$ rpki-client -vvf rpki.apnic.net/member_repository/A9158547/B38668E492A511EE8CD95B1EC4F9AE02/oNZvEXVTOiOoUulRUGXIWjOec4Y.mft File: oNZvEXVTOiOoUulRUGXIWjOec4Y.mft (raw, json) Hash identifier: chNfzPNpJbA6fGVi9mnvnc6Bntaz86k6W/+IK+o4Olw= Subject key identifier: FF:AC:78:AE:2D:75:0B:1B:29:DB:A5:D2:7B:F6:7D:F8:67:4A:71:B7 Authority key identifier: A0:D6:6F:11:75:53:3A:23:A8:52:E9:51:50:65:C8:5A:33:9E:73:86 Certificate issuer: /CN=A9158547/serialNumber=A0D66F1175533A23A852E9515065C85A339E7386 Certificate serial: 01AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oNZvEXVTOiOoUulRUGXIWjOec4Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158547/B38668E492A511EE8CD95B1EC4F9AE02/oNZvEXVTOiOoUulRUGXIWjOec4Y.mft Manifest number: 01A5 Signing time: Sun 01 Mar 2026 22:41:57 +0000 Manifest this update: Sun 01 Mar 2026 22:41:56 +0000 Manifest next update: Sun 08 Mar 2026 22:41:56 +0000 Files and hashes: 1: oNZvEXVTOiOoUulRUGXIWjOec4Y.crl (hash: 2KSABOkom81Kr1j2dxGpE8vUHGxita3goj2FN2iXWjc=) 2: 6E7BFE7092A611EEBD5D8720C4F9AE02.roa (hash: GM/TYAUFUCny0Saz92cbiRCqbmb1aqzepH4OiX/MKnM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158547/B38668E492A511EE8CD95B1EC4F9AE02/oNZvEXVTOiOoUulRUGXIWjOec4Y.crl rsync://rpki.apnic.net/member_repository/A9158547/B38668E492A511EE8CD95B1EC4F9AE02/oNZvEXVTOiOoUulRUGXIWjOec4Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oNZvEXVTOiOoUulRUGXIWjOec4Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 22:41:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 426 (0x1aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158547, serialNumber=A0D66F1175533A23A852E9515065C85A339E7386 Validity Not Before: Mar 1 22:41:56 2026 GMT Not After : Mar 8 22:41:56 2026 GMT Subject: CN=69a4c0b5-9575 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:b7:84:42:e1:d2:99:c7:d1:23:f1:57:12:13: 17:06:94:47:7f:a4:2f:17:56:9d:e1:95:94:f7:32: 98:a6:99:65:11:37:d3:3b:c1:d8:da:01:c8:db:d4: 63:b1:80:41:27:36:30:f1:cc:c5:27:9a:e3:7b:f6: 49:b3:a0:52:88:83:0f:96:27:88:5f:e3:31:48:20: c7:54:df:b4:e0:04:8f:68:51:0e:ae:2d:d1:5a:ad: 78:ae:9c:7d:d5:51:91:64:cb:72:41:ac:23:2b:38: 77:58:e0:0e:bf:d6:2f:c7:d9:7a:0c:fc:66:24:76: 29:c2:66:56:bc:55:0b:b8:00:0d:85:06:66:e3:c2: 70:41:ba:c7:71:36:f5:4e:ad:3b:76:c8:c5:35:df: a6:b9:8f:8c:ba:41:87:66:52:ce:e3:5a:5b:96:25: 72:c0:62:0e:30:4a:ce:ad:06:74:02:27:b1:c8:2d: 15:f6:ad:d5:c6:ba:4f:22:db:c3:8f:0f:ed:2c:f4: 76:14:40:6f:af:36:84:72:40:52:36:0e:4c:c8:13: c2:b7:9b:85:82:c8:f8:70:c1:51:9c:8d:21:73:fa: 97:9b:84:d4:30:25:4f:bf:5a:8e:29:99:cd:92:f4: 3c:f8:92:e2:04:30:be:c3:bd:46:25:aa:a3:40:a1: 36:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:AC:78:AE:2D:75:0B:1B:29:DB:A5:D2:7B:F6:7D:F8:67:4A:71:B7 X509v3 Authority Key Identifier: keyid:A0:D6:6F:11:75:53:3A:23:A8:52:E9:51:50:65:C8:5A:33:9E:73:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158547/B38668E492A511EE8CD95B1EC4F9AE02/oNZvEXVTOiOoUulRUGXIWjOec4Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oNZvEXVTOiOoUulRUGXIWjOec4Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158547/B38668E492A511EE8CD95B1EC4F9AE02/oNZvEXVTOiOoUulRUGXIWjOec4Y.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:7f:ca:a9:20:0c:a8:ce:49:ad:e1:b5:55:8a:5c:60:c6:3a: a5:80:94:5a:22:ff:ea:c6:6f:4e:4f:22:ed:e5:fa:b6:77:e8: 62:d5:17:f5:47:b5:8f:58:2b:40:86:8a:49:82:d5:79:0b:1f: a6:69:f4:13:7e:80:3a:9d:02:85:dc:b3:4d:13:42:b8:bf:4f: 79:82:ef:2c:ff:49:14:5b:34:fa:9b:9f:21:a5:03:9b:09:46: 90:e2:86:af:d4:cd:59:27:17:f6:e4:b3:94:c2:49:65:3e:b1: 60:eb:c8:40:12:42:f2:9a:bd:a2:b0:f3:90:ef:a6:66:18:82: 13:7d:cb:8d:c9:0a:55:5c:48:74:54:67:00:ce:ad:d1:ce:a1: d3:a8:42:6a:0b:9b:c6:01:38:08:50:f8:11:36:e2:60:af:79: b0:5b:93:bc:19:58:43:01:79:1f:f4:b3:51:57:dc:32:36:aa: 6e:53:20:2f:4f:fa:e1:85:94:ee:3d:73:16:35:62:c0:46:e0: 70:fb:16:fd:e1:f2:eb:a0:12:b7:86:3e:0e:88:84:7c:c6:32: 95:89:91:75:bc:12:82:32:08:7b:e5:23:9c:ea:bb:10:56:26: 22:c4:8c:89:08:ba:c3:61:cc:eb:74:b1:c5:4d:ea:82:b4:dc: 02:ed:d4:f4 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAaowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg1NDcxMTAvBgNVBAUTKEEwRDY2RjExNzU1MzNBMjNBODUyRTk1MTUwNjVDODVB MzM5RTczODYwHhcNMjYwMzAxMjI0MTU2WhcNMjYwMzA4MjI0MTU2WjAYMRYwFAYD VQQDEw02OWE0YzBiNS05NTc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyLeEQuHSmcfRI/FXEhMXBpRHf6QvF1ad4ZWU9zKYppllETfTO8HY2gHI29Rj sYBBJzYw8czFJ5rje/ZJs6BSiIMPlieIX+MxSCDHVN+04ASPaFEOri3RWq14rpx9 1VGRZMtyQawjKzh3WOAOv9Yvx9l6DPxmJHYpwmZWvFULuAANhQZm48JwQbrHcTb1 Tq07dsjFNd+muY+MukGHZlLO41pbliVywGIOMErOrQZ0AiexyC0V9q3VxrpPItvD jw/tLPR2FEBvrzaEckBSNg5MyBPCt5uFgsj4cMFRnI0hc/qXm4TUMCVPv1qOKZnN kvQ8+JLiBDC+w71GJaqjQKE2KwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFP+seK4t dQsbKdul0nv2ffhnSnG3MB8GA1UdIwQYMBaAFKDWbxF1UzojqFLpUVBlyFoznnOG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODU0Ny9CMzg2NjhFNDky QTUxMUVFOENEOTVCMUVDNEY5QUUwMi9vTlp2RVhWVE9pT29VdWxSVUdYSVdqT2Vj NFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29OWnZFWFZUT2lPb1V1bFJVR1hJV2pPZWM0WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODU0Ny9CMzg2NjhFNDkyQTUxMUVFOENEOTVCMUVDNEY5QUUwMi9vTlp2RVhWVE9p T29VdWxSVUdYSVdqT2VjNFkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAjX/KqSAMqM5JreG1VYpcYMY6pYCUWiL/6sZvTk8i7eX6tnfoYtUX9Ue1j1gr QIaKSYLVeQsfpmn0E36AOp0ChdyzTRNCuL9PeYLvLP9JFFs0+pufIaUDmwlGkOKG r9TNWScX9uSzlMJJZT6xYOvIQBJC8pq9orDzkO+mZhiCE33LjckKVVxIdFRnAM6t 0c6h06hCagubxgE4CFD4ETbiYK95sFuTvBlYQwF5H/SzUVfcMjaqblMgL0/64YWU 7j1zFjViwEbgcPsW/eHy66ASt4Y+DoiEfMYylYmRdbwSgjIIe+UjnOq7EFYmIsSM iQi6w2HM63SxxU3qgrTcAu3U9A== -----END CERTIFICATE-----Generated at Mon Mar 2 07:44:06 2026 by rpki-client