$ rpki-client -vvf rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.mft File: 2DuT4x6TmTfYyxX-Ocpebo_q-ps.mft (raw, json) Hash identifier: qRsYW2faLu9zWjknw2u11LVHR6r2ceaETGkk4Y0w3/8= Subject key identifier: 4B:15:87:45:EE:77:0A:84:44:7B:AD:C8:93:8E:2E:25:A3:22:76:4E Authority key identifier: D8:3B:93:E3:1E:93:99:37:D8:CB:15:FE:39:CA:5E:6E:8F:EA:FA:9B Certificate issuer: /CN=A9197277/serialNumber=D83B93E31E939937D8CB15FE39CA5E6E8FEAFA9B Certificate serial: 01BA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2DuT4x6TmTfYyxX-Ocpebo_q-ps.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.mft Manifest number: 0193 Signing time: Tue 03 Mar 2026 04:00:36 +0000 Manifest this update: Tue 03 Mar 2026 04:00:36 +0000 Manifest next update: Tue 10 Mar 2026 04:00:36 +0000 Files and hashes: 1: 2DuT4x6TmTfYyxX-Ocpebo_q-ps.crl (hash: /PDAjFSc2Ic7wYstbjeDzSk/Olxa5jsPYz9P41MXxco=) 2: 6F5F30B8B56111EE91C72951C4F9AE02.roa (hash: dah/3/ypf+hEWNUOIDeyyUD/b92XWbsj2RzQqTtYlqg=) 3: 2E31B8FCB57211EEBB68526DC4F9AE02.roa (hash: KgiFn2JDnQbMiTSP1itjG4XdcrHVh1Ue7B/XnPt0zdY=) 4: 2DCC0688B57211EEBB68526DC4F9AE02.roa (hash: NmZuwfe+5iCEAPBHvUzD6sfa6o4YMsY1q8dOeYPy2vQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.crl rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2DuT4x6TmTfYyxX-Ocpebo_q-ps.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 04:00:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 442 (0x1ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197277, serialNumber=D83B93E31E939937D8CB15FE39CA5E6E8FEAFA9B Validity Not Before: Mar 3 04:00:36 2026 GMT Not After : Mar 10 04:00:36 2026 GMT Subject: CN=69a65ce4-db72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:cc:f5:4e:22:88:f8:42:62:27:31:cc:0a:ed: bb:e7:ca:4c:ec:86:ea:7b:58:1d:1e:bf:9a:6b:d7: c1:72:12:8d:fa:ea:2e:c4:96:be:dc:a3:e8:77:1b: 20:01:30:5b:ef:c1:56:7c:48:4c:c7:68:1d:8c:46: 0c:0a:30:85:10:58:53:7d:a2:94:52:a9:52:15:1b: 6f:12:0f:e9:8f:31:b1:cd:d2:56:04:d5:ed:83:63: 54:75:f8:74:c5:8c:08:af:5c:92:25:0b:cc:9f:93: e7:2b:f3:7b:09:bb:19:f9:2f:73:7d:24:e8:24:f9: 61:18:f0:2b:40:bf:28:c8:89:81:51:14:3a:2c:ba: 22:4b:47:ae:79:f2:4e:c0:61:3d:74:58:52:46:5b: d3:64:bd:38:51:af:44:c6:0f:89:57:13:a7:02:af: a5:5f:ec:b9:7d:93:76:0c:1f:4f:09:1a:bf:92:24: 0c:de:d1:c8:85:eb:79:63:66:24:91:61:23:ba:c2: e5:ab:9b:9d:a4:d4:d6:ca:92:41:d5:e3:53:64:ff: 4b:e4:bd:8e:65:46:43:cc:eb:54:87:c0:7c:a5:d0: 7f:ef:0f:5f:e3:13:8d:76:2d:ad:94:e2:a0:21:80: ee:28:c7:ab:e2:ed:84:c7:a5:b7:90:e0:86:0b:6d: e2:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:15:87:45:EE:77:0A:84:44:7B:AD:C8:93:8E:2E:25:A3:22:76:4E X509v3 Authority Key Identifier: keyid:D8:3B:93:E3:1E:93:99:37:D8:CB:15:FE:39:CA:5E:6E:8F:EA:FA:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2DuT4x6TmTfYyxX-Ocpebo_q-ps.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cb:41:3e:8a:f2:e4:ee:05:3b:bb:28:e3:96:4d:2d:82:b5:3b: c1:92:af:41:e8:62:eb:73:94:a6:a2:51:53:d9:73:80:49:4c: 91:f5:e8:8c:14:fd:32:ad:89:45:88:00:e7:de:56:c3:56:f1: ea:9e:83:a8:18:f6:55:c7:ff:28:19:05:4f:b7:3d:00:96:a7: b3:81:55:57:d3:46:67:92:6a:f5:29:0a:05:87:13:b3:3c:80: 63:27:db:27:44:4b:11:45:7c:0d:01:d1:aa:cd:f8:76:fa:f1: c2:fb:2f:ec:a7:a9:f2:fe:31:4e:f9:ad:b7:8c:39:88:7d:01: 44:cb:13:5e:58:44:d6:bb:aa:ba:a0:dc:81:28:be:60:65:0b: 9b:e4:9c:79:2e:5b:64:63:48:73:ad:02:c4:42:ef:30:d1:73: 17:43:b2:18:99:dd:16:f9:54:d1:0b:c2:9b:a0:4c:c7:70:21: d7:fb:f6:e9:f9:95:02:8d:2f:fb:b1:b0:75:3e:b7:bc:0b:00: 33:27:15:b1:33:9a:93:43:51:65:4f:3e:47:a9:bc:6f:e0:03: fd:3d:3c:b1:10:6a:8e:23:c3:db:e6:8a:ad:81:b3:b2:70:c9: bf:f1:57:36:eb:9a:80:98:ad:df:3d:3c:48:ee:3e:d4:10:7a: 40:45:40:4b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAbowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcyNzcxMTAvBgNVBAUTKEQ4M0I5M0UzMUU5Mzk5MzdEOENCMTVGRTM5Q0E1RTZF OEZFQUZBOUIwHhcNMjYwMzAzMDQwMDM2WhcNMjYwMzEwMDQwMDM2WjAYMRYwFAYD VQQDEw02OWE2NWNlNC1kYjcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtMz1TiKI+EJiJzHMCu2758pM7Ibqe1gdHr+aa9fBchKN+uouxJa+3KPodxsg ATBb78FWfEhMx2gdjEYMCjCFEFhTfaKUUqlSFRtvEg/pjzGxzdJWBNXtg2NUdfh0 xYwIr1ySJQvMn5PnK/N7CbsZ+S9zfSToJPlhGPArQL8oyImBURQ6LLoiS0euefJO wGE9dFhSRlvTZL04Ua9Exg+JVxOnAq+lX+y5fZN2DB9PCRq/kiQM3tHIhet5Y2Yk kWEjusLlq5udpNTWypJB1eNTZP9L5L2OZUZDzOtUh8B8pdB/7w9f4xONdi2tlOKg IYDuKMer4u2Ex6W3kOCGC23ijQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEsVh0Xu dwqERHutyJOOLiWjInZOMB8GA1UdIwQYMBaAFNg7k+Mek5k32MsV/jnKXm6P6vqb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzI3Ny80M0E3RTg5NEI1 NjAxMUVFOTExQzVENEZDNEY5QUUwMi8yRHVUNHg2VG1UZll5eFgtT2NwZWJvX3Et cHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJEdVQ0eDZUbVRmWXl4WC1PY3BlYm9fcS1wcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzI3Ny80M0E3RTg5NEI1NjAxMUVFOTExQzVENEZDNEY5QUUwMi8yRHVUNHg2VG1U Zll5eFgtT2NwZWJvX3EtcHMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAy0E+ivLk7gU7uyjjlk0tgrU7wZKvQehi63OUpqJRU9lzgElMkfXojBT9Mq2J RYgA595Ww1bx6p6DqBj2Vcf/KBkFT7c9AJans4FVV9NGZ5Jq9SkKBYcTszyAYyfb J0RLEUV8DQHRqs34dvrxwvsv7Kep8v4xTvmtt4w5iH0BRMsTXlhE1ruquqDcgSi+ YGULm+SceS5bZGNIc60CxELvMNFzF0OyGJndFvlU0QvCm6BMx3Ah1/v26fmVAo0v +7GwdT63vAsAMycVsTOak0NRZU8+R6m8b+AD/T08sRBqjiPD2+aKrYGzsnDJv/FX NuuagJit3z08SO4+1BB6QEVASw== -----END CERTIFICATE-----Generated at Wed Mar 4 08:39:58 2026 by rpki-client