$ rpki-client -vvf rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.mft File: oKMiStDIKz-aYvNHrKP5RdsI8rA.mft (raw, json) Hash identifier: D1yG9LApesKDGkvkmdN2uK27r4Si/OuTX+ef5SIbtyA= Subject key identifier: 06:65:76:9E:2B:7B:77:EF:0F:83:1B:7E:F5:FC:34:86:64:BD:0E:AC Authority key identifier: A0:A3:22:4A:D0:C8:2B:3F:9A:62:F3:47:AC:A3:F9:45:DB:08:F2:B0 Certificate issuer: /CN=A91B80BD/serialNumber=A0A3224AD0C82B3F9A62F347ACA3F945DB08F2B0 Certificate serial: 311D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKMiStDIKz-aYvNHrKP5RdsI8rA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.mft Manifest number: 30C2 Signing time: Mon 16 Mar 2026 15:22:22 +0000 Manifest this update: Mon 16 Mar 2026 15:22:22 +0000 Manifest next update: Mon 23 Mar 2026 15:22:22 +0000 Files and hashes: 1: oKMiStDIKz-aYvNHrKP5RdsI8rA.crl (hash: 4Rkt44PP2niveU3Ec6u0FajwQnSBziaJTY7DUpp466A=) 2: 583C1F6854F611E79DF7E643C4F9AE02.roa (hash: M6QpwrrsCEg6uS0XBq+MJGbdVX3IkfmFKf0zFhM8Oec=) 3: 4C72E61CB0EC11E5A6934B42C4F9AE02.roa (hash: ot76bD4Fe2eGS+QL+OB7ESET88ZeiKoIEOY/MT5QHrY=) 4: 915E51B8F3BE11ED8B9B1450C4F9AE02.roa (hash: jY72D9kM4ZreV4v43viz3/fEA3o/FMiAaeH7fUiUeSs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.crl rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKMiStDIKz-aYvNHrKP5RdsI8rA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Mar 2026 15:22:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12573 (0x311d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B80BD, serialNumber=A0A3224AD0C82B3F9A62F347ACA3F945DB08F2B0 Validity Not Before: Mar 16 15:22:22 2026 GMT Not After : Mar 23 15:22:22 2026 GMT Subject: CN=69b8202e-a369 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:fd:d3:a7:45:eb:8e:4e:ce:78:63:fd:b1:80: c8:a9:b8:2f:fc:9f:f0:cb:3f:af:1f:0b:3c:74:a0: 3c:b3:11:7b:e4:60:b9:db:d4:d3:95:77:df:73:f9: 2e:98:5a:d4:25:0c:ce:b0:54:a7:75:6e:3a:ec:f0: a2:01:5f:fa:b3:3f:ec:d0:0a:97:5f:d6:fe:7f:8b: 5e:f6:72:e8:33:ba:d8:09:dc:ac:d1:df:f5:6d:9b: 11:d7:d7:f4:c8:4f:73:34:55:d8:a9:a6:62:b4:87: 8a:63:e3:ad:d8:82:90:29:75:4e:86:a8:d7:2d:12: 34:82:3c:71:13:47:33:ad:a6:04:d2:28:ff:05:36: f9:9a:79:a2:96:e0:b2:c3:e9:59:da:64:3f:09:15: 58:4e:69:b5:c9:fa:bc:75:94:9e:7e:1e:bc:9d:89: 21:08:c1:79:97:01:09:f9:d9:e4:c9:60:26:ff:4f: 00:64:40:5b:48:23:1c:d0:f9:8f:8f:41:df:86:df: a6:73:37:26:3a:49:d8:20:24:4b:b6:90:bf:34:e5: 75:28:7e:b8:15:d0:f3:c9:fe:3c:a0:68:02:83:f6: 2c:56:78:a3:04:7a:c3:91:fd:2c:90:a8:0d:8f:89: 42:5b:db:ee:0b:11:9e:b4:a1:7d:69:3b:4c:dc:ed: 1f:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:65:76:9E:2B:7B:77:EF:0F:83:1B:7E:F5:FC:34:86:64:BD:0E:AC X509v3 Authority Key Identifier: keyid:A0:A3:22:4A:D0:C8:2B:3F:9A:62:F3:47:AC:A3:F9:45:DB:08:F2:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKMiStDIKz-aYvNHrKP5RdsI8rA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:d5:fd:d1:7e:bb:0e:32:45:18:0a:52:00:be:45:83:a5:5f: a1:e8:a1:23:23:42:7a:d9:74:19:61:9d:d8:87:d9:04:98:fe: 5e:fc:b3:98:71:8e:8c:83:a2:8d:26:8a:84:ec:2a:ec:5a:66: 8f:16:eb:98:0a:22:a5:cd:60:eb:96:16:6b:d2:d2:36:cf:17: b1:a1:26:2d:f7:98:67:63:fb:24:42:a7:d3:75:18:20:63:38: ef:82:4d:46:e8:77:ea:67:e4:78:46:ea:13:9c:e2:88:70:03: 90:5a:50:95:66:3f:0c:f4:71:ce:88:e3:68:69:f7:20:79:c3: 62:94:59:09:a0:5f:7b:41:f9:6b:09:f2:e2:45:9a:1d:32:95: b8:3e:25:f6:5a:6e:8f:75:6a:ef:f2:2e:f8:6b:fb:3b:d3:b0: 48:8c:6f:72:39:be:ed:19:cd:4b:85:c0:7f:cd:e3:2e:50:cb: 2c:9c:e1:91:24:94:3d:8f:d8:eb:b3:f7:5b:b5:93:c0:4e:57: 96:79:96:15:e5:71:0f:ca:07:81:ba:6f:e2:77:20:37:50:0d: 43:cf:8f:66:25:5a:a8:48:f4:95:cf:c8:07:1e:d3:7d:bc:17: cc:4f:71:b1:ab:f4:67:b6:b9:f2:59:08:0e:50:59:a7:1b:11: 69:72:15:bf -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICMR0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjgwQkQxMTAvBgNVBAUTKEEwQTMyMjRBRDBDODJCM0Y5QTYyRjM0N0FDQTNGOTQ1 REIwOEYyQjAwHhcNMjYwMzE2MTUyMjIyWhcNMjYwMzIzMTUyMjIyWjAYMRYwFAYD VQQDEw02OWI4MjAyZS1hMzY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp/3Tp0Xrjk7OeGP9sYDIqbgv/J/wyz+vHws8dKA8sxF75GC529TTlXffc/ku mFrUJQzOsFSndW467PCiAV/6sz/s0AqXX9b+f4te9nLoM7rYCdys0d/1bZsR19f0 yE9zNFXYqaZitIeKY+Ot2IKQKXVOhqjXLRI0gjxxE0czraYE0ij/BTb5mnmiluCy w+lZ2mQ/CRVYTmm1yfq8dZSefh68nYkhCMF5lwEJ+dnkyWAm/08AZEBbSCMc0PmP j0Hfht+mczcmOknYICRLtpC/NOV1KH64FdDzyf48oGgCg/YsVnijBHrDkf0skKgN j4lCW9vuCxGetKF9aTtM3O0f6QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAZldp4r e3fvD4MbfvX8NIZkvQ6sMB8GA1UdIwQYMBaAFKCjIkrQyCs/mmLzR6yj+UXbCPKw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCODBCRC9CNUE2MzZEOEZF NUMxMUUyQUVDMDQyNTA1OTExRUEzMi9vS01pU3RESUt6LWFZdk5IcktQNVJkc0k4 ckEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29LTWlTdERJS3otYVl2TkhyS1A1UmRzSThyQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC ODBCRC9CNUE2MzZEOEZFNUMxMUUyQUVDMDQyNTA1OTExRUEzMi9vS01pU3RESUt6 LWFZdk5IcktQNVJkc0k4ckEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAGdX90X67DjJFGApSAL5Fg6VfoeihIyNCetl0GWGd2IfZBJj+XvyzmHGOjIOi jSaKhOwq7FpmjxbrmAoipc1g65YWa9LSNs8XsaEmLfeYZ2P7JEKn03UYIGM474JN Ruh36mfkeEbqE5ziiHADkFpQlWY/DPRxzojjaGn3IHnDYpRZCaBfe0H5awny4kWa HTKVuD4l9lpuj3Vq7/Iu+Gv7O9OwSIxvcjm+7RnNS4XAf83jLlDLLJzhkSSUPY/Y 67P3W7WTwE5XlnmWFeVxD8oHgbpv4ncgN1ANQ8+PZiVaqEj0lc/IBx7TfbwXzE9x sav0Z7a58lkIDlBZpxsRaXIVvw== -----END CERTIFICATE-----Generated at Wed Mar 18 04:06:57 2026 by rpki-client