$ rpki-client -vvf rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.mft File: Okb7D0D2nV4dt10oUfBAwZ9m8iw.mft (raw, json) Hash identifier: TFrXv2rtpU/dNXNlut8Dp5rLz15th30t60jjF0fA3Vg= Subject key identifier: 9A:B6:96:8F:D0:24:3C:22:1B:A5:CA:26:DD:82:2B:4A:F7:2D:5E:75 Authority key identifier: 3A:46:FB:0F:40:F6:9D:5E:1D:B7:5D:28:51:F0:40:C1:9F:66:F2:2C Certificate issuer: /CN=A91ACD4D/serialNumber=3A46FB0F40F69D5E1DB75D2851F040C19F66F22C Certificate serial: 16CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Okb7D0D2nV4dt10oUfBAwZ9m8iw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.mft Manifest number: 16B6 Signing time: Fri 06 Mar 2026 16:31:17 +0000 Manifest this update: Fri 06 Mar 2026 16:31:17 +0000 Manifest next update: Fri 13 Mar 2026 16:31:17 +0000 Files and hashes: 1: Okb7D0D2nV4dt10oUfBAwZ9m8iw.crl (hash: HG6440RokoLX5QQJYVCpCv/wJPknjDhFHIwlX9y4tV0=) 2: 268ECB3ED5BD11E894FFC250C4F9AE02.roa (hash: Z38B7rPVhqG6tcWO8r6+i/l0vZbjlq448NkG06qknRg=) 3: 3DE1DBC4D81011EC892E8A79C4F9AE02.roa (hash: axiKuwLSfY8matk7uBsk8eo5tXOq+cX6OWML8EZD+cQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.crl rsync://rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Okb7D0D2nV4dt10oUfBAwZ9m8iw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 16:31:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5836 (0x16cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ACD4D, serialNumber=3A46FB0F40F69D5E1DB75D2851F040C19F66F22C Validity Not Before: Mar 6 16:31:17 2026 GMT Not After : Mar 13 16:31:17 2026 GMT Subject: CN=69ab0155-5972 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:ed:cc:4b:4c:5c:eb:34:6b:19:d9:71:34:07: 2d:ce:bc:56:55:20:ff:cd:fb:63:8a:c4:f0:10:59: 19:11:b4:fe:f7:a9:0e:a1:75:6e:d0:93:85:c5:1b: 19:6e:8b:a8:d0:cf:d6:24:72:e6:ff:be:06:16:bd: 63:17:89:bc:01:3f:30:c8:8b:25:97:b8:0f:e5:ec: 66:5d:b1:d1:17:d3:c9:41:36:a9:7d:3c:67:22:a9: b9:35:5c:24:cb:01:72:99:e9:cb:3a:91:69:34:c9: 1a:e7:9f:9d:b3:a0:4d:c3:c2:ac:33:96:a2:35:2f: 1f:66:f7:28:b2:dc:5b:4c:6a:95:a3:37:d9:3b:9b: 62:e3:9a:67:6d:fe:41:3d:f6:2d:e0:55:6e:1d:25: 36:82:87:32:74:de:fc:64:c6:b9:80:20:11:be:82: 76:11:d1:4c:f1:1d:6d:67:8a:33:e9:d4:88:63:89: 7b:2e:82:fc:a5:f6:80:a6:c5:3a:c9:91:72:da:a4: 8c:1f:5d:71:71:33:05:99:02:a7:27:da:8e:e8:6f: a2:53:cb:93:59:f5:e8:dd:44:c2:fb:42:43:28:e3: b9:5c:cf:ed:2b:b7:b4:78:9f:80:46:89:d2:00:fa: 59:04:fa:84:64:7b:f3:84:f0:08:93:65:b7:cb:1b: 3a:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:B6:96:8F:D0:24:3C:22:1B:A5:CA:26:DD:82:2B:4A:F7:2D:5E:75 X509v3 Authority Key Identifier: keyid:3A:46:FB:0F:40:F6:9D:5E:1D:B7:5D:28:51:F0:40:C1:9F:66:F2:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Okb7D0D2nV4dt10oUfBAwZ9m8iw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:3c:10:cf:c3:93:87:6e:98:85:d5:a0:51:9b:85:56:92:4e: 8c:9d:60:81:f7:b7:8f:98:12:84:fc:11:cd:6d:db:a2:ea:18: 6a:82:73:6c:e6:5b:29:ad:ea:97:2a:13:d8:a3:21:08:bc:fb: fa:e4:80:c1:4a:97:28:32:57:63:cf:c5:a4:e5:e0:1b:4d:ce: ee:37:d3:fc:84:f4:c2:eb:cb:a8:a4:a6:be:40:42:f2:1c:c9: d5:6e:07:0a:2d:7b:3f:38:32:49:6f:10:49:bb:ea:b5:ce:f7: 55:78:45:e0:9c:e9:d9:b4:a4:59:f5:cc:3a:71:39:b3:08:af: 44:a5:ea:e3:14:82:4a:aa:ae:ef:1f:0f:99:7f:8c:05:e0:7b: ee:8c:48:3e:4e:f9:c1:a3:2b:2d:c7:63:b4:b5:d3:21:a4:8c: 9a:f5:67:45:33:7b:3e:ce:92:ac:70:3c:dd:7b:b4:40:c7:22: 08:cc:af:d7:7c:1b:f1:25:2b:40:7d:2e:37:f2:62:d7:70:ab: 22:77:79:11:17:af:77:2a:e5:27:fd:50:6f:f9:5f:6e:66:7d: 9f:e6:4b:4d:0c:30:95:26:82:fe:d2:5b:8f:68:6d:0f:61:ef: 95:ac:56:79:cc:5a:09:b6:52:45:60:de:b5:a0:2a:ab:be:0e: 64:3d:36:17 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICFswwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUNENEQxMTAvBgNVBAUTKDNBNDZGQjBGNDBGNjlENUUxREI3NUQyODUxRjA0MEMx OUY2NkYyMkMwHhcNMjYwMzA2MTYzMTE3WhcNMjYwMzEzMTYzMTE3WjAYMRYwFAYD VQQDEw02OWFiMDE1NS01OTcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAre3MS0xc6zRrGdlxNActzrxWVSD/zftjisTwEFkZEbT+96kOoXVu0JOFxRsZ bouo0M/WJHLm/74GFr1jF4m8AT8wyIsll7gP5exmXbHRF9PJQTapfTxnIqm5NVwk ywFymenLOpFpNMka55+ds6BNw8KsM5aiNS8fZvcostxbTGqVozfZO5ti45pnbf5B PfYt4FVuHSU2gocydN78ZMa5gCARvoJ2EdFM8R1tZ4oz6dSIY4l7LoL8pfaApsU6 yZFy2qSMH11xcTMFmQKnJ9qO6G+iU8uTWfXo3UTC+0JDKOO5XM/tK7e0eJ+ARonS APpZBPqEZHvzhPAIk2W3yxs6sQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJq2lo/Q JDwiG6XKJt2CK0r3LV51MB8GA1UdIwQYMBaAFDpG+w9A9p1eHbddKFHwQMGfZvIs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQ0Q0RC8xMzdEMDBENDE2 MEUxMUU4ODUyQzQzN0VDNEY5QUUwMi9Pa2I3RDBEMm5WNGR0MTBvVWZCQXdaOW04 aXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09rYjdEMEQyblY0ZHQxMG9VZkJBd1o5bThpdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Q0Q0RC8xMzdEMDBENDE2MEUxMUU4ODUyQzQzN0VDNEY5QUUwMi9Pa2I3RDBEMm5W NGR0MTBvVWZCQXdaOW04aXcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAXTwQz8OTh26YhdWgUZuFVpJOjJ1ggfe3j5gShPwRzW3bouoYaoJzbOZbKa3q lyoT2KMhCLz7+uSAwUqXKDJXY8/FpOXgG03O7jfT/IT0wuvLqKSmvkBC8hzJ1W4H Ci17PzgySW8QSbvqtc73VXhF4Jzp2bSkWfXMOnE5swivRKXq4xSCSqqu7x8PmX+M BeB77oxIPk75waMrLcdjtLXTIaSMmvVnRTN7Ps6SrHA83Xu0QMciCMyv13wb8SUr QH0uN/Ji13CrInd5ERevdyrlJ/1Qb/lfbmZ9n+ZLTQwwlSaC/tJbj2htD2HvlaxW ecxaCbZSRWDetaAqq74OZD02Fw== -----END CERTIFICATE-----Generated at Sat Mar 7 12:44:28 2026 by rpki-client