$ rpki-client -vvf rpki.apnic.net/member_repository/A91702B9/3B72EE90C60511ECAB74D962C4F9AE02/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.mft File: rOLEzLCJ0hs3BFSwDmtZOvKIYvY.mft (raw, json) Hash identifier: HnDZE1Y0c5UqdrKxyHvCKDwbGq57Fxnjz/pFuc3uHnw= Subject key identifier: E4:1A:30:2A:09:25:21:2A:D2:0F:70:50:27:93:8E:2D:FC:11:D9:6E Authority key identifier: AC:E2:C4:CC:B0:89:D2:1B:37:04:54:B0:0E:6B:59:3A:F2:88:62:F6 Certificate issuer: /CN=A91702B9/serialNumber=ACE2C4CCB089D21B370454B00E6B593AF28862F6 Certificate serial: 03D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91702B9/3B72EE90C60511ECAB74D962C4F9AE02/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.mft Manifest number: 03CA Signing time: Sat 21 Mar 2026 00:07:25 +0000 Manifest this update: Sat 21 Mar 2026 00:07:25 +0000 Manifest next update: Sat 28 Mar 2026 00:07:25 +0000 Files and hashes: 1: rOLEzLCJ0hs3BFSwDmtZOvKIYvY.crl (hash: uUvHYzSIPwGFsdUqUjBPp6XFmkBhE76G1NkCYGaLhZQ=) 2: A047A07AD56811EFB57A5D33C4F9AE02.roa (hash: 9ddhu2yrw8Y1Qn76lqowUGOY2CYHuc5bqh90B9kOwck=) 3: FC159BECF4D911EFB4F5FC16C4F9AE02.roa (hash: pSZyO8DRU7k04LVzxpq4jULZp/HQ6qCZD+25WSrrumg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91702B9/3B72EE90C60511ECAB74D962C4F9AE02/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.crl rsync://rpki.apnic.net/member_repository/A91702B9/3B72EE90C60511ECAB74D962C4F9AE02/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 00:07:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 981 (0x3d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91702B9, serialNumber=ACE2C4CCB089D21B370454B00E6B593AF28862F6 Validity Not Before: Mar 21 00:07:25 2026 GMT Not After : Mar 28 00:07:25 2026 GMT Subject: CN=69bde13d-bb60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:af:12:1e:1e:c6:5f:1e:97:2d:bd:c1:2a:f2: 09:a3:b7:02:f4:b7:d6:7e:6f:7d:5f:8f:b3:de:46: 4f:1a:e5:a7:28:7d:c5:71:30:ed:77:ee:e1:2d:01: 6f:08:23:66:75:fa:69:c8:bf:bd:62:4f:41:d4:64: 98:2f:72:21:d8:9f:02:4f:fa:9c:67:7b:21:6d:fc: dd:03:23:6e:46:da:b7:95:d9:a3:aa:50:7a:b0:14: 69:ee:85:1f:f4:f2:9c:6e:9f:be:46:ba:d4:99:d8: 7e:a7:63:4d:e5:8e:92:0c:35:59:9e:e8:c5:ae:95: 11:bb:df:4b:28:c3:98:19:12:3c:88:ae:e5:0a:49: b5:7b:49:2a:a4:4a:bc:62:ca:a9:25:ab:6f:b9:22: 88:04:91:fc:7d:20:ee:98:df:6d:db:b6:13:59:21: 4a:c1:4d:c2:d0:85:3d:84:8d:2f:91:19:1b:4e:1d: cc:11:ab:22:7d:a0:6d:ee:ae:5a:67:6a:74:19:c6: f3:ee:1e:29:f7:40:a5:85:1f:22:ec:fb:45:b7:7c: f9:29:d5:f7:a9:df:ce:63:83:94:67:91:bd:b4:cf: bd:ac:95:28:93:84:1c:c4:c5:30:7a:52:7c:78:ed: 4f:03:2a:72:46:de:99:65:8c:78:f4:56:b4:0b:52: fe:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:1A:30:2A:09:25:21:2A:D2:0F:70:50:27:93:8E:2D:FC:11:D9:6E X509v3 Authority Key Identifier: keyid:AC:E2:C4:CC:B0:89:D2:1B:37:04:54:B0:0E:6B:59:3A:F2:88:62:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91702B9/3B72EE90C60511ECAB74D962C4F9AE02/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91702B9/3B72EE90C60511ECAB74D962C4F9AE02/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:8b:de:8a:e0:4e:aa:0e:57:2d:b7:50:63:55:df:7f:c0:d8: b4:cd:f3:7f:bb:c6:e0:a0:a9:8f:5e:40:d7:15:df:fc:cf:ce: 0b:5e:94:6c:a9:70:41:34:f3:dc:66:fc:87:0b:ce:73:86:1b: 0f:5b:23:16:20:5d:9c:09:62:02:db:69:3b:17:84:38:3a:bd: c9:c2:12:a0:ec:3e:e5:86:ab:b0:8b:82:cc:6c:22:f5:4b:e2: 88:d7:28:33:0c:d1:ed:67:13:66:e8:d6:57:ab:dc:f7:5f:74: 9e:16:9f:4c:31:35:9a:e1:5e:27:e1:92:b3:9c:b4:14:cc:73: c1:70:5b:d1:a7:a6:bd:68:ef:66:05:34:e2:0a:89:b7:50:14: ba:58:51:10:cd:67:1b:f1:45:45:17:08:20:5c:5a:45:62:bb: 0f:d9:1f:60:fd:38:d5:93:5e:67:c1:29:34:a0:64:8e:8c:42: a9:f6:97:cf:45:f4:f7:55:6f:57:07:b2:69:a4:93:e9:0a:5b: 0a:f6:65:83:5c:99:83:00:46:f5:0b:1b:af:3f:4a:ff:84:fc: 48:ae:1d:3d:68:5c:94:89:4e:5c:e0:2c:7a:45:b4:ae:88:41: 4c:ee:33:22:b5:8b:34:14:1d:2e:57:9d:99:e2:28:d4:66:84: f4:21:38:41 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA9UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzAyQjkxMTAvBgNVBAUTKEFDRTJDNENDQjA4OUQyMUIzNzA0NTRCMDBFNkI1OTNB RjI4ODYyRjYwHhcNMjYwMzIxMDAwNzI1WhcNMjYwMzI4MDAwNzI1WjAYMRYwFAYD VQQDEw02OWJkZTEzZC1iYjYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzK8SHh7GXx6XLb3BKvIJo7cC9LfWfm99X4+z3kZPGuWnKH3FcTDtd+7hLQFv CCNmdfppyL+9Yk9B1GSYL3Ih2J8CT/qcZ3shbfzdAyNuRtq3ldmjqlB6sBRp7oUf 9PKcbp++RrrUmdh+p2NN5Y6SDDVZnujFrpURu99LKMOYGRI8iK7lCkm1e0kqpEq8 YsqpJatvuSKIBJH8fSDumN9t27YTWSFKwU3C0IU9hI0vkRkbTh3MEasifaBt7q5a Z2p0Gcbz7h4p90ClhR8i7PtFt3z5KdX3qd/OY4OUZ5G9tM+9rJUok4QcxMUwelJ8 eO1PAypyRt6ZZYx49Fa0C1L+nwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOQaMCoJ JSEq0g9wUCeTji38EdluMB8GA1UdIwQYMBaAFKzixMywidIbNwRUsA5rWTryiGL2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDJCOS8zQjcyRUU5MEM2 MDUxMUVDQUI3NEQ5NjJDNEY5QUUwMi9yT0xFekxDSjBoczNCRlN3RG10Wk92S0lZ dlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JPTEV6TENKMGhzM0JGU3dEbXRaT3ZLSVl2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MDJCOS8zQjcyRUU5MEM2MDUxMUVDQUI3NEQ5NjJDNEY5QUUwMi9yT0xFekxDSjBo czNCRlN3RG10Wk92S0lZdlkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAIoveiuBOqg5XLbdQY1Xff8DYtM3zf7vG4KCpj15A1xXf/M/OC16UbKlwQTTz 3Gb8hwvOc4YbD1sjFiBdnAliAttpOxeEODq9ycISoOw+5YarsIuCzGwi9UviiNco MwzR7WcTZujWV6vc9190nhafTDE1muFeJ+GSs5y0FMxzwXBb0aemvWjvZgU04gqJ t1AUulhREM1nG/FFRRcIIFxaRWK7D9kfYP041ZNeZ8EpNKBkjoxCqfaXz0X091Vv VweyaaST6QpbCvZlg1yZgwBG9Qsbrz9K/4T8SK4dPWhclIlOXOAsekW0rohBTO4z IrWLNBQdLledmeIo1GaE9CE4QQ== -----END CERTIFICATE-----Generated at Sun Mar 22 00:12:11 2026 by rpki-client