$ rpki-client -vvf rpki.apnic.net/member_repository/A91EDF00/3AE0034A4E7E11EC9E298429C4F9AE02/ozzKgbVeBGVdG1p-LOaIw-RvxTA.mft File: ozzKgbVeBGVdG1p-LOaIw-RvxTA.mft (raw, json) Hash identifier: h1yOlfw5mc0/Lip6uK8oDlVX1bUMyhqWjrWHX041cR4= Subject key identifier: 24:41:96:A7:BE:23:75:54:86:AA:1A:A9:3C:25:24:A9:F0:9F:DC:6D Authority key identifier: A3:3C:CA:81:B5:5E:04:65:5D:1B:5A:7E:2C:E6:88:C3:E4:6F:C5:30 Certificate issuer: /CN=A91EDF00/serialNumber=A33CCA81B55E04655D1B5A7E2CE688C3E46FC530 Certificate serial: 04FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ozzKgbVeBGVdG1p-LOaIw-RvxTA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EDF00/3AE0034A4E7E11EC9E298429C4F9AE02/ozzKgbVeBGVdG1p-LOaIw-RvxTA.mft Manifest number: 04F3 Signing time: Sun 01 Mar 2026 00:21:00 +0000 Manifest this update: Sun 01 Mar 2026 00:21:00 +0000 Manifest next update: Sun 08 Mar 2026 00:21:00 +0000 Files and hashes: 1: ozzKgbVeBGVdG1p-LOaIw-RvxTA.crl (hash: 6F3+g2X7SNr3uuFdxfDDjpWHXaQc4mjdpMn39Wio3tk=) 2: 1B97FEB84E8111ECA3589560C4F9AE02.roa (hash: W57KWV1uRuDyrZ3zzch+8Ng9jjNkZp10Na3qi0VQeFE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EDF00/3AE0034A4E7E11EC9E298429C4F9AE02/ozzKgbVeBGVdG1p-LOaIw-RvxTA.crl rsync://rpki.apnic.net/member_repository/A91EDF00/3AE0034A4E7E11EC9E298429C4F9AE02/ozzKgbVeBGVdG1p-LOaIw-RvxTA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ozzKgbVeBGVdG1p-LOaIw-RvxTA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 00:20:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1274 (0x4fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EDF00, serialNumber=A33CCA81B55E04655D1B5A7E2CE688C3E46FC530 Validity Not Before: Mar 1 00:21:00 2026 GMT Not After : Mar 8 00:21:00 2026 GMT Subject: CN=69a3866c-f9b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:73:2a:a5:77:42:c1:43:b8:17:f4:54:96:a8: 98:73:be:12:16:85:32:8e:f4:c5:62:4b:f9:d2:56: c9:7b:c6:07:e8:8a:5b:7a:ee:de:f7:04:b8:d6:bf: e7:80:56:65:19:fa:97:c2:33:81:ef:29:07:6b:48: ed:43:cd:38:5a:c4:93:7e:4a:eb:bc:dc:9b:b0:32: d6:4e:57:61:40:a7:56:b7:83:39:b6:e0:04:70:53: 6f:e9:7a:3e:75:6b:29:d7:93:1f:0e:5e:60:6c:26: 57:6b:c0:d7:cd:c2:8b:36:ae:e0:ca:d4:01:8c:16: 38:00:a3:b0:49:ab:10:84:5e:d8:bb:61:ef:44:5b: 7d:9c:6d:a5:c3:44:73:3c:8a:21:9e:c0:dd:58:d5: da:0a:4a:54:12:45:cf:da:f9:5f:c1:e6:c8:6a:41: cf:10:2a:c1:90:93:12:77:2e:b9:a3:63:10:62:ff: 86:81:51:f2:c4:c7:b4:d5:a7:48:58:18:13:63:a5: 53:a0:b7:43:33:ed:fd:12:fd:df:67:2e:ca:4f:ca: d8:c8:99:19:e4:6a:e4:88:7d:b0:b1:6e:f2:92:c8: cb:16:23:f4:e7:91:58:15:77:42:8a:bb:4b:c3:d8: 5f:20:fd:16:ce:05:2a:ec:11:cd:d1:c4:00:fa:66: 09:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:41:96:A7:BE:23:75:54:86:AA:1A:A9:3C:25:24:A9:F0:9F:DC:6D X509v3 Authority Key Identifier: keyid:A3:3C:CA:81:B5:5E:04:65:5D:1B:5A:7E:2C:E6:88:C3:E4:6F:C5:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EDF00/3AE0034A4E7E11EC9E298429C4F9AE02/ozzKgbVeBGVdG1p-LOaIw-RvxTA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ozzKgbVeBGVdG1p-LOaIw-RvxTA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EDF00/3AE0034A4E7E11EC9E298429C4F9AE02/ozzKgbVeBGVdG1p-LOaIw-RvxTA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b6:3d:3c:f9:b4:7d:e8:ee:39:f3:7d:18:85:05:fd:6f:2e:c1: e3:51:7b:25:a9:db:69:f5:b3:85:f6:2a:c1:a3:7a:db:f2:95: 28:c2:f1:20:45:03:38:9f:51:d9:db:aa:7e:e0:ae:91:03:84: 87:3d:30:46:a3:ed:5c:d3:75:3a:94:7e:dc:75:62:f3:3d:65: 5e:c0:bf:24:a6:57:75:e7:68:76:17:d2:95:88:55:b5:bc:6d: 5c:f3:0b:90:9e:55:75:19:a0:9a:1f:49:0c:1d:10:fb:ba:e7: 8a:32:7a:68:b1:0d:06:92:d2:ec:f6:85:c6:17:83:10:54:f4: 65:e2:50:3b:30:3b:29:1d:d5:b6:f7:18:8a:fa:f9:f0:6e:fb: 86:e6:5b:5e:8c:c6:84:46:e0:a1:9d:83:13:9e:83:01:af:fc: 31:b5:42:02:eb:df:40:72:c9:7f:80:45:23:23:2e:5f:88:24: fb:3c:c6:6f:4c:43:57:2e:5c:ec:ae:06:71:98:ff:14:e8:3b: 7e:05:d7:e4:f4:0e:f9:87:4d:32:27:d1:e4:79:7c:54:7a:d9: fe:2d:ca:51:f5:28:98:d5:47:ff:cf:90:c6:84:b0:35:76:ba: 4c:c5:76:38:47:ed:5c:ee:ea:ff:62:1a:0a:dd:52:48:83:f0: a6:c6:73:ed -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBPowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RURGMDAxMTAvBgNVBAUTKEEzM0NDQTgxQjU1RTA0NjU1RDFCNUE3RTJDRTY4OEMz RTQ2RkM1MzAwHhcNMjYwMzAxMDAyMTAwWhcNMjYwMzA4MDAyMTAwWjAYMRYwFAYD VQQDDA02OWEzODY2Yy1mOWI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn3MqpXdCwUO4F/RUlqiYc74SFoUyjvTFYkv50lbJe8YH6Ipbeu7e9wS41r/n gFZlGfqXwjOB7ykHa0jtQ804WsSTfkrrvNybsDLWTldhQKdWt4M5tuAEcFNv6Xo+ dWsp15MfDl5gbCZXa8DXzcKLNq7gytQBjBY4AKOwSasQhF7Yu2HvRFt9nG2lw0Rz PIohnsDdWNXaCkpUEkXP2vlfwebIakHPECrBkJMSdy65o2MQYv+GgVHyxMe01adI WBgTY6VToLdDM+39Ev3fZy7KT8rYyJkZ5GrkiH2wsW7yksjLFiP055FYFXdCirtL w9hfIP0WzgUq7BHN0cQA+mYJiwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCRBlqe+ I3VUhqoaqTwlJKnwn9xtMB8GA1UdIwQYMBaAFKM8yoG1XgRlXRtafizmiMPkb8Uw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFREYwMC8zQUUwMDM0QTRF N0UxMUVDOUUyOTg0MjlDNEY5QUUwMi9venpLZ2JWZUJHVmRHMXAtTE9hSXctUnZ4 VEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL296ektnYlZlQkdWZEcxcC1MT2FJdy1SdnhUQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF REYwMC8zQUUwMDM0QTRFN0UxMUVDOUUyOTg0MjlDNEY5QUUwMi9venpLZ2JWZUJH VmRHMXAtTE9hSXctUnZ4VEEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAtj08+bR96O45830YhQX9by7B41F7JanbafWzhfYqwaN62/KVKMLxIEUDOJ9R 2duqfuCukQOEhz0wRqPtXNN1OpR+3HVi8z1lXsC/JKZXdedodhfSlYhVtbxtXPML kJ5VdRmgmh9JDB0Q+7rnijJ6aLENBpLS7PaFxheDEFT0ZeJQOzA7KR3VtvcYivr5 8G77huZbXozGhEbgoZ2DE56DAa/8MbVCAuvfQHLJf4BFIyMuX4gk+zzGb0xDVy5c 7K4GcZj/FOg7fgXX5PQO+YdNMifR5Hl8VHrZ/i3KUfUomNVH/8+QxoSwNXa6TMV2 OEftXO7q/2IaCt1SSIPwpsZz7Q== -----END CERTIFICATE-----Generated at Sun Mar 1 22:15:31 2026 by rpki-client