$ rpki-client -vvf rpki.apnic.net/member_repository/A9144CB7/8C93F76CE17611EFB7981B19C4F9AE02/opgFnwZTffjAi4klX3lZQaMcGAA.mft File: opgFnwZTffjAi4klX3lZQaMcGAA.mft (raw, json) Hash identifier: Fvkh+eW1xJCNHxmUAj3OwCKb2PUvmIisz9RstXkvN9I= Subject key identifier: 7D:40:F1:F4:26:A2:CF:2C:B8:2F:D6:67:23:EB:7E:69:38:E3:E8:5B Authority key identifier: A2:98:05:9F:06:53:7D:F8:C0:8B:89:25:5F:79:59:41:A3:1C:18:00 Certificate issuer: /CN=A9144CB7/serialNumber=A298059F06537DF8C08B89255F795941A31C1800 Certificate serial: D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/opgFnwZTffjAi4klX3lZQaMcGAA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144CB7/8C93F76CE17611EFB7981B19C4F9AE02/opgFnwZTffjAi4klX3lZQaMcGAA.mft Manifest number: CC Signing time: Sun 01 Mar 2026 08:27:24 +0000 Manifest this update: Sun 01 Mar 2026 08:27:23 +0000 Manifest next update: Sun 08 Mar 2026 08:27:23 +0000 Files and hashes: 1: opgFnwZTffjAi4klX3lZQaMcGAA.crl (hash: 1u59hPZGy3lam2yYsJEwwtE4QVNNoEBZpti7YBV/8ck=) 2: 903E0F1652BD11F0A9261F57C4F9AE02.roa (hash: U9H5l1ZbJh0tHhCGTWDWxFOlVgyCElxhxwRUXVPz79Y=) 3: E8716FD4EA3511EF89116C52C4F9AE02.roa (hash: 78jC0oScEcc8GX6FoClPALgg9krtUuM84yc1F5InfRU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144CB7/8C93F76CE17611EFB7981B19C4F9AE02/opgFnwZTffjAi4klX3lZQaMcGAA.crl rsync://rpki.apnic.net/member_repository/A9144CB7/8C93F76CE17611EFB7981B19C4F9AE02/opgFnwZTffjAi4klX3lZQaMcGAA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/opgFnwZTffjAi4klX3lZQaMcGAA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 08:27:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 210 (0xd2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144CB7, serialNumber=A298059F06537DF8C08B89255F795941A31C1800 Validity Not Before: Mar 1 08:27:23 2026 GMT Not After : Mar 8 08:27:23 2026 GMT Subject: CN=69a3f86b-3ecf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:4c:22:c7:0b:61:8e:50:e3:13:3d:96:6d:61: b5:a1:50:97:98:2a:e4:f2:da:e4:4d:fa:75:7e:bb: 23:83:4c:76:62:4a:a4:d9:17:22:19:09:a1:84:75: 52:e3:ed:8c:f7:93:0c:3e:9e:5b:fc:ce:60:fc:a8: ea:3b:2c:ad:a2:e7:e4:0d:af:78:5b:47:c4:2f:0d: 17:d4:da:fd:f4:23:5e:69:6c:b2:14:ea:19:c2:ab: 2e:6b:23:a7:50:5a:7e:8c:35:64:fd:27:fd:9b:41: a7:b5:0e:15:a3:d8:24:d2:04:7e:bb:97:59:ee:f4: f3:9e:00:e1:6e:6d:29:a2:3f:60:01:d4:79:ce:b4: 01:15:ad:51:0b:c3:d2:27:cb:40:47:67:7f:0f:92: 04:8e:76:21:d3:d3:ef:10:7e:a5:dd:e6:43:8f:0c: 3c:d5:a2:db:53:5b:3f:f5:93:fe:9d:0f:b8:76:52: ff:b1:d7:2c:a8:71:71:d9:80:7c:2b:78:f0:78:ee: 4f:85:c8:d2:25:76:9c:a4:ec:5c:46:67:20:f7:a3: 5f:bf:2f:1f:3b:03:32:d3:30:80:5f:b7:b8:20:63: 4b:ca:00:ef:1c:3b:75:e1:3b:53:b1:0f:1f:7e:40: 89:61:dc:69:e0:3c:19:d8:a0:46:89:78:ed:13:2f: e2:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:40:F1:F4:26:A2:CF:2C:B8:2F:D6:67:23:EB:7E:69:38:E3:E8:5B X509v3 Authority Key Identifier: keyid:A2:98:05:9F:06:53:7D:F8:C0:8B:89:25:5F:79:59:41:A3:1C:18:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144CB7/8C93F76CE17611EFB7981B19C4F9AE02/opgFnwZTffjAi4klX3lZQaMcGAA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/opgFnwZTffjAi4klX3lZQaMcGAA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144CB7/8C93F76CE17611EFB7981B19C4F9AE02/opgFnwZTffjAi4klX3lZQaMcGAA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:6b:c5:fd:d7:82:1d:b7:c7:f2:88:1a:87:9e:e1:65:23:cc: df:f2:c1:a5:e2:54:9f:f0:e6:87:9a:51:e7:8a:21:3b:b9:63: df:8b:16:00:7a:e0:a2:2f:7d:b1:e1:f2:dc:06:0f:f5:be:bc: 76:bd:95:35:86:09:62:6e:f1:0a:ce:e8:fe:81:98:d5:75:a2: fa:08:ac:27:15:f1:15:ee:80:35:b5:57:5e:81:71:e7:68:50: a6:f8:49:56:24:56:be:e3:c3:b1:b1:c4:d5:c3:8b:16:e2:e5: 5c:73:6d:d1:34:a2:04:1a:69:dc:07:7b:ae:51:66:ab:63:c2: 89:42:c9:88:bb:af:d5:18:e1:96:fb:43:ab:46:45:0a:76:a0: 2c:38:e5:93:37:e2:64:7b:51:8d:ec:bb:0e:d8:9b:fb:d0:fa: 8f:24:c5:87:2b:ad:8d:6a:9d:fe:04:b8:d5:ad:98:72:3b:84: 8c:78:9c:85:59:89:64:23:df:b3:03:34:f2:6a:ae:e8:3c:dd: 07:fd:0c:fd:3b:78:3f:73:7f:f9:78:41:1b:67:5d:91:7c:22: db:62:83:90:05:62:67:2f:bc:17:c8:75:65:f5:e3:88:89:b3: 1c:44:2c:fe:7a:51:cb:32:52:86:83:c8:03:3e:31:04:00:7a: f9:58:4c:3b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICANIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDRDQjcxMTAvBgNVBAUTKEEyOTgwNTlGMDY1MzdERjhDMDhCODkyNTVGNzk1OTQx QTMxQzE4MDAwHhcNMjYwMzAxMDgyNzIzWhcNMjYwMzA4MDgyNzIzWjAYMRYwFAYD VQQDEw02OWEzZjg2Yi0zZWNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkUwixwthjlDjEz2WbWG1oVCXmCrk8trkTfp1frsjg0x2Ykqk2RciGQmhhHVS 4+2M95MMPp5b/M5g/KjqOyytoufkDa94W0fELw0X1Nr99CNeaWyyFOoZwqsuayOn UFp+jDVk/Sf9m0GntQ4Vo9gk0gR+u5dZ7vTzngDhbm0poj9gAdR5zrQBFa1RC8PS J8tAR2d/D5IEjnYh09PvEH6l3eZDjww81aLbU1s/9ZP+nQ+4dlL/sdcsqHFx2YB8 K3jweO5PhcjSJXacpOxcRmcg96Nfvy8fOwMy0zCAX7e4IGNLygDvHDt14TtTsQ8f fkCJYdxp4DwZ2KBGiXjtEy/iewIDAQABo4ICczCCAm8wHQYDVR0OBBYEFH1A8fQm os8suC/WZyPrfmk44+hbMB8GA1UdIwQYMBaAFKKYBZ8GU334wIuJJV95WUGjHBgA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NENCNy84QzkzRjc2Q0Ux NzYxMUVGQjc5ODFCMTlDNEY5QUUwMi9vcGdGbndaVGZmakFpNGtsWDNsWlFhTWNH QUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29wZ0Zud1pUZmZqQWk0a2xYM2xaUWFNY0dBQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NENCNy84QzkzRjc2Q0UxNzYxMUVGQjc5ODFCMTlDNEY5QUUwMi9vcGdGbndaVGZm akFpNGtsWDNsWlFhTWNHQUEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAQGvF/deCHbfH8ogah57hZSPM3/LBpeJUn/Dmh5pR54ohO7lj34sWAHrgoi99 seHy3AYP9b68dr2VNYYJYm7xCs7o/oGY1XWi+gisJxXxFe6ANbVXXoFx52hQpvhJ ViRWvuPDsbHE1cOLFuLlXHNt0TSiBBpp3Ad7rlFmq2PCiULJiLuv1RjhlvtDq0ZF CnagLDjlkzfiZHtRjey7Dtib+9D6jyTFhyutjWqd/gS41a2YcjuEjHichVmJZCPf swM08mqu6DzdB/0M/Tt4P3N/+XhBG2ddkXwi22KDkAViZy+8F8h1ZfXjiImzHEQs /npRyzJShoPIAz4xBAB6+VhMOw== -----END CERTIFICATE-----Generated at Mon Mar 2 11:12:09 2026 by rpki-client