$ rpki-client -vvf rpki.apnic.net/member_repository/A91FB297/BBF28DDAD99511F09A18623B64D3641D/oPy-m8tDKKnovMofXhSWrMLOLtk.mft File: oPy-m8tDKKnovMofXhSWrMLOLtk.mft (raw, json) Hash identifier: pyALV7di1M+KaMm4l5plVzDl3gQmAUHlBuwxi+1ULJw= Subject key identifier: BA:EF:9F:C8:99:B7:46:37:35:E1:9E:B5:C6:17:05:9A:4B:71:13:A3 Authority key identifier: A0:FC:BE:9B:CB:43:28:A9:E8:BC:CA:1F:5E:14:96:AC:C2:CE:2E:D9 Certificate issuer: /CN=A91FB297/serialNumber=A0FCBE9BCB4328A9E8BCCA1F5E1496ACC2CE2ED9 Certificate serial: 2A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oPy-m8tDKKnovMofXhSWrMLOLtk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FB297/BBF28DDAD99511F09A18623B64D3641D/oPy-m8tDKKnovMofXhSWrMLOLtk.mft Manifest number: 2A Signing time: Sun 01 Mar 2026 05:20:01 +0000 Manifest this update: Sun 01 Mar 2026 05:20:00 +0000 Manifest next update: Sun 08 Mar 2026 05:20:00 +0000 Files and hashes: 1: oPy-m8tDKKnovMofXhSWrMLOLtk.crl (hash: JX+VLLQ0dWDCWl5DK3LsR4qRPSEuLzu26tMHBI4/Us8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FB297/BBF28DDAD99511F09A18623B64D3641D/oPy-m8tDKKnovMofXhSWrMLOLtk.crl rsync://rpki.apnic.net/member_repository/A91FB297/BBF28DDAD99511F09A18623B64D3641D/oPy-m8tDKKnovMofXhSWrMLOLtk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oPy-m8tDKKnovMofXhSWrMLOLtk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 05:19:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42 (0x2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FB297, serialNumber=A0FCBE9BCB4328A9E8BCCA1F5E1496ACC2CE2ED9 Validity Not Before: Mar 1 05:20:00 2026 GMT Not After : Mar 8 05:20:00 2026 GMT Subject: CN=69a3cc81-47d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:7d:34:1d:65:6a:7b:f1:25:39:60:5c:5e:19: ee:0b:cf:00:29:f6:cc:a6:94:a6:2c:47:95:ee:6a: 35:db:a8:c8:75:bc:00:49:40:53:cf:83:c3:80:f4: e5:b0:d9:fb:fb:e5:91:bb:c1:5e:ad:5f:3c:94:6a: f7:07:63:de:6b:d5:ca:8c:93:7b:6f:36:12:d4:55: 72:2f:24:fa:59:cc:60:8b:0f:7f:94:ad:03:b7:25: 32:ef:51:6e:78:b4:92:01:a4:a2:12:af:b3:49:e5: 91:64:6a:57:a7:df:07:f6:7a:2b:4a:c6:66:14:eb: 55:bc:ca:6d:da:86:b1:8a:f6:f4:c8:2f:6d:7d:ca: 86:3c:34:0c:1c:23:01:f5:5e:01:fe:47:08:9e:90: 55:e3:96:f5:6e:e8:06:ff:a7:56:d4:3f:c7:00:b4: a9:a3:fe:33:47:a3:95:70:bd:96:7b:36:dc:7d:89: 0f:a9:2d:68:75:1f:e4:e9:6d:f3:44:34:6a:92:1f: 5e:29:cb:79:32:1a:19:68:8c:5b:bf:59:15:79:b3: 1f:c3:f9:96:f9:1d:fb:f3:66:d8:32:3e:d7:16:f3: 0f:2c:f1:a6:67:7a:aa:20:56:c3:08:ba:fd:26:12: 8b:5b:4d:72:5f:c1:59:a6:10:58:d8:f0:65:d9:43: d1:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:EF:9F:C8:99:B7:46:37:35:E1:9E:B5:C6:17:05:9A:4B:71:13:A3 X509v3 Authority Key Identifier: keyid:A0:FC:BE:9B:CB:43:28:A9:E8:BC:CA:1F:5E:14:96:AC:C2:CE:2E:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FB297/BBF28DDAD99511F09A18623B64D3641D/oPy-m8tDKKnovMofXhSWrMLOLtk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oPy-m8tDKKnovMofXhSWrMLOLtk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FB297/BBF28DDAD99511F09A18623B64D3641D/oPy-m8tDKKnovMofXhSWrMLOLtk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:c6:d4:3f:6f:5a:d1:64:ac:47:ce:c7:e4:af:90:ee:8b:a9: 25:b6:6d:15:56:bc:0c:aa:05:26:54:5c:66:c7:1d:83:a1:c5: 7f:3f:d2:d5:b1:ef:7a:c6:cb:79:7b:91:3f:89:a8:b6:95:32: db:5a:e3:73:5e:04:68:b9:02:c3:95:22:58:6f:16:6a:ee:19: 03:d4:df:2a:13:2a:d3:77:30:ff:bf:7f:79:89:d6:e5:66:30: bf:b8:b1:53:d7:7b:47:c5:74:26:65:8c:82:54:9e:8b:75:3d: 40:7a:16:f6:63:64:26:09:4e:b4:24:b6:f3:6f:ba:26:6a:72: 78:64:b3:98:f5:08:8a:dd:8a:74:6c:c3:06:0a:48:5c:46:77: 1f:8c:53:80:7f:ea:38:a5:ae:e0:eb:75:b2:fb:20:fd:04:a7: c3:2a:ee:e4:85:83:31:7b:ed:67:5c:ce:26:28:06:4d:3f:25: aa:cf:35:e4:ad:ed:8f:b9:66:63:14:0f:61:08:e8:b9:08:67: 3d:17:d4:c4:9f:59:bf:8f:02:72:7c:65:03:dc:0f:a3:39:5d: 7b:fe:86:3b:5b:02:e2:44:f0:cf:09:df:d4:be:8f:aa:03:97: 0b:d6:54:aa:92:bd:f8:c7:f5:d6:b4:99:dc:da:da:06:58:10: b2:97:c7:63 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBKjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG QjI5NzExMC8GA1UEBRMoQTBGQ0JFOUJDQjQzMjhBOUU4QkNDQTFGNUUxNDk2QUND MkNFMkVEOTAeFw0yNjAzMDEwNTIwMDBaFw0yNjAzMDgwNTIwMDBaMBgxFjAUBgNV BAMMDTY5YTNjYzgxLTQ3ZDIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC3fTQdZWp78SU5YFxeGe4LzwAp9symlKYsR5XuajXbqMh1vABJQFPPg8OA9OWw 2fv75ZG7wV6tXzyUavcHY95r1cqMk3tvNhLUVXIvJPpZzGCLD3+UrQO3JTLvUW54 tJIBpKISr7NJ5ZFkalen3wf2eitKxmYU61W8ym3ahrGK9vTIL219yoY8NAwcIwH1 XgH+RwiekFXjlvVu6Ab/p1bUP8cAtKmj/jNHo5VwvZZ7Ntx9iQ+pLWh1H+TpbfNE NGqSH14py3kyGhlojFu/WRV5sx/D+Zb5HfvzZtgyPtcW8w8s8aZneqogVsMIuv0m EotbTXJfwVmmEFjY8GXZQ9FzAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUuu+fyJm3 Rjc14Z61xhcFmktxE6MwHwYDVR0jBBgwFoAUoPy+m8tDKKnovMofXhSWrMLOLtkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZCMjk3L0JCRjI4RERBRDk5 NTExRjA5QTE4NjIzQjY0RDM2NDFEL29QeS1tOHRES0tub3ZNb2ZYaFNXck1MT0x0 ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvb1B5LW04dERLS25vdk1vZlhoU1dyTUxPTHRrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZC Mjk3L0JCRjI4RERBRDk5NTExRjA5QTE4NjIzQjY0RDM2NDFEL29QeS1tOHRES0tu b3ZNb2ZYaFNXck1MT0x0ay5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQCrxtQ/b1rRZKxHzsfkr5Dui6kltm0VVrwMqgUmVFxmxx2DocV/P9LVse96xst5 e5E/iai2lTLbWuNzXgRouQLDlSJYbxZq7hkD1N8qEyrTdzD/v395idblZjC/uLFT 13tHxXQmZYyCVJ6LdT1Aehb2Y2QmCU60JLbzb7omanJ4ZLOY9QiK3Yp0bMMGCkhc RncfjFOAf+o4pa7g63Wy+yD9BKfDKu7khYMxe+1nXM4mKAZNPyWqzzXkre2PuWZj FA9hCOi5CGc9F9TEn1m/jwJyfGUD3A+jOV17/oY7WwLiRPDPCd/Uvo+qA5cL1lSq kr34x/XWtJnc2toGWBCyl8dj -----END CERTIFICATE-----Generated at Mon Mar 2 01:50:34 2026 by rpki-client