$ rpki-client -vvf rpki.apnic.net/member_repository/A9126A3C/7BFB4CACC6A011EF928B7960C4F9AE02/7oGaSbjIqEQT7o_oMm7xN_UYXGY.mft File: 7oGaSbjIqEQT7o_oMm7xN_UYXGY.mft (raw, json) Hash identifier: 2rkg0XaW8mOXRghrPu++0E+bWVLArEAhM2MSPd9d0nM= Subject key identifier: 9C:54:62:BE:A5:01:6A:B5:8F:CC:F0:92:91:4D:FE:D4:23:BE:92:F2 Authority key identifier: EE:81:9A:49:B8:C8:A8:44:13:EE:8F:E8:32:6E:F1:37:F5:18:5C:66 Certificate issuer: /CN=A9126A3C/serialNumber=EE819A49B8C8A84413EE8FE8326EF137F5185C66 Certificate serial: E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7oGaSbjIqEQT7o_oMm7xN_UYXGY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9126A3C/7BFB4CACC6A011EF928B7960C4F9AE02/7oGaSbjIqEQT7o_oMm7xN_UYXGY.mft Manifest number: DF Signing time: Sun 01 Mar 2026 07:42:09 +0000 Manifest this update: Sun 01 Mar 2026 07:42:08 +0000 Manifest next update: Sun 08 Mar 2026 07:42:08 +0000 Files and hashes: 1: 7oGaSbjIqEQT7o_oMm7xN_UYXGY.crl (hash: 9BDw5SWRBHglVRyUsXyDXae9gkXBWnaUgM9owMFHMxI=) 2: 16E1C8ECC6DB11EFBDDB8A0AC4F9AE02.roa (hash: 9DwMGkI+kEn4BmGdvnesr0Nzzbl8CE24PmARERBumeg=) 3: E11BD76CC6D911EF8CC3C849C4F9AE02.roa (hash: uaeUbT25QdGsv3S5FjRA3xNBZPZvdHAE+0iHQUE91u8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9126A3C/7BFB4CACC6A011EF928B7960C4F9AE02/7oGaSbjIqEQT7o_oMm7xN_UYXGY.crl rsync://rpki.apnic.net/member_repository/A9126A3C/7BFB4CACC6A011EF928B7960C4F9AE02/7oGaSbjIqEQT7o_oMm7xN_UYXGY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7oGaSbjIqEQT7o_oMm7xN_UYXGY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 07:42:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 228 (0xe4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9126A3C, serialNumber=EE819A49B8C8A84413EE8FE8326EF137F5185C66 Validity Not Before: Mar 1 07:42:08 2026 GMT Not After : Mar 8 07:42:08 2026 GMT Subject: CN=69a3edd1-511d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:42:f2:46:8a:d0:f5:de:85:24:76:21:27:d9: 01:c7:15:e8:02:15:80:b1:be:8f:86:ae:09:8f:23: 62:8d:e6:62:a9:c7:62:e7:0a:c5:d1:19:c9:cf:fc: 2a:7a:3a:0d:dd:03:92:77:00:f9:51:e8:f5:94:f7: 1c:f2:2f:0b:62:fb:4b:aa:11:0c:82:bd:76:0e:5c: dc:48:b7:a1:e4:12:cc:06:60:33:48:15:58:b3:f0: 97:b8:c8:b9:a0:5e:c1:9f:e4:c7:da:a1:a8:5c:46: a7:b1:d8:ab:b7:85:23:78:d0:54:16:13:fb:6e:33: 3f:cc:42:62:a6:4b:47:df:62:57:e1:b2:8a:da:d1: 1f:f0:9a:6d:89:01:03:a8:44:45:28:4d:75:f5:2b: 58:e6:b2:f8:34:ec:6a:2e:c8:ac:5b:60:2b:d7:4e: 41:91:af:ca:17:9f:34:16:28:6c:f8:3c:65:64:f8: fd:48:dd:28:97:a8:e2:2b:56:58:0c:35:1b:3c:b1: e6:0a:c2:c1:71:5f:16:4e:fd:eb:8f:0a:1b:70:14: f5:36:55:80:12:17:70:bc:08:9a:8a:72:30:83:60: 4e:a3:dd:c6:42:ac:04:75:87:77:1e:0e:96:63:da: 38:8a:e9:1a:3c:ae:0c:19:48:f3:e2:19:62:fa:23: 16:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:54:62:BE:A5:01:6A:B5:8F:CC:F0:92:91:4D:FE:D4:23:BE:92:F2 X509v3 Authority Key Identifier: keyid:EE:81:9A:49:B8:C8:A8:44:13:EE:8F:E8:32:6E:F1:37:F5:18:5C:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9126A3C/7BFB4CACC6A011EF928B7960C4F9AE02/7oGaSbjIqEQT7o_oMm7xN_UYXGY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7oGaSbjIqEQT7o_oMm7xN_UYXGY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9126A3C/7BFB4CACC6A011EF928B7960C4F9AE02/7oGaSbjIqEQT7o_oMm7xN_UYXGY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:98:af:17:c3:23:31:b4:f6:80:5e:2f:33:e3:ec:16:cf:01: 73:7a:e6:40:b5:d1:86:f1:77:1d:65:91:57:d3:48:21:2d:e4: 7e:5d:1d:2c:d4:26:fc:c5:ba:62:13:b2:94:dd:fe:af:66:41: af:ef:f8:3c:ef:53:7d:e5:0d:42:70:d5:e0:68:41:d6:4f:ea: 6d:90:98:45:d8:c3:9a:99:77:c8:18:66:0e:62:c8:4c:5f:31: 5e:f2:13:31:6a:d7:58:6b:e7:f3:1d:b1:02:a9:e4:9d:3a:43: 9e:71:ce:db:ce:26:43:f5:32:ed:b9:61:ac:40:b9:67:81:96: 9c:0a:1d:cd:37:11:96:35:85:de:73:97:73:e1:06:a6:b3:be: fa:21:2c:6d:8c:26:84:dd:e1:17:ee:a1:af:a3:6f:50:35:1c: 63:55:f0:e0:8f:51:15:6b:9a:96:6b:19:be:1d:9d:6e:4f:bb: 09:d5:23:28:f8:08:ee:db:33:e6:73:f1:c7:a7:23:1e:8d:2a: 54:b0:16:b0:c3:37:ad:f7:ef:05:72:da:77:06:ca:a2:be:d4: 12:49:5c:31:5e:8a:57:47:0e:66:f7:2c:48:33:c2:1c:ad:8f: 6e:c2:07:a8:1b:91:96:b3:ba:b2:8f:74:85:4e:87:50:b1:a5: 01:b1:73:ae -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAOQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjZBM0MxMTAvBgNVBAUTKEVFODE5QTQ5QjhDOEE4NDQxM0VFOEZFODMyNkVGMTM3 RjUxODVDNjYwHhcNMjYwMzAxMDc0MjA4WhcNMjYwMzA4MDc0MjA4WjAYMRYwFAYD VQQDEw02OWEzZWRkMS01MTFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjELyRorQ9d6FJHYhJ9kBxxXoAhWAsb6Phq4JjyNijeZiqcdi5wrF0RnJz/wq ejoN3QOSdwD5Uej1lPcc8i8LYvtLqhEMgr12DlzcSLeh5BLMBmAzSBVYs/CXuMi5 oF7Bn+TH2qGoXEansdirt4UjeNBUFhP7bjM/zEJipktH32JX4bKK2tEf8JptiQED qERFKE119StY5rL4NOxqLsisW2Ar105Bka/KF580Fihs+DxlZPj9SN0ol6jiK1ZY DDUbPLHmCsLBcV8WTv3rjwobcBT1NlWAEhdwvAiainIwg2BOo93GQqwEdYd3Hg6W Y9o4iukaPK4MGUjz4hli+iMWkwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJxUYr6l AWq1j8zwkpFN/tQjvpLyMB8GA1UdIwQYMBaAFO6Bmkm4yKhEE+6P6DJu8Tf1GFxm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNkEzQy83QkZCNENBQ0M2 QTAxMUVGOTI4Qjc5NjBDNEY5QUUwMi83b0dhU2JqSXFFUVQ3b19vTW03eE5fVVlY R1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdvR2FTYmpJcUVRVDdvX29NbTd4Tl9VWVhHWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NkEzQy83QkZCNENBQ0M2QTAxMUVGOTI4Qjc5NjBDNEY5QUUwMi83b0dhU2JqSXFF UVQ3b19vTW03eE5fVVlYR1kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAHpivF8MjMbT2gF4vM+PsFs8Bc3rmQLXRhvF3HWWRV9NIIS3kfl0dLNQm/MW6 YhOylN3+r2ZBr+/4PO9TfeUNQnDV4GhB1k/qbZCYRdjDmpl3yBhmDmLITF8xXvIT MWrXWGvn8x2xAqnknTpDnnHO284mQ/Uy7blhrEC5Z4GWnAodzTcRljWF3nOXc+EG prO++iEsbYwmhN3hF+6hr6NvUDUcY1Xw4I9RFWualmsZvh2dbk+7CdUjKPgI7tsz 5nPxx6cjHo0qVLAWsMM3rffvBXLadwbKor7UEklcMV6KV0cOZvcsSDPCHK2PbsIH qBuRlrO6so90hU6HULGlAbFzrg== -----END CERTIFICATE-----Generated at Sun Mar 1 21:06:39 2026 by rpki-client