$ rpki-client -vvf rpki.apnic.net/member_repository/A913D46F/7DA24C7A006911EA8FDB285DC4F9AE02/OXH34h0IySQ6u0A_gDBkv3iy2IA.mft File: OXH34h0IySQ6u0A_gDBkv3iy2IA.mft (raw, json) Hash identifier: gaHuByJjJeXMA3QzdwTxb+Z6Bi7N5PpqoTtyAvP8ft8= Subject key identifier: E9:8E:38:2B:B1:2F:E1:3A:39:0A:4B:48:B7:A3:8F:2E:01:51:99:E0 Authority key identifier: 39:71:F7:E2:1D:08:C9:24:3A:BB:40:3F:80:30:64:BF:78:B2:D8:80 Certificate issuer: /CN=A913D46F/serialNumber=3971F7E21D08C9243ABB403F803064BF78B2D880 Certificate serial: 0D4D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OXH34h0IySQ6u0A_gDBkv3iy2IA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913D46F/7DA24C7A006911EA8FDB285DC4F9AE02/OXH34h0IySQ6u0A_gDBkv3iy2IA.mft Manifest number: 0D1A Signing time: Thu 12 Mar 2026 17:57:42 +0000 Manifest this update: Thu 12 Mar 2026 17:57:42 +0000 Manifest next update: Thu 19 Mar 2026 17:57:42 +0000 Files and hashes: 1: OXH34h0IySQ6u0A_gDBkv3iy2IA.crl (hash: PI91wm9wLJBP9H8O5KwJ2IJ0fwhan5Pt1eD5es2AphI=) 2: B0B722BEFA4A11EDA47C091DC4F9AE02.roa (hash: gsMKozdipIVu4yCNIKSgaJ/LpxKdahpbHV6vCqtL14U=) 3: 92F8F6D042DA11ED93029A6AC4F9AE02.roa (hash: 742WnLRxRAdtV7KzoHDoGL/kuH4GkN1lYPhgQ1RkcrQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913D46F/7DA24C7A006911EA8FDB285DC4F9AE02/OXH34h0IySQ6u0A_gDBkv3iy2IA.crl rsync://rpki.apnic.net/member_repository/A913D46F/7DA24C7A006911EA8FDB285DC4F9AE02/OXH34h0IySQ6u0A_gDBkv3iy2IA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OXH34h0IySQ6u0A_gDBkv3iy2IA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 17:57:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3405 (0xd4d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913D46F, serialNumber=3971F7E21D08C9243ABB403F803064BF78B2D880 Validity Not Before: Mar 12 17:57:42 2026 GMT Not After : Mar 19 17:57:42 2026 GMT Subject: CN=69b2fe96-3c8e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:1a:fc:49:c6:f9:88:4b:a7:50:61:31:90:7b: b3:8f:d7:4a:f8:de:7d:a8:fe:c6:c0:76:61:44:e5: e1:17:fb:ab:ba:3b:3e:fc:fd:29:cb:83:71:ca:a4: 0c:45:32:f9:a9:55:7b:28:c5:dc:f7:ba:a8:6e:16: 60:1d:f1:6c:8e:60:d7:5e:7d:06:87:b1:8e:a6:16: b8:33:c8:76:d6:68:eb:07:cd:bf:e6:18:5c:df:21: a2:e0:2a:b9:76:7c:2f:d2:d1:19:97:cc:a1:39:f2: 4b:c1:b2:01:ef:56:92:8a:4c:89:ee:66:8a:a2:b8: 45:2c:c5:e4:f4:97:95:80:ec:ef:34:9c:9e:f4:19: 8c:2f:36:99:f2:da:77:98:4b:4b:b6:fd:d8:ae:a5: aa:7c:57:f6:32:db:34:70:e9:82:a9:c3:2b:9f:48: 6f:39:71:dd:15:c8:36:8d:0f:65:d0:24:78:a3:83: a1:ba:d7:ff:33:29:12:38:fd:86:f6:1b:48:04:d2: bb:df:9d:43:13:7c:1b:cd:6c:53:04:33:22:b3:e5: 7a:87:b0:a5:e0:f2:2c:8d:1b:24:f0:bd:5b:c6:3d: 31:5d:a5:66:18:43:e0:58:75:94:16:f3:14:be:d4: f2:0b:7f:35:f2:9d:93:98:33:a4:13:56:90:44:8e: 55:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:8E:38:2B:B1:2F:E1:3A:39:0A:4B:48:B7:A3:8F:2E:01:51:99:E0 X509v3 Authority Key Identifier: keyid:39:71:F7:E2:1D:08:C9:24:3A:BB:40:3F:80:30:64:BF:78:B2:D8:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913D46F/7DA24C7A006911EA8FDB285DC4F9AE02/OXH34h0IySQ6u0A_gDBkv3iy2IA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OXH34h0IySQ6u0A_gDBkv3iy2IA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913D46F/7DA24C7A006911EA8FDB285DC4F9AE02/OXH34h0IySQ6u0A_gDBkv3iy2IA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:ee:77:c0:63:6e:d8:8a:98:59:2a:e5:ed:38:10:77:5d:fb: a9:61:8c:89:a1:14:50:06:99:d5:53:6f:d4:5c:a9:44:ac:f6: c1:e3:19:b0:c9:23:74:9e:48:2d:96:be:e9:6b:09:da:bb:d7: 39:37:a5:98:5e:1e:0f:b8:8e:7c:e5:7c:b9:9f:72:5a:79:16: 82:b3:ec:49:1e:2d:d2:52:b4:30:a4:5b:eb:64:cb:8e:c6:3d: 12:8a:6d:39:2a:ab:ee:11:3d:06:e4:6d:cb:e6:c2:92:87:fe: 1a:db:49:74:08:2d:78:98:ef:50:3b:8d:7e:cd:96:97:07:f3: c0:7e:8a:8f:c8:b8:79:17:e6:14:16:04:12:2e:ee:c4:eb:60: 81:d2:da:82:c8:da:e7:1d:6b:b0:1e:7c:3c:b2:3f:ad:3a:e3: 5e:93:f8:00:27:a3:6f:af:d8:01:7f:3c:4e:b1:32:a9:db:2b: a5:a1:82:ca:d6:fe:9d:9f:77:0a:70:b9:76:cc:2c:5b:dc:bd: e4:39:1d:58:74:8f:02:2f:dd:2f:98:74:0a:d1:21:06:57:b1: 56:f7:7c:bb:e2:43:af:33:6a:c6:7d:dd:43:6e:53:3e:5a:8e: 1d:a2:bc:25:c3:80:69:4d:7e:b2:bd:ec:35:7d:71:4d:ff:d0: ca:37:d5:b2 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDU0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0Q0NkYxMTAvBgNVBAUTKDM5NzFGN0UyMUQwOEM5MjQzQUJCNDAzRjgwMzA2NEJG NzhCMkQ4ODAwHhcNMjYwMzEyMTc1NzQyWhcNMjYwMzE5MTc1NzQyWjAYMRYwFAYD VQQDEw02OWIyZmU5Ni0zYzhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0xr8Scb5iEunUGExkHuzj9dK+N59qP7GwHZhROXhF/urujs+/P0py4NxyqQM RTL5qVV7KMXc97qobhZgHfFsjmDXXn0Gh7GOpha4M8h21mjrB82/5hhc3yGi4Cq5 dnwv0tEZl8yhOfJLwbIB71aSikyJ7maKorhFLMXk9JeVgOzvNJye9BmMLzaZ8tp3 mEtLtv3YrqWqfFf2Mts0cOmCqcMrn0hvOXHdFcg2jQ9l0CR4o4Ohutf/MykSOP2G 9htIBNK7351DE3wbzWxTBDMis+V6h7Cl4PIsjRsk8L1bxj0xXaVmGEPgWHWUFvMU vtTyC3818p2TmDOkE1aQRI5V6wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOmOOCux L+E6OQpLSLejjy4BUZngMB8GA1UdIwQYMBaAFDlx9+IdCMkkOrtAP4AwZL94stiA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRDQ2Ri83REEyNEM3QTAw NjkxMUVBOEZEQjI4NURDNEY5QUUwMi9PWEgzNGgwSXlTUTZ1MEFfZ0RCa3YzaXky SUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09YSDM0aDBJeVNRNnUwQV9nREJrdjNpeTJJQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RDQ2Ri83REEyNEM3QTAwNjkxMUVBOEZEQjI4NURDNEY5QUUwMi9PWEgzNGgwSXlT UTZ1MEFfZ0RCa3YzaXkySUEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAse53wGNu2IqYWSrl7TgQd137qWGMiaEUUAaZ1VNv1FypRKz2weMZsMkjdJ5I LZa+6WsJ2rvXOTelmF4eD7iOfOV8uZ9yWnkWgrPsSR4t0lK0MKRb62TLjsY9Eopt OSqr7hE9BuRty+bCkof+GttJdAgteJjvUDuNfs2WlwfzwH6Kj8i4eRfmFBYEEi7u xOtggdLagsja5x1rsB58PLI/rTrjXpP4ACejb6/YAX88TrEyqdsrpaGCytb+nZ93 CnC5dswsW9y95DkdWHSPAi/dL5h0CtEhBlexVvd8u+JDrzNqxn3dQ25TPlqOHaK8 JcOAaU1+sr3sNX1xTf/QyjfVsg== -----END CERTIFICATE-----Generated at Fri Mar 13 20:08:38 2026 by rpki-client