$ rpki-client -vvf rpki.apnic.net/member_repository/A91FAA91/9420D2100A5A11EEA3F5B441C4F9AE02/oMgM7gY8nMgs3LC8dFxP5G3QJlc.mft File: oMgM7gY8nMgs3LC8dFxP5G3QJlc.mft (raw, json) Hash identifier: o3lvIVNY8EWGV1THd6PKfgn+QqWkkFwJY3SMGlPe/9k= Subject key identifier: 9F:A8:97:FF:43:FF:40:10:76:A1:07:89:32:0D:FD:52:4C:0C:6C:53 Authority key identifier: A0:C8:0C:EE:06:3C:9C:C8:2C:DC:B0:BC:74:5C:4F:E4:6D:D0:26:57 Certificate issuer: /CN=A91FAA91/serialNumber=A0C80CEE063C9CC82CDCB0BC745C4FE46DD02657 Certificate serial: 0243 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oMgM7gY8nMgs3LC8dFxP5G3QJlc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FAA91/9420D2100A5A11EEA3F5B441C4F9AE02/oMgM7gY8nMgs3LC8dFxP5G3QJlc.mft Manifest number: 0221 Signing time: Sun 01 Mar 2026 04:22:57 +0000 Manifest this update: Sun 01 Mar 2026 04:22:56 +0000 Manifest next update: Sun 08 Mar 2026 04:22:56 +0000 Files and hashes: 1: oMgM7gY8nMgs3LC8dFxP5G3QJlc.crl (hash: St692Lqt3tLeGnnOW5XbZfd1curt4r7NIeNS+Ey8Mj0=) 2: D0103496FD6611EE9188C568C4F9AE02.roa (hash: Jwg4yB9p7awEGC4a4xFVc/YzSx6c3LyJh4FGUJS+9Q8=) 3: 13D68EB430AB11F0A15DC75AC4F9AE02.roa (hash: Tu30AU0o2UBF3Q9Ji3CUOd6/yb/H5yOQ7wtb9Y5l1xA=) 4: E762B166FAF811EE92A3642EC4F9AE02.roa (hash: sU4cNv1HaW3Z4UjI9MyUuR7OqVjIOF34gToqnkUePP8=) 5: 803597528D5911F087734E0BC4F9AE02.roa (hash: WEvaUpAHBsWxitY3h0ssmF82XaPgItrbVBtSpG6kFaM=) 6: CE65A4E4A57E11EFA1B6E428C4F9AE02.roa (hash: Sbp8/jRXpbH+cwbxg5EglU5zeL6yCLbiBD9Np8irjGs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FAA91/9420D2100A5A11EEA3F5B441C4F9AE02/oMgM7gY8nMgs3LC8dFxP5G3QJlc.crl rsync://rpki.apnic.net/member_repository/A91FAA91/9420D2100A5A11EEA3F5B441C4F9AE02/oMgM7gY8nMgs3LC8dFxP5G3QJlc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oMgM7gY8nMgs3LC8dFxP5G3QJlc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 04:22:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 579 (0x243) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FAA91, serialNumber=A0C80CEE063C9CC82CDCB0BC745C4FE46DD02657 Validity Not Before: Mar 1 04:22:56 2026 GMT Not After : Mar 8 04:22:56 2026 GMT Subject: CN=69a3bf21-df3c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:70:4c:3d:14:4f:ef:e8:83:c9:d9:fc:87:6a: 5e:40:aa:22:5f:26:c8:3c:46:3e:3e:78:be:62:76: 36:c4:21:bc:e8:01:c4:e2:89:03:62:af:6c:c0:2a: 94:3b:73:38:28:3e:80:4a:17:5d:e6:2f:e6:9b:35: 5f:1e:aa:f8:c6:37:fb:48:16:0a:92:17:fe:b2:97: 0f:7b:04:90:f2:85:c9:e7:4e:52:f6:a5:63:1f:7d: 54:23:48:bc:f0:ae:b9:49:e3:a1:27:4a:f5:0f:e4: 9f:f2:ed:84:2e:60:b1:75:50:ac:85:bf:37:c9:10: b1:83:f5:fe:b8:75:a7:a5:03:26:88:7b:35:cd:22: 0d:d7:8f:fc:55:64:11:15:f2:40:a8:4a:c4:99:9c: e1:00:c9:2d:51:31:a0:86:04:a9:a8:05:48:06:ed: b9:ea:26:fa:92:55:4c:83:55:f9:13:c2:c1:4e:03: e4:fe:3f:7e:8c:38:66:b0:ee:18:58:20:6c:c0:8f: 94:4f:5d:56:35:2d:d9:50:36:0b:57:89:ae:e8:1f: 10:80:57:7a:d5:c7:6c:90:d0:60:68:fd:30:f6:18: 01:26:41:4f:b6:16:e9:13:46:f2:c8:08:e6:28:8b: 4b:23:e1:63:0b:8d:4c:05:2a:57:f7:bd:03:fc:8f: 53:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:A8:97:FF:43:FF:40:10:76:A1:07:89:32:0D:FD:52:4C:0C:6C:53 X509v3 Authority Key Identifier: keyid:A0:C8:0C:EE:06:3C:9C:C8:2C:DC:B0:BC:74:5C:4F:E4:6D:D0:26:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FAA91/9420D2100A5A11EEA3F5B441C4F9AE02/oMgM7gY8nMgs3LC8dFxP5G3QJlc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oMgM7gY8nMgs3LC8dFxP5G3QJlc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FAA91/9420D2100A5A11EEA3F5B441C4F9AE02/oMgM7gY8nMgs3LC8dFxP5G3QJlc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:72:aa:f4:0a:dc:c5:44:7e:57:52:d0:9a:d4:28:e5:4b:2a: 9e:af:f8:c4:da:de:ea:75:97:bb:66:43:99:1d:27:be:91:7a: 07:c8:00:a6:00:31:8c:fe:6e:9a:34:2e:6f:e6:4a:81:c4:8a: b3:2c:1b:12:7a:be:79:ac:24:8a:94:d3:aa:65:f1:c4:41:2b: 61:8c:de:39:60:ee:3b:43:f8:3f:cd:87:6a:31:a3:f1:1d:83: fe:56:11:d2:3f:c2:b8:10:8f:58:54:a6:82:5d:1e:9b:2d:58: 1c:2b:5c:0d:c5:dc:98:3f:ea:32:17:0d:4b:77:da:61:24:0b: 61:f1:f1:30:d4:de:ec:f0:09:7f:e0:dd:4f:a5:d1:a3:8b:7c: 8e:c0:9f:90:94:d0:ed:86:e7:81:cb:d6:b6:9e:93:0f:0f:9a: ba:6b:0c:19:c9:04:d4:fe:e0:3d:4f:19:31:f1:d7:9e:a6:fa: d2:69:df:f6:f7:09:bc:a7:1c:0e:c8:5e:3f:b9:72:b0:11:e8: 0e:15:8d:ce:10:80:e6:0a:ac:1a:f1:a7:c7:70:d0:bc:70:35: 93:f5:52:f4:29:b0:0b:83:dd:97:95:85:86:7d:01:df:d2:bb: ab:9a:6c:07:c0:38:82:81:c6:56:2e:8d:8d:53:cc:4d:5b:6c: 4e:43:a5:bf -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAkMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkFBOTExMTAvBgNVBAUTKEEwQzgwQ0VFMDYzQzlDQzgyQ0RDQjBCQzc0NUM0RkU0 NkREMDI2NTcwHhcNMjYwMzAxMDQyMjU2WhcNMjYwMzA4MDQyMjU2WjAYMRYwFAYD VQQDDA02OWEzYmYyMS1kZjNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxHBMPRRP7+iDydn8h2peQKoiXybIPEY+Pni+YnY2xCG86AHE4okDYq9swCqU O3M4KD6AShdd5i/mmzVfHqr4xjf7SBYKkhf+spcPewSQ8oXJ505S9qVjH31UI0i8 8K65SeOhJ0r1D+Sf8u2ELmCxdVCshb83yRCxg/X+uHWnpQMmiHs1zSIN14/8VWQR FfJAqErEmZzhAMktUTGghgSpqAVIBu256ib6klVMg1X5E8LBTgPk/j9+jDhmsO4Y WCBswI+UT11WNS3ZUDYLV4mu6B8QgFd61cdskNBgaP0w9hgBJkFPthbpE0byyAjm KItLI+FjC41MBSpX970D/I9TPwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJ+ol/9D /0AQdqEHiTIN/VJMDGxTMB8GA1UdIwQYMBaAFKDIDO4GPJzILNywvHRcT+Rt0CZX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQUE5MS85NDIwRDIxMDBB NUExMUVFQTNGNUI0NDFDNEY5QUUwMi9vTWdNN2dZOG5NZ3MzTEM4ZEZ4UDVHM1FK bGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29NZ003Z1k4bk1nczNMQzhkRnhQNUczUUpsYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QUE5MS85NDIwRDIxMDBBNUExMUVFQTNGNUI0NDFDNEY5QUUwMi9vTWdNN2dZOG5N Z3MzTEM4ZEZ4UDVHM1FKbGMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEArnKq9ArcxUR+V1LQmtQo5Usqnq/4xNre6nWXu2ZDmR0nvpF6B8gApgAxjP5u mjQub+ZKgcSKsywbEnq+eawkipTTqmXxxEErYYzeOWDuO0P4P82HajGj8R2D/lYR 0j/CuBCPWFSmgl0emy1YHCtcDcXcmD/qMhcNS3faYSQLYfHxMNTe7PAJf+DdT6XR o4t8jsCfkJTQ7YbngcvWtp6TDw+aumsMGckE1P7gPU8ZMfHXnqb60mnf9vcJvKcc DsheP7lysBHoDhWNzhCA5gqsGvGnx3DQvHA1k/VS9CmwC4Pdl5WFhn0B39K7q5ps B8A4goHGVi6NjVPMTVtsTkOlvw== -----END CERTIFICATE-----Generated at Mon Mar 2 00:32:05 2026 by rpki-client