$ rpki-client -vvf rpki.apnic.net/member_repository/A9158547/B38668E492A511EE8CD95B1EC4F9AE02/oNZvEXVTOiOoUulRUGXIWjOec4Y.mft File: oNZvEXVTOiOoUulRUGXIWjOec4Y.mft (raw, json) Hash identifier: vIc109njS0Aa6VbTgREpc/W3JVrPcgwlKLyk/f8rZf4= Subject key identifier: 25:6C:F1:D6:CF:89:8A:58:95:3F:0A:A7:D1:F0:28:BE:83:D2:90:3C Authority key identifier: A0:D6:6F:11:75:53:3A:23:A8:52:E9:51:50:65:C8:5A:33:9E:73:86 Certificate issuer: /CN=A9158547/serialNumber=A0D66F1175533A23A852E9515065C85A339E7386 Certificate serial: 01A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oNZvEXVTOiOoUulRUGXIWjOec4Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158547/B38668E492A511EE8CD95B1EC4F9AE02/oNZvEXVTOiOoUulRUGXIWjOec4Y.mft Manifest number: 01A3 Signing time: Sun 01 Mar 2026 04:56:07 +0000 Manifest this update: Sun 01 Mar 2026 04:56:06 +0000 Manifest next update: Sun 08 Mar 2026 04:56:06 +0000 Files and hashes: 1: oNZvEXVTOiOoUulRUGXIWjOec4Y.crl (hash: uDZzqJklkNsuspOdtMpLFTZI4VurfFxSp6yDVRaXEm8=) 2: 6E7BFE7092A611EEBD5D8720C4F9AE02.roa (hash: I77zej0g2IdMx6WMXQdInqyMmRTM3TktU3rYTAd3Uxo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158547/B38668E492A511EE8CD95B1EC4F9AE02/oNZvEXVTOiOoUulRUGXIWjOec4Y.crl rsync://rpki.apnic.net/member_repository/A9158547/B38668E492A511EE8CD95B1EC4F9AE02/oNZvEXVTOiOoUulRUGXIWjOec4Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oNZvEXVTOiOoUulRUGXIWjOec4Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 04:56:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 422 (0x1a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158547, serialNumber=A0D66F1175533A23A852E9515065C85A339E7386 Validity Not Before: Mar 1 04:56:06 2026 GMT Not After : Mar 8 04:56:06 2026 GMT Subject: CN=69a3c6e7-4c70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:d9:a1:27:f1:fa:f4:e9:42:96:fd:c8:2c:7a: f7:28:33:4e:15:00:9c:c4:07:e8:11:96:31:c1:6f: cb:8f:90:a7:99:10:af:13:97:23:bd:0c:18:2c:f4: de:a0:45:3a:ff:50:c8:c9:32:e5:e1:2e:2e:50:c9: 57:64:9f:ec:57:5e:f5:1e:a0:49:18:39:f8:53:79: 45:cb:d6:27:b9:a4:57:5d:66:d5:7b:1c:ef:2d:44: 32:81:b9:0d:18:ba:e7:9b:c1:b7:1f:9c:52:55:da: d9:06:69:89:89:25:a9:3f:71:10:b1:08:68:62:d2: 1e:38:e2:f6:99:a1:ca:f0:0e:c0:88:92:d2:38:2c: a0:d8:e8:f4:2a:32:3d:dc:71:9e:22:85:97:1b:f0: ed:e6:5d:61:1c:c2:cc:17:d0:d4:a8:c6:de:c7:4a: 55:76:fb:7e:56:f6:c5:24:af:1a:85:f0:33:a1:2e: 8d:8d:fd:8e:2f:3c:cf:b5:4f:ce:b3:8c:c1:d9:db: 19:39:ae:02:0c:17:d9:ef:81:45:32:09:82:dd:e3: 5c:ed:19:34:ac:e3:0e:70:4b:68:b6:81:a8:a5:f1: 84:a7:7a:f8:1a:62:c5:e9:c4:85:15:a3:4d:69:d1: 29:84:44:f5:f2:94:02:48:62:2e:61:b5:5c:4d:60: f4:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:6C:F1:D6:CF:89:8A:58:95:3F:0A:A7:D1:F0:28:BE:83:D2:90:3C X509v3 Authority Key Identifier: keyid:A0:D6:6F:11:75:53:3A:23:A8:52:E9:51:50:65:C8:5A:33:9E:73:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158547/B38668E492A511EE8CD95B1EC4F9AE02/oNZvEXVTOiOoUulRUGXIWjOec4Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oNZvEXVTOiOoUulRUGXIWjOec4Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158547/B38668E492A511EE8CD95B1EC4F9AE02/oNZvEXVTOiOoUulRUGXIWjOec4Y.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:2b:03:44:7a:df:8b:21:e7:51:d1:1f:32:e3:e2:98:dc:c8: 2f:8c:87:df:99:0c:65:fb:ca:45:b7:98:44:fe:64:9b:08:88: 04:ac:c6:ac:e8:b7:b6:b6:92:ec:b2:95:e2:c6:8a:65:c1:85: 16:bb:d1:4a:00:a0:e1:b8:9b:17:16:6e:01:e1:fe:49:77:86: 9d:93:b3:3a:b7:53:ca:f2:d2:0c:35:47:d7:2e:61:71:95:b3: c0:c3:b6:60:0e:ae:63:d3:6a:64:70:30:91:d2:b3:d1:b8:3c: 1e:51:e6:8d:98:2b:8d:87:6d:3e:cf:ef:ad:1f:a4:74:f1:1e: 36:78:2a:45:c2:c6:41:87:c4:fa:0e:39:db:2c:0f:6a:21:31: 8e:33:f5:4c:9e:9e:da:57:f3:3c:b3:7f:15:dd:cd:93:ae:35: bd:e4:55:af:98:61:16:7e:70:7a:51:e1:5c:c0:32:ba:bf:e1: ed:b8:31:82:6f:8a:a6:85:71:58:9a:4d:a0:5e:4a:a4:25:2c: b5:a6:71:ba:49:b5:0d:37:65:a8:ed:91:bc:c7:07:5d:96:c0: 22:75:67:56:a8:26:17:fe:3f:0d:b8:dc:71:a4:7d:9f:d7:30: 26:41:40:dd:47:38:58:6c:10:95:b0:57:72:76:1a:48:47:e9: b4:7f:b2:8b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAaYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg1NDcxMTAvBgNVBAUTKEEwRDY2RjExNzU1MzNBMjNBODUyRTk1MTUwNjVDODVB MzM5RTczODYwHhcNMjYwMzAxMDQ1NjA2WhcNMjYwMzA4MDQ1NjA2WjAYMRYwFAYD VQQDDA02OWEzYzZlNy00YzcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqNmhJ/H69OlClv3ILHr3KDNOFQCcxAfoEZYxwW/Lj5CnmRCvE5cjvQwYLPTe oEU6/1DIyTLl4S4uUMlXZJ/sV171HqBJGDn4U3lFy9YnuaRXXWbVexzvLUQygbkN GLrnm8G3H5xSVdrZBmmJiSWpP3EQsQhoYtIeOOL2maHK8A7AiJLSOCyg2Oj0KjI9 3HGeIoWXG/Dt5l1hHMLMF9DUqMbex0pVdvt+VvbFJK8ahfAzoS6Njf2OLzzPtU/O s4zB2dsZOa4CDBfZ74FFMgmC3eNc7Rk0rOMOcEtotoGopfGEp3r4GmLF6cSFFaNN adEphET18pQCSGIuYbVcTWD0YQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCVs8dbP iYpYlT8Kp9HwKL6D0pA8MB8GA1UdIwQYMBaAFKDWbxF1UzojqFLpUVBlyFoznnOG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODU0Ny9CMzg2NjhFNDky QTUxMUVFOENEOTVCMUVDNEY5QUUwMi9vTlp2RVhWVE9pT29VdWxSVUdYSVdqT2Vj NFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29OWnZFWFZUT2lPb1V1bFJVR1hJV2pPZWM0WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODU0Ny9CMzg2NjhFNDkyQTUxMUVFOENEOTVCMUVDNEY5QUUwMi9vTlp2RVhWVE9p T29VdWxSVUdYSVdqT2VjNFkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAXCsDRHrfiyHnUdEfMuPimNzIL4yH35kMZfvKRbeYRP5kmwiIBKzGrOi3traS 7LKV4saKZcGFFrvRSgCg4bibFxZuAeH+SXeGnZOzOrdTyvLSDDVH1y5hcZWzwMO2 YA6uY9NqZHAwkdKz0bg8HlHmjZgrjYdtPs/vrR+kdPEeNngqRcLGQYfE+g452ywP aiExjjP1TJ6e2lfzPLN/Fd3Nk641veRVr5hhFn5welHhXMAyur/h7bgxgm+KpoVx WJpNoF5KpCUstaZxukm1DTdlqO2RvMcHXZbAInVnVqgmF/4/DbjccaR9n9cwJkFA 3Uc4WGwQlbBXcnYaSEfptH+yiw== -----END CERTIFICATE-----Generated at Sun Mar 1 22:48:59 2026 by rpki-client