$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6856/2DDB426E486311EEBC0BD213C4F9AE02/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.mft File: OmgjoQ8Dv6ykBo0zmERPNkEIVIU.mft (raw, json) Hash identifier: bx+F4p/UsM+pdoviEybTDBAZNVwFM8RTiI/qcz32x7o= Subject key identifier: 5E:77:AA:B5:F5:E7:2D:3D:5A:A0:EB:6F:8D:BC:A8:CD:9A:82:F3:27 Authority key identifier: 3A:68:23:A1:0F:03:BF:AC:A4:06:8D:33:98:44:4F:36:41:08:54:85 Certificate issuer: /CN=A91E6856/serialNumber=3A6823A10F03BFACA4068D3398444F3641085485 Certificate serial: 01E1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6856/2DDB426E486311EEBC0BD213C4F9AE02/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.mft Manifest number: 01DB Signing time: Mon 02 Mar 2026 02:01:27 +0000 Manifest this update: Mon 02 Mar 2026 02:01:24 +0000 Manifest next update: Mon 09 Mar 2026 02:01:24 +0000 Files and hashes: 1: OmgjoQ8Dv6ykBo0zmERPNkEIVIU.crl (hash: G2KPmaFDyt5TWxq6fHR26RgshMEX0r6wKuOaMD8Rn8Q=) 2: B2C9B10A881311EE8CFB5C43C4F9AE02.roa (hash: oB4kxasRgRq+GKJ70NUc/sJMH3q5nYfTRjnemmCHnis=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6856/2DDB426E486311EEBC0BD213C4F9AE02/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.crl rsync://rpki.apnic.net/member_repository/A91E6856/2DDB426E486311EEBC0BD213C4F9AE02/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:01:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 481 (0x1e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6856, serialNumber=3A6823A10F03BFACA4068D3398444F3641085485 Validity Not Before: Mar 2 02:01:24 2026 GMT Not After : Mar 9 02:01:24 2026 GMT Subject: CN=69a4ef76-20f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:68:a5:95:35:b6:dd:e5:c1:c7:e3:93:bc:1a: 56:2c:54:6d:68:73:5d:cb:31:5b:d2:50:77:4f:9b: 1d:34:52:bd:4c:ff:51:b4:db:72:9c:99:9e:1e:66: 58:84:98:a0:07:8c:37:37:7e:90:0c:ce:2d:52:d7: e5:74:50:6d:0d:4d:22:9f:14:e9:e8:66:86:4a:e7: 55:9e:92:c8:22:9c:f7:e5:a3:7a:bd:55:d3:17:7b: d8:9e:8d:86:d6:c9:28:ec:ec:23:56:70:32:0f:3f: bc:d0:16:ba:18:a0:2e:40:d5:51:f2:d4:49:51:c6: 6e:c1:56:81:3e:f0:65:c7:34:d3:48:8c:63:fe:fe: 91:ac:6d:93:37:d0:6e:54:aa:d4:b8:e7:df:c9:87: 1d:8d:da:a3:7f:8b:0f:42:68:76:7d:70:bc:2a:97: 49:e9:7e:c9:eb:39:7b:24:96:c9:58:73:cf:01:2d: 1d:08:5e:92:09:3b:46:05:0d:49:b2:7d:de:94:5c: 96:e2:45:1e:66:13:be:6b:be:4e:10:84:f9:68:3d: fb:58:07:27:1f:0c:3e:05:41:6a:00:f2:0f:86:33: 5a:ab:79:30:b0:58:04:b5:46:5e:49:81:02:7a:7b: 04:37:5f:fc:a2:9d:cb:0d:99:f0:26:f2:bd:de:24: a3:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:77:AA:B5:F5:E7:2D:3D:5A:A0:EB:6F:8D:BC:A8:CD:9A:82:F3:27 X509v3 Authority Key Identifier: keyid:3A:68:23:A1:0F:03:BF:AC:A4:06:8D:33:98:44:4F:36:41:08:54:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6856/2DDB426E486311EEBC0BD213C4F9AE02/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6856/2DDB426E486311EEBC0BD213C4F9AE02/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:7a:51:c7:f9:7a:32:f5:c9:35:26:e8:2d:83:a5:e3:92:be: 2b:12:dd:f9:b7:2c:ab:88:dd:af:7e:39:aa:4a:3b:3f:25:c4: 7f:45:3c:7f:66:0e:12:e7:71:bf:7f:94:04:6a:c3:5e:12:17: 1f:ea:a4:b0:0b:31:ff:1c:c2:e2:84:92:ea:79:d3:7b:5a:a2: 98:67:44:e6:51:20:70:2b:82:92:dc:88:29:46:65:e2:ea:c5: 07:cf:32:78:05:0d:cb:7c:db:32:58:6c:db:25:66:18:12:c4: 0f:3f:a5:2c:1b:60:f6:4e:93:fe:f8:5f:31:24:c0:39:04:af: 1f:a7:70:ea:e1:b1:bf:00:3c:5e:6d:a3:3f:df:bd:65:44:90: dd:bb:81:18:e1:4a:03:1e:7b:a6:6b:17:1e:81:a5:96:7a:5b: f1:40:b8:c8:c4:e9:e6:36:41:63:11:eb:22:cb:29:f3:d8:2b: c0:41:00:3b:47:f2:5b:4a:9a:31:c8:91:37:01:22:99:b1:57: 97:bd:8e:87:e4:fa:3e:47:9a:7b:76:a8:4e:bb:3d:ec:a0:87: b0:c9:24:35:d5:ca:de:34:7d:b7:ec:a7:b0:27:33:2e:5c:cc: 63:87:5e:c0:19:e5:5c:e7:1d:0e:e0:5d:cb:f9:29:92:c2:9f: 0a:6a:b2:a2 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAeEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTY4NTYxMTAvBgNVBAUTKDNBNjgyM0ExMEYwM0JGQUNBNDA2OEQzMzk4NDQ0RjM2 NDEwODU0ODUwHhcNMjYwMzAyMDIwMTI0WhcNMjYwMzA5MDIwMTI0WjAYMRYwFAYD VQQDEw02OWE0ZWY3Ni0yMGYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo2illTW23eXBx+OTvBpWLFRtaHNdyzFb0lB3T5sdNFK9TP9RtNtynJmeHmZY hJigB4w3N36QDM4tUtfldFBtDU0inxTp6GaGSudVnpLIIpz35aN6vVXTF3vYno2G 1sko7OwjVnAyDz+80Ba6GKAuQNVR8tRJUcZuwVaBPvBlxzTTSIxj/v6RrG2TN9Bu VKrUuOffyYcdjdqjf4sPQmh2fXC8KpdJ6X7J6zl7JJbJWHPPAS0dCF6SCTtGBQ1J sn3elFyW4kUeZhO+a75OEIT5aD37WAcnHww+BUFqAPIPhjNaq3kwsFgEtUZeSYEC ensEN1/8op3LDZnwJvK93iSjZQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFF53qrX1 5y09WqDrb428qM2agvMnMB8GA1UdIwQYMBaAFDpoI6EPA7+spAaNM5hETzZBCFSF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjg1Ni8yRERCNDI2RTQ4 NjMxMUVFQkMwQkQyMTNDNEY5QUUwMi9PbWdqb1E4RHY2eWtCbzB6bUVSUE5rRUlW SVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL09tZ2pvUThEdjZ5a0JvMHptRVJQTmtFSVZJVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF Njg1Ni8yRERCNDI2RTQ4NjMxMUVFQkMwQkQyMTNDNEY5QUUwMi9PbWdqb1E4RHY2 eWtCbzB6bUVSUE5rRUlWSVUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAf3pRx/l6MvXJNSboLYOl45K+KxLd+bcsq4jdr345qko7PyXEf0U8f2YOEudx v3+UBGrDXhIXH+qksAsx/xzC4oSS6nnTe1qimGdE5lEgcCuCktyIKUZl4urFB88y eAUNy3zbMlhs2yVmGBLEDz+lLBtg9k6T/vhfMSTAOQSvH6dw6uGxvwA8Xm2jP9+9 ZUSQ3buBGOFKAx57pmsXHoGllnpb8UC4yMTp5jZBYxHrIssp89grwEEAO0fyW0qa MciRNwEimbFXl72Oh+T6Pkeae3aoTrs97KCHsMkkNdXK3jR9t+ynsCczLlzMY4de wBnlXOcdDuBdy/kpksKfCmqyog== -----END CERTIFICATE-----Generated at Mon Mar 2 17:28:25 2026 by rpki-client