$ rpki-client -vvf rpki.apnic.net/member_repository/A91592B3/8917FB2A5D0E11E5B3BEAD57C4F9AE02/OlwIE8D-0Kg7PdAbelrhoTCCcCg.mft File: OlwIE8D-0Kg7PdAbelrhoTCCcCg.mft (raw, json) Hash identifier: VtuBwe9sIXBwTcrZIIAzt7bE5bBVRG5fMoAIaQvsB40= Subject key identifier: EA:FB:90:A5:57:24:A2:DE:73:68:C9:B4:31:A9:3E:73:BC:F3:2F:7B Authority key identifier: 3A:5C:08:13:C0:FE:D0:A8:3B:3D:D0:1B:7A:5A:E1:A1:30:82:70:28 Certificate issuer: /CN=A91592B3/serialNumber=3A5C0813C0FED0A83B3DD01B7A5AE1A130827028 Certificate serial: 24B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OlwIE8D-0Kg7PdAbelrhoTCCcCg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91592B3/8917FB2A5D0E11E5B3BEAD57C4F9AE02/OlwIE8D-0Kg7PdAbelrhoTCCcCg.mft Manifest number: 249D Signing time: Fri 06 Mar 2026 15:41:26 +0000 Manifest this update: Fri 06 Mar 2026 15:41:26 +0000 Manifest next update: Fri 13 Mar 2026 15:41:26 +0000 Files and hashes: 1: OlwIE8D-0Kg7PdAbelrhoTCCcCg.crl (hash: 7ENpvhSVXAJnv6d4P2rtsKnBzmPCUn8pglypjegSj/4=) 2: 54EE8F7615FE11ECAF541012C4F9AE02.roa (hash: ZR+av6i/mUW7dgXrhBFsLxrkYBXMqmH67RVHZJGRbOE=) 3: D8D3FB6414F111F08EE5E32DC4F9AE02.roa (hash: GEYGfhHp17Fn6qCQe2gZ+/51L5wJ5ahCyZcSARhYpHU=) 4: 9876A6C025B211ECB5356475C4F9AE02.roa (hash: FfVZPUV5HJquVNsdHZZ+Vm7hU9qAb0wTdcSg4+cVr58=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91592B3/8917FB2A5D0E11E5B3BEAD57C4F9AE02/OlwIE8D-0Kg7PdAbelrhoTCCcCg.crl rsync://rpki.apnic.net/member_repository/A91592B3/8917FB2A5D0E11E5B3BEAD57C4F9AE02/OlwIE8D-0Kg7PdAbelrhoTCCcCg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OlwIE8D-0Kg7PdAbelrhoTCCcCg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 15:41:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9398 (0x24b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91592B3, serialNumber=3A5C0813C0FED0A83B3DD01B7A5AE1A130827028 Validity Not Before: Mar 6 15:41:26 2026 GMT Not After : Mar 13 15:41:26 2026 GMT Subject: CN=69aaf5a6-5243 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:77:3b:b7:11:c4:e9:4f:26:60:59:05:ba:c1: 29:2a:4d:1e:22:37:59:c5:df:16:82:e8:9d:40:34: dc:e2:34:b2:56:9f:ed:a2:9a:ad:c8:c5:38:4b:78: 68:0b:4d:71:96:d7:07:35:a2:da:74:b6:01:45:bf: ce:b0:ed:da:b1:be:df:ad:09:d1:37:80:d5:a6:15: 41:dc:00:36:00:4e:eb:79:69:d2:ae:90:83:43:70: 97:9e:d1:16:f1:81:2d:0a:0b:29:c9:6c:ae:b4:08: ab:86:76:af:fe:04:2e:93:ff:54:44:10:84:fe:7e: 87:c1:74:d2:46:52:d5:89:d9:24:76:b9:84:2d:a4: 1e:8b:de:cb:f2:d3:92:c4:56:52:d5:c2:fa:9d:a1: 57:02:96:16:bc:59:87:27:d5:6d:d0:c6:e1:4f:0f: e2:39:d1:e6:d8:dc:a3:28:7a:3b:f1:ce:90:ad:da: c0:4a:81:57:9c:fc:53:77:98:e4:9a:42:98:93:62: b7:96:cf:ad:a1:c4:46:2c:13:9a:ce:e4:78:b1:f0: ee:02:f8:2f:e3:3b:47:57:d7:be:f6:cd:ac:f2:3c: 25:78:0b:39:e5:be:ee:41:60:7a:24:00:d5:82:4e: 4f:3d:f9:10:9f:a7:23:a5:f5:3f:52:f6:a3:5c:1a: f7:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:FB:90:A5:57:24:A2:DE:73:68:C9:B4:31:A9:3E:73:BC:F3:2F:7B X509v3 Authority Key Identifier: keyid:3A:5C:08:13:C0:FE:D0:A8:3B:3D:D0:1B:7A:5A:E1:A1:30:82:70:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91592B3/8917FB2A5D0E11E5B3BEAD57C4F9AE02/OlwIE8D-0Kg7PdAbelrhoTCCcCg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OlwIE8D-0Kg7PdAbelrhoTCCcCg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91592B3/8917FB2A5D0E11E5B3BEAD57C4F9AE02/OlwIE8D-0Kg7PdAbelrhoTCCcCg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:87:01:8b:1b:b0:fd:ec:6f:a7:45:79:f6:2d:ed:f3:0b:6e: 03:b9:d0:b6:a7:e2:e6:dd:a2:c5:bc:28:a7:e8:ff:c0:3d:34: 9a:db:3e:9e:c6:de:5a:2d:36:b9:52:65:0b:48:ef:ee:2d:89: e9:07:c5:f3:3a:88:60:83:9a:f2:fa:6d:13:ed:63:d7:53:43: dc:35:42:76:38:25:aa:a8:8c:46:47:61:70:ff:a4:fb:e8:a8: 38:e9:26:c6:7a:70:d8:d2:49:f3:61:d8:ae:20:4e:a4:16:f5: 2b:c1:69:5c:ec:66:89:43:79:02:4d:f8:1d:79:6e:34:bb:2c: 4c:2c:01:27:36:fc:43:29:d9:a4:a5:f3:8b:48:f5:41:96:af: 02:42:c7:72:5b:0a:cc:fd:bc:13:a5:33:34:3e:ff:66:1e:ce: 5b:2f:5b:b9:14:0f:79:8b:0d:25:41:13:57:d5:d2:34:77:e8: 85:ec:31:68:e9:83:ff:9a:d3:f6:45:d5:87:a6:31:e0:7a:34: fe:95:9e:79:60:3e:7e:fa:97:dd:88:e4:88:9e:dc:20:9e:8f: 4f:1b:2c:bd:1d:c7:7a:16:79:93:43:50:0d:24:71:58:7e:5f: b8:97:e5:a7:a7:35:98:3d:d9:0f:85:37:d0:f3:09:cc:b6:3e: 7e:67:32:a0 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICJLYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTkyQjMxMTAvBgNVBAUTKDNBNUMwODEzQzBGRUQwQTgzQjNERDAxQjdBNUFFMUEx MzA4MjcwMjgwHhcNMjYwMzA2MTU0MTI2WhcNMjYwMzEzMTU0MTI2WjAYMRYwFAYD VQQDEw02OWFhZjVhNi01MjQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7Hc7txHE6U8mYFkFusEpKk0eIjdZxd8WguidQDTc4jSyVp/topqtyMU4S3ho C01xltcHNaLadLYBRb/OsO3asb7frQnRN4DVphVB3AA2AE7reWnSrpCDQ3CXntEW 8YEtCgspyWyutAirhnav/gQuk/9URBCE/n6HwXTSRlLVidkkdrmELaQei97L8tOS xFZS1cL6naFXApYWvFmHJ9Vt0MbhTw/iOdHm2NyjKHo78c6QrdrASoFXnPxTd5jk mkKYk2K3ls+tocRGLBOazuR4sfDuAvgv4ztHV9e+9s2s8jwleAs55b7uQWB6JADV gk5PPfkQn6cjpfU/UvajXBr3mwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOr7kKVX JKLec2jJtDGpPnO88y97MB8GA1UdIwQYMBaAFDpcCBPA/tCoOz3QG3pa4aEwgnAo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OTJCMy84OTE3RkIyQTVE MEUxMUU1QjNCRUFENTdDNEY5QUUwMi9PbHdJRThELTBLZzdQZEFiZWxyaG9UQ0Nj Q2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09sd0lFOEQtMEtnN1BkQWJlbHJob1RDQ2NDZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OTJCMy84OTE3RkIyQTVEMEUxMUU1QjNCRUFENTdDNEY5QUUwMi9PbHdJRThELTBL ZzdQZEFiZWxyaG9UQ0NjQ2cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAmocBixuw/exvp0V59i3t8wtuA7nQtqfi5t2ixbwop+j/wD00mts+nsbeWi02 uVJlC0jv7i2J6QfF8zqIYIOa8vptE+1j11ND3DVCdjglqqiMRkdhcP+k++ioOOkm xnpw2NJJ82HYriBOpBb1K8FpXOxmiUN5Ak34HXluNLssTCwBJzb8QynZpKXzi0j1 QZavAkLHclsKzP28E6UzND7/Zh7OWy9buRQPeYsNJUETV9XSNHfohewxaOmD/5rT 9kXVh6Yx4Ho0/pWeeWA+fvqX3YjkiJ7cIJ6PTxssvR3HehZ5k0NQDSRxWH5fuJfl p6c1mD3ZD4U30PMJzLY+fmcyoA== -----END CERTIFICATE-----Generated at Sat Mar 7 18:21:28 2026 by rpki-client