$ rpki-client -vvf rpki.apnic.net/member_repository/A911D2A3/F6AC63864EFD11E8892B8683C4F9AE02/O-7kvaWgSxBLHXLmAcMJONuktkQ.mft File: O-7kvaWgSxBLHXLmAcMJONuktkQ.mft (raw, json) Hash identifier: HGSJUonUH/Tza1k9oRiYV+QWhtVWIqUB3vQfaXxk48s= Subject key identifier: BA:32:4A:5B:34:A9:BF:53:6E:A1:1A:9A:BB:DF:E2:A7:EF:AF:E4:71 Authority key identifier: 3B:EE:E4:BD:A5:A0:4B:10:4B:1D:72:E6:01:C3:09:38:DB:A4:B6:44 Certificate issuer: /CN=A911D2A3/serialNumber=3BEEE4BDA5A04B104B1D72E601C30938DBA4B644 Certificate serial: 15AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O-7kvaWgSxBLHXLmAcMJONuktkQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911D2A3/F6AC63864EFD11E8892B8683C4F9AE02/O-7kvaWgSxBLHXLmAcMJONuktkQ.mft Manifest number: 159D Signing time: Thu 26 Mar 2026 16:43:56 +0000 Manifest this update: Thu 26 Mar 2026 16:43:56 +0000 Manifest next update: Thu 02 Apr 2026 16:43:56 +0000 Files and hashes: 1: O-7kvaWgSxBLHXLmAcMJONuktkQ.crl (hash: Cb3P5gSmnBgTpnWE6hneCP2OW5hJa8EmbSIaD6tD4H0=) 2: D9EDB272C44C11ECA07C2D77C4F9AE02.roa (hash: FtB2tGvplGzCJWlj88NsorSrUzak1GMw1nVvvDj7yFA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911D2A3/F6AC63864EFD11E8892B8683C4F9AE02/O-7kvaWgSxBLHXLmAcMJONuktkQ.crl rsync://rpki.apnic.net/member_repository/A911D2A3/F6AC63864EFD11E8892B8683C4F9AE02/O-7kvaWgSxBLHXLmAcMJONuktkQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O-7kvaWgSxBLHXLmAcMJONuktkQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 16:43:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5546 (0x15aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911D2A3, serialNumber=3BEEE4BDA5A04B104B1D72E601C30938DBA4B644 Validity Not Before: Mar 26 16:43:56 2026 GMT Not After : Apr 2 16:43:56 2026 GMT Subject: CN=69c5624c-85d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:4d:25:20:c1:de:02:d6:3f:28:c8:14:a4:2b: ca:50:dd:6a:b6:39:38:e0:68:a4:ed:db:48:56:a5: 54:54:12:b2:21:43:3e:9b:e5:75:cd:e8:30:78:47: 3a:1b:b4:e8:5d:93:b2:d2:3b:7e:ad:20:32:8e:fe: dd:34:13:63:58:3d:a2:bf:81:cc:e8:33:1b:d2:9d: 61:9b:52:47:b3:39:e4:4d:3b:2e:5d:25:00:99:c9: a0:e1:73:55:46:46:b7:f0:81:81:92:b9:31:ba:32: d9:ab:6c:f0:d9:3f:45:a5:ae:a5:92:34:00:4d:bd: bf:08:f2:a7:8a:c9:b1:d3:4b:6e:ac:c4:01:ad:68: f4:fd:4e:11:a2:47:5b:94:cf:19:c5:fd:78:e6:fa: 9e:aa:3c:58:05:c6:da:b4:d2:d1:26:37:49:a0:80: 05:db:3e:90:28:b1:5f:ab:9a:94:00:af:be:d7:8c: ec:bc:55:98:55:2b:c9:44:e5:a9:72:f7:60:1b:24: 3a:d3:86:0d:19:12:f2:ea:b2:39:e9:83:3f:fb:55: 68:b8:23:51:cd:bf:88:1f:f6:9d:48:37:de:be:81: 30:45:90:05:0c:d5:6e:f0:a7:cd:8e:c5:1e:e1:fd: b8:c3:d1:65:0d:a5:95:d1:2f:36:af:6f:c7:7c:5e: e3:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:32:4A:5B:34:A9:BF:53:6E:A1:1A:9A:BB:DF:E2:A7:EF:AF:E4:71 X509v3 Authority Key Identifier: keyid:3B:EE:E4:BD:A5:A0:4B:10:4B:1D:72:E6:01:C3:09:38:DB:A4:B6:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911D2A3/F6AC63864EFD11E8892B8683C4F9AE02/O-7kvaWgSxBLHXLmAcMJONuktkQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O-7kvaWgSxBLHXLmAcMJONuktkQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D2A3/F6AC63864EFD11E8892B8683C4F9AE02/O-7kvaWgSxBLHXLmAcMJONuktkQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:5b:3d:8a:88:e9:d6:3b:c1:b2:0c:d2:cc:ba:ae:13:00:8f: f0:99:80:ee:8f:70:24:93:cf:d9:44:82:c7:58:23:9d:44:71: ca:20:08:5e:29:5e:f8:88:f7:24:3f:18:15:61:81:80:c2:64: e2:1e:f3:41:4d:77:32:e8:cc:8d:31:aa:54:44:3a:9e:cc:51: ca:d7:7f:17:49:42:7a:70:35:b3:02:bd:57:63:90:d4:05:26: 06:ab:2a:f9:f3:46:74:ff:f4:9c:35:a5:e0:46:0d:83:9c:71: 5d:a7:a2:25:86:d6:f0:b6:8e:1a:d9:60:e4:3e:ac:bf:cc:17: b3:46:44:ba:db:6b:c3:d7:0d:da:1c:6f:f2:b7:82:42:05:f3: e4:b1:6d:fb:bb:ba:64:c5:60:7b:a2:84:d0:1b:2a:e0:8f:0f: a9:f4:28:9e:c8:7e:11:70:5d:62:ce:35:4f:c6:a9:f1:26:ba: 39:bc:ad:2e:92:e3:3f:14:c6:cd:a6:98:d0:c1:3d:dc:21:d5: 08:47:63:f0:ad:96:14:0b:01:a5:d3:85:ee:2b:f9:48:12:a5: 33:c1:ac:b1:c0:37:8e:dd:00:bf:7e:5c:32:6e:09:5d:03:ef: b5:10:56:ff:30:b0:1a:99:0d:1a:44:71:05:23:7c:10:e6:46: c3:85:98:ac -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICFaowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUQyQTMxMTAvBgNVBAUTKDNCRUVFNEJEQTVBMDRCMTA0QjFENzJFNjAxQzMwOTM4 REJBNEI2NDQwHhcNMjYwMzI2MTY0MzU2WhcNMjYwNDAyMTY0MzU2WjAYMRYwFAYD VQQDEw02OWM1NjI0Yy04NWQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsU0lIMHeAtY/KMgUpCvKUN1qtjk44Gik7dtIVqVUVBKyIUM+m+V1zegweEc6 G7ToXZOy0jt+rSAyjv7dNBNjWD2iv4HM6DMb0p1hm1JHsznkTTsuXSUAmcmg4XNV Rka38IGBkrkxujLZq2zw2T9Fpa6lkjQATb2/CPKnismx00turMQBrWj0/U4Rokdb lM8Zxf145vqeqjxYBcbatNLRJjdJoIAF2z6QKLFfq5qUAK++14zsvFWYVSvJROWp cvdgGyQ604YNGRLy6rI56YM/+1VouCNRzb+IH/adSDfevoEwRZAFDNVu8KfNjsUe 4f24w9FlDaWV0S82r2/HfF7jnQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLoySls0 qb9TbqEamrvf4qfvr+RxMB8GA1UdIwQYMBaAFDvu5L2loEsQSx1y5gHDCTjbpLZE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRDJBMy9GNkFDNjM4NjRF RkQxMUU4ODkyQjg2ODNDNEY5QUUwMi9PLTdrdmFXZ1N4QkxIWExtQWNNSk9OdWt0 a1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL08tN2t2YVdnU3hCTEhYTG1BY01KT051a3RrUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RDJBMy9GNkFDNjM4NjRFRkQxMUU4ODkyQjg2ODNDNEY5QUUwMi9PLTdrdmFXZ1N4 QkxIWExtQWNNSk9OdWt0a1EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAMVs9iojp1jvBsgzSzLquEwCP8JmA7o9wJJPP2USCx1gjnURxyiAIXile+Ij3 JD8YFWGBgMJk4h7zQU13MujMjTGqVEQ6nsxRytd/F0lCenA1swK9V2OQ1AUmBqsq +fNGdP/0nDWl4EYNg5xxXaeiJYbW8LaOGtlg5D6sv8wXs0ZEuttrw9cN2hxv8reC QgXz5LFt+7u6ZMVge6KE0Bsq4I8PqfQonsh+EXBdYs41T8ap8Sa6ObytLpLjPxTG zaaY0ME93CHVCEdj8K2WFAsBpdOF7iv5SBKlM8GsscA3jt0Av35cMm4JXQPvtRBW /zCwGpkNGkRxBSN8EOZGw4WYrA== -----END CERTIFICATE-----Generated at Sat Mar 28 12:17:40 2026 by rpki-client