$ rpki-client -vvf rpki.apnic.net/member_repository/A91847C2/B92BFAD405EB11EF956BD643C4F9AE02/OIX50v0IYCg7VTgfHE9KWjoe7z8.mft File: OIX50v0IYCg7VTgfHE9KWjoe7z8.mft (raw, json) Hash identifier: agPZ7+YYM2sVpYJO3vJabmYiPD7CCIyW5mvcURQQfjw= Subject key identifier: 0C:E1:6B:FC:74:15:15:91:0B:FD:92:4F:B3:B2:C4:46:CE:8E:30:23 Authority key identifier: 38:85:F9:D2:FD:08:60:28:3B:55:38:1F:1C:4F:4A:5A:3A:1E:EF:3F Certificate issuer: /CN=A91847C2/serialNumber=3885F9D2FD0860283B55381F1C4F4A5A3A1EEF3F Certificate serial: 016E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OIX50v0IYCg7VTgfHE9KWjoe7z8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91847C2/B92BFAD405EB11EF956BD643C4F9AE02/OIX50v0IYCg7VTgfHE9KWjoe7z8.mft Manifest number: 0165 Signing time: Mon 23 Mar 2026 04:05:38 +0000 Manifest this update: Mon 23 Mar 2026 04:05:37 +0000 Manifest next update: Mon 30 Mar 2026 04:05:37 +0000 Files and hashes: 1: OIX50v0IYCg7VTgfHE9KWjoe7z8.crl (hash: uhxZCnzEKOM5OXu4E1EFO02If7Pn+HEVTZntG7jG1h0=) 2: 744D8A1005EE11EF851FA42FC4F9AE02.roa (hash: SI7mhqO9YrvFB2/bZ7mj3acc/KGSgDSJ8dlCBs4REbA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91847C2/B92BFAD405EB11EF956BD643C4F9AE02/OIX50v0IYCg7VTgfHE9KWjoe7z8.crl rsync://rpki.apnic.net/member_repository/A91847C2/B92BFAD405EB11EF956BD643C4F9AE02/OIX50v0IYCg7VTgfHE9KWjoe7z8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OIX50v0IYCg7VTgfHE9KWjoe7z8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 30 Mar 2026 04:05:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 366 (0x16e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91847C2, serialNumber=3885F9D2FD0860283B55381F1C4F4A5A3A1EEF3F Validity Not Before: Mar 23 04:05:37 2026 GMT Not After : Mar 30 04:05:37 2026 GMT Subject: CN=69c0bc11-2dfd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:ea:ae:ad:b9:b2:68:43:eb:e7:30:91:28:d9: b9:d0:39:2a:71:64:28:7e:24:7b:63:01:57:de:d5: f1:32:9a:b4:80:bf:b2:2d:70:2c:22:06:6d:1f:c0: 56:7b:7b:b6:77:3e:91:ee:75:8e:53:ab:e3:0e:c3: 2a:b1:c1:88:ec:c3:4d:6f:4c:6e:e7:b4:fe:8a:39: 42:bb:ce:08:57:54:bb:2c:7d:8b:c5:a9:dd:7a:38: 10:57:8f:e8:4d:42:e6:e3:a0:1e:e5:58:c7:a6:e2: ba:4b:48:5c:e8:4a:4f:e6:b0:37:cd:ff:5f:01:1e: da:04:08:fd:17:b4:44:25:08:e9:54:87:49:2f:3f: d4:9b:ce:fa:22:05:0b:b7:55:a5:5e:32:cd:4a:bd: 43:39:cf:d7:99:06:1b:59:0b:c5:8c:bc:64:d4:49: a9:3a:d4:a4:26:02:33:4b:69:52:db:d9:d6:ac:54: 1d:47:c0:df:08:a5:ac:34:73:7c:20:6e:51:3f:3c: 49:33:4f:4e:ca:45:8c:77:f9:d3:6f:45:be:3a:9c: 2e:ae:24:2c:6a:6c:70:82:b4:72:fe:79:2e:9a:95: 4c:20:91:f9:79:e8:85:e9:20:6f:6b:1e:76:68:64: f2:f0:29:c2:b7:8a:26:14:d5:c7:a2:a8:e0:e3:3a: 8c:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:E1:6B:FC:74:15:15:91:0B:FD:92:4F:B3:B2:C4:46:CE:8E:30:23 X509v3 Authority Key Identifier: keyid:38:85:F9:D2:FD:08:60:28:3B:55:38:1F:1C:4F:4A:5A:3A:1E:EF:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91847C2/B92BFAD405EB11EF956BD643C4F9AE02/OIX50v0IYCg7VTgfHE9KWjoe7z8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OIX50v0IYCg7VTgfHE9KWjoe7z8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91847C2/B92BFAD405EB11EF956BD643C4F9AE02/OIX50v0IYCg7VTgfHE9KWjoe7z8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:90:a0:67:fd:72:f0:aa:e2:25:41:44:43:e5:c4:c1:eb:f7: 4e:63:d4:55:f7:d1:2a:59:4b:45:f5:56:3a:4b:03:ae:34:9a: 43:b0:4b:59:48:36:e4:1a:c9:4d:0a:f3:1e:97:62:2a:85:6e: 3f:d8:6f:28:49:26:2b:6a:a3:91:e2:a0:cc:3d:8b:f1:f6:71: e8:24:15:e3:11:5d:7e:e0:ff:b5:c5:f6:b1:a7:c8:15:c2:32: 92:b9:2e:91:7b:cd:38:3d:2e:8a:61:59:57:87:2d:c3:a2:b4: 40:e4:91:d4:37:4b:b0:c9:65:2a:1e:51:d9:05:d0:f7:8e:37: cf:32:69:86:5e:2a:66:ac:e0:6f:38:53:36:d7:12:7b:42:9c: 33:4e:bd:a2:84:57:cf:78:b6:c4:f8:be:2f:e5:bb:9f:a9:fe: 16:c0:d8:3a:29:d6:97:6a:92:8e:7f:14:a1:2f:30:48:7e:ed: 27:e8:db:42:06:ff:e1:0d:76:e2:39:2f:64:53:1b:6e:7c:aa: ca:e3:d3:99:e4:f0:32:78:e8:c2:e3:97:3e:4d:0a:63:97:85: f1:87:f5:d1:25:ef:01:f7:88:8f:64:99:57:62:de:ed:46:8e: 7d:2a:84:ea:42:ea:9e:c5:f4:ba:46:90:0c:d4:67:48:2a:c6: 98:01:45:ab -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAW4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODQ3QzIxMTAvBgNVBAUTKDM4ODVGOUQyRkQwODYwMjgzQjU1MzgxRjFDNEY0QTVB M0ExRUVGM0YwHhcNMjYwMzIzMDQwNTM3WhcNMjYwMzMwMDQwNTM3WjAYMRYwFAYD VQQDEw02OWMwYmMxMS0yZGZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1uqurbmyaEPr5zCRKNm50DkqcWQofiR7YwFX3tXxMpq0gL+yLXAsIgZtH8BW e3u2dz6R7nWOU6vjDsMqscGI7MNNb0xu57T+ijlCu84IV1S7LH2LxandejgQV4/o TULm46Ae5VjHpuK6S0hc6EpP5rA3zf9fAR7aBAj9F7REJQjpVIdJLz/Um876IgUL t1WlXjLNSr1DOc/XmQYbWQvFjLxk1EmpOtSkJgIzS2lS29nWrFQdR8DfCKWsNHN8 IG5RPzxJM09OykWMd/nTb0W+OpwuriQsamxwgrRy/nkumpVMIJH5eeiF6SBvax52 aGTy8CnCt4omFNXHoqjg4zqMUQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAzha/x0 FRWRC/2ST7OyxEbOjjAjMB8GA1UdIwQYMBaAFDiF+dL9CGAoO1U4HxxPSlo6Hu8/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NDdDMi9COTJCRkFENDA1 RUIxMUVGOTU2QkQ2NDNDNEY5QUUwMi9PSVg1MHYwSVlDZzdWVGdmSEU5S1dqb2U3 ejguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09JWDUwdjBJWUNnN1ZUZ2ZIRTlLV2pvZTd6OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NDdDMi9COTJCRkFENDA1RUIxMUVGOTU2QkQ2NDNDNEY5QUUwMi9PSVg1MHYwSVlD ZzdWVGdmSEU5S1dqb2U3ejgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAG5CgZ/1y8KriJUFEQ+XEwev3TmPUVffRKllLRfVWOksDrjSaQ7BLWUg25BrJ TQrzHpdiKoVuP9hvKEkmK2qjkeKgzD2L8fZx6CQV4xFdfuD/tcX2safIFcIykrku kXvNOD0uimFZV4ctw6K0QOSR1DdLsMllKh5R2QXQ9443zzJphl4qZqzgbzhTNtcS e0KcM069ooRXz3i2xPi+L+W7n6n+FsDYOinWl2qSjn8UoS8wSH7tJ+jbQgb/4Q12 4jkvZFMbbnyqyuPTmeTwMnjowuOXPk0KY5eF8Yf10SXvAfeIj2SZV2Le7UaOfSqE 6kLqnsX0ukaQDNRnSCrGmAFFqw== -----END CERTIFICATE-----Generated at Tue Mar 24 12:52:50 2026 by rpki-client