$ rpki-client -vvf rpki.apnic.net/member_repository/A918C158/AE51D802673B11EA99B2E556C4F9AE02/Ok9ILhJcCNuDBRbVGkot8eCqiso.mft File: Ok9ILhJcCNuDBRbVGkot8eCqiso.mft (raw, json) Hash identifier: LsjTjsIE3sYANDs4V6n6ub7WqWcahGK9mNKH8XvDYTY= Subject key identifier: 89:C6:7A:B0:DF:4C:00:FB:ED:ED:E2:38:6C:67:11:BE:E2:EC:2F:19 Authority key identifier: 3A:4F:48:2E:12:5C:08:DB:83:05:16:D5:1A:4A:2D:F1:E0:AA:8A:CA Certificate issuer: /CN=A918C158/serialNumber=3A4F482E125C08DB830516D51A4A2DF1E0AA8ACA Certificate serial: 0AE5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ok9ILhJcCNuDBRbVGkot8eCqiso.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918C158/AE51D802673B11EA99B2E556C4F9AE02/Ok9ILhJcCNuDBRbVGkot8eCqiso.mft Manifest number: 0ADD Signing time: Mon 02 Mar 2026 01:37:43 +0000 Manifest this update: Mon 02 Mar 2026 01:37:42 +0000 Manifest next update: Mon 09 Mar 2026 01:37:42 +0000 Files and hashes: 1: Ok9ILhJcCNuDBRbVGkot8eCqiso.crl (hash: 5y9xLVeSE6CaiA5+6QaY2tA2R2sNMfd7hZz3C4TNXPc=) 2: F25A6266796A11EB82E0EE24C4F9AE02.roa (hash: gg5YRxm/OG8ParGdDVWKapchKMYooC3n6Om94oqfGGI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918C158/AE51D802673B11EA99B2E556C4F9AE02/Ok9ILhJcCNuDBRbVGkot8eCqiso.crl rsync://rpki.apnic.net/member_repository/A918C158/AE51D802673B11EA99B2E556C4F9AE02/Ok9ILhJcCNuDBRbVGkot8eCqiso.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ok9ILhJcCNuDBRbVGkot8eCqiso.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:37:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2789 (0xae5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918C158, serialNumber=3A4F482E125C08DB830516D51A4A2DF1E0AA8ACA Validity Not Before: Mar 2 01:37:42 2026 GMT Not After : Mar 9 01:37:42 2026 GMT Subject: CN=69a4e9e7-d6dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:b3:88:2d:4a:cf:55:ad:70:ce:ea:ac:a5:37: fc:1d:29:b7:ae:53:6e:57:2d:d6:19:17:51:df:47: d8:8c:40:1c:94:69:12:81:c7:2c:70:45:87:65:21: 22:70:76:33:be:4b:73:c0:8b:13:98:f0:01:2c:8f: c1:87:5e:89:d7:88:25:85:c1:41:28:f5:dc:92:80: 91:a8:cc:0c:d7:f5:15:4a:0f:82:0d:54:67:ca:8b: 5a:c1:34:81:6a:f8:be:ef:5f:ed:c7:77:c5:9e:3e: d6:2f:2d:d3:5f:95:1c:ce:34:e3:15:e7:f0:f1:c6: 09:1f:51:81:90:36:98:64:56:9a:c5:e3:71:25:db: d1:3b:f8:66:1b:a6:b8:15:18:54:65:91:98:63:52: 87:0e:82:43:ed:79:1b:b8:9b:53:e8:eb:62:7e:88: 57:ce:81:03:a4:c0:d7:43:2e:8a:f2:55:69:fe:a0: b8:75:fb:5d:cb:90:b3:e2:7e:a3:33:10:52:8e:4d: c4:0d:da:c9:e1:e9:00:56:cf:61:82:c7:35:0a:9a: 00:99:6e:35:3e:f8:6f:b6:32:f4:9c:b1:d7:67:b7: a5:a2:8f:9d:fe:73:d6:21:c8:35:9e:9d:06:24:cc: 7a:67:bf:b2:e6:33:66:f9:b2:f2:51:28:8a:53:c3: 29:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:C6:7A:B0:DF:4C:00:FB:ED:ED:E2:38:6C:67:11:BE:E2:EC:2F:19 X509v3 Authority Key Identifier: keyid:3A:4F:48:2E:12:5C:08:DB:83:05:16:D5:1A:4A:2D:F1:E0:AA:8A:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918C158/AE51D802673B11EA99B2E556C4F9AE02/Ok9ILhJcCNuDBRbVGkot8eCqiso.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ok9ILhJcCNuDBRbVGkot8eCqiso.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918C158/AE51D802673B11EA99B2E556C4F9AE02/Ok9ILhJcCNuDBRbVGkot8eCqiso.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:70:87:d9:db:16:3a:5c:02:b2:dd:e4:6e:c7:20:03:c3:2b: ee:1b:ec:8a:fb:85:23:d3:00:77:dc:ce:93:77:3d:77:b2:4e: 39:47:7e:b2:85:19:62:0c:7b:a1:a9:83:27:e7:14:e0:1f:5b: 93:17:a4:fe:a1:82:9d:c3:68:5c:2f:c5:6d:62:8d:76:2c:b5: 09:30:c4:59:c8:06:14:56:80:91:98:c0:6b:74:76:3e:26:7a: 4f:06:3f:96:31:a4:fe:64:1d:a8:81:a7:61:f6:d4:3f:cb:35: b2:1d:b7:af:e7:54:9d:3c:b5:8b:58:cc:38:45:b2:4d:bf:66: c1:4d:b4:2d:00:32:7f:b5:bb:65:61:a9:d1:98:76:8d:df:01: 32:6d:2c:1c:06:61:dc:c8:18:93:5a:db:79:e3:69:e3:e8:58: e2:69:f2:27:55:9b:ab:dc:07:ab:46:bd:c2:60:02:3a:66:a3: 79:76:8e:84:ef:d2:0b:5f:3d:79:c3:d8:78:dd:ab:a0:85:cb: c1:77:6d:ab:15:e6:6c:61:63:05:73:6c:d5:62:c7:03:f1:6a: 33:d9:38:92:ed:e5:40:30:43:2c:37:15:59:4e:a2:93:2d:81: 13:14:a9:ec:2f:f0:5d:29:1d:57:45:ae:ec:d6:82:55:0e:65: 84:19:6c:48 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCuUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEMxNTgxMTAvBgNVBAUTKDNBNEY0ODJFMTI1QzA4REI4MzA1MTZENTFBNEEyREYx RTBBQThBQ0EwHhcNMjYwMzAyMDEzNzQyWhcNMjYwMzA5MDEzNzQyWjAYMRYwFAYD VQQDEw02OWE0ZTllNy1kNmRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtLOILUrPVa1wzuqspTf8HSm3rlNuVy3WGRdR30fYjEAclGkSgccscEWHZSEi cHYzvktzwIsTmPABLI/Bh16J14glhcFBKPXckoCRqMwM1/UVSg+CDVRnyotawTSB avi+71/tx3fFnj7WLy3TX5UczjTjFefw8cYJH1GBkDaYZFaaxeNxJdvRO/hmG6a4 FRhUZZGYY1KHDoJD7XkbuJtT6OtifohXzoEDpMDXQy6K8lVp/qC4dftdy5Cz4n6j MxBSjk3EDdrJ4ekAVs9hgsc1CpoAmW41PvhvtjL0nLHXZ7eloo+d/nPWIcg1np0G JMx6Z7+y5jNm+bLyUSiKU8MpXwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFInGerDf TAD77e3iOGxnEb7i7C8ZMB8GA1UdIwQYMBaAFDpPSC4SXAjbgwUW1RpKLfHgqorK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QzE1OC9BRTUxRDgwMjY3 M0IxMUVBOTlCMkU1NTZDNEY5QUUwMi9PazlJTGhKY0NOdURCUmJWR2tvdDhlQ3Fp c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09rOUlMaEpjQ051REJSYlZHa290OGVDcWlzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QzE1OC9BRTUxRDgwMjY3M0IxMUVBOTlCMkU1NTZDNEY5QUUwMi9PazlJTGhKY0NO dURCUmJWR2tvdDhlQ3Fpc28ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAUXCH2dsWOlwCst3kbscgA8Mr7hvsivuFI9MAd9zOk3c9d7JOOUd+soUZYgx7 oamDJ+cU4B9bkxek/qGCncNoXC/FbWKNdiy1CTDEWcgGFFaAkZjAa3R2PiZ6TwY/ ljGk/mQdqIGnYfbUP8s1sh23r+dUnTy1i1jMOEWyTb9mwU20LQAyf7W7ZWGp0Zh2 jd8BMm0sHAZh3MgYk1rbeeNp4+hY4mnyJ1Wbq9wHq0a9wmACOmajeXaOhO/SC189 ecPYeN2roIXLwXdtqxXmbGFjBXNs1WLHA/FqM9k4ku3lQDBDLDcVWU6iky2BExSp 7C/wXSkdV0Wu7NaCVQ5lhBlsSA== -----END CERTIFICATE-----Generated at Mon Mar 2 04:40:58 2026 by rpki-client