$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAE16/174885505BB111E98B103B13C4F9AE02/OU6gholcbxfZNlSKMiOLgs95KU0.mft File: OU6gholcbxfZNlSKMiOLgs95KU0.mft (raw, json) Hash identifier: WNbejpIKEgP6+yUnffrv+9BHPfawo9Doykib3WfjW70= Subject key identifier: 34:7A:F0:75:02:40:CA:5D:A6:D1:97:2D:09:87:EB:F3:94:91:7D:8F Authority key identifier: 39:4E:A0:86:89:5C:6F:17:D9:36:54:8A:32:23:8B:82:CF:79:29:4D Certificate issuer: /CN=A91AAE16/serialNumber=394EA086895C6F17D936548A32238B82CF79294D Certificate serial: 1066 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OU6gholcbxfZNlSKMiOLgs95KU0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAE16/174885505BB111E98B103B13C4F9AE02/OU6gholcbxfZNlSKMiOLgs95KU0.mft Manifest number: 104D Signing time: Sun 22 Mar 2026 17:14:49 +0000 Manifest this update: Sun 22 Mar 2026 17:14:48 +0000 Manifest next update: Sun 29 Mar 2026 17:14:48 +0000 Files and hashes: 1: OU6gholcbxfZNlSKMiOLgs95KU0.crl (hash: lSWMMPOeZ0r+JQkxxNZQkONUCf6wx/Ogu5QFpLAhFxI=) 2: B2409F28DF9311EEBF6BC36DC4F9AE02.roa (hash: aubLihlPiRMZcAing3eyikSdQeQcGYLWa8aEgV6rMbw=) 3: 23D70458076811F1A996F976023D8C67.roa (hash: P/jKVKxpnPS5oM0vxp1cgktFei7qJGJt+hIa7BJlhbs=) 4: 24528B3C076811F1A996F976023D8C67.roa (hash: xScZjBZZvVOj75CzK0I4g7RaS0lDSWrcyuO5cQw8+S4=) 5: ADFF1B80076711F1A8EB0774023D8C67.roa (hash: 7k/0PH5nSqAO2g0oYdL/sS5gQW9gOR4413PNtJehi7c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAE16/174885505BB111E98B103B13C4F9AE02/OU6gholcbxfZNlSKMiOLgs95KU0.crl rsync://rpki.apnic.net/member_repository/A91AAE16/174885505BB111E98B103B13C4F9AE02/OU6gholcbxfZNlSKMiOLgs95KU0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OU6gholcbxfZNlSKMiOLgs95KU0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 17:14:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4198 (0x1066) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAE16, serialNumber=394EA086895C6F17D936548A32238B82CF79294D Validity Not Before: Mar 22 17:14:48 2026 GMT Not After : Mar 29 17:14:48 2026 GMT Subject: CN=69c02389-198e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:e5:ab:e4:8b:76:64:a8:e2:d5:67:09:ca:1a: 07:be:42:c0:e0:61:9d:9b:2d:d1:81:ab:4f:2e:b8: 0e:aa:8d:be:1f:0a:f1:2d:89:70:fa:18:9e:a4:de: a1:ba:61:1c:37:a2:8e:ea:95:1a:7c:25:7f:a2:62: b8:d8:a9:80:32:f6:58:60:18:ef:19:58:60:6c:32: b6:e5:41:5a:0b:2f:b6:ad:31:2c:46:54:f7:bd:eb: 2f:11:af:39:0c:35:28:f4:50:80:b9:7c:0b:3d:10: 46:3c:e0:21:09:ae:70:ec:c1:4f:f2:52:8f:f2:cc: ca:e0:f4:12:ab:51:0d:de:6c:00:87:94:05:f6:fe: 28:04:f5:16:97:1b:4a:72:55:21:33:30:12:8c:a3: d9:54:36:13:19:35:90:4b:1e:e0:30:d3:45:98:87: 39:fe:81:17:d0:92:40:23:dc:15:02:76:2c:e3:fb: 4e:07:91:ca:5e:a1:e8:18:cd:b7:24:9f:bb:b9:42: d0:b9:1a:a6:24:98:11:70:38:3a:3f:d8:ed:b8:79: 60:ee:fa:07:9f:6a:2e:1c:c4:02:47:9f:47:e9:49: 03:fc:c1:da:e0:19:4e:be:16:c5:46:c9:98:59:42: 51:c1:01:de:cf:d8:b3:e8:4f:47:18:53:53:62:e1: b1:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:7A:F0:75:02:40:CA:5D:A6:D1:97:2D:09:87:EB:F3:94:91:7D:8F X509v3 Authority Key Identifier: keyid:39:4E:A0:86:89:5C:6F:17:D9:36:54:8A:32:23:8B:82:CF:79:29:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAE16/174885505BB111E98B103B13C4F9AE02/OU6gholcbxfZNlSKMiOLgs95KU0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OU6gholcbxfZNlSKMiOLgs95KU0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAE16/174885505BB111E98B103B13C4F9AE02/OU6gholcbxfZNlSKMiOLgs95KU0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:3e:93:4e:0f:33:0b:22:1c:5b:44:17:ce:8e:b4:60:45:cc: d4:b9:56:75:a3:54:ba:5e:c7:2d:6b:03:2b:4c:4a:e7:69:86: a7:6a:16:95:4c:8c:2c:84:17:e5:28:22:83:89:9b:a6:ef:79: ed:32:92:15:3b:af:c1:e9:4b:14:b6:26:01:32:62:4a:d7:21: b7:e3:75:a8:04:cf:26:63:9b:af:bd:64:e3:7a:02:6f:86:73: f5:d0:01:93:09:a3:e2:72:ce:b0:7f:66:63:11:8f:45:f8:f2: 14:b7:03:2e:a7:9f:0b:bc:ae:2a:05:7f:0f:c7:eb:57:b7:78: 45:1c:45:9f:3b:de:d9:d6:7b:72:f8:6c:8c:24:e1:40:d6:28: 38:4d:0e:eb:8a:9a:17:34:3a:9e:22:4f:94:f9:7d:53:f9:ed: 63:0f:cf:fa:40:ed:ec:b7:e9:e6:e5:ee:cc:89:e9:fc:46:74: 52:88:35:dd:ca:c3:13:cd:a7:e7:73:4a:f5:86:f0:14:35:77: 04:22:a6:cd:3c:f3:0c:86:fc:89:f1:a9:3c:ef:4c:b2:66:38: d8:45:9c:ef:f8:71:86:53:dd:d0:0e:2f:91:27:f5:f4:8c:b6: 09:a8:00:af:63:63:cc:25:f9:db:e2:cb:4c:93:ca:de:fe:52: 99:98:81:50 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICEGYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFFMTYxMTAvBgNVBAUTKDM5NEVBMDg2ODk1QzZGMTdEOTM2NTQ4QTMyMjM4Qjgy Q0Y3OTI5NEQwHhcNMjYwMzIyMTcxNDQ4WhcNMjYwMzI5MTcxNDQ4WjAYMRYwFAYD VQQDEw02OWMwMjM4OS0xOThlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr+Wr5It2ZKji1WcJyhoHvkLA4GGdmy3RgatPLrgOqo2+HwrxLYlw+hiepN6h umEcN6KO6pUafCV/omK42KmAMvZYYBjvGVhgbDK25UFaCy+2rTEsRlT3vesvEa85 DDUo9FCAuXwLPRBGPOAhCa5w7MFP8lKP8szK4PQSq1EN3mwAh5QF9v4oBPUWlxtK clUhMzASjKPZVDYTGTWQSx7gMNNFmIc5/oEX0JJAI9wVAnYs4/tOB5HKXqHoGM23 JJ+7uULQuRqmJJgRcDg6P9jtuHlg7voHn2ouHMQCR59H6UkD/MHa4BlOvhbFRsmY WUJRwQHez9iz6E9HGFNTYuGx/wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDR68HUC QMpdptGXLQmH6/OUkX2PMB8GA1UdIwQYMBaAFDlOoIaJXG8X2TZUijIji4LPeSlN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUUxNi8xNzQ4ODU1MDVC QjExMUU5OEIxMDNCMTNDNEY5QUUwMi9PVTZnaG9sY2J4ZlpObFNLTWlPTGdzOTVL VTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09VNmdob2xjYnhmWk5sU0tNaU9MZ3M5NUtVMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUUxNi8xNzQ4ODU1MDVCQjExMUU5OEIxMDNCMTNDNEY5QUUwMi9PVTZnaG9sY2J4 ZlpObFNLTWlPTGdzOTVLVTAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAbD6TTg8zCyIcW0QXzo60YEXM1LlWdaNUul7HLWsDK0xK52mGp2oWlUyMLIQX 5Sgig4mbpu957TKSFTuvwelLFLYmATJiStcht+N1qATPJmObr71k43oCb4Zz9dAB kwmj4nLOsH9mYxGPRfjyFLcDLqefC7yuKgV/D8frV7d4RRxFnzve2dZ7cvhsjCTh QNYoOE0O64qaFzQ6niJPlPl9U/ntYw/P+kDt7Lfp5uXuzInp/EZ0Uog13crDE82n 53NK9YbwFDV3BCKmzTzzDIb8ifGpPO9MsmY42EWc7/hxhlPd0A4vkSf19Iy2CagA r2NjzCX52+LLTJPK3v5SmZiBUA== -----END CERTIFICATE-----Generated at Mon Mar 23 17:56:08 2026 by rpki-client