$ rpki-client -vvf rpki.apnic.net/member_repository/A915408A/18845F6C18AC11EFB6F48137C4F9AE02/0N7PEI0mgBt8l-NJAprx_PkKhV4.mft File: 0N7PEI0mgBt8l-NJAprx_PkKhV4.mft (raw, json) Hash identifier: HGz+8Ww/w7U9TMY0LNd572oWqrFDQXngUy2BHoDyoa4= Subject key identifier: F4:7F:5B:86:9C:5E:4E:55:E1:E2:96:8C:12:61:37:37:38:56:17:8A Authority key identifier: D0:DE:CF:10:8D:26:80:1B:7C:97:E3:49:02:9A:F1:FC:F9:0A:85:5E Certificate issuer: /CN=A915408A/serialNumber=D0DECF108D26801B7C97E349029AF1FCF90A855E Certificate serial: 0156 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0N7PEI0mgBt8l-NJAprx_PkKhV4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915408A/18845F6C18AC11EFB6F48137C4F9AE02/0N7PEI0mgBt8l-NJAprx_PkKhV4.mft Manifest number: 0152 Signing time: Sun 01 Mar 2026 05:57:53 +0000 Manifest this update: Sun 01 Mar 2026 05:57:53 +0000 Manifest next update: Sun 08 Mar 2026 05:57:53 +0000 Files and hashes: 1: 0N7PEI0mgBt8l-NJAprx_PkKhV4.crl (hash: 6i9tTgN8cJUhfGzJl2boXLemolwCVq/1iyMfjHEEWOI=) 2: 421FF25E18AD11EF99EAA661C4F9AE02.roa (hash: 0shOiN+rphbS4psadLxUtUMxwGG1iaWqhEHItCynnbw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915408A/18845F6C18AC11EFB6F48137C4F9AE02/0N7PEI0mgBt8l-NJAprx_PkKhV4.crl rsync://rpki.apnic.net/member_repository/A915408A/18845F6C18AC11EFB6F48137C4F9AE02/0N7PEI0mgBt8l-NJAprx_PkKhV4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0N7PEI0mgBt8l-NJAprx_PkKhV4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 05:57:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 342 (0x156) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915408A, serialNumber=D0DECF108D26801B7C97E349029AF1FCF90A855E Validity Not Before: Mar 1 05:57:53 2026 GMT Not After : Mar 8 05:57:53 2026 GMT Subject: CN=69a3d561-b6cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:20:b7:73:b9:c1:fa:e6:f5:2f:bd:f6:d6:7a: 84:71:eb:91:fd:b0:8a:76:7b:60:76:b3:a8:cc:d1: a9:eb:45:d3:f4:97:4c:07:33:b9:af:c6:0a:c5:56: 65:05:1c:05:c8:93:fb:bc:58:1e:fe:95:04:e9:ed: 98:15:92:2c:7e:9f:40:bc:f3:9a:43:18:1a:73:0b: 3d:f5:66:16:e8:6c:8e:a1:ee:7c:ac:8e:9e:a6:52: 3e:0c:76:9a:37:68:31:23:a2:e1:11:5d:8a:36:c5: e3:69:35:07:64:13:ad:ff:a4:ba:3d:af:fc:cc:de: a5:cf:37:76:cd:c8:a6:d5:26:8f:53:9a:52:d1:c3: 10:44:1c:ca:f5:78:7a:15:86:f7:48:71:c9:a6:37: e7:c7:85:7d:0d:29:85:88:5b:1e:84:a1:c7:14:ac: f3:e1:3f:a1:21:1f:22:41:e8:50:8a:a2:7a:7b:75: d5:20:00:e0:8e:18:db:55:13:b4:ef:20:ab:12:25: fb:08:2c:13:46:83:b2:e1:21:63:ce:93:d7:0a:af: f8:c6:48:fb:51:15:c1:7f:58:12:df:ec:89:16:08: e6:b4:b2:29:18:02:2b:0d:62:ec:71:56:e8:ad:c8: 30:6a:c6:56:79:13:10:0e:ee:d6:b0:ed:60:29:68: b0:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:7F:5B:86:9C:5E:4E:55:E1:E2:96:8C:12:61:37:37:38:56:17:8A X509v3 Authority Key Identifier: keyid:D0:DE:CF:10:8D:26:80:1B:7C:97:E3:49:02:9A:F1:FC:F9:0A:85:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915408A/18845F6C18AC11EFB6F48137C4F9AE02/0N7PEI0mgBt8l-NJAprx_PkKhV4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0N7PEI0mgBt8l-NJAprx_PkKhV4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915408A/18845F6C18AC11EFB6F48137C4F9AE02/0N7PEI0mgBt8l-NJAprx_PkKhV4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:45:a7:c6:41:97:0c:40:0d:54:c8:8d:29:93:93:a7:9d:fa: 94:22:c1:eb:4e:3c:24:59:ec:0d:4c:89:c7:24:e9:9a:2b:eb: fb:dc:bc:98:3d:f0:20:7c:a5:71:68:4b:df:05:1c:91:51:3f: 2c:3e:a5:76:12:30:7f:98:a3:a4:bf:14:88:50:19:56:e0:5b: d7:53:57:08:0a:d0:56:a2:15:ed:6a:ca:4e:72:a3:3a:8a:2e: 2b:03:66:1a:69:39:73:89:0e:1e:73:76:ee:b8:05:cb:29:63: 95:d7:d9:9d:98:cb:67:89:e9:39:89:aa:e0:6d:75:8b:06:96: 0e:20:46:84:9a:a5:4f:dc:58:57:46:dd:00:8f:ef:8c:a1:13: 1e:39:a5:ed:16:3d:cb:ad:3e:9f:82:55:c0:1a:6b:03:52:91: c4:dc:e3:90:74:cf:e2:78:88:02:b9:55:6b:49:8f:27:96:7b: 50:0a:24:f3:27:0e:73:4e:cb:33:48:14:a0:b7:b9:e3:43:a5: b8:46:28:a1:b8:01:1c:ce:38:25:f2:e6:3e:bd:63:18:3a:88: 3f:0e:fb:76:de:7b:dc:2d:e7:75:09:99:5d:60:a8:d6:1a:0d: 4d:cf:81:35:b6:07:ed:1f:95:1f:74:86:3f:d7:51:9c:38:3b: 2f:41:cf:77 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAVYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTQwOEExMTAvBgNVBAUTKEQwREVDRjEwOEQyNjgwMUI3Qzk3RTM0OTAyOUFGMUZD RjkwQTg1NUUwHhcNMjYwMzAxMDU1NzUzWhcNMjYwMzA4MDU1NzUzWjAYMRYwFAYD VQQDEw02OWEzZDU2MS1iNmNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAhyC3c7nB+ub1L7321nqEceuR/bCKdntgdrOozNGp60XT9JdMBzO5r8YKxVZl BRwFyJP7vFge/pUE6e2YFZIsfp9AvPOaQxgacws99WYW6GyOoe58rI6eplI+DHaa N2gxI6LhEV2KNsXjaTUHZBOt/6S6Pa/8zN6lzzd2zcim1SaPU5pS0cMQRBzK9Xh6 FYb3SHHJpjfnx4V9DSmFiFsehKHHFKzz4T+hIR8iQehQiqJ6e3XVIADgjhjbVRO0 7yCrEiX7CCwTRoOy4SFjzpPXCq/4xkj7URXBf1gS3+yJFgjmtLIpGAIrDWLscVbo rcgwasZWeRMQDu7WsO1gKWiw8QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPR/W4ac Xk5V4eKWjBJhNzc4VheKMB8GA1UdIwQYMBaAFNDezxCNJoAbfJfjSQKa8fz5CoVe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NDA4QS8xODg0NUY2QzE4 QUMxMUVGQjZGNDgxMzdDNEY5QUUwMi8wTjdQRUkwbWdCdDhsLU5KQXByeF9Qa0to VjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBON1BFSTBtZ0J0OGwtTkpBcHJ4X1BrS2hWNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NDA4QS8xODg0NUY2QzE4QUMxMUVGQjZGNDgxMzdDNEY5QUUwMi8wTjdQRUkwbWdC dDhsLU5KQXByeF9Qa0toVjQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAkUWnxkGXDEANVMiNKZOTp536lCLB6048JFnsDUyJxyTpmivr+9y8mD3wIHyl cWhL3wUckVE/LD6ldhIwf5ijpL8UiFAZVuBb11NXCArQVqIV7WrKTnKjOoouKwNm Gmk5c4kOHnN27rgFyyljldfZnZjLZ4npOYmq4G11iwaWDiBGhJqlT9xYV0bdAI/v jKETHjml7RY9y60+n4JVwBprA1KRxNzjkHTP4niIArlVa0mPJ5Z7UAok8ycOc07L M0gUoLe540OluEYoobgBHM44JfLmPr1jGDqIPw77dt573C3ndQmZXWCo1hoNTc+B NbYH7R+VH3SGP9dRnDg7L0HPdw== -----END CERTIFICATE-----Generated at Sun Mar 1 21:10:05 2026 by rpki-client