$ rpki-client -vvf rpki.apnic.net/member_repository/A91F7DCD/84428B0E73D111EA9CDEC534C4F9AE02/O9MC-nouhmpnmxtglttnRToDq4Y.mft File: O9MC-nouhmpnmxtglttnRToDq4Y.mft (raw, json) Hash identifier: Rn6tEc0Be0/aULUD5th7FDZbu1+t82Y1m6ZajEAmjO4= Subject key identifier: D9:23:37:59:55:DC:E8:B6:EA:F7:F8:F3:EB:0E:B3:6F:61:BB:75:AA Authority key identifier: 3B:D3:02:FA:7A:2E:86:6A:67:9B:1B:60:96:DB:67:45:3A:03:AB:86 Certificate issuer: /CN=A91F7DCD/serialNumber=3BD302FA7A2E866A679B1B6096DB67453A03AB86 Certificate serial: 0AC1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O9MC-nouhmpnmxtglttnRToDq4Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F7DCD/84428B0E73D111EA9CDEC534C4F9AE02/O9MC-nouhmpnmxtglttnRToDq4Y.mft Manifest number: 0AA7 Signing time: Sat 28 Feb 2026 19:46:04 +0000 Manifest this update: Sat 28 Feb 2026 19:46:03 +0000 Manifest next update: Sat 07 Mar 2026 19:46:03 +0000 Files and hashes: 1: O9MC-nouhmpnmxtglttnRToDq4Y.crl (hash: 8bXXuUwVQnB+sP4zomlmBp0EaHgibdjr7oy4fiu0nWU=) 2: 855AECF29B3A11EB9B73EB7BC4F9AE02.roa (hash: NLByGRv6anI6tIVcb5p+1Xch3v2zcxtkN/xSf48UIQU=) 3: 0791DE6034A511ED9D82D13BC4F9AE02.roa (hash: YgLuhvSqEin+i5SUp1az8jMscHcAbxhVSlyBc8B1vlM=) 4: 27323072FF0E11EFB014CB3CC4F9AE02.roa (hash: wxcY42YjsuRVvMQ/m7CB1YYbOqzcrhZ00l1RvoVq8ek=) 5: 62512E2C73D311EABC99D63AC4F9AE02.roa (hash: DPmiaEz6M1OneZ4z1YKj44DcnnHVGKuSYV+vSNBuquw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F7DCD/84428B0E73D111EA9CDEC534C4F9AE02/O9MC-nouhmpnmxtglttnRToDq4Y.crl rsync://rpki.apnic.net/member_repository/A91F7DCD/84428B0E73D111EA9CDEC534C4F9AE02/O9MC-nouhmpnmxtglttnRToDq4Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O9MC-nouhmpnmxtglttnRToDq4Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 19:46:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2753 (0xac1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F7DCD, serialNumber=3BD302FA7A2E866A679B1B6096DB67453A03AB86 Validity Not Before: Feb 28 19:46:03 2026 GMT Not After : Mar 7 19:46:03 2026 GMT Subject: CN=69a345fc-4328 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:2c:56:55:cb:ee:8e:ac:1f:fa:aa:ba:73:91: a6:9d:6a:59:da:6e:9a:95:58:c8:33:b2:da:22:1d: 1d:3b:30:a3:57:77:05:d4:67:df:42:1c:63:25:26: b1:43:72:f5:82:e2:ff:68:6d:12:45:5f:54:89:fd: 91:bc:e8:22:6c:6e:87:f1:fd:8c:8d:a1:d5:81:82: a9:a6:84:42:a7:7b:18:46:4a:a7:a5:25:7f:61:1f: b3:4e:6b:b5:7d:27:70:4d:81:b3:02:4a:89:25:65: ad:37:cf:03:9b:cc:d9:64:38:aa:e6:52:fb:a2:b3: 5c:f4:80:8b:36:33:c8:b8:b2:8c:87:88:81:24:ae: a2:4d:d0:14:ff:01:ab:f2:ef:65:f3:c5:bd:7f:65: 63:ec:08:09:b0:67:79:3c:d3:c5:c9:9b:38:ef:64: 61:a1:16:bf:3f:5b:ff:89:be:54:00:8b:a7:22:bf: 08:37:06:a1:f8:67:e8:d2:8e:a6:38:0f:fe:a7:0e: 2e:e4:71:09:57:5d:70:d0:0d:91:66:c8:c1:0d:b3: 64:bb:17:6b:c3:be:2f:cb:6e:ce:bf:2d:f3:87:ad: aa:c2:0f:35:fb:85:25:e2:d4:ba:5e:ea:17:e5:e5: ec:26:26:c4:e1:37:bb:24:d6:3e:50:b0:97:af:c6: 21:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:23:37:59:55:DC:E8:B6:EA:F7:F8:F3:EB:0E:B3:6F:61:BB:75:AA X509v3 Authority Key Identifier: keyid:3B:D3:02:FA:7A:2E:86:6A:67:9B:1B:60:96:DB:67:45:3A:03:AB:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F7DCD/84428B0E73D111EA9CDEC534C4F9AE02/O9MC-nouhmpnmxtglttnRToDq4Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O9MC-nouhmpnmxtglttnRToDq4Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F7DCD/84428B0E73D111EA9CDEC534C4F9AE02/O9MC-nouhmpnmxtglttnRToDq4Y.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:e5:56:0e:93:fd:c4:5b:97:97:4d:eb:b6:58:0c:71:9c:19: 63:8d:7d:10:3b:fc:8c:63:38:5d:3a:84:0b:20:36:db:c3:9c: 95:a2:e8:b9:ba:43:7f:7e:96:67:e7:9a:17:1d:94:41:bc:d3: ff:a8:79:a8:04:41:1d:8d:22:ff:78:a2:21:df:59:d3:7f:2f: 4b:de:c2:54:2f:f2:41:65:5a:50:2c:62:8b:81:7f:0f:08:96: 1d:a8:b9:d5:e1:d4:f9:b2:23:c4:5c:12:1d:31:10:ae:4c:fb: 92:99:74:d6:df:c8:b0:87:ac:1e:71:bd:02:a1:79:d6:92:dd: 85:9e:f2:05:c2:cf:6e:64:47:73:7d:d1:9b:55:3c:90:4e:2c: c6:cc:87:27:25:5a:4d:60:78:5b:a0:10:7f:c9:cc:d8:78:ba: 37:aa:cd:00:b9:4d:3f:4d:92:a0:4e:6f:31:82:18:1e:b9:9b: 05:46:c0:07:ee:e5:d3:de:8d:fc:be:ba:87:24:cf:f4:a4:0e: fc:42:53:26:e4:01:81:89:3b:6f:60:b3:2f:d6:a7:d7:88:d2: ea:9a:49:c6:24:e7:63:7d:1d:09:d8:e7:46:bf:a1:5b:09:74: a5:90:bb:b5:55:01:dc:0d:b5:00:55:47:9c:3c:34:c9:6c:cf: 27:7f:4f:d0 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCsEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjdEQ0QxMTAvBgNVBAUTKDNCRDMwMkZBN0EyRTg2NkE2NzlCMUI2MDk2REI2NzQ1 M0EwM0FCODYwHhcNMjYwMjI4MTk0NjAzWhcNMjYwMzA3MTk0NjAzWjAYMRYwFAYD VQQDDA02OWEzNDVmYy00MzI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoixWVcvujqwf+qq6c5GmnWpZ2m6alVjIM7LaIh0dOzCjV3cF1GffQhxjJSax Q3L1guL/aG0SRV9Uif2RvOgibG6H8f2MjaHVgYKppoRCp3sYRkqnpSV/YR+zTmu1 fSdwTYGzAkqJJWWtN88Dm8zZZDiq5lL7orNc9ICLNjPIuLKMh4iBJK6iTdAU/wGr 8u9l88W9f2Vj7AgJsGd5PNPFyZs472RhoRa/P1v/ib5UAIunIr8INwah+Gfo0o6m OA/+pw4u5HEJV11w0A2RZsjBDbNkuxdrw74vy27Ovy3zh62qwg81+4Ul4tS6XuoX 5eXsJibE4Te7JNY+ULCXr8YhgwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNkjN1lV 3Oi26vf48+sOs29hu3WqMB8GA1UdIwQYMBaAFDvTAvp6LoZqZ5sbYJbbZ0U6A6uG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGN0RDRC84NDQyOEIwRTcz RDExMUVBOUNERUM1MzRDNEY5QUUwMi9POU1DLW5vdWhtcG5teHRnbHR0blJUb0Rx NFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL085TUMtbm91aG1wbm14dGdsdHRuUlRvRHE0WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG N0RDRC84NDQyOEIwRTczRDExMUVBOUNERUM1MzRDNEY5QUUwMi9POU1DLW5vdWht cG5teHRnbHR0blJUb0RxNFkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEACOVWDpP9xFuXl03rtlgMcZwZY419EDv8jGM4XTqECyA228OclaLoubpDf36W Z+eaFx2UQbzT/6h5qARBHY0i/3iiId9Z038vS97CVC/yQWVaUCxii4F/DwiWHai5 1eHU+bIjxFwSHTEQrkz7kpl01t/IsIesHnG9AqF51pLdhZ7yBcLPbmRHc33Rm1U8 kE4sxsyHJyVaTWB4W6AQf8nM2Hi6N6rNALlNP02SoE5vMYIYHrmbBUbAB+7l096N /L66hyTP9KQO/EJTJuQBgYk7b2CzL9an14jS6ppJxiTnY30dCdjnRr+hWwl0pZC7 tVUB3A21AFVHnDw0yWzPJ39P0A== -----END CERTIFICATE-----Generated at Sun Mar 1 22:26:24 2026 by rpki-client