$ rpki-client -vvf rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.mft File: o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.mft (raw, json) Hash identifier: 6iOCajPP06aPElubo+vzXCWbPfKYGBz4eBNpjAL6n5U= Subject key identifier: 66:CA:38:CA:A3:E5:F5:E0:07:DF:60:46:DA:DA:DE:9B:C9:2A:BF:FE Authority key identifier: A3:B1:64:81:B5:D6:C1:79:FC:0B:73:AE:1E:0E:53:DE:96:76:41:DC Certificate issuer: /CN=A9158877/serialNumber=A3B16481B5D6C179FC0B73AE1E0E53DE967641DC Certificate serial: 0664 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.mft Manifest number: 0653 Signing time: Thu 16 Apr 2026 22:35:25 +0000 Manifest this update: Thu 16 Apr 2026 22:35:24 +0000 Manifest next update: Thu 23 Apr 2026 22:35:24 +0000 Files and hashes: 1: o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.crl (hash: coSkhVF2GROR3ywVtdgu7hzfSc85Q6WyFT0FYxrN0pk=) 2: DD21ADFACA7311EBAA6E0567C4F9AE02.roa (hash: kYZQI102gULrlo6M+q/iNg80nEai3K/GkCEv6GP+lLg=) 3: 58C1F4C06E2211EE98839C33C4F9AE02.roa (hash: +HKXGlrTWculTJ/ZbtVGZJnoqCsus/FX3Sf4l+Mr3Ho=) 4: 931EBB586D6E11EE8AF4BF30C4F9AE02.roa (hash: S1RgP1sPgVzK9sEPPWrODClUauDomS2mHohtTS+ssYc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.crl rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 22:35:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1636 (0x664) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158877, serialNumber=A3B16481B5D6C179FC0B73AE1E0E53DE967641DC Validity Not Before: Apr 16 22:35:24 2026 GMT Not After : Apr 23 22:35:24 2026 GMT Subject: CN=69e1642d-6b4e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:46:21:64:fd:42:41:4e:08:fb:48:2a:6d:39: 4e:15:83:da:59:0a:d0:1d:81:dc:7d:f5:4e:af:30: 3b:f1:b4:a3:2c:6d:19:7f:70:93:fc:33:50:b8:4d: c0:51:f9:e9:2c:4e:cc:2f:54:26:bb:00:47:27:18: cd:16:cd:e3:0e:a2:5c:c2:30:13:99:b4:dd:b8:4a: 57:c2:f3:38:03:b9:65:95:30:41:e7:56:ba:cb:95: a8:1f:fa:1d:29:bc:49:48:e5:e9:d2:1c:48:4f:bb: f3:34:f8:e0:bb:c2:fe:34:63:2f:ab:e3:45:1f:43: fe:47:10:2c:34:42:2f:4a:02:a2:43:da:4b:1a:a4: af:ea:9a:2c:dc:47:8c:1e:2f:09:b8:93:e7:12:d5: 6b:8f:b1:1f:ee:8c:9d:09:2e:50:4b:41:86:45:16: b9:42:1b:3e:1e:ce:90:08:07:aa:56:a1:f1:15:0a: 3a:5d:9d:50:c2:cd:77:ef:45:3c:ae:cb:79:85:65: 79:ba:e5:80:db:a0:21:0a:7f:42:31:b4:d8:15:a4: 0c:46:60:5b:25:36:b7:f2:e0:28:aa:ac:45:41:f5: 71:b2:95:7b:26:cb:d6:1b:b4:fa:0e:28:20:10:ff: 32:4f:2c:58:e6:8e:a9:37:79:43:b9:61:8f:12:d2: 0a:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:CA:38:CA:A3:E5:F5:E0:07:DF:60:46:DA:DA:DE:9B:C9:2A:BF:FE X509v3 Authority Key Identifier: keyid:A3:B1:64:81:B5:D6:C1:79:FC:0B:73:AE:1E:0E:53:DE:96:76:41:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:7f:26:74:8c:62:39:ea:30:02:53:00:4a:7f:d3:9e:8c:1a: 3d:47:cc:2d:78:c5:06:3f:43:07:14:4d:ac:3b:b7:02:07:3d: fe:03:dc:72:74:10:e8:aa:86:40:c4:2b:65:91:65:b3:e4:7d: df:63:a7:60:a1:4c:d7:1c:4a:d1:ad:9a:de:a8:15:a3:57:cd: 8d:92:a1:a4:0f:c3:6c:c7:41:ca:26:c4:ba:a7:4d:26:e8:0d: 95:e3:72:79:d8:8a:13:7f:4e:68:7f:88:42:56:62:4c:bd:e5: a2:df:ad:33:46:34:bb:6a:a8:4f:63:36:13:50:b9:f9:67:9b: 17:b1:88:a5:59:65:1a:5c:8b:11:d4:77:7b:3d:03:41:8b:a7: 0a:e8:a6:b3:56:20:c1:81:ed:f4:ee:f1:b5:44:73:aa:77:98: 16:f2:e2:6f:12:65:a2:31:6d:12:41:5a:77:85:c1:6f:f8:3d: 3a:2f:fa:fe:ab:6c:20:de:d1:d8:cb:5e:95:af:59:e4:ad:71: ea:1d:d5:e5:52:a8:3b:7a:7c:af:46:2b:59:57:f1:57:42:b9: 75:0b:ba:c3:09:79:7e:80:ee:39:61:a1:21:17:7d:08:c8:e7: d1:b6:d4:3c:8f:4a:1f:77:4a:07:61:93:ed:22:a6:eb:fb:10: 58:c7:3c:07 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBmQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg4NzcxMTAvBgNVBAUTKEEzQjE2NDgxQjVENkMxNzlGQzBCNzNBRTFFMEU1M0RF OTY3NjQxREMwHhcNMjYwNDE2MjIzNTI0WhcNMjYwNDIzMjIzNTI0WjAYMRYwFAYD VQQDEw02OWUxNjQyZC02YjRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtEYhZP1CQU4I+0gqbTlOFYPaWQrQHYHcffVOrzA78bSjLG0Zf3CT/DNQuE3A UfnpLE7ML1QmuwBHJxjNFs3jDqJcwjATmbTduEpXwvM4A7lllTBB51a6y5WoH/od KbxJSOXp0hxIT7vzNPjgu8L+NGMvq+NFH0P+RxAsNEIvSgKiQ9pLGqSv6pos3EeM Hi8JuJPnEtVrj7Ef7oydCS5QS0GGRRa5Qhs+Hs6QCAeqVqHxFQo6XZ1Qws1370U8 rst5hWV5uuWA26AhCn9CMbTYFaQMRmBbJTa38uAoqqxFQfVxspV7JsvWG7T6Digg EP8yTyxY5o6pN3lDuWGPEtIKDQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGbKOMqj 5fXgB99gRtra3pvJKr/+MB8GA1UdIwQYMBaAFKOxZIG11sF5/Atzrh4OU96WdkHc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODg3Ny9GMDU4NThCOENB NzAxMUVCQTlEMkRDNjFDNEY5QUUwMi9vN0ZrZ2JYV3dYbjhDM091SGc1VDNwWjJR ZHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL283RmtnYlhXd1huOEMzT3VIZzVUM3BaMlFkdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODg3Ny9GMDU4NThCOENBNzAxMUVCQTlEMkRDNjFDNEY5QUUwMi9vN0ZrZ2JYV3dY bjhDM091SGc1VDNwWjJRZHcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAf38mdIxiOeowAlMASn/TnowaPUfMLXjFBj9DBxRNrDu3Agc9/gPccnQQ6KqG QMQrZZFls+R932OnYKFM1xxK0a2a3qgVo1fNjZKhpA/DbMdByibEuqdNJugNleNy ediKE39OaH+IQlZiTL3lot+tM0Y0u2qoT2M2E1C5+WebF7GIpVllGlyLEdR3ez0D QYunCuims1YgwYHt9O7xtURzqneYFvLibxJlojFtEkFad4XBb/g9Oi/6/qtsIN7R 2Mtela9Z5K1x6h3V5VKoO3p8r0YrWVfxV0K5dQu6wwl5foDuOWGhIRd9CMjn0bbU PI9KH3dKB2GT7SKm6/sQWMc8Bw== -----END CERTIFICATE-----Generated at Fri Apr 17 17:34:27 2026 by rpki-client