$ rpki-client -vvf rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft File: oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft (raw, json) Hash identifier: xjcIWRMWK2GYrqRL0Jkbv0o6jNzsaVgBdaYO2/jCDcA= Subject key identifier: A6:A2:80:D3:4E:4D:14:4F:3A:51:79:40:5C:4C:99:1F:E3:41:FE:64 Authority key identifier: A0:7A:F0:CC:B2:98:35:CC:76:42:97:4B:AC:9E:15:02:B9:CF:82:D0 Certificate issuer: /CN=A91E29CB/serialNumber=A07AF0CCB29835CC7642974BAC9E1502B9CF82D0 Certificate serial: 0349 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oHrwzLKYNcx2QpdLrJ4VArnPgtA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft Manifest number: 0337 Signing time: Sun 05 Apr 2026 00:49:19 +0000 Manifest this update: Sun 05 Apr 2026 00:49:19 +0000 Manifest next update: Sun 12 Apr 2026 00:49:19 +0000 Files and hashes: 1: oHrwzLKYNcx2QpdLrJ4VArnPgtA.crl (hash: csyXqEFfPdsNsi+8M2SraBl433pYd9CXUzWfS6le3kg=) 2: C258B0D0E03C11EF991E147AC4F9AE02.roa (hash: X4W03lfAeMlljE4GAKwUtjHV/L977l42ii4F4eQTOn8=) 3: C08A3ED6E03C11EF991E147AC4F9AE02.roa (hash: ANsNQMN5H1ys5fOhAufw9rrJ9wcoujUNZdhr222CU5I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.crl rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oHrwzLKYNcx2QpdLrJ4VArnPgtA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 00:49:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 841 (0x349) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E29CB, serialNumber=A07AF0CCB29835CC7642974BAC9E1502B9CF82D0 Validity Not Before: Apr 5 00:49:19 2026 GMT Not After : Apr 12 00:49:19 2026 GMT Subject: CN=69d1b18f-43a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:68:45:6e:98:bf:9f:9b:54:e8:1c:1e:86:55: 22:31:c0:1f:7b:4b:dc:a6:e7:4a:56:aa:dd:bb:70: 2b:b4:15:79:84:15:da:2d:52:a8:07:f4:b1:30:43: fd:e6:a9:2c:bc:55:a1:ca:e1:16:63:55:ee:13:2a: 7c:52:b6:5e:9d:07:45:be:a2:51:ae:f4:e7:79:26: 5c:81:88:d9:e5:56:4d:8a:13:83:7f:2a:c3:d5:4d: 77:9c:4a:2e:09:9d:67:16:8b:31:42:3f:26:4d:03: 69:62:0b:23:13:f9:77:2e:45:39:92:3d:e4:e2:ec: 63:9f:1e:c1:f7:7a:2b:1d:87:f0:43:f3:d7:a0:25: 36:02:39:40:50:c3:12:7c:45:f7:9d:5f:6f:44:c7: e8:45:db:1e:b9:11:65:11:13:f0:51:12:3f:76:6d: d7:1f:a9:6a:fe:e5:29:53:6e:17:36:a8:a5:ab:ee: 55:29:33:f6:9b:62:6b:3e:b3:29:b3:29:28:4f:3d: f0:00:fc:67:87:0b:f1:d5:a4:7a:97:cd:9d:ec:fc: 9c:1d:59:d0:e2:67:84:51:ec:d1:6b:75:06:c3:76: 9a:bf:ed:d9:27:af:3f:19:05:81:48:36:56:a9:0d: e3:68:39:49:2c:72:6c:81:ad:20:7d:4e:c0:36:7b: d4:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:A2:80:D3:4E:4D:14:4F:3A:51:79:40:5C:4C:99:1F:E3:41:FE:64 X509v3 Authority Key Identifier: keyid:A0:7A:F0:CC:B2:98:35:CC:76:42:97:4B:AC:9E:15:02:B9:CF:82:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oHrwzLKYNcx2QpdLrJ4VArnPgtA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:3d:e4:0d:65:5f:a9:24:27:18:bc:89:53:18:97:ea:e1:2a: 9d:10:1a:e9:90:cd:07:1f:23:3c:dd:80:59:40:73:ab:76:d8: ab:8a:43:25:a6:e0:4b:6e:40:55:a7:c7:cb:f2:64:f5:6d:31: bf:00:16:68:72:aa:c4:78:46:2a:6d:4a:59:0b:02:5b:49:2d: 95:4e:86:29:52:ff:54:22:1b:c5:17:29:0a:d7:1e:62:28:52: a0:1d:48:d8:68:a4:13:07:a3:69:f3:8f:ec:6f:c1:19:66:1c: 9b:60:2e:40:64:3b:bc:94:6f:bc:7c:fa:37:ef:f5:1e:08:c6: b8:4e:f7:36:2b:2b:25:1f:39:df:fd:90:38:2c:5f:33:ec:c6: 3e:c9:60:62:8c:ab:4a:f4:e4:f9:bb:2f:a3:83:aa:b7:a0:aa: 7f:6e:ac:00:0e:b6:88:fc:95:5b:d5:3f:87:02:f6:12:78:d0: 94:bc:5b:3a:4f:c7:5a:1b:3b:7e:16:20:a4:ce:cc:c0:80:90: cb:3c:7a:d6:82:09:9d:9e:90:6a:d6:b7:62:5e:5d:57:68:1b: 13:7b:f6:c5:de:c8:1b:65:ff:a4:1c:b3:e7:f4:c6:af:d7:c9: 14:ea:48:3c:62:0d:46:eb:2f:24:8c:bf:af:6c:fa:d8:a8:3d: 53:8a:5f:40 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA0kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI5Q0IxMTAvBgNVBAUTKEEwN0FGMENDQjI5ODM1Q0M3NjQyOTc0QkFDOUUxNTAy QjlDRjgyRDAwHhcNMjYwNDA1MDA0OTE5WhcNMjYwNDEyMDA0OTE5WjAYMRYwFAYD VQQDEw02OWQxYjE4Zi00M2EyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAumhFbpi/n5tU6BwehlUiMcAfe0vcpudKVqrdu3ArtBV5hBXaLVKoB/SxMEP9 5qksvFWhyuEWY1XuEyp8UrZenQdFvqJRrvTneSZcgYjZ5VZNihODfyrD1U13nEou CZ1nFosxQj8mTQNpYgsjE/l3LkU5kj3k4uxjnx7B93orHYfwQ/PXoCU2AjlAUMMS fEX3nV9vRMfoRdseuRFlERPwURI/dm3XH6lq/uUpU24XNqilq+5VKTP2m2JrPrMp sykoTz3wAPxnhwvx1aR6l82d7PycHVnQ4meEUezRa3UGw3aav+3ZJ68/GQWBSDZW qQ3jaDlJLHJsga0gfU7ANnvU5wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKaigNNO TRRPOlF5QFxMmR/jQf5kMB8GA1UdIwQYMBaAFKB68MyymDXMdkKXS6yeFQK5z4LQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjlDQi8xRjkwMkIwRTA1 QUYxMUVEQTcxNzY0MkJDNEY5QUUwMi9vSHJ3ekxLWU5jeDJRcGRMcko0VkFyblBn dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29Icnd6TEtZTmN4MlFwZExySjRWQXJuUGd0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MjlDQi8xRjkwMkIwRTA1QUYxMUVEQTcxNzY0MkJDNEY5QUUwMi9vSHJ3ekxLWU5j eDJRcGRMcko0VkFyblBndEEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAmT3kDWVfqSQnGLyJUxiX6uEqnRAa6ZDNBx8jPN2AWUBzq3bYq4pDJabgS25A VafHy/Jk9W0xvwAWaHKqxHhGKm1KWQsCW0ktlU6GKVL/VCIbxRcpCtceYihSoB1I 2GikEwejafOP7G/BGWYcm2AuQGQ7vJRvvHz6N+/1HgjGuE73NisrJR853/2QOCxf M+zGPslgYoyrSvTk+bsvo4Oqt6Cqf26sAA62iPyVW9U/hwL2EnjQlLxbOk/HWhs7 fhYgpM7MwICQyzx61oIJnZ6Qata3Yl5dV2gbE3v2xd7IG2X/pByz5/TGr9fJFOpI PGINRusvJIy/r2z62Kg9U4pfQA== -----END CERTIFICATE-----Generated at Mon Apr 6 15:14:35 2026 by rpki-client