$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE5E5/F97BC302AFBF11EFA28A3654C4F9AE02/oA4C3Hg_kIQCHflPdYYmTsR9NDg.mft File: oA4C3Hg_kIQCHflPdYYmTsR9NDg.mft (raw, json) Hash identifier: Hej9A3NNXbLZO8Y590msAJro6Y/a/HGYhyjxW04GNNA= Subject key identifier: BB:35:FE:BC:A4:80:BE:8D:CD:97:CE:A2:52:7B:C9:66:95:CC:3A:64 Authority key identifier: A0:0E:02:DC:78:3F:90:84:02:1D:F9:4F:75:86:26:4E:C4:7D:34:38 Certificate issuer: /CN=A91EE5E5/serialNumber=A00E02DC783F9084021DF94F7586264EC47D3438 Certificate serial: EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oA4C3Hg_kIQCHflPdYYmTsR9NDg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE5E5/F97BC302AFBF11EFA28A3654C4F9AE02/oA4C3Hg_kIQCHflPdYYmTsR9NDg.mft Manifest number: EB Signing time: Sun 01 Mar 2026 07:31:47 +0000 Manifest this update: Sun 01 Mar 2026 07:31:47 +0000 Manifest next update: Sun 08 Mar 2026 07:31:47 +0000 Files and hashes: 1: oA4C3Hg_kIQCHflPdYYmTsR9NDg.crl (hash: Gh9evF4n6/bCp4Nk9tI0nxrqcn3PwIm4dvNOPNtMq58=) 2: 1597CAC6B00711EF863A582EC4F9AE02.roa (hash: IqDMTyruA2o3kZ6gTDDM02dt4rvWX85dpnn386y/+D0=) 3: 5D5CEDCEAFC011EFAA2E3455C4F9AE02.roa (hash: 0pzKKUDi8I5wmawXMvsnYBP2IX8f3vry9Bpy1YjoPY4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE5E5/F97BC302AFBF11EFA28A3654C4F9AE02/oA4C3Hg_kIQCHflPdYYmTsR9NDg.crl rsync://rpki.apnic.net/member_repository/A91EE5E5/F97BC302AFBF11EFA28A3654C4F9AE02/oA4C3Hg_kIQCHflPdYYmTsR9NDg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oA4C3Hg_kIQCHflPdYYmTsR9NDg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 07:31:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 239 (0xef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE5E5, serialNumber=A00E02DC783F9084021DF94F7586264EC47D3438 Validity Not Before: Mar 1 07:31:47 2026 GMT Not After : Mar 8 07:31:47 2026 GMT Subject: CN=69a3eb63-6e9f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:d0:2b:64:cd:3a:f1:c8:cf:97:a1:cf:14:91: 55:26:40:dd:89:ed:eb:4c:9f:03:5f:d1:35:d8:c6: 2a:1f:76:e1:a8:a1:63:43:2c:07:21:ae:66:1f:ff: 0a:b9:fd:4e:a1:54:2d:bd:01:b1:27:e0:60:8f:21: 71:20:1d:7c:c3:5e:46:05:f1:aa:60:85:f4:e0:33: 70:1b:5b:ba:6a:19:95:f9:d9:29:db:3b:fc:33:77: 0a:b6:b4:10:c7:3a:7c:d7:9d:8d:61:da:9b:ad:38: af:ce:51:3d:f6:0e:65:c5:37:6f:6b:45:ce:de:68: 16:d7:66:b0:a5:38:5a:1a:e1:e0:76:73:a9:97:9d: 57:ad:5b:30:28:c1:f4:5f:65:03:b1:ed:fd:1f:54: f0:bc:ec:fd:e9:37:68:c8:a5:b6:4a:32:12:99:a2: be:0c:fe:8d:d6:c2:74:f3:e7:f9:de:bc:b5:20:4f: de:55:74:4d:54:0d:0e:59:09:07:50:b3:88:0a:2e: 22:80:02:3f:c5:31:25:db:d1:0b:b8:55:98:36:d7: 0f:8f:71:5a:f5:3e:ea:70:93:b4:ce:f3:d2:a8:87: a5:42:7d:a9:8e:81:de:53:c8:0a:26:a8:15:a0:63: 19:71:48:54:90:91:57:dd:83:5c:c6:c4:a0:af:f4: 81:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:35:FE:BC:A4:80:BE:8D:CD:97:CE:A2:52:7B:C9:66:95:CC:3A:64 X509v3 Authority Key Identifier: keyid:A0:0E:02:DC:78:3F:90:84:02:1D:F9:4F:75:86:26:4E:C4:7D:34:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE5E5/F97BC302AFBF11EFA28A3654C4F9AE02/oA4C3Hg_kIQCHflPdYYmTsR9NDg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oA4C3Hg_kIQCHflPdYYmTsR9NDg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE5E5/F97BC302AFBF11EFA28A3654C4F9AE02/oA4C3Hg_kIQCHflPdYYmTsR9NDg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:70:6a:cf:13:6e:4f:54:f2:5a:52:6b:39:81:7f:be:4c:b7: 9b:9a:e9:52:28:2f:54:9a:af:b5:08:b7:d0:b7:9d:f2:23:13: ed:fa:d8:55:9c:8e:1f:5a:43:85:07:62:58:e2:56:ab:37:fc: 2c:71:b9:29:ac:c2:30:bb:87:52:f0:86:c7:ab:aa:11:f8:20: 27:6c:43:57:8f:cf:9d:77:23:1e:6e:48:3e:6e:8f:16:4f:2f: 20:06:c3:66:df:0c:b6:0f:9c:5c:ee:e0:5e:51:fb:7d:54:67: c9:1b:71:c9:f2:49:9b:1a:bf:cd:f5:77:b9:67:04:34:02:a7: 74:fc:75:cc:1b:5e:6c:b7:bf:bb:e5:53:5e:0b:54:48:71:4f: 74:73:54:b5:8a:9f:5d:52:54:62:f7:44:09:1d:6b:41:0a:6c: 99:58:e1:24:6f:f7:3a:6a:59:f4:49:fd:19:3e:63:f6:b5:88: 74:a6:71:a4:80:61:e6:af:8b:cc:ca:69:27:73:01:3f:9a:9a: 68:d3:09:8e:f6:98:04:22:1c:04:d0:e7:db:ce:0f:63:70:cb: 04:f2:71:59:33:ff:12:d3:b1:89:ab:a2:15:db:e1:35:50:38: 6e:09:8a:54:c2:fa:5d:3f:d3:01:c2:c9:a4:a6:c1:07:0c:5e: d8:f3:c3:cf -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAO8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUU1RTUxMTAvBgNVBAUTKEEwMEUwMkRDNzgzRjkwODQwMjFERjk0Rjc1ODYyNjRF QzQ3RDM0MzgwHhcNMjYwMzAxMDczMTQ3WhcNMjYwMzA4MDczMTQ3WjAYMRYwFAYD VQQDEw02OWEzZWI2My02ZTlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAotArZM068cjPl6HPFJFVJkDdie3rTJ8DX9E12MYqH3bhqKFjQywHIa5mH/8K uf1OoVQtvQGxJ+BgjyFxIB18w15GBfGqYIX04DNwG1u6ahmV+dkp2zv8M3cKtrQQ xzp8152NYdqbrTivzlE99g5lxTdva0XO3mgW12awpThaGuHgdnOpl51XrVswKMH0 X2UDse39H1TwvOz96TdoyKW2SjISmaK+DP6N1sJ08+f53ry1IE/eVXRNVA0OWQkH ULOICi4igAI/xTEl29ELuFWYNtcPj3Fa9T7qcJO0zvPSqIelQn2pjoHeU8gKJqgV oGMZcUhUkJFX3YNcxsSgr/SBOwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLs1/ryk gL6NzZfOolJ7yWaVzDpkMB8GA1UdIwQYMBaAFKAOAtx4P5CEAh35T3WGJk7EfTQ4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRTVFNS9GOTdCQzMwMkFG QkYxMUVGQTI4QTM2NTRDNEY5QUUwMi9vQTRDM0hnX2tJUUNIZmxQZFlZbVRzUjlO RGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29BNEMzSGdfa0lRQ0hmbFBkWVltVHNSOU5EZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RTVFNS9GOTdCQzMwMkFGQkYxMUVGQTI4QTM2NTRDNEY5QUUwMi9vQTRDM0hnX2tJ UUNIZmxQZFlZbVRzUjlORGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAMnBqzxNuT1TyWlJrOYF/vky3m5rpUigvVJqvtQi30Led8iMT7frYVZyOH1pD hQdiWOJWqzf8LHG5KazCMLuHUvCGx6uqEfggJ2xDV4/PnXcjHm5IPm6PFk8vIAbD Zt8Mtg+cXO7gXlH7fVRnyRtxyfJJmxq/zfV3uWcENAKndPx1zBtebLe/u+VTXgtU SHFPdHNUtYqfXVJUYvdECR1rQQpsmVjhJG/3OmpZ9En9GT5j9rWIdKZxpIBh5q+L zMppJ3MBP5qaaNMJjvaYBCIcBNDn284PY3DLBPJxWTP/EtOxiauiFdvhNVA4bgmK VML6XT/TAcLJpKbBBwxe2PPDzw== -----END CERTIFICATE-----Generated at Sun Mar 1 20:24:17 2026 by rpki-client