$ rpki-client -vvf rpki.apnic.net/member_repository/A9161F3E/339EDE6810E411F0B75B8166C4F9AE02/nOkX3Drgxboud8t3WjrZnGhcQGs.mft File: nOkX3Drgxboud8t3WjrZnGhcQGs.mft (raw, json) Hash identifier: 2zFHDBgRe6+FQ9yoL4DpxJ8pONrRDZramP0JswUQpDg= Subject key identifier: 37:74:BE:55:AC:0D:17:E2:21:97:14:76:57:2E:BF:29:8F:15:08:28 Authority key identifier: 9C:E9:17:DC:3A:E0:C5:BA:2E:77:CB:77:5A:3A:D9:9C:68:5C:40:6B Certificate issuer: /CN=A9161F3E/serialNumber=9CE917DC3AE0C5BA2E77CB775A3AD99C685C406B Certificate serial: B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nOkX3Drgxboud8t3WjrZnGhcQGs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9161F3E/339EDE6810E411F0B75B8166C4F9AE02/nOkX3Drgxboud8t3WjrZnGhcQGs.mft Manifest number: AC Signing time: Sun 01 Mar 2026 09:27:39 +0000 Manifest this update: Sun 01 Mar 2026 09:27:38 +0000 Manifest next update: Sun 08 Mar 2026 09:27:38 +0000 Files and hashes: 1: nOkX3Drgxboud8t3WjrZnGhcQGs.crl (hash: qs8yRGXNKuJBZTdkmfLA63i47gjgbTk/X2IEzUc9mB4=) 2: 4A3C802012A711F099020A73C4F9AE02.roa (hash: iEuV0+5znqF8f5T5Ps6WIUoKRiKa2jw2dHDVVLuYtWU=) 3: 49DEAEDC12A711F099020A73C4F9AE02.roa (hash: 73STUG9MRsTj+UMDTuA4X0z5fGUTYqhKS5W5S7xFgxs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9161F3E/339EDE6810E411F0B75B8166C4F9AE02/nOkX3Drgxboud8t3WjrZnGhcQGs.crl rsync://rpki.apnic.net/member_repository/A9161F3E/339EDE6810E411F0B75B8166C4F9AE02/nOkX3Drgxboud8t3WjrZnGhcQGs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nOkX3Drgxboud8t3WjrZnGhcQGs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 09:27:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 178 (0xb2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9161F3E, serialNumber=9CE917DC3AE0C5BA2E77CB775A3AD99C685C406B Validity Not Before: Mar 1 09:27:38 2026 GMT Not After : Mar 8 09:27:38 2026 GMT Subject: CN=69a4068b-84cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:fb:d7:0b:49:57:a5:0b:01:2b:5b:b6:d7:85: 5a:c8:90:4c:96:8c:83:88:37:8b:4a:76:61:df:bf: cb:a6:74:ef:d4:83:96:58:28:ad:2b:9f:1f:b8:74: 00:82:e2:4a:f5:d9:52:e7:de:71:69:03:14:50:66: ea:fb:ed:9a:35:46:6c:1d:bb:4f:bb:29:0c:ec:b4: c5:fa:2e:5e:bb:f5:3f:38:d1:6a:fc:70:6c:da:40: 0f:91:64:58:f7:e9:65:ee:fb:22:68:4a:8c:c2:5a: 0c:c8:19:d3:f3:7c:d1:1b:ce:52:35:f9:ec:f0:0b: c6:a6:8c:6c:29:de:8c:f5:dc:cc:06:09:1d:43:21: 42:70:00:00:1f:c0:a3:82:15:81:f7:b3:6f:6c:54: fc:54:a4:c7:0e:e6:15:57:43:47:18:7e:45:e7:9e: ab:30:f2:c7:39:1c:83:51:06:9d:53:7b:77:8a:fe: cb:29:d0:c7:7c:3e:8e:35:ee:07:df:6b:b3:93:86: 0a:7c:9f:10:f3:4c:b6:b7:22:5e:74:aa:bd:e0:a3: 3a:9a:9a:11:a0:50:17:82:33:c2:40:99:5a:0c:d8: d6:58:d3:21:b3:91:75:d7:06:96:fa:83:c7:94:d7: ef:83:f4:5d:e5:50:33:8b:5a:37:ce:bb:8c:e5:ed: 81:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:74:BE:55:AC:0D:17:E2:21:97:14:76:57:2E:BF:29:8F:15:08:28 X509v3 Authority Key Identifier: keyid:9C:E9:17:DC:3A:E0:C5:BA:2E:77:CB:77:5A:3A:D9:9C:68:5C:40:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9161F3E/339EDE6810E411F0B75B8166C4F9AE02/nOkX3Drgxboud8t3WjrZnGhcQGs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nOkX3Drgxboud8t3WjrZnGhcQGs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9161F3E/339EDE6810E411F0B75B8166C4F9AE02/nOkX3Drgxboud8t3WjrZnGhcQGs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:09:8d:c5:ca:4a:c8:05:26:c4:64:2d:a7:7d:f3:85:1f:94: 5d:40:f6:b3:4d:39:52:e5:55:85:af:0e:5a:8a:df:c3:ef:85: 87:b2:96:71:df:c0:95:14:06:f9:8a:1a:a6:79:d3:fb:a4:43: 3b:c8:ec:74:b0:39:7c:ff:3f:e1:cb:ef:41:71:90:67:f0:bc: 6b:e7:57:9b:fe:5c:a0:cc:d1:e1:cd:c4:c3:03:c2:16:5d:98: 0f:5f:e3:49:77:a9:9e:e3:9c:66:ef:07:95:2d:7d:dc:e5:fe: 43:b4:a7:89:80:c6:a2:4f:39:da:0d:90:4d:e9:6f:20:12:ad: 29:03:11:01:51:45:67:dd:3b:37:be:3a:31:79:6c:c1:77:51: 63:c0:05:03:33:46:18:e5:05:fa:27:29:a2:e6:86:4f:7a:01: cb:24:26:39:e0:b5:d8:89:64:39:2d:8c:fd:df:07:0b:d2:b1: 0a:f0:2a:23:f2:60:17:98:df:5c:9f:6e:99:57:89:55:a9:13: b6:c4:60:c5:9f:5f:d5:79:4a:68:d3:25:62:7c:57:56:0e:e2: 62:47:7b:20:ff:15:1e:2c:c8:ae:69:37:d5:85:05:c2:6b:a4: 5c:22:cd:89:37:ad:bf:14:7e:2e:dd:31:db:f2:0f:82:94:c1: b5:04:77:c5 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICALIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjFGM0UxMTAvBgNVBAUTKDlDRTkxN0RDM0FFMEM1QkEyRTc3Q0I3NzVBM0FEOTlD Njg1QzQwNkIwHhcNMjYwMzAxMDkyNzM4WhcNMjYwMzA4MDkyNzM4WjAYMRYwFAYD VQQDEw02OWE0MDY4Yi04NGNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy/vXC0lXpQsBK1u214VayJBMloyDiDeLSnZh37/LpnTv1IOWWCitK58fuHQA guJK9dlS595xaQMUUGbq++2aNUZsHbtPuykM7LTF+i5eu/U/ONFq/HBs2kAPkWRY 9+ll7vsiaEqMwloMyBnT83zRG85SNfns8AvGpoxsKd6M9dzMBgkdQyFCcAAAH8Cj ghWB97NvbFT8VKTHDuYVV0NHGH5F556rMPLHORyDUQadU3t3iv7LKdDHfD6ONe4H 32uzk4YKfJ8Q80y2tyJedKq94KM6mpoRoFAXgjPCQJlaDNjWWNMhs5F11waW+oPH lNfvg/Rd5VAzi1o3zruM5e2BswIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDd0vlWs DRfiIZcUdlcuvymPFQgoMB8GA1UdIwQYMBaAFJzpF9w64MW6LnfLd1o62ZxoXEBr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MUYzRS8zMzlFREU2ODEw RTQxMUYwQjc1QjgxNjZDNEY5QUUwMi9uT2tYM0RyZ3hib3VkOHQzV2pyWm5HaGNR R3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25Pa1gzRHJneGJvdWQ4dDNXanJabkdoY1FHcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MUYzRS8zMzlFREU2ODEwRTQxMUYwQjc1QjgxNjZDNEY5QUUwMi9uT2tYM0RyZ3hi b3VkOHQzV2pyWm5HaGNRR3MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAdQmNxcpKyAUmxGQtp33zhR+UXUD2s005UuVVha8OWorfw++Fh7KWcd/AlRQG +YoapnnT+6RDO8jsdLA5fP8/4cvvQXGQZ/C8a+dXm/5coMzR4c3EwwPCFl2YD1/j SXepnuOcZu8HlS193OX+Q7SniYDGok852g2QTelvIBKtKQMRAVFFZ907N746MXls wXdRY8AFAzNGGOUF+icpouaGT3oByyQmOeC12IlkOS2M/d8HC9KxCvAqI/JgF5jf XJ9umVeJVakTtsRgxZ9f1XlKaNMlYnxXVg7iYkd7IP8VHizIrmk31YUFwmukXCLN iTetvxR+Lt0x2/IPgpTBtQR3xQ== -----END CERTIFICATE-----Generated at Sun Mar 1 21:13:14 2026 by rpki-client