$ rpki-client -vvf rpki.apnic.net/member_repository/A91F6D55/2BA7395E16A411EDA838110BC4F9AE02/oYzT_oKtIYA8HwsTLa2D0cNUk0s.mft File: oYzT_oKtIYA8HwsTLa2D0cNUk0s.mft (raw, json) Hash identifier: aPKzIM5s6SllcuLZJr36ln2RWLVF8Jme2P1XZZSXslY= Subject key identifier: 81:CD:78:DE:9A:C3:3A:EC:23:05:ED:0F:12:98:97:72:2F:01:DB:A3 Authority key identifier: A1:8C:D3:FE:82:AD:21:80:3C:1F:0B:13:2D:AD:83:D1:C3:54:93:4B Certificate issuer: /CN=A91F6D55/serialNumber=A18CD3FE82AD21803C1F0B132DAD83D1C354934B Certificate serial: 02F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oYzT_oKtIYA8HwsTLa2D0cNUk0s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F6D55/2BA7395E16A411EDA838110BC4F9AE02/oYzT_oKtIYA8HwsTLa2D0cNUk0s.mft Manifest number: 02ED Signing time: Mon 02 Mar 2026 00:01:18 +0000 Manifest this update: Mon 02 Mar 2026 00:01:15 +0000 Manifest next update: Mon 09 Mar 2026 00:01:15 +0000 Files and hashes: 1: oYzT_oKtIYA8HwsTLa2D0cNUk0s.crl (hash: fayz8mQUjcB27sJDDW9N+9x5xhTjW+a92ryzGm+SsDk=) 2: 929D0EB616A611ED86A3EF0CC4F9AE02.roa (hash: F9Rj/XqATn1zywLlT+11oxByZBWlqSz3GPhD+W7p31Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F6D55/2BA7395E16A411EDA838110BC4F9AE02/oYzT_oKtIYA8HwsTLa2D0cNUk0s.crl rsync://rpki.apnic.net/member_repository/A91F6D55/2BA7395E16A411EDA838110BC4F9AE02/oYzT_oKtIYA8HwsTLa2D0cNUk0s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oYzT_oKtIYA8HwsTLa2D0cNUk0s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:01:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 754 (0x2f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F6D55, serialNumber=A18CD3FE82AD21803C1F0B132DAD83D1C354934B Validity Not Before: Mar 2 00:01:15 2026 GMT Not After : Mar 9 00:01:15 2026 GMT Subject: CN=69a4d34d-a347 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:77:e7:c0:f9:80:73:38:44:c9:54:41:f3:47: 03:43:42:f2:1f:40:ff:73:32:74:85:d6:17:13:e1: db:2c:59:b1:4f:52:07:b2:eb:42:07:76:ac:76:9e: fe:e9:ac:ba:4d:9b:22:7a:2b:16:17:97:89:64:91: e2:2f:8c:e4:1d:d3:21:84:36:fb:36:dd:bf:fc:8a: 51:33:5b:0d:f9:56:cd:9d:93:f7:05:8d:ee:ae:79: cf:cd:38:23:9f:a0:74:92:e2:21:5a:c2:f9:b9:41: fd:3f:39:58:71:17:4e:95:5a:8a:19:f2:47:55:dc: 61:38:6b:93:f6:91:b7:8c:f0:99:d9:da:49:2c:60: 8b:81:09:66:b7:8f:da:4d:30:ab:fd:33:81:04:67: 01:a0:87:ca:36:f4:94:91:f4:b4:a2:7b:e3:8c:62: 85:45:d0:d5:38:68:00:b0:13:20:8a:09:60:97:0c: 63:1b:0d:fd:32:05:29:9a:2f:8f:f5:f7:6e:35:14: 5c:cc:e6:c0:ea:c9:1b:29:01:a4:99:bc:dc:a8:a3: a8:cd:78:55:ea:b6:23:f3:e5:d8:cd:29:89:cd:ea: 05:ef:bf:e3:20:06:32:81:7f:c6:75:8b:27:28:b0: 1e:e0:72:78:f8:8b:5a:d5:d1:c2:b4:49:19:c4:f5: 9b:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:CD:78:DE:9A:C3:3A:EC:23:05:ED:0F:12:98:97:72:2F:01:DB:A3 X509v3 Authority Key Identifier: keyid:A1:8C:D3:FE:82:AD:21:80:3C:1F:0B:13:2D:AD:83:D1:C3:54:93:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F6D55/2BA7395E16A411EDA838110BC4F9AE02/oYzT_oKtIYA8HwsTLa2D0cNUk0s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oYzT_oKtIYA8HwsTLa2D0cNUk0s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F6D55/2BA7395E16A411EDA838110BC4F9AE02/oYzT_oKtIYA8HwsTLa2D0cNUk0s.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:92:9b:85:df:c1:72:6a:08:71:70:b0:04:4e:bc:43:5d:0f: 3c:f0:55:ec:ca:86:15:a6:9f:e7:4e:3b:ec:1f:bb:53:33:e6: 4e:97:3a:20:89:0a:cf:4f:5d:48:43:fb:65:74:d5:8c:c0:be: 18:f4:35:b9:ad:f6:9d:7c:f9:59:81:70:80:d7:d2:aa:44:29: 6f:72:94:c1:bd:8d:fb:28:1f:7b:f7:38:bb:ea:81:31:1a:ec: 1b:dc:aa:0c:ea:55:db:d0:32:39:47:80:06:fe:89:30:f4:36: 0d:36:49:62:be:6e:45:61:c8:99:87:4e:52:44:c0:ea:40:ff: 0a:fc:b5:82:1f:36:3c:7d:1b:b4:e3:fa:11:d3:8f:4d:89:21: e6:2b:c2:10:40:0a:0f:d7:e1:96:c8:fc:8e:fe:b9:ee:2b:07: f5:74:41:5d:b8:98:1a:54:62:91:61:ba:05:19:94:8a:fa:f8: 16:90:f8:fd:dd:6e:2f:29:77:46:5d:a0:50:f0:14:ef:aa:78: a2:97:f3:03:1c:55:2f:b9:0a:cb:ff:2c:30:cf:14:72:df:db: 5b:c2:31:5f:be:56:02:6a:7e:36:cb:a5:c6:17:21:90:61:54: 6e:d5:78:0b:f1:4b:80:57:65:02:d4:95:85:05:59:bf:d2:34: d2:e0:b6:d1 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAvIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjZENTUxMTAvBgNVBAUTKEExOENEM0ZFODJBRDIxODAzQzFGMEIxMzJEQUQ4M0Qx QzM1NDkzNEIwHhcNMjYwMzAyMDAwMTE1WhcNMjYwMzA5MDAwMTE1WjAYMRYwFAYD VQQDEw02OWE0ZDM0ZC1hMzQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwHfnwPmAczhEyVRB80cDQ0LyH0D/czJ0hdYXE+HbLFmxT1IHsutCB3asdp7+ 6ay6TZsieisWF5eJZJHiL4zkHdMhhDb7Nt2//IpRM1sN+VbNnZP3BY3urnnPzTgj n6B0kuIhWsL5uUH9PzlYcRdOlVqKGfJHVdxhOGuT9pG3jPCZ2dpJLGCLgQlmt4/a TTCr/TOBBGcBoIfKNvSUkfS0onvjjGKFRdDVOGgAsBMgiglglwxjGw39MgUpmi+P 9fduNRRczObA6skbKQGkmbzcqKOozXhV6rYj8+XYzSmJzeoF77/jIAYygX/GdYsn KLAe4HJ4+Ita1dHCtEkZxPWbfQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIHNeN6a wzrsIwXtDxKYl3IvAdujMB8GA1UdIwQYMBaAFKGM0/6CrSGAPB8LEy2tg9HDVJNL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNkQ1NS8yQkE3Mzk1RTE2 QTQxMUVEQTgzODExMEJDNEY5QUUwMi9vWXpUX29LdElZQThId3NUTGEyRDBjTlVr MHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29ZelRfb0t0SVlBOEh3c1RMYTJEMGNOVWswcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NkQ1NS8yQkE3Mzk1RTE2QTQxMUVEQTgzODExMEJDNEY5QUUwMi9vWXpUX29LdElZ QThId3NUTGEyRDBjTlVrMHMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAMJKbhd/BcmoIcXCwBE68Q10PPPBV7MqGFaaf50477B+7UzPmTpc6IIkKz09d SEP7ZXTVjMC+GPQ1ua32nXz5WYFwgNfSqkQpb3KUwb2N+ygfe/c4u+qBMRrsG9yq DOpV29AyOUeABv6JMPQ2DTZJYr5uRWHImYdOUkTA6kD/Cvy1gh82PH0btOP6EdOP TYkh5ivCEEAKD9fhlsj8jv657isH9XRBXbiYGlRikWG6BRmUivr4FpD4/d1uLyl3 Rl2gUPAU76p4opfzAxxVL7kKy/8sMM8Uct/bW8IxX75WAmp+NsulxhchkGFUbtV4 C/FLgFdlAtSVhQVZv9I00uC20Q== -----END CERTIFICATE-----Generated at Mon Mar 2 10:57:06 2026 by rpki-client