$ rpki-client -vvf rpki.apnic.net/member_repository/A91FAA91/9420D2100A5A11EEA3F5B441C4F9AE02/oMgM7gY8nMgs3LC8dFxP5G3QJlc.mft File: oMgM7gY8nMgs3LC8dFxP5G3QJlc.mft (raw, json) Hash identifier: bdgDZmxYW+A3DSXyJ5OFLYTnRZ9LcFGwDrTj2QkMclc= Subject key identifier: 16:08:81:45:1E:BB:B5:55:A7:BD:D0:6C:72:E5:4B:99:4B:A4:AC:CC Authority key identifier: A0:C8:0C:EE:06:3C:9C:C8:2C:DC:B0:BC:74:5C:4F:E4:6D:D0:26:57 Certificate issuer: /CN=A91FAA91/serialNumber=A0C80CEE063C9CC82CDCB0BC745C4FE46DD02657 Certificate serial: 024A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oMgM7gY8nMgs3LC8dFxP5G3QJlc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FAA91/9420D2100A5A11EEA3F5B441C4F9AE02/oMgM7gY8nMgs3LC8dFxP5G3QJlc.mft Manifest number: 0223 Signing time: Mon 02 Mar 2026 00:10:21 +0000 Manifest this update: Mon 02 Mar 2026 00:10:19 +0000 Manifest next update: Mon 09 Mar 2026 00:10:19 +0000 Files and hashes: 1: oMgM7gY8nMgs3LC8dFxP5G3QJlc.crl (hash: 3yr5LAZnMj6SlQbzRCJx1gqNGZNLOnXoloSEQH1dW9c=) 2: E762B166FAF811EE92A3642EC4F9AE02.roa (hash: KuP7ghPE5jbRo6RpIG8mjTF5foQeJCW+P2dt3dU5qe4=) 3: 803597528D5911F087734E0BC4F9AE02.roa (hash: qjwNHVxj8rh4p5dbVDJ7FmnGLRA0aF4pw1XtOGgQ9/I=) 4: CE65A4E4A57E11EFA1B6E428C4F9AE02.roa (hash: O0Z9WR74ZqHIIViEx/QrJsLKy5xwDiS8tDAgBMROtv8=) 5: 13D68EB430AB11F0A15DC75AC4F9AE02.roa (hash: Df8chXaHVx7SlzUpc1kpONRIDx/OSWJIy+4OsePAPPY=) 6: D0103496FD6611EE9188C568C4F9AE02.roa (hash: 8jWtzjSsUygdzDOwuRDWbJ+/Oi0HeYvaJIf1pNwKDHM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FAA91/9420D2100A5A11EEA3F5B441C4F9AE02/oMgM7gY8nMgs3LC8dFxP5G3QJlc.crl rsync://rpki.apnic.net/member_repository/A91FAA91/9420D2100A5A11EEA3F5B441C4F9AE02/oMgM7gY8nMgs3LC8dFxP5G3QJlc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oMgM7gY8nMgs3LC8dFxP5G3QJlc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 586 (0x24a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FAA91, serialNumber=A0C80CEE063C9CC82CDCB0BC745C4FE46DD02657 Validity Not Before: Mar 2 00:10:19 2026 GMT Not After : Mar 9 00:10:19 2026 GMT Subject: CN=69a4d56d-3f60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:38:cc:4e:b7:0c:b7:39:8b:ba:9c:51:13:6c: 9e:87:b3:86:59:64:ca:2c:3a:7c:bf:2c:69:a2:eb: 53:35:51:b7:27:45:f9:dc:82:d0:c9:15:7a:a5:2b: 71:1f:6e:06:3d:a8:42:ba:bb:48:d8:4a:06:20:37: 11:4a:36:e1:20:92:06:e6:78:88:79:cd:b9:5a:04: 65:44:29:55:bf:fb:10:c5:2f:ad:ac:5d:07:ba:a6: da:ae:47:e2:59:9f:a7:cc:ff:c7:16:11:4a:c0:aa: ce:cf:c8:25:90:6e:ca:e9:d6:39:cb:31:48:7a:fe: c4:c1:8d:db:63:df:67:eb:d5:83:d7:d7:57:5c:db: 3b:44:e0:92:97:00:49:8e:97:34:21:5c:e3:53:b7: 51:2f:a9:24:04:80:c1:be:8d:b0:03:99:19:93:5f: 95:7d:db:14:c0:b9:d7:e5:d1:21:37:2d:60:55:f4: 70:c2:d1:21:65:25:b0:bb:75:18:fb:2e:f6:ef:1f: 46:7d:8f:34:06:a6:d9:b3:0a:61:23:67:f9:d4:6e: ea:90:00:eb:73:15:ef:57:56:21:98:d5:60:3a:80: 1c:e3:60:4e:2c:1c:5e:bb:2f:66:4b:30:a7:dd:ba: ac:46:47:ca:d5:5b:a1:b3:29:06:d3:8d:a8:cf:8f: 92:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:08:81:45:1E:BB:B5:55:A7:BD:D0:6C:72:E5:4B:99:4B:A4:AC:CC X509v3 Authority Key Identifier: keyid:A0:C8:0C:EE:06:3C:9C:C8:2C:DC:B0:BC:74:5C:4F:E4:6D:D0:26:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FAA91/9420D2100A5A11EEA3F5B441C4F9AE02/oMgM7gY8nMgs3LC8dFxP5G3QJlc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oMgM7gY8nMgs3LC8dFxP5G3QJlc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FAA91/9420D2100A5A11EEA3F5B441C4F9AE02/oMgM7gY8nMgs3LC8dFxP5G3QJlc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:1b:51:1d:f1:0c:ef:9f:1e:19:a9:42:e4:45:1a:9f:4e:9e: 71:01:dc:05:09:61:2f:30:19:89:79:ae:4e:1f:68:90:2d:15: 82:35:da:67:89:06:8c:06:19:62:e4:75:e5:91:a3:90:65:53: d6:94:b6:62:57:be:25:03:51:c2:1a:55:a7:d1:61:71:18:1e: 75:91:d2:28:96:fd:43:4c:d8:f6:0f:99:46:94:fe:65:32:cc: 6c:ea:a7:f6:d5:37:c8:83:e8:0b:1f:a0:52:e2:fd:cc:91:89: bd:32:e7:b7:60:e3:3a:b3:ef:22:7e:28:b4:7c:8d:32:fc:2f: 3e:4c:b0:c0:62:ff:cb:98:d7:dd:fc:2d:06:e9:61:fc:66:aa: f6:88:f6:f9:2b:82:40:57:28:80:13:b5:ae:ff:ce:69:b7:86: 94:12:00:bd:64:57:e7:46:33:ac:29:3b:26:03:5e:f7:a7:0b: 24:e6:1e:2c:5b:2e:c4:5e:17:29:cd:cb:8f:31:86:81:85:e0: 46:43:e6:75:8f:3c:a1:6c:d7:83:65:2d:f9:56:ac:4e:ac:21: dc:c5:aa:5c:4c:bd:97:84:c3:bd:84:d0:3a:15:c5:08:ea:fe: 7c:fd:78:92:fc:68:ab:ca:54:6e:71:31:cb:f7:fe:de:e4:53: 67:d2:79:63 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAkowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkFBOTExMTAvBgNVBAUTKEEwQzgwQ0VFMDYzQzlDQzgyQ0RDQjBCQzc0NUM0RkU0 NkREMDI2NTcwHhcNMjYwMzAyMDAxMDE5WhcNMjYwMzA5MDAxMDE5WjAYMRYwFAYD VQQDEw02OWE0ZDU2ZC0zZjYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqjjMTrcMtzmLupxRE2yeh7OGWWTKLDp8vyxpoutTNVG3J0X53ILQyRV6pStx H24GPahCurtI2EoGIDcRSjbhIJIG5niIec25WgRlRClVv/sQxS+trF0Huqbarkfi WZ+nzP/HFhFKwKrOz8glkG7K6dY5yzFIev7EwY3bY99n69WD19dXXNs7ROCSlwBJ jpc0IVzjU7dRL6kkBIDBvo2wA5kZk1+VfdsUwLnX5dEhNy1gVfRwwtEhZSWwu3UY +y727x9GfY80BqbZswphI2f51G7qkADrcxXvV1YhmNVgOoAc42BOLBxeuy9mSzCn 3bqsRkfK1VuhsykG042oz4+SRwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBYIgUUe u7VVp73QbHLlS5lLpKzMMB8GA1UdIwQYMBaAFKDIDO4GPJzILNywvHRcT+Rt0CZX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQUE5MS85NDIwRDIxMDBB NUExMUVFQTNGNUI0NDFDNEY5QUUwMi9vTWdNN2dZOG5NZ3MzTEM4ZEZ4UDVHM1FK bGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29NZ003Z1k4bk1nczNMQzhkRnhQNUczUUpsYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QUE5MS85NDIwRDIxMDBBNUExMUVFQTNGNUI0NDFDNEY5QUUwMi9vTWdNN2dZOG5N Z3MzTEM4ZEZ4UDVHM1FKbGMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEASRtRHfEM758eGalC5EUan06ecQHcBQlhLzAZiXmuTh9okC0VgjXaZ4kGjAYZ YuR15ZGjkGVT1pS2Yle+JQNRwhpVp9FhcRgedZHSKJb9Q0zY9g+ZRpT+ZTLMbOqn 9tU3yIPoCx+gUuL9zJGJvTLnt2DjOrPvIn4otHyNMvwvPkywwGL/y5jX3fwtBulh /Gaq9oj2+SuCQFcogBO1rv/OabeGlBIAvWRX50YzrCk7JgNe96cLJOYeLFsuxF4X Kc3LjzGGgYXgRkPmdY88oWzXg2Ut+VasTqwh3MWqXEy9l4TDvYTQOhXFCOr+fP14 kvxoq8pUbnExy/f+3uRTZ9J5Yw== -----END CERTIFICATE-----Generated at Mon Mar 2 09:18:45 2026 by rpki-client