$ rpki-client -vvf rpki.apnic.net/member_repository/A9128DE9/D0049F861BD511EA80CBCF36C4F9AE02/RiOppNLqhemPtaEaDSywgDiHjw8.mft File: RiOppNLqhemPtaEaDSywgDiHjw8.mft (raw, json) Hash identifier: al523NCzRE2txoA4iKqfXCeOK7z4//A7SYMGaRD4+E0= Subject key identifier: C2:23:48:3C:C1:68:11:D7:E8:90:F0:BF:2A:22:DC:7C:82:C0:9A:B7 Authority key identifier: 46:23:A9:A4:D2:EA:85:E9:8F:B5:A1:1A:0D:2C:B0:80:38:87:8F:0F Certificate issuer: /CN=A9128DE9/serialNumber=4623A9A4D2EA85E98FB5A11A0D2CB08038878F0F Certificate serial: 0C67 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RiOppNLqhemPtaEaDSywgDiHjw8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128DE9/D0049F861BD511EA80CBCF36C4F9AE02/RiOppNLqhemPtaEaDSywgDiHjw8.mft Manifest number: 0C5E Signing time: Mon 02 Mar 2026 01:21:46 +0000 Manifest this update: Mon 02 Mar 2026 01:21:44 +0000 Manifest next update: Mon 09 Mar 2026 01:21:44 +0000 Files and hashes: 1: RiOppNLqhemPtaEaDSywgDiHjw8.crl (hash: H75LjyAqNpwzBhng9g9yGorweNaDehX4iFHNieonTmc=) 2: 75E6DD481BDA11EAB3F45D44C4F9AE02.roa (hash: n9Crm/X8BIyWrbtx9XSuVfzuzzUyJa39Yk0aZo9vy/0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128DE9/D0049F861BD511EA80CBCF36C4F9AE02/RiOppNLqhemPtaEaDSywgDiHjw8.crl rsync://rpki.apnic.net/member_repository/A9128DE9/D0049F861BD511EA80CBCF36C4F9AE02/RiOppNLqhemPtaEaDSywgDiHjw8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RiOppNLqhemPtaEaDSywgDiHjw8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:21:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3175 (0xc67) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128DE9, serialNumber=4623A9A4D2EA85E98FB5A11A0D2CB08038878F0F Validity Not Before: Mar 2 01:21:44 2026 GMT Not After : Mar 9 01:21:44 2026 GMT Subject: CN=69a4e62a-cca5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:fc:24:5f:f4:66:9c:2e:68:4c:90:69:06:55: 58:15:b3:46:77:ee:4e:2d:2c:83:d2:e7:e8:73:68: df:70:de:1a:f6:29:c9:9d:53:c5:7f:d8:dc:a5:8c: 85:66:ba:93:80:dc:b7:35:af:96:db:fd:c0:05:02: ae:61:ff:a8:34:a3:85:04:36:07:6e:90:9f:2d:da: 27:d3:d2:ed:fc:6b:f9:9f:30:d4:ef:55:f3:ec:8f: 26:88:ab:97:e0:fd:e7:ff:23:b4:ee:d9:ec:11:f9: 04:3c:1f:b0:1a:75:73:a6:e4:56:5d:34:92:fb:d0: d2:cd:ec:a4:8d:c3:da:1d:c6:ed:41:62:6f:fc:85: bc:9c:d5:c0:ae:fb:f3:91:fe:0a:96:14:76:54:dc: aa:19:a1:ba:26:92:a5:02:8f:7f:79:9d:69:d4:8e: 0c:27:c9:b2:46:d2:81:55:14:50:e6:a5:21:26:78: 98:c7:bb:75:4f:fe:52:a7:c0:ee:31:ef:21:00:7a: 1b:8a:df:67:64:13:53:2c:a2:68:2b:07:d0:a7:d9: 99:d4:c8:e4:53:b0:0a:31:51:45:7f:e5:a7:49:8d: 9a:f8:73:e9:8a:4a:60:98:50:81:a8:c3:76:e2:a5: ab:a2:10:64:d0:79:cf:ac:91:1c:fb:2e:be:5c:ff: b6:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:23:48:3C:C1:68:11:D7:E8:90:F0:BF:2A:22:DC:7C:82:C0:9A:B7 X509v3 Authority Key Identifier: keyid:46:23:A9:A4:D2:EA:85:E9:8F:B5:A1:1A:0D:2C:B0:80:38:87:8F:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128DE9/D0049F861BD511EA80CBCF36C4F9AE02/RiOppNLqhemPtaEaDSywgDiHjw8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RiOppNLqhemPtaEaDSywgDiHjw8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128DE9/D0049F861BD511EA80CBCF36C4F9AE02/RiOppNLqhemPtaEaDSywgDiHjw8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:4e:f5:c4:82:39:b0:1a:30:d3:8e:06:59:d1:a2:23:35:e7: d9:d2:52:33:e4:e3:0d:3d:9e:08:58:c1:c3:62:0d:eb:82:e6: a4:40:7a:44:37:47:18:79:69:e9:2c:5b:ff:61:70:00:04:7a: 2c:5d:08:81:21:9d:cb:52:e9:f4:8e:bf:c2:7c:83:35:e9:2e: a0:29:b5:9d:2e:bf:3a:c4:b8:2a:04:d9:3e:f8:15:fb:bf:52: d8:63:c7:31:9d:3c:66:8f:e2:96:a1:6c:cb:61:e9:c9:67:0f: 72:60:47:77:87:a6:5b:52:b1:7b:11:b8:f1:47:0f:80:75:90: 38:28:0a:7a:0d:81:ad:73:0c:8c:05:f1:32:a9:54:4d:eb:2f: e0:42:b9:68:58:77:25:a5:55:24:a7:a5:ac:e6:81:9e:19:00: 90:ae:65:59:07:ef:b7:c5:31:f4:3f:07:f6:9a:e5:f6:89:11: c8:9d:db:b6:3d:2e:0f:b5:d8:66:4e:2a:d9:33:d8:57:5d:98: b9:8a:e7:23:3a:42:fd:63:f5:d3:34:a3:59:9a:32:a5:52:8e: 89:03:de:c5:b7:20:8b:88:5c:66:39:d0:1b:0e:4d:e5:83:24: 5f:cb:5e:9a:50:4c:44:2d:7c:fd:b0:ae:b4:6c:74:c6:8e:f8: 2e:35:07:b0 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDGcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjhERTkxMTAvBgNVBAUTKDQ2MjNBOUE0RDJFQTg1RTk4RkI1QTExQTBEMkNCMDgw Mzg4NzhGMEYwHhcNMjYwMzAyMDEyMTQ0WhcNMjYwMzA5MDEyMTQ0WjAYMRYwFAYD VQQDEw02OWE0ZTYyYS1jY2E1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAovwkX/RmnC5oTJBpBlVYFbNGd+5OLSyD0ufoc2jfcN4a9inJnVPFf9jcpYyF ZrqTgNy3Na+W2/3ABQKuYf+oNKOFBDYHbpCfLdon09Lt/Gv5nzDU71Xz7I8miKuX 4P3n/yO07tnsEfkEPB+wGnVzpuRWXTSS+9DSzeykjcPaHcbtQWJv/IW8nNXArvvz kf4KlhR2VNyqGaG6JpKlAo9/eZ1p1I4MJ8myRtKBVRRQ5qUhJniYx7t1T/5Sp8Du Me8hAHobit9nZBNTLKJoKwfQp9mZ1MjkU7AKMVFFf+WnSY2a+HPpikpgmFCBqMN2 4qWrohBk0HnPrJEc+y6+XP+2fwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMIjSDzB aBHX6JDwvyoi3HyCwJq3MB8GA1UdIwQYMBaAFEYjqaTS6oXpj7WhGg0ssIA4h48P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOERFOS9EMDA0OUY4NjFC RDUxMUVBODBDQkNGMzZDNEY5QUUwMi9SaU9wcE5McWhlbVB0YUVhRFN5d2dEaUhq dzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1JpT3BwTkxxaGVtUHRhRWFEU3l3Z0RpSGp3OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OERFOS9EMDA0OUY4NjFCRDUxMUVBODBDQkNGMzZDNEY5QUUwMi9SaU9wcE5McWhl bVB0YUVhRFN5d2dEaUhqdzgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAr071xII5sBow044GWdGiIzXn2dJSM+TjDT2eCFjBw2IN64LmpEB6RDdHGHlp 6Sxb/2FwAAR6LF0IgSGdy1Lp9I6/wnyDNekuoCm1nS6/OsS4KgTZPvgV+79S2GPH MZ08Zo/ilqFsy2HpyWcPcmBHd4emW1KxexG48UcPgHWQOCgKeg2BrXMMjAXxMqlU Tesv4EK5aFh3JaVVJKelrOaBnhkAkK5lWQfvt8Ux9D8H9prl9okRyJ3btj0uD7XY Zk4q2TPYV12YuYrnIzpC/WP10zSjWZoypVKOiQPexbcgi4hcZjnQGw5N5YMkX8te mlBMRC18/bCutGx0xo74LjUHsA== -----END CERTIFICATE-----Generated at Mon Mar 2 12:48:57 2026 by rpki-client