$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft File: oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft (raw, json) Hash identifier: Dw9XkQOH6+ngju3HZcgttDkWgDLK4+GyMBN9/05yJbk= Subject key identifier: CB:4E:4B:F3:94:9D:C9:E9:B8:FD:30:11:B1:E8:9E:7D:D5:3C:E2:92 Authority key identifier: A0:AC:42:7E:95:7B:37:4D:02:67:FA:76:48:DD:3F:F8:57:02:DA:B1 Certificate issuer: /CN=A91FA024/serialNumber=A0AC427E957B374D0267FA7648DD3FF85702DAB1 Certificate serial: 086F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKxCfpV7N00CZ_p2SN0_-FcC2rE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft Manifest number: 0866 Signing time: Mon 02 Mar 2026 00:57:37 +0000 Manifest this update: Mon 02 Mar 2026 00:57:35 +0000 Manifest next update: Mon 09 Mar 2026 00:57:35 +0000 Files and hashes: 1: oKxCfpV7N00CZ_p2SN0_-FcC2rE.crl (hash: LUQLxyD3b+7r9vZEy+JLQloSo986tJFYlY5FhX8NbiQ=) 2: FE1FDB12BCD011EC8283681EC4F9AE02.roa (hash: r37tIom0PQWmaxr5fhR0abZbJcQ9CFZOevZC51ud4HM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.crl rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKxCfpV7N00CZ_p2SN0_-FcC2rE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:57:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2159 (0x86f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA024, serialNumber=A0AC427E957B374D0267FA7648DD3FF85702DAB1 Validity Not Before: Mar 2 00:57:35 2026 GMT Not After : Mar 9 00:57:35 2026 GMT Subject: CN=69a4e080-ea95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:c9:fe:85:9d:cb:57:a6:58:88:dd:1b:07:89: 17:66:16:ff:dd:be:90:1f:8b:60:7c:be:44:44:21: 76:30:cc:7d:09:5c:88:59:38:bf:53:6d:93:b2:fc: 38:52:af:51:d3:06:9b:ab:82:ae:9c:0e:5c:b3:d1: 21:42:33:7f:fc:5b:3d:6c:8b:de:95:61:82:4e:18: 9b:9d:8a:54:12:d5:f5:00:d4:c8:c9:9c:43:74:5b: 16:e5:7e:5e:46:da:ec:8b:d9:84:8b:d6:72:16:6a: 9b:5e:16:bd:77:35:1a:68:92:bf:67:89:97:79:8d: d3:58:ee:c4:c3:2a:a6:8d:88:a8:b3:f7:43:35:66: 9c:d2:13:3e:38:04:db:b4:60:77:31:c7:b4:26:54: bb:5e:b4:f0:1e:1d:3c:01:a8:6d:47:0b:51:f4:e7: 4b:cd:24:d0:56:f2:1f:ae:68:a2:6b:10:3a:3f:41: 9e:9b:7f:05:d7:85:d9:6d:03:85:fa:c3:e0:cd:9c: 5a:89:88:f7:0f:8e:8e:08:20:96:de:e2:32:df:85: e4:f5:51:56:c1:36:65:52:b4:95:c1:29:c0:58:c5: 71:b5:35:62:17:0b:00:35:ca:8a:e8:f5:97:4a:5b: 7a:9c:b1:0a:ad:72:87:02:fb:32:ff:29:2e:b0:db: 59:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:4E:4B:F3:94:9D:C9:E9:B8:FD:30:11:B1:E8:9E:7D:D5:3C:E2:92 X509v3 Authority Key Identifier: keyid:A0:AC:42:7E:95:7B:37:4D:02:67:FA:76:48:DD:3F:F8:57:02:DA:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKxCfpV7N00CZ_p2SN0_-FcC2rE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:a5:d4:27:a6:82:91:a4:69:01:a9:aa:2a:b8:1a:b8:a6:57: 6f:42:de:49:d0:5e:63:85:d8:3d:f8:40:45:fb:37:72:dc:ab: 60:36:ea:78:a7:8e:23:81:67:46:d8:a3:9d:8b:1a:fc:04:c4: 8e:fa:83:ed:40:75:d5:bb:7b:17:52:2b:80:14:7e:a3:8f:45: 92:a4:ba:52:6f:c7:ea:f1:40:77:21:8c:c8:3f:e8:a0:85:98: b2:89:c3:8f:66:46:70:2f:d5:a8:38:30:a8:fa:ea:c9:29:86: 4d:1c:3a:c2:9d:ed:29:46:d7:af:42:84:3d:ce:51:be:e4:9f: b9:48:d2:5f:53:7a:b7:eb:e8:10:bd:a0:1b:0d:67:e7:23:53: 4f:2f:2f:13:94:ea:46:8d:7d:e2:72:ed:a9:08:9c:37:e9:e7: 84:ea:6b:2d:e6:67:af:81:fe:e2:63:d6:d3:aa:4a:21:a1:10: 46:81:0a:ee:52:7e:d8:e9:62:75:f0:f8:0d:3f:27:97:07:0d: e2:5a:b8:76:d9:c6:6b:e4:da:1a:31:d3:53:f1:3b:a0:01:d9: ad:70:fa:d3:1f:56:a8:c1:ed:f4:3e:4c:1c:ae:21:d3:25:0d: 16:43:48:ff:62:e9:7a:9e:44:e7:cf:c2:f0:7c:02:c5:41:33: 38:8b:24:e5 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCG8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkEwMjQxMTAvBgNVBAUTKEEwQUM0MjdFOTU3QjM3NEQwMjY3RkE3NjQ4REQzRkY4 NTcwMkRBQjEwHhcNMjYwMzAyMDA1NzM1WhcNMjYwMzA5MDA1NzM1WjAYMRYwFAYD VQQDEw02OWE0ZTA4MC1lYTk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqcn+hZ3LV6ZYiN0bB4kXZhb/3b6QH4tgfL5ERCF2MMx9CVyIWTi/U22Tsvw4 Uq9R0wabq4KunA5cs9EhQjN//Fs9bIvelWGCThibnYpUEtX1ANTIyZxDdFsW5X5e Rtrsi9mEi9ZyFmqbXha9dzUaaJK/Z4mXeY3TWO7EwyqmjYios/dDNWac0hM+OATb tGB3Mce0JlS7XrTwHh08AahtRwtR9OdLzSTQVvIfrmiiaxA6P0Gem38F14XZbQOF +sPgzZxaiYj3D46OCCCW3uIy34Xk9VFWwTZlUrSVwSnAWMVxtTViFwsANcqK6PWX Slt6nLEKrXKHAvsy/ykusNtZUQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMtOS/OU ncnpuP0wEbHonn3VPOKSMB8GA1UdIwQYMBaAFKCsQn6VezdNAmf6dkjdP/hXAtqx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTAyNC9EMzNBNDc5NEYx ODgxMUVBOUU4MEY3MUVDNEY5QUUwMi9vS3hDZnBWN04wMENaX3AyU04wXy1GY0My ckUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29LeENmcFY3TjAwQ1pfcDJTTjBfLUZjQzJyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QTAyNC9EMzNBNDc5NEYxODgxMUVBOUU4MEY3MUVDNEY5QUUwMi9vS3hDZnBWN04w MENaX3AyU04wXy1GY0MyckUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAd6XUJ6aCkaRpAamqKrgauKZXb0LeSdBeY4XYPfhARfs3ctyrYDbqeKeOI4Fn RtijnYsa/ATEjvqD7UB11bt7F1IrgBR+o49FkqS6Um/H6vFAdyGMyD/ooIWYsonD j2ZGcC/VqDgwqPrqySmGTRw6wp3tKUbXr0KEPc5RvuSfuUjSX1N6t+voEL2gGw1n 5yNTTy8vE5TqRo194nLtqQicN+nnhOprLeZnr4H+4mPW06pKIaEQRoEK7lJ+2Oli dfD4DT8nlwcN4lq4dtnGa+TaGjHTU/E7oAHZrXD60x9WqMHt9D5MHK4h0yUNFkNI /2Lpep5E58/C8HwCxUEzOIsk5Q== -----END CERTIFICATE-----Generated at Mon Mar 2 04:12:11 2026 by rpki-client