHrwzLKYNcx2QpdLrJ4VArnPgtA.crl (hash: 9itAqF5Ruamz5Y7XoalcPrpzRJkNy97ycooxsH8T1VM=) 2: C258B0D0E03C11EF991E147AC4F9AE02.roa (hash: X4W03lfAeMlljE4GAKwUtjHV/L977l42ii4F4eQTOn8=) 3: C08A3ED6E03C11EF991E147AC4F9AE02.roa (hash: ANsNQMN5H1ys5fOhAufw9rrJ9wcoujUNZdhr222CU5I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.crl rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oHrwzLKYNcx2QpdLrJ4VArnPgtA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:47:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 823 (0x337) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E29CB, serialNumber=A07AF0CCB29835CC7642974BAC9E1502B9CF82D0 Validity Not Before: Mar 2 02:47:16 2026 GMT Not After : Mar 9 02:47:16 2026 GMT Subject: CN=69a4fa35-6baf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:ae:b2:39:d1:62:b9:88:98:2d:70:52:ad:9f: b0:03:49:5a:28:d0:60:45:f9:5f:81:75:15:0f:d3: b2:94:4f:95:e1:e4:fe:14:7e:aa:d1:4c:57:80:43: 3c:09:12:df:dd:5c:b6:df:e6:64:39:9f:78:f2:5e: e4:3f:9d:d6:27:58:14:68:38:3d:7d:1e:57:cf:4b: b1:9e:60:27:9d:97:7f:31:e5:d9:3a:9a:e0:1d:b6: 41:82:53:ce:ea:f8:c8:ef:ec:2b:15:9e:22:21:e7: 7f:56:75:20:be:e0:fa:de:ca:dc:0a:06:6d:9a:e1: 95:2e:ed:25:41:bb:3a:ba:8b:9c:5d:3d:1c:24:1d: 5d:52:dc:6f:fd:06:27:05:43:b4:5f:4b:15:e5:e5: cb:4f:13:b3:c5:de:a7:d5:ec:80:76:89:d1:b4:2b: c0:88:0a:e0:d3:47:7b:e0:c9:0f:41:cf:6d:82:ee: 3a:31:69:65:79:9e:ae:df:c5:59:bc:ec:fa:9c:7d: ae:ec:a3:ac:dd:b0:a0:da:90:48:03:43:89:89:b0: e4:24:d8:65:84:9f:b7:ee:f4:50:eb:5e:cd:e0:55: 2e:25:53:f1:89:70:a3:d7:01:74:7d:b6:2a:d8:a9: 5d:9e:4b:d5:7e:1e:c8:f2:8a:54:2c:89:ff:cc:18: 11:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:4D:27:D8:36:E5:40:EE:24:29:54:55:9E:37:AB:0A:37:CC:2B:3D X509v3 Authority Key Identifier: keyid:A0:7A:F0:CC:B2:98:35:CC:76:42:97:4B:AC:9E:15:02:B9:CF:82:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oHrwzLKYNcx2QpdLrJ4VArnPgtA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:d4:92:e1:47:ac:19:b9:63:ec:14:a9:6b:14:42:22:c1:48: 02:12:61:a4:65:91:0f:c7:6b:fc:9e:ab:d3:c5:ba:78:46:0a: 82:fb:f1:ce:c5:9a:7f:1e:8b:94:7f:1c:86:0e:af:a4:68:44: cd:85:4c:2e:18:e0:b8:d9:98:38:88:39:75:07:5a:bf:ea:e1: e9:3d:5d:10:4b:2f:79:12:69:fe:f4:28:aa:df:aa:13:d3:e4: 6b:bb:5b:ad:25:92:9e:13:50:c4:a0:42:7c:56:e8:18:1d:21: 9f:13:48:30:7b:67:73:2c:e6:a3:5e:6d:d3:49:a7:07:23:f8: ab:25:0d:54:ab:6e:c9:86:39:3e:97:4a:58:ad:ae:cc:0b:06: 11:7a:7f:53:d0:bb:74:76:70:e5:d2:cf:ba:4f:2c:cf:54:96: e3:59:3a:10:dc:67:ec:5f:f7:b3:07:71:78:51:4a:c2:c6:bb: f3:e1:ea:08:f7:8b:09:86:7c:bb:69:6b:70:ab:7e:fe:08:3b: 11:5a:20:50:49:a7:67:d3:88:59:ab:bd:23:9a:02:63:25:1a: d1:81:3e:0e:5a:e6:db:73:13:f6:fa:42:9c:3b:e0:ee:2b:26: 84:95:f7:e7:d8:ad:93:e8:01:f3:ca:99:fc:7a:7b:0a:a8:62: cf:1a:d2:e6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAzcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI5Q0IxMTAvBgNVBAUTKEEwN0FGMENDQjI5ODM1Q0M3NjQyOTc0QkFDOUUxNTAy QjlDRjgyRDAwHhcNMjYwMzAyMDI0NzE2WhcNMjYwMzA5MDI0NzE2WjAYMRYwFAYD VQQDEw02OWE0ZmEzNS02YmFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkq6yOdFiuYiYLXBSrZ+wA0laKNBgRflfgXUVD9OylE+V4eT+FH6q0UxXgEM8 CRLf3Vy23+ZkOZ948l7kP53WJ1gUaDg9fR5Xz0uxnmAnnZd/MeXZOprgHbZBglPO 6vjI7+wrFZ4iIed/VnUgvuD63srcCgZtmuGVLu0lQbs6uoucXT0cJB1dUtxv/QYn BUO0X0sV5eXLTxOzxd6n1eyAdonRtCvAiArg00d74MkPQc9tgu46MWlleZ6u38VZ vOz6nH2u7KOs3bCg2pBIA0OJibDkJNhlhJ+37vRQ617N4FUuJVPxiXCj1wF0fbYq 2KldnkvVfh7I8opULIn/zBgRvQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFlNJ9g2 5UDuJClUVZ43qwo3zCs9MB8GA1UdIwQYMBaAFKB68MyymDXMdkKXS6yeFQK5z4LQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjlDQi8xRjkwMkIwRTA1 QUYxMUVEQTcxNzY0MkJDNEY5QUUwMi9vSHJ3ekxLWU5jeDJRcGRMcko0VkFyblBn dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29Icnd6TEtZTmN4MlFwZExySjRWQXJuUGd0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MjlDQi8xRjkwMkIwRTA1QUYxMUVEQTcxNzY0MkJDNEY5QUUwMi9vSHJ3ekxLWU5j eDJRcGRMcko0VkFyblBndEEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEADtSS4UesGblj7BSpaxRCIsFIAhJhpGWRD8dr/J6r08W6eEYKgvvxzsWafx6L lH8chg6vpGhEzYVMLhjguNmYOIg5dQdav+rh6T1dEEsveRJp/vQoqt+qE9Pka7tb rSWSnhNQxKBCfFboGB0hnxNIMHtncyzmo15t00mnByP4qyUNVKtuyYY5PpdKWK2u zAsGEXp/U9C7dHZw5dLPuk8sz1SW41k6ENxn7F/3swdxeFFKwsa78+HqCPeLCYZ8 u2lrcKt+/gg7EVogUEmnZ9OIWau9I5oCYyUa0YE+Dlrm23MT9vpCnDvg7ismhJX3 59itk+gB88qZ/Hp7CqhizxrS5g== -----END CERTIFICATE-----Generated at Mon Mar 2 07:51:55 2026 by rpki-client