$ rpki-client -vvf rpki.apnic.net/member_repository/A91FB68C/17D103A8EAB211EF846F1337C4F9AE02/oiiPiWTWFpqHlfL07wXg1ebhOwk.mft File: oiiPiWTWFpqHlfL07wXg1ebhOwk.mft (raw, json) Hash identifier: Dw1999tWFE6zIGLYEGe2jHKuaYwfAQc3NB63z2biMuo= Subject key identifier: 09:97:37:8B:E7:E3:0D:66:03:D0:6A:69:79:5D:43:7A:46:A2:0E:79 Authority key identifier: A2:28:8F:89:64:D6:16:9A:87:95:F2:F4:EF:05:E0:D5:E6:E1:3B:09 Certificate issuer: /CN=A91FB68C/serialNumber=A2288F8964D6169A8795F2F4EF05E0D5E6E13B09 Certificate serial: DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiiPiWTWFpqHlfL07wXg1ebhOwk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FB68C/17D103A8EAB211EF846F1337C4F9AE02/oiiPiWTWFpqHlfL07wXg1ebhOwk.mft Manifest number: D2 Signing time: Sun 01 Mar 2026 08:07:21 +0000 Manifest this update: Sun 01 Mar 2026 08:07:21 +0000 Manifest next update: Sun 08 Mar 2026 08:07:21 +0000 Files and hashes: 1: oiiPiWTWFpqHlfL07wXg1ebhOwk.crl (hash: pxcUv1k9sO/byvIHzzYrxQkxXEV8SuUdx4KT6QPHdkY=) 2: 965254F8278811F09217002CC4F9AE02.roa (hash: cntS2QbrLMGVNDiSYKCKZNhPNOsjrLMnvFLUFK/CvnQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FB68C/17D103A8EAB211EF846F1337C4F9AE02/oiiPiWTWFpqHlfL07wXg1ebhOwk.crl rsync://rpki.apnic.net/member_repository/A91FB68C/17D103A8EAB211EF846F1337C4F9AE02/oiiPiWTWFpqHlfL07wXg1ebhOwk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiiPiWTWFpqHlfL07wXg1ebhOwk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 08:07:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 220 (0xdc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FB68C, serialNumber=A2288F8964D6169A8795F2F4EF05E0D5E6E13B09 Validity Not Before: Mar 1 08:07:21 2026 GMT Not After : Mar 8 08:07:21 2026 GMT Subject: CN=69a3f3b9-7130 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:e2:eb:aa:ab:3d:e2:28:71:1c:c2:66:fb:8e: a6:b7:ea:c0:ed:4b:ca:4e:ea:85:87:0d:8c:c4:f4: c5:56:77:cd:be:8c:d1:f7:05:74:a4:ce:8c:07:66: 76:4e:44:41:ac:96:cb:c5:1b:e4:01:68:97:49:50: c9:eb:9a:7f:56:13:f1:0e:f4:d3:f8:d7:db:b7:2a: 56:62:75:67:ef:13:cc:b9:24:a9:b3:39:c8:55:b1: ad:d2:5e:d2:ed:95:d3:95:5c:62:b7:49:ca:71:5c: 6d:d8:9b:75:7f:6b:49:40:e6:9a:0d:c4:3f:70:49: d0:80:d6:b2:0d:55:9d:6a:03:17:93:19:4c:0a:18: c4:b3:3a:1b:68:1d:3b:ca:6a:65:2c:72:c5:f8:e0: c6:02:2d:da:b2:42:27:d1:89:b7:2f:a6:c2:99:7b: 81:d8:17:cb:ec:f7:1e:71:db:38:d0:97:1a:cb:51: 79:0a:d4:3c:ca:72:d7:df:0a:07:c2:2f:e7:cc:04: 59:4e:2f:23:30:7b:14:0b:68:2e:c3:1b:69:33:dd: 64:0a:c2:0d:59:a0:8d:6f:72:d0:a6:10:ea:01:28: d7:20:71:02:de:2d:11:76:2c:5a:84:36:52:b4:68: 50:b2:16:9d:5c:2d:bb:72:3a:4e:08:a7:fc:31:5c: 50:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:97:37:8B:E7:E3:0D:66:03:D0:6A:69:79:5D:43:7A:46:A2:0E:79 X509v3 Authority Key Identifier: keyid:A2:28:8F:89:64:D6:16:9A:87:95:F2:F4:EF:05:E0:D5:E6:E1:3B:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FB68C/17D103A8EAB211EF846F1337C4F9AE02/oiiPiWTWFpqHlfL07wXg1ebhOwk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiiPiWTWFpqHlfL07wXg1ebhOwk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FB68C/17D103A8EAB211EF846F1337C4F9AE02/oiiPiWTWFpqHlfL07wXg1ebhOwk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:f9:d2:48:0e:a7:e2:37:2e:f8:c2:e0:f3:cb:f2:56:99:28: f9:56:06:9a:06:83:88:f4:53:c9:1a:9c:be:4e:31:15:9e:6b: b6:51:90:f3:67:18:ae:37:2d:4d:a6:d2:01:11:55:f8:ba:c6: 5b:d8:42:d9:4b:d3:05:09:1b:f3:69:2b:9a:b3:24:dd:be:f7: e8:4c:38:7b:62:37:f9:42:61:e9:4a:ca:92:62:ef:62:c4:3d: 6e:44:8a:e7:ab:df:a6:d6:c2:7f:82:00:e6:d0:fd:7d:18:5f: 8e:1d:ee:a9:7b:ca:19:e5:9a:a2:cd:49:bf:7d:8b:bf:eb:fd: 58:ba:ab:46:45:25:bd:6b:8c:63:a3:da:fa:ff:08:4c:31:37: a2:61:1c:7a:00:9f:93:0b:6a:96:fb:0f:de:9d:d3:67:17:9c: ed:b2:91:29:95:99:a1:d2:b1:2d:6d:de:3d:ee:6f:b0:7b:5a: 4d:6c:b3:32:20:86:5f:d8:fb:1b:e9:bf:51:b8:f8:98:5c:a3: 18:72:bc:f1:2c:26:51:87:9a:cc:5d:b3:88:23:1b:5e:87:d8: 6b:23:fc:76:0a:8f:2a:9e:cc:a5:ee:69:55:0a:87:85:54:d8: 76:77:78:bd:fd:27:64:64:64:29:19:e5:10:d7:66:2e:d8:de: 08:48:91:48 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICANwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkI2OEMxMTAvBgNVBAUTKEEyMjg4Rjg5NjRENjE2OUE4Nzk1RjJGNEVGMDVFMEQ1 RTZFMTNCMDkwHhcNMjYwMzAxMDgwNzIxWhcNMjYwMzA4MDgwNzIxWjAYMRYwFAYD VQQDEw02OWEzZjNiOS03MTMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwuLrqqs94ihxHMJm+46mt+rA7UvKTuqFhw2MxPTFVnfNvozR9wV0pM6MB2Z2 TkRBrJbLxRvkAWiXSVDJ65p/VhPxDvTT+NfbtypWYnVn7xPMuSSpsznIVbGt0l7S 7ZXTlVxit0nKcVxt2Jt1f2tJQOaaDcQ/cEnQgNayDVWdagMXkxlMChjEszobaB07 ymplLHLF+ODGAi3askIn0Ym3L6bCmXuB2BfL7Pcecds40Jcay1F5CtQ8ynLX3woH wi/nzARZTi8jMHsUC2guwxtpM91kCsINWaCNb3LQphDqASjXIHEC3i0RdixahDZS tGhQshadXC27cjpOCKf8MVxQ1QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAmXN4vn 4w1mA9BqaXldQ3pGog55MB8GA1UdIwQYMBaAFKIoj4lk1haah5Xy9O8F4NXm4TsJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQjY4Qy8xN0QxMDNBOEVB QjIxMUVGODQ2RjEzMzdDNEY5QUUwMi9vaWlQaVdUV0ZwcUhsZkwwN3dYZzFlYmhP d2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29paVBpV1RXRnBxSGxmTDA3d1hnMWViaE93ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QjY4Qy8xN0QxMDNBOEVBQjIxMUVGODQ2RjEzMzdDNEY5QUUwMi9vaWlQaVdUV0Zw cUhsZkwwN3dYZzFlYmhPd2subWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAFvnSSA6n4jcu+MLg88vyVpko+VYGmgaDiPRTyRqcvk4xFZ5rtlGQ82cYrjct TabSARFV+LrGW9hC2UvTBQkb82krmrMk3b736Ew4e2I3+UJh6UrKkmLvYsQ9bkSK 56vfptbCf4IA5tD9fRhfjh3uqXvKGeWaos1Jv32Lv+v9WLqrRkUlvWuMY6Pa+v8I TDE3omEcegCfkwtqlvsP3p3TZxec7bKRKZWZodKxLW3ePe5vsHtaTWyzMiCGX9j7 G+m/Ubj4mFyjGHK88SwmUYeazF2ziCMbXofYayP8dgqPKp7Mpe5pVQqHhVTYdnd4 vf0nZGRkKRnlENdmLtjeCEiRSA== -----END CERTIFICATE-----Generated at Sun Mar 1 23:24:09 2026 by rpki-client