$ rpki-client -vvf rpki.apnic.net/member_repository/A91F61DA/17C81FD0F41E11E9A8343A74C4F9AE02/oVZKa9a5Cg-he_V9i-rJ4pJZves.mft File: oVZKa9a5Cg-he_V9i-rJ4pJZves.mft (raw, json) Hash identifier: PfRpKD6DJZay1dV0aMRjNaaqzZlbWFpo0iVSV9KkJNM= Subject key identifier: 7B:9E:6B:4F:AA:44:BB:F1:B1:1E:34:A7:51:A6:59:B3:EB:67:45:AF Authority key identifier: A1:56:4A:6B:D6:B9:0A:0F:A1:7B:F5:7D:8B:EA:C9:E2:92:59:BD:EB Certificate issuer: /CN=A91F61DA/serialNumber=A1564A6BD6B90A0FA17BF57D8BEAC9E29259BDEB Certificate serial: 0D3B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oVZKa9a5Cg-he_V9i-rJ4pJZves.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F61DA/17C81FD0F41E11E9A8343A74C4F9AE02/oVZKa9a5Cg-he_V9i-rJ4pJZves.mft Manifest number: 0D2F Signing time: Mon 02 Mar 2026 02:09:51 +0000 Manifest this update: Mon 02 Mar 2026 02:09:49 +0000 Manifest next update: Mon 09 Mar 2026 02:09:49 +0000 Files and hashes: 1: oVZKa9a5Cg-he_V9i-rJ4pJZves.crl (hash: QoQ894t7eDyU+5H2zHbzKEgyY9Tw3+2jWfnmFHAScP8=) 2: EA18D5547D8F11EC8E894A1DC4F9AE02.roa (hash: XMEHY700mwLD1H5UH+kDiYWGkC5d0JNM+7D3NKZezoM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F61DA/17C81FD0F41E11E9A8343A74C4F9AE02/oVZKa9a5Cg-he_V9i-rJ4pJZves.crl rsync://rpki.apnic.net/member_repository/A91F61DA/17C81FD0F41E11E9A8343A74C4F9AE02/oVZKa9a5Cg-he_V9i-rJ4pJZves.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oVZKa9a5Cg-he_V9i-rJ4pJZves.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:09:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3387 (0xd3b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F61DA, serialNumber=A1564A6BD6B90A0FA17BF57D8BEAC9E29259BDEB Validity Not Before: Mar 2 02:09:49 2026 GMT Not After : Mar 9 02:09:49 2026 GMT Subject: CN=69a4f16e-a208 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:a3:00:f5:2f:62:62:71:d8:28:b8:bc:23:91: 4d:ad:b2:09:90:66:a2:22:d4:0e:cc:dc:58:31:ba: 24:84:75:9b:b5:dc:27:51:d4:db:58:15:b5:12:5b: 6f:53:38:69:4d:3d:b4:4d:0f:78:54:21:1f:03:ac: b1:91:f3:66:6e:9f:c9:44:b4:9c:1f:92:6d:c3:8c: 39:28:0e:ab:7a:0f:ab:3e:82:07:40:23:1f:2b:85: ce:18:b0:7c:cf:c8:b8:2a:f1:eb:74:5f:9e:b1:91: b5:fe:3b:ec:f8:69:bc:6a:30:66:ee:25:d5:9c:61: 62:dd:ab:9b:92:04:07:34:a1:88:cf:f6:60:91:0d: e9:71:c9:cb:8a:09:83:fd:70:09:20:70:3a:f7:32: 54:25:17:ba:02:86:cc:51:f9:5e:76:57:d7:0f:ac: 4a:da:32:57:4e:94:8d:f5:70:5f:06:c1:5b:f6:a3: c9:bc:4a:ee:88:3b:6a:d7:73:6b:63:52:88:b9:01: d1:db:15:17:a4:ef:2e:85:44:28:ff:a1:82:b6:cc: ab:d4:43:43:27:c1:40:d1:65:9e:d2:96:31:25:61: 00:cb:1b:28:f4:d1:db:e9:42:fb:5f:96:5a:5d:c4: 50:d3:e1:b4:ce:8a:8b:0e:2d:de:98:b3:d1:54:6c: 42:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:9E:6B:4F:AA:44:BB:F1:B1:1E:34:A7:51:A6:59:B3:EB:67:45:AF X509v3 Authority Key Identifier: keyid:A1:56:4A:6B:D6:B9:0A:0F:A1:7B:F5:7D:8B:EA:C9:E2:92:59:BD:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F61DA/17C81FD0F41E11E9A8343A74C4F9AE02/oVZKa9a5Cg-he_V9i-rJ4pJZves.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oVZKa9a5Cg-he_V9i-rJ4pJZves.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F61DA/17C81FD0F41E11E9A8343A74C4F9AE02/oVZKa9a5Cg-he_V9i-rJ4pJZves.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:39:cd:5b:67:e4:62:54:61:1f:e2:d9:13:05:7a:71:6a:ff: f3:fc:85:c6:42:d7:a2:74:ea:92:72:b5:99:ef:95:ba:a6:5d: 35:87:31:45:e0:d9:d6:38:4a:02:bb:38:98:a9:78:ac:d6:b1: 1c:8f:19:c1:07:65:cd:e0:f7:7e:c2:7e:76:61:53:b7:20:b7: a4:10:46:e0:bd:d2:e8:68:22:18:48:1b:b6:3c:3d:38:85:0f: bf:20:92:86:ac:4a:8b:8e:fb:69:e9:f4:e0:86:31:dd:e2:b4: 7e:e5:fc:5d:3b:8a:ac:fa:b6:d5:4a:1a:7f:70:0d:de:e5:0d: 3b:5d:23:4e:30:d6:79:01:ca:cc:51:41:d1:da:d7:4f:7e:7f: d0:38:e6:9d:5a:83:bd:d7:0c:ad:1e:62:bb:e1:eb:78:d1:ad: df:26:6a:72:1d:e5:d2:9f:10:83:f0:c3:cd:77:bc:e8:63:87: 69:6b:29:b5:f7:63:29:ab:73:da:bc:88:3c:7b:dd:30:11:ed: 3c:34:59:14:78:61:ac:b8:cd:19:66:bd:c8:df:1d:82:53:23: e2:9d:6c:c7:8f:a2:d5:b8:2e:df:9f:66:e5:43:f0:fa:c1:1e: 15:6e:c6:f8:7e:c3:95:21:2b:78:7f:35:1e:0d:94:ce:44:88: 4d:0f:c7:ba -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDTswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjYxREExMTAvBgNVBAUTKEExNTY0QTZCRDZCOTBBMEZBMTdCRjU3RDhCRUFDOUUy OTI1OUJERUIwHhcNMjYwMzAyMDIwOTQ5WhcNMjYwMzA5MDIwOTQ5WjAYMRYwFAYD VQQDEw02OWE0ZjE2ZS1hMjA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnqMA9S9iYnHYKLi8I5FNrbIJkGaiItQOzNxYMbokhHWbtdwnUdTbWBW1Eltv UzhpTT20TQ94VCEfA6yxkfNmbp/JRLScH5Jtw4w5KA6reg+rPoIHQCMfK4XOGLB8 z8i4KvHrdF+esZG1/jvs+Gm8ajBm7iXVnGFi3aubkgQHNKGIz/ZgkQ3pccnLigmD /XAJIHA69zJUJRe6AobMUfledlfXD6xK2jJXTpSN9XBfBsFb9qPJvEruiDtq13Nr Y1KIuQHR2xUXpO8uhUQo/6GCtsyr1ENDJ8FA0WWe0pYxJWEAyxso9NHb6UL7X5Za XcRQ0+G0zoqLDi3emLPRVGxC2QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHuea0+q RLvxsR40p1GmWbPrZ0WvMB8GA1UdIwQYMBaAFKFWSmvWuQoPoXv1fYvqyeKSWb3r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjFEQS8xN0M4MUZEMEY0 MUUxMUU5QTgzNDNBNzRDNEY5QUUwMi9vVlpLYTlhNUNnLWhlX1Y5aS1ySjRwSlp2 ZXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29WWkthOWE1Q2ctaGVfVjlpLXJKNHBKWnZlcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NjFEQS8xN0M4MUZEMEY0MUUxMUU5QTgzNDNBNzRDNEY5QUUwMi9vVlpLYTlhNUNn LWhlX1Y5aS1ySjRwSlp2ZXMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEACDnNW2fkYlRhH+LZEwV6cWr/8/yFxkLXonTqknK1me+VuqZdNYcxReDZ1jhK Ars4mKl4rNaxHI8ZwQdlzeD3fsJ+dmFTtyC3pBBG4L3S6GgiGEgbtjw9OIUPvyCS hqxKi477aen04IYx3eK0fuX8XTuKrPq21Uoaf3AN3uUNO10jTjDWeQHKzFFB0drX T35/0DjmnVqDvdcMrR5iu+HreNGt3yZqch3l0p8Qg/DDzXe86GOHaWsptfdjKatz 2ryIPHvdMBHtPDRZFHhhrLjNGWa9yN8dglMj4p1sx4+i1bgu359m5UPw+sEeFW7G +H7DlSEreH81Hg2UzkSITQ/Hug== -----END CERTIFICATE-----Generated at Mon Mar 2 09:32:00 2026 by rpki-client