$ rpki-client -vvf rpki.apnic.net/member_repository/A9123AB4/1FB040A0B17411E68EC88518C4F9AE02/OGxcstbg7GFBrrc_STUhsFIKPPo.mft File: OGxcstbg7GFBrrc_STUhsFIKPPo.mft (raw, json) Hash identifier: bz2mLf1mKG69gpLLjx02Pi2AoZeSHJQw/If9Cv9metw= Subject key identifier: E3:A5:BA:55:13:E8:2E:B3:EC:2D:6A:79:F2:16:F6:FE:D4:63:1B:AB Authority key identifier: 38:6C:5C:B2:D6:E0:EC:61:41:AE:B7:3F:49:35:21:B0:52:0A:3C:FA Certificate issuer: /CN=A9123AB4/serialNumber=386C5CB2D6E0EC6141AEB73F493521B0520A3CFA Certificate serial: 1DD4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OGxcstbg7GFBrrc_STUhsFIKPPo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123AB4/1FB040A0B17411E68EC88518C4F9AE02/OGxcstbg7GFBrrc_STUhsFIKPPo.mft Manifest number: 1DC3 Signing time: Mon 02 Mar 2026 00:07:16 +0000 Manifest this update: Mon 02 Mar 2026 00:07:15 +0000 Manifest next update: Mon 09 Mar 2026 00:07:15 +0000 Files and hashes: 1: OGxcstbg7GFBrrc_STUhsFIKPPo.crl (hash: phqmrTbrrohpS0y0+9Au3vy54Ze1OjBwcW+8DwFQcSo=) 2: DD9C07828D8B11EBB959991DC4F9AE02.roa (hash: k6CtfEJwOIjqwI8wE1ffbbr6dcu91HX2CafEBgOBGsc=) 3: DE5B018C8D8B11EBB959991DC4F9AE02.roa (hash: x37ecenCy3jbXj6Gv2z3koAXtHNV/RyDae1qY9A2y4M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123AB4/1FB040A0B17411E68EC88518C4F9AE02/OGxcstbg7GFBrrc_STUhsFIKPPo.crl rsync://rpki.apnic.net/member_repository/A9123AB4/1FB040A0B17411E68EC88518C4F9AE02/OGxcstbg7GFBrrc_STUhsFIKPPo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OGxcstbg7GFBrrc_STUhsFIKPPo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:07:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7636 (0x1dd4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123AB4, serialNumber=386C5CB2D6E0EC6141AEB73F493521B0520A3CFA Validity Not Before: Mar 2 00:07:15 2026 GMT Not After : Mar 9 00:07:15 2026 GMT Subject: CN=69a4d4b4-b530 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:d2:b6:46:c8:d5:86:09:71:14:ee:8f:b4:17: 91:23:df:c1:47:61:5c:79:0b:5f:a5:f6:33:f8:ed: 8f:aa:36:12:03:bc:cc:9b:2d:3c:bb:12:76:20:e0: f4:ea:2b:ee:57:9f:69:79:fe:ce:ba:1c:1a:16:bf: 90:49:cf:4b:1d:6b:c6:4a:52:3e:08:2c:f9:3c:aa: 7d:30:48:3c:8a:84:e9:e0:dd:ed:b5:a7:11:a7:07: 33:1e:65:1f:a4:fc:41:4c:f4:ea:30:47:44:41:8d: ce:4d:bd:44:45:a1:31:67:5f:05:3f:84:5a:7e:41: 26:8c:b5:eb:b8:e4:89:cb:a6:7e:51:fb:7a:cf:b4: c4:a1:cf:16:54:39:f1:87:9e:bd:37:e8:42:fb:c4: d3:c2:e6:e4:e0:d1:61:a2:cf:30:ba:19:dd:8b:e2: f2:46:2a:6e:c3:b3:d9:44:ab:37:f4:27:ff:c4:4b: 21:a9:17:bd:e6:b0:8a:54:5c:db:8c:53:44:96:e1: b1:2d:70:5d:3f:5d:96:88:93:b0:31:bf:b8:43:94: 8b:e7:69:01:27:03:ae:25:3f:b5:57:9a:9d:91:ba: 33:3a:54:e2:2b:cc:69:57:a8:bd:66:62:c8:bb:18: 2b:90:43:d9:83:a9:60:f9:89:f2:c1:51:4c:f6:f9: 0b:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:A5:BA:55:13:E8:2E:B3:EC:2D:6A:79:F2:16:F6:FE:D4:63:1B:AB X509v3 Authority Key Identifier: keyid:38:6C:5C:B2:D6:E0:EC:61:41:AE:B7:3F:49:35:21:B0:52:0A:3C:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123AB4/1FB040A0B17411E68EC88518C4F9AE02/OGxcstbg7GFBrrc_STUhsFIKPPo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OGxcstbg7GFBrrc_STUhsFIKPPo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123AB4/1FB040A0B17411E68EC88518C4F9AE02/OGxcstbg7GFBrrc_STUhsFIKPPo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:35:34:c6:55:a8:1f:b5:10:6d:3f:fd:d0:f1:98:30:07:ca: 7b:9e:1a:8f:b8:9b:9d:23:1f:8c:ff:e7:bc:c8:58:79:55:27: 6a:5e:4d:5d:a6:65:64:5c:cd:e2:9f:76:25:ab:06:45:9f:b5: 35:82:bb:fb:86:15:22:d4:aa:6b:f6:45:7f:e0:a1:59:07:62: 4d:f0:be:4e:40:f5:33:a7:b0:f3:2e:70:72:a6:1c:20:e7:67: 4c:c0:45:cb:e0:9a:d4:d5:a1:66:b3:4f:4d:ac:9c:c0:36:14: f2:75:02:f7:a5:91:6b:f3:da:6e:66:4f:11:4f:57:37:d5:12: 96:74:90:15:fd:a6:f0:23:0e:3e:98:aa:6b:2c:97:a9:a0:9d: 21:97:2e:a0:3c:68:15:bb:9d:92:59:8b:c0:06:b4:b5:b0:bb: 5e:70:c5:ea:1f:aa:a7:c3:29:39:a6:9a:d8:eb:bb:6b:ff:3a: 20:20:71:74:cb:df:97:02:fd:5b:fc:fd:e6:a6:3a:2a:e6:a0: 85:cb:d3:49:b7:1e:bb:f5:91:b3:63:61:aa:5b:0e:4a:01:3a: 28:0e:90:32:5f:79:fb:7d:5d:a0:a3:d9:c8:14:77:7d:3e:28: 72:71:81:5c:4e:40:f1:29:9b:6e:c4:81:66:94:6b:55:e1:33: 95:6a:ee:77 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICHdQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjNBQjQxMTAvBgNVBAUTKDM4NkM1Q0IyRDZFMEVDNjE0MUFFQjczRjQ5MzUyMUIw NTIwQTNDRkEwHhcNMjYwMzAyMDAwNzE1WhcNMjYwMzA5MDAwNzE1WjAYMRYwFAYD VQQDEw02OWE0ZDRiNC1iNTMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0dK2RsjVhglxFO6PtBeRI9/BR2FceQtfpfYz+O2PqjYSA7zMmy08uxJ2IOD0 6ivuV59pef7OuhwaFr+QSc9LHWvGSlI+CCz5PKp9MEg8ioTp4N3ttacRpwczHmUf pPxBTPTqMEdEQY3OTb1ERaExZ18FP4RafkEmjLXruOSJy6Z+Uft6z7TEoc8WVDnx h569N+hC+8TTwubk4NFhos8wuhndi+LyRipuw7PZRKs39Cf/xEshqRe95rCKVFzb jFNEluGxLXBdP12WiJOwMb+4Q5SL52kBJwOuJT+1V5qdkbozOlTiK8xpV6i9ZmLI uxgrkEPZg6lg+YnywVFM9vkLoQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOOlulUT 6C6z7C1qefIW9v7UYxurMB8GA1UdIwQYMBaAFDhsXLLW4OxhQa63P0k1IbBSCjz6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyM0FCNC8xRkIwNDBBMEIx NzQxMUU2OEVDODg1MThDNEY5QUUwMi9PR3hjc3RiZzdHRkJycmNfU1RVaHNGSUtQ UG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09HeGNzdGJnN0dGQnJyY19TVFVoc0ZJS1BQby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy M0FCNC8xRkIwNDBBMEIxNzQxMUU2OEVDODg1MThDNEY5QUUwMi9PR3hjc3RiZzdH RkJycmNfU1RVaHNGSUtQUG8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAizU0xlWoH7UQbT/90PGYMAfKe54aj7ibnSMfjP/nvMhYeVUnal5NXaZlZFzN 4p92JasGRZ+1NYK7+4YVItSqa/ZFf+ChWQdiTfC+TkD1M6ew8y5wcqYcIOdnTMBF y+Ca1NWhZrNPTaycwDYU8nUC96WRa/PabmZPEU9XN9USlnSQFf2m8CMOPpiqayyX qaCdIZcuoDxoFbudklmLwAa0tbC7XnDF6h+qp8MpOaaa2Ou7a/86ICBxdMvflwL9 W/z95qY6KuaghcvTSbceu/WRs2NhqlsOSgE6KA6QMl95+31doKPZyBR3fT4ocnGB XE5A8SmbbsSBZpRrVeEzlWrudw== -----END CERTIFICATE-----Generated at Mon Mar 2 06:27:16 2026 by rpki-client