$ rpki-client -vvf rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.mft File: OT6njk2TI25QcfuK_61B1iQmql0.mft (raw, json) Hash identifier: gWtB6CPyIzkTr4+Z7+QugNS3yWWXpgqYbaq20uJiWNI= Subject key identifier: 1F:F9:DE:08:51:19:4C:D6:2F:4A:72:3D:A4:10:29:C6:BA:7D:EA:4C Authority key identifier: 39:3E:A7:8E:4D:93:23:6E:50:71:FB:8A:FF:AD:41:D6:24:26:AA:5D Certificate issuer: /CN=A917B520/serialNumber=393EA78E4D93236E5071FB8AFFAD41D62426AA5D Certificate serial: EC Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/OT6njk2TI25QcfuK_61B1iQmql0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.mft Manifest number: EA Signing time: Sun 01 Mar 2026 03:38:36 +0000 Manifest this update: Sun 01 Mar 2026 03:38:36 +0000 Manifest next update: Sun 08 Mar 2026 03:38:36 +0000 Files and hashes: 1: OT6njk2TI25QcfuK_61B1iQmql0.crl (hash: WH25s1rjmO6MMKTJrYSgM7VMj+xH2YK4MpTTYQrnzwE=) 2: 3CFE7680BC5C11EFB951FD4FC4F9AE02.roa (hash: ZZGoLs5i6C2o6YDndsUsPxgi/aWEUfS/++aNSMKH7qY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.crl rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/OT6njk2TI25QcfuK_61B1iQmql0.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 03:38:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 236 (0xec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B520, serialNumber=393EA78E4D93236E5071FB8AFFAD41D62426AA5D Validity Not Before: Mar 1 03:38:36 2026 GMT Not After : Mar 8 03:38:36 2026 GMT Subject: CN=69a3b4bc-3e37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:c1:14:2b:23:a2:98:c8:e7:70:0b:f5:eb:e0: 37:ef:6f:fe:fa:9f:23:b3:94:e0:42:98:c4:8f:1f: b7:c4:00:3d:45:ed:8b:01:9d:16:c8:32:a8:94:01: 0a:99:b0:23:a9:14:5f:52:75:52:78:f6:f3:5b:c7: b1:ba:38:67:6f:bd:e6:e1:f3:a5:ee:57:1f:21:1f: fa:df:dd:f4:36:59:2a:78:db:49:ce:26:59:e8:f1: 0f:ed:2b:5c:a4:66:68:68:34:19:92:c4:51:82:36: 24:68:73:b3:0c:66:e2:fe:22:cc:41:58:84:10:1a: c2:90:44:2c:8b:18:ca:f0:8d:53:60:36:92:a1:11: e5:81:14:fc:47:f5:93:91:a6:58:b3:c0:23:59:fa: 7a:99:40:1a:55:44:ba:d9:72:53:d4:ce:2f:51:cd: 84:f8:73:51:b3:8c:67:22:2e:d7:fa:e3:f9:46:0a: 20:ed:de:ed:28:21:24:03:7c:ef:42:ba:9e:67:bd: ff:94:1d:1d:55:76:0a:46:f4:75:86:45:ee:23:92: 9a:3e:49:4d:b2:6d:54:7e:0c:fb:28:f2:8d:71:36: 68:e8:59:4a:b8:9e:26:1a:bb:f6:0e:1e:2b:e6:00: 73:25:ff:6e:2a:f9:34:91:e2:69:73:7c:9b:75:f1: c4:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:F9:DE:08:51:19:4C:D6:2F:4A:72:3D:A4:10:29:C6:BA:7D:EA:4C X509v3 Authority Key Identifier: keyid:39:3E:A7:8E:4D:93:23:6E:50:71:FB:8A:FF:AD:41:D6:24:26:AA:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/OT6njk2TI25QcfuK_61B1iQmql0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:0d:d2:44:1f:35:52:93:79:dd:e7:9d:eb:b7:ef:38:e1:3e: 15:39:9f:da:ac:f3:62:53:47:d8:8a:6d:3c:a2:52:45:3c:cb: bf:4b:6a:70:e8:fd:89:a7:05:ea:98:0b:9d:90:b7:8a:75:6a: 14:c1:64:c4:ab:e8:d7:20:12:72:1d:1b:6c:6f:eb:0d:74:7c: 4c:25:f2:7a:4f:85:09:3a:7c:b3:b8:8c:fc:3a:96:ca:cf:37: 72:b8:ee:43:4a:a2:b9:c9:28:6b:77:10:01:6d:4f:97:23:fd: 8c:94:34:6f:a6:b1:f5:80:35:ad:4a:b1:32:b5:1c:1f:da:ac: 33:88:eb:3d:4e:c4:89:e2:8e:2a:bb:b6:cd:db:bd:36:e9:db: a7:fa:2b:94:79:89:26:52:e2:8c:80:e7:15:a7:36:a0:ce:3e: ca:e8:ea:91:d2:a4:2c:7e:7d:7c:63:44:d6:d9:d7:38:da:ee: 7c:d5:3b:00:73:21:01:91:6d:c7:7c:f4:1c:98:20:1a:26:e6: 36:85:bb:ea:db:cb:76:d2:e0:e2:a9:b7:5f:76:0d:26:4b:58: f1:8d:73:ef:90:c5:c8:31:e3:2b:44:ea:a4:6b:1e:a4:83:18: cf:45:02:48:22:52:c9:35:f4:e8:0c:83:4e:04:e8:f1:29:eb: 52:fe:1e:be -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAOwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I1MjAxMTAvBgNVBAUTKDM5M0VBNzhFNEQ5MzIzNkU1MDcxRkI4QUZGQUQ0MUQ2 MjQyNkFBNUQwHhcNMjYwMzAxMDMzODM2WhcNMjYwMzA4MDMzODM2WjAYMRYwFAYD VQQDDA02OWEzYjRiYy0zZTM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm8EUKyOimMjncAv16+A372/++p8js5TgQpjEjx+3xAA9Re2LAZ0WyDKolAEK mbAjqRRfUnVSePbzW8exujhnb73m4fOl7lcfIR/63930NlkqeNtJziZZ6PEP7Stc pGZoaDQZksRRgjYkaHOzDGbi/iLMQViEEBrCkEQsixjK8I1TYDaSoRHlgRT8R/WT kaZYs8AjWfp6mUAaVUS62XJT1M4vUc2E+HNRs4xnIi7X+uP5Rgog7d7tKCEkA3zv QrqeZ73/lB0dVXYKRvR1hkXuI5KaPklNsm1Ufgz7KPKNcTZo6FlKuJ4mGrv2Dh4r 5gBzJf9uKvk0keJpc3ybdfHErwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFB/53ghR GUzWL0pyPaQQKca6fepMMB8GA1UdIwQYMBaAFDk+p45NkyNuUHH7iv+tQdYkJqpd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjUyMC80Q0ZDMDhEQUI3 NkMxMUVGQjg3NDI3NkVDNEY5QUUwMi9PVDZuamsyVEkyNVFjZnVLXzYxQjFpUW1x bDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL09UNm5qazJUSTI1UWNmdUtfNjFCMWlRbXFsMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjUyMC80Q0ZDMDhEQUI3NkMxMUVGQjg3NDI3NkVDNEY5QUUwMi9PVDZuamsyVEky NVFjZnVLXzYxQjFpUW1xbDAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAfQ3SRB81UpN53eed67fvOOE+FTmf2qzzYlNH2IptPKJSRTzLv0tqcOj9iacF 6pgLnZC3inVqFMFkxKvo1yASch0bbG/rDXR8TCXyek+FCTp8s7iM/DqWys83crju Q0qiuckoa3cQAW1PlyP9jJQ0b6ax9YA1rUqxMrUcH9qsM4jrPU7EieKOKru2zdu9 Nunbp/orlHmJJlLijIDnFac2oM4+yujqkdKkLH59fGNE1tnXONrufNU7AHMhAZFt x3z0HJggGibmNoW76tvLdtLg4qm3X3YNJktY8Y1z75DFyDHjK0TqpGsepIMYz0UC SCJSyTX06AyDTgTo8SnrUv4evg== -----END CERTIFICATE-----Generated at Sun Mar 1 23:15:42 2026 by rpki-client