$ rpki-client -vvf rpki.apnic.net/member_repository/A91620E0/D964B482310E11EA9C3CE72FC4F9AE02/dOW7m208x_jCmoO9yEkrllnw7hc.mft File: dOW7m208x_jCmoO9yEkrllnw7hc.mft (raw, json) Hash identifier: lzUhVYFLAvhlNlBleAPJ/2K3expMV2GY6VOb8r3tvJI= Subject key identifier: 05:D3:9E:1D:8E:A8:24:85:77:D8:62:54:DF:01:3A:A3:4E:65:DA:7F Authority key identifier: 74:E5:BB:9B:6D:3C:C7:F8:C2:9A:83:BD:C8:49:2B:96:59:F0:EE:17 Certificate issuer: /CN=A91620E0/serialNumber=74E5BB9B6D3CC7F8C29A83BDC8492B9659F0EE17 Certificate serial: 0F8E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dOW7m208x_jCmoO9yEkrllnw7hc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91620E0/D964B482310E11EA9C3CE72FC4F9AE02/dOW7m208x_jCmoO9yEkrllnw7hc.mft Manifest number: 0E24 Signing time: Mon 02 Mar 2026 18:46:44 +0000 Manifest this update: Mon 02 Mar 2026 18:46:43 +0000 Manifest next update: Mon 09 Mar 2026 18:46:43 +0000 Files and hashes: 1: dOW7m208x_jCmoO9yEkrllnw7hc.crl (hash: S4bet8QND3pk9Lw6i0LpU9SNkHGAJy+jegx0/k83Gp8=) 2: DA216556B3D411F090043E0CC4F9AE02.roa (hash: 6I596IvxLYoEhX3Jzm/N3jSIa/KVnrI6VKDo9pPyGdI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91620E0/D964B482310E11EA9C3CE72FC4F9AE02/dOW7m208x_jCmoO9yEkrllnw7hc.crl rsync://rpki.apnic.net/member_repository/A91620E0/D964B482310E11EA9C3CE72FC4F9AE02/dOW7m208x_jCmoO9yEkrllnw7hc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dOW7m208x_jCmoO9yEkrllnw7hc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 18:46:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3982 (0xf8e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91620E0, serialNumber=74E5BB9B6D3CC7F8C29A83BDC8492B9659F0EE17 Validity Not Before: Mar 2 18:46:43 2026 GMT Not After : Mar 9 18:46:43 2026 GMT Subject: CN=69a5db13-3a6e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:8b:d8:bb:88:70:52:f5:2e:64:1b:33:5c:50: ac:1f:ec:53:83:3d:52:1f:f6:bf:41:74:21:38:ee: 5c:24:06:56:eb:40:2c:0e:3d:85:40:3e:33:66:3c: f6:b9:bd:d9:ef:e5:68:06:4f:03:9a:63:2e:5b:1a: 66:b4:3a:da:71:dc:b7:dd:f3:2c:9f:40:f1:38:95: de:21:d1:2b:b0:5d:bc:6d:0a:c5:56:d3:6a:73:17: 16:c2:a0:d6:f5:08:62:61:4f:65:2f:8f:2f:2a:8a: 8d:50:44:e6:03:b9:4f:98:e7:d8:5e:f3:62:a2:fc: 73:ce:af:50:b5:75:85:13:e2:b6:8c:4d:70:af:09: c3:ca:78:1c:07:3b:f4:cc:de:f2:a7:60:4b:dd:75: f5:93:e8:1d:8e:83:6d:ef:f9:e9:9d:97:de:ab:38: b2:36:ca:1b:05:8d:e0:89:45:c9:ff:3e:94:80:8e: 48:8d:64:5d:e3:b6:04:57:68:dd:67:30:9d:5c:d8: 9c:66:93:5e:a4:04:56:4d:58:19:fa:d6:53:64:fb: e0:52:92:b8:45:04:8a:4d:03:c6:3e:bd:b1:d3:6d: a9:da:c2:6b:25:65:96:14:45:4e:fc:e6:35:c8:d4: 76:d8:6b:1e:48:77:ca:b1:4f:aa:64:40:26:fd:7d: 0b:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:D3:9E:1D:8E:A8:24:85:77:D8:62:54:DF:01:3A:A3:4E:65:DA:7F X509v3 Authority Key Identifier: keyid:74:E5:BB:9B:6D:3C:C7:F8:C2:9A:83:BD:C8:49:2B:96:59:F0:EE:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91620E0/D964B482310E11EA9C3CE72FC4F9AE02/dOW7m208x_jCmoO9yEkrllnw7hc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dOW7m208x_jCmoO9yEkrllnw7hc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91620E0/D964B482310E11EA9C3CE72FC4F9AE02/dOW7m208x_jCmoO9yEkrllnw7hc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:c0:43:d7:9e:15:39:e1:b6:ed:30:7e:38:51:fc:54:4c:bb: 98:ae:c9:7b:6c:db:da:2b:eb:d7:11:56:36:4f:ab:0d:3c:31: 73:0e:b4:22:cd:5f:4f:ce:60:01:8f:ef:08:75:cd:1a:df:d2: 94:e1:25:50:8a:41:f2:f3:be:b2:a6:b9:9c:04:38:d9:92:ea: f9:90:13:a1:f5:4a:12:7e:07:8f:74:7f:24:84:3e:a1:0c:37: d2:ff:76:ad:e1:e8:c3:33:61:41:4a:da:d8:8a:60:56:6f:45: 8f:98:4b:6a:f3:ad:0e:cc:df:50:73:a3:58:28:86:dc:f4:85: 83:18:e0:20:cd:6e:8b:8b:0b:a7:60:a4:04:89:9c:af:bc:34: aa:c3:bf:17:c2:73:72:90:02:16:03:66:38:90:f0:1f:c6:61: b4:7c:fd:e6:af:9e:f4:bb:40:12:69:cf:7e:02:8c:a2:a6:01: e0:1e:c4:86:6e:86:69:54:fa:ea:89:14:1f:15:7e:41:01:13: 71:2c:96:a2:de:fd:6d:1e:f3:ca:58:42:03:1c:04:4a:33:8e: 9f:48:7e:b5:7c:c6:cb:25:09:95:55:90:98:99:a3:ae:eb:1e: 9e:7c:4f:90:c4:5c:98:b3:23:b2:aa:c7:26:b7:56:f2:1b:11: b8:45:0a:11 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICD44wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjIwRTAxMTAvBgNVBAUTKDc0RTVCQjlCNkQzQ0M3RjhDMjlBODNCREM4NDkyQjk2 NTlGMEVFMTcwHhcNMjYwMzAyMTg0NjQzWhcNMjYwMzA5MTg0NjQzWjAYMRYwFAYD VQQDEw02OWE1ZGIxMy0zYTZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuIvYu4hwUvUuZBszXFCsH+xTgz1SH/a/QXQhOO5cJAZW60AsDj2FQD4zZjz2 ub3Z7+VoBk8DmmMuWxpmtDracdy33fMsn0DxOJXeIdErsF28bQrFVtNqcxcWwqDW 9QhiYU9lL48vKoqNUETmA7lPmOfYXvNiovxzzq9QtXWFE+K2jE1wrwnDyngcBzv0 zN7yp2BL3XX1k+gdjoNt7/npnZfeqziyNsobBY3giUXJ/z6UgI5IjWRd47YEV2jd ZzCdXNicZpNepARWTVgZ+tZTZPvgUpK4RQSKTQPGPr2x022p2sJrJWWWFEVO/OY1 yNR22GseSHfKsU+qZEAm/X0LgwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAXTnh2O qCSFd9hiVN8BOqNOZdp/MB8GA1UdIwQYMBaAFHTlu5ttPMf4wpqDvchJK5ZZ8O4X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MjBFMC9EOTY0QjQ4MjMx MEUxMUVBOUMzQ0U3MkZDNEY5QUUwMi9kT1c3bTIwOHhfakNtb085eUVrcmxsbnc3 aGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2RPVzdtMjA4eF9qQ21vTzl5RWtybGxudzdoYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MjBFMC9EOTY0QjQ4MjMxMEUxMUVBOUMzQ0U3MkZDNEY5QUUwMi9kT1c3bTIwOHhf akNtb085eUVrcmxsbnc3aGMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAo8BD154VOeG27TB+OFH8VEy7mK7Je2zb2ivr1xFWNk+rDTwxcw60Is1fT85g AY/vCHXNGt/SlOElUIpB8vO+sqa5nAQ42ZLq+ZATofVKEn4Hj3R/JIQ+oQw30v92 reHowzNhQUra2IpgVm9Fj5hLavOtDszfUHOjWCiG3PSFgxjgIM1ui4sLp2CkBImc r7w0qsO/F8JzcpACFgNmOJDwH8ZhtHz95q+e9LtAEmnPfgKMoqYB4B7Ehm6GaVT6 6okUHxV+QQETcSyWot79bR7zylhCAxwESjOOn0h+tXzGyyUJlVWQmJmjrusennxP kMRcmLMjsqrHJrdW8hsRuEUKEQ== -----END CERTIFICATE-----Generated at Wed Mar 4 08:40:04 2026 by rpki-client