$ rpki-client -vvf rpki.apnic.net/member_repository/A9143DE2/D218DD528E9711EA8C2DE537C4F9AE02/320AK7yrolDSrmtEVOPL_WfSx-o.mft File: 320AK7yrolDSrmtEVOPL_WfSx-o.mft (raw, json) Hash identifier: RK0uZik6dnrdRgXW5ACexTYZJos7BCMVjtgHDKBXqN8= Subject key identifier: 86:4A:45:17:06:E6:EB:61:B4:FE:F6:18:4A:60:6D:4B:6D:69:B9:0E Authority key identifier: DF:6D:00:2B:BC:AB:A2:50:D2:AE:6B:44:54:E3:CB:FD:67:D2:C7:EA Certificate issuer: /CN=A9143DE2/serialNumber=DF6D002BBCABA250D2AE6B4454E3CBFD67D2C7EA Certificate serial: 0A25 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/320AK7yrolDSrmtEVOPL_WfSx-o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143DE2/D218DD528E9711EA8C2DE537C4F9AE02/320AK7yrolDSrmtEVOPL_WfSx-o.mft Manifest number: 0A18 Signing time: Mon 02 Mar 2026 01:46:10 +0000 Manifest this update: Mon 02 Mar 2026 01:46:08 +0000 Manifest next update: Mon 09 Mar 2026 01:46:08 +0000 Files and hashes: 1: 320AK7yrolDSrmtEVOPL_WfSx-o.crl (hash: yaDUEOwwVK/wWhlpsjsdgsZQooC36gjXw57zr4lbchs=) 2: C07738FE9F4511EB88EBCA76C4F9AE02.roa (hash: AksdzM4PbXGL/XcGvbH1UmcYB82GNXMH4wOGUwrHV60=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143DE2/D218DD528E9711EA8C2DE537C4F9AE02/320AK7yrolDSrmtEVOPL_WfSx-o.crl rsync://rpki.apnic.net/member_repository/A9143DE2/D218DD528E9711EA8C2DE537C4F9AE02/320AK7yrolDSrmtEVOPL_WfSx-o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/320AK7yrolDSrmtEVOPL_WfSx-o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:46:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2597 (0xa25) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143DE2, serialNumber=DF6D002BBCABA250D2AE6B4454E3CBFD67D2C7EA Validity Not Before: Mar 2 01:46:08 2026 GMT Not After : Mar 9 01:46:08 2026 GMT Subject: CN=69a4ebe2-6fc5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:72:1d:e3:ed:f3:6f:db:ff:53:1c:fa:b3:f1: 35:11:bc:b1:db:8a:91:88:a6:7b:f8:07:0b:2b:fa: 18:39:b3:68:f9:98:23:ce:77:1e:d5:5d:37:f4:f9: 83:60:fd:bb:84:ee:8a:6c:90:22:ed:8f:da:08:e0: b0:bc:12:43:8e:63:22:74:4a:51:1a:ed:25:d3:f8: dd:ee:bb:4f:fd:b4:33:d0:29:6a:8a:eb:87:7f:00: bc:37:bf:18:01:49:a6:71:57:ab:c4:c5:81:62:ad: d7:c2:80:99:43:2a:6a:72:fa:e2:02:34:08:be:9d: 5c:d7:8a:56:b9:55:73:4a:7f:4f:ed:b7:d2:0f:83: d5:cc:4c:ec:6d:4d:8c:32:cc:c4:dc:4d:b2:a6:44: 3d:d4:26:21:98:3f:37:06:67:cd:37:2c:79:ba:f5: 5e:83:7e:40:69:b8:1b:8d:04:68:c4:06:5b:c5:a6: 16:6b:e7:1c:95:d6:65:1b:84:12:66:d1:9f:38:bf: 4d:4f:ff:ea:91:de:00:9e:fa:f5:18:37:bf:ec:8d: 39:a0:f2:1f:c9:9e:b9:fe:46:69:78:e4:56:54:62: cb:35:85:84:b0:9c:a1:a7:96:ec:72:cc:14:a6:40: 64:de:01:80:cf:07:11:78:13:62:fe:21:d2:43:80: e3:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:4A:45:17:06:E6:EB:61:B4:FE:F6:18:4A:60:6D:4B:6D:69:B9:0E X509v3 Authority Key Identifier: keyid:DF:6D:00:2B:BC:AB:A2:50:D2:AE:6B:44:54:E3:CB:FD:67:D2:C7:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143DE2/D218DD528E9711EA8C2DE537C4F9AE02/320AK7yrolDSrmtEVOPL_WfSx-o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/320AK7yrolDSrmtEVOPL_WfSx-o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143DE2/D218DD528E9711EA8C2DE537C4F9AE02/320AK7yrolDSrmtEVOPL_WfSx-o.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:8e:ef:4b:f7:29:e4:32:cb:62:1b:b9:6b:bc:54:2c:8c:d2: db:fe:c3:9a:8b:8d:b6:83:fa:94:b7:ac:91:cb:af:f4:f0:04: 72:98:2f:5a:cc:2b:25:61:18:44:64:e0:d9:01:52:34:e8:0c: 8e:d8:6d:07:02:60:4e:7b:cd:7f:0b:c2:ec:ce:3e:57:40:fa: 24:17:ae:58:4d:89:56:5d:00:c2:c5:cb:13:cd:a9:dc:6d:57: 57:92:eb:31:85:dc:77:96:95:1f:12:bd:e4:11:be:28:00:a4: c4:72:17:0e:d6:92:35:3e:53:c7:91:d0:9b:23:7c:3d:58:e0: f1:d3:68:2c:ac:c6:9c:32:92:f3:d7:d2:6c:97:8d:6f:fc:e9: e4:9b:07:2c:b5:90:9a:b9:01:89:c5:1e:be:22:3d:30:7d:dc: 84:16:5a:5c:1e:06:76:f8:00:2b:7a:ff:58:71:4c:97:97:d4: f4:d9:23:a7:d8:07:62:84:b2:a1:56:6e:81:5f:35:c0:c6:8d: 34:ee:28:95:58:f0:eb:55:46:12:d3:52:5b:30:b4:10:d2:42: ef:c1:ec:8a:4f:d8:3e:30:fd:73:76:5e:7b:d6:b1:2c:47:e2: b0:c0:6c:1d:b9:8a:ca:a5:7e:c3:36:44:0b:4a:59:b3:dd:39: 8e:ad:a0:c5 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCiUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNERTIxMTAvBgNVBAUTKERGNkQwMDJCQkNBQkEyNTBEMkFFNkI0NDU0RTNDQkZE NjdEMkM3RUEwHhcNMjYwMzAyMDE0NjA4WhcNMjYwMzA5MDE0NjA4WjAYMRYwFAYD VQQDEw02OWE0ZWJlMi02ZmM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3HId4+3zb9v/Uxz6s/E1Ebyx24qRiKZ7+AcLK/oYObNo+Zgjznce1V039PmD YP27hO6KbJAi7Y/aCOCwvBJDjmMidEpRGu0l0/jd7rtP/bQz0ClqiuuHfwC8N78Y AUmmcVerxMWBYq3XwoCZQypqcvriAjQIvp1c14pWuVVzSn9P7bfSD4PVzEzsbU2M MszE3E2ypkQ91CYhmD83BmfNNyx5uvVeg35AabgbjQRoxAZbxaYWa+ccldZlG4QS ZtGfOL9NT//qkd4Anvr1GDe/7I05oPIfyZ65/kZpeORWVGLLNYWEsJyhp5bscswU pkBk3gGAzwcReBNi/iHSQ4Dj7wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIZKRRcG 5uthtP72GEpgbUttabkOMB8GA1UdIwQYMBaAFN9tACu8q6JQ0q5rRFTjy/1n0sfq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0RFMi9EMjE4REQ1MjhF OTcxMUVBOEMyREU1MzdDNEY5QUUwMi8zMjBBSzd5cm9sRFNybXRFVk9QTF9XZlN4 LW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzMyMEFLN3lyb2xEU3JtdEVWT1BMX1dmU3gtby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 M0RFMi9EMjE4REQ1MjhFOTcxMUVBOEMyREU1MzdDNEY5QUUwMi8zMjBBSzd5cm9s RFNybXRFVk9QTF9XZlN4LW8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAnY7vS/cp5DLLYhu5a7xULIzS2/7DmouNtoP6lLeskcuv9PAEcpgvWswrJWEY RGTg2QFSNOgMjthtBwJgTnvNfwvC7M4+V0D6JBeuWE2JVl0AwsXLE82p3G1XV5Lr MYXcd5aVHxK95BG+KACkxHIXDtaSNT5Tx5HQmyN8PVjg8dNoLKzGnDKS89fSbJeN b/zp5JsHLLWQmrkBicUeviI9MH3chBZaXB4GdvgAK3r/WHFMl5fU9Nkjp9gHYoSy oVZugV81wMaNNO4olVjw61VGEtNSWzC0ENJC78Hsik/YPjD9c3Zee9axLEfisMBs HbmKyqV+wzZEC0pZs905jq2gxQ== -----END CERTIFICATE-----Generated at Mon Mar 2 11:45:35 2026 by rpki-client