$ rpki-client -vvf rpki.apnic.net/member_repository/A9122219/82FE89CC3C3711EA873E1460C4F9AE02/0NL0WkbSZ2YBS3hgGaCagzSHPa0.mft File: 0NL0WkbSZ2YBS3hgGaCagzSHPa0.mft (raw, json) Hash identifier: 3rsIu4uw0d3d7NJvX7DcVf2/dwvcSFBXzxuWIG+dbt8= Subject key identifier: B0:98:25:1C:B4:EC:B8:93:9E:94:18:86:9E:47:C8:23:80:22:63:9C Authority key identifier: D0:D2:F4:5A:46:D2:67:66:01:4B:78:60:19:A0:9A:83:34:87:3D:AD Certificate issuer: /CN=A9122219/serialNumber=D0D2F45A46D26766014B786019A09A8334873DAD Certificate serial: 0BD3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NL0WkbSZ2YBS3hgGaCagzSHPa0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9122219/82FE89CC3C3711EA873E1460C4F9AE02/0NL0WkbSZ2YBS3hgGaCagzSHPa0.mft Manifest number: 0BC7 Signing time: Thu 26 Mar 2026 18:50:37 +0000 Manifest this update: Thu 26 Mar 2026 18:50:37 +0000 Manifest next update: Thu 02 Apr 2026 18:50:37 +0000 Files and hashes: 1: 0NL0WkbSZ2YBS3hgGaCagzSHPa0.crl (hash: t057BEbSUcBIGBaNWm7nJ9+mbTW8BoC48KKvnsJ+l+s=) 2: CD145D246E4E11EDBE02B065C4F9AE02.roa (hash: XKDSZPzMqa5QorcvgY8yeybuV/ov43f+onvjmQy64ko=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9122219/82FE89CC3C3711EA873E1460C4F9AE02/0NL0WkbSZ2YBS3hgGaCagzSHPa0.crl rsync://rpki.apnic.net/member_repository/A9122219/82FE89CC3C3711EA873E1460C4F9AE02/0NL0WkbSZ2YBS3hgGaCagzSHPa0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NL0WkbSZ2YBS3hgGaCagzSHPa0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 18:50:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3027 (0xbd3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9122219, serialNumber=D0D2F45A46D26766014B786019A09A8334873DAD Validity Not Before: Mar 26 18:50:37 2026 GMT Not After : Apr 2 18:50:37 2026 GMT Subject: CN=69c57ffd-e06b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:39:4b:58:82:4a:24:66:0c:97:e1:40:90:24: 13:e9:59:67:32:fc:2f:ff:3c:83:4f:7f:25:38:87: 24:28:f3:ba:e0:fb:3b:1a:f2:74:b9:98:48:47:23: 59:b3:2f:cd:fe:93:09:fb:51:e1:f8:ef:2c:77:31: 1c:6b:81:89:07:ce:0a:d2:cd:ce:90:7a:08:d4:4c: 01:5f:8e:e6:fb:df:d7:2a:17:95:f0:e5:db:9a:81: 08:5e:46:35:a4:e4:6c:c6:34:27:31:4f:11:01:44: 3c:74:7e:24:91:5f:5a:b6:f6:e3:4f:92:89:67:5a: 82:f4:d1:9f:78:fa:9d:a0:d2:2c:de:81:18:9e:3b: c4:45:df:63:96:b6:a2:b2:e3:03:1a:9a:d1:4a:7b: 93:36:4b:db:c1:27:c4:65:ca:c4:aa:52:32:3c:6c: be:47:7b:34:04:6c:bb:ff:10:50:7a:a2:12:02:89: 85:52:23:ea:f9:1c:40:16:33:3c:c1:44:8c:61:f5: b8:b9:e0:3b:8c:66:07:6a:d8:64:a8:6a:fe:f3:34: c6:11:97:35:96:67:00:d3:23:6c:e3:08:c4:7d:19: ad:60:08:0d:1f:9b:f1:61:c2:b1:42:80:0c:1d:7b: 07:5a:f9:e6:b9:0d:73:59:44:a4:eb:50:68:09:2c: d6:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:98:25:1C:B4:EC:B8:93:9E:94:18:86:9E:47:C8:23:80:22:63:9C X509v3 Authority Key Identifier: keyid:D0:D2:F4:5A:46:D2:67:66:01:4B:78:60:19:A0:9A:83:34:87:3D:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9122219/82FE89CC3C3711EA873E1460C4F9AE02/0NL0WkbSZ2YBS3hgGaCagzSHPa0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NL0WkbSZ2YBS3hgGaCagzSHPa0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9122219/82FE89CC3C3711EA873E1460C4F9AE02/0NL0WkbSZ2YBS3hgGaCagzSHPa0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:ad:ae:3f:0b:8f:68:f4:81:20:b4:09:85:32:32:43:b9:3b: 6c:5a:0d:3d:ad:7e:e8:fc:d3:3f:ac:17:26:90:db:e2:18:a1: e5:70:fb:7c:6e:f6:0b:26:a9:5e:45:28:51:4d:78:b7:37:d0: 0e:d3:42:2f:55:93:bc:dc:5f:46:36:d0:54:35:42:a9:ef:d2: 16:49:a6:a2:7a:39:1a:79:60:8e:fa:13:7d:ee:75:28:0d:56: ee:9e:fb:c5:14:7d:0b:fe:23:8c:c9:9f:a6:0f:9c:d6:de:2b: 83:3d:d7:08:42:0f:70:6d:e7:71:46:9c:ba:b5:f9:7c:14:b6: 96:9a:2a:8f:c1:40:98:6a:c3:8b:1a:43:85:1b:af:fc:16:05: f3:7a:10:4b:cb:ae:76:47:95:30:11:09:50:0e:e1:67:1c:09: b7:3a:a2:8e:62:6f:df:bc:8f:25:c3:e8:0b:73:1d:be:b8:24: 09:53:6d:63:22:03:55:68:dd:d7:e5:35:cf:87:4b:b4:37:3c: 76:0e:2e:9b:6d:95:2b:f1:d2:23:b7:9e:5d:40:90:8e:dc:a0: da:a0:27:45:f3:76:04:9c:b7:19:8b:3c:79:a9:48:10:7b:28: ca:40:d2:75:6b:0d:aa:77:ec:28:58:0a:78:ef:05:d2:10:09: 5c:bb:1d:05 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICC9MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjIyMTkxMTAvBgNVBAUTKEQwRDJGNDVBNDZEMjY3NjYwMTRCNzg2MDE5QTA5QTgz MzQ4NzNEQUQwHhcNMjYwMzI2MTg1MDM3WhcNMjYwNDAyMTg1MDM3WjAYMRYwFAYD VQQDEw02OWM1N2ZmZC1lMDZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwDlLWIJKJGYMl+FAkCQT6VlnMvwv/zyDT38lOIckKPO64Ps7GvJ0uZhIRyNZ sy/N/pMJ+1Hh+O8sdzEca4GJB84K0s3OkHoI1EwBX47m+9/XKheV8OXbmoEIXkY1 pORsxjQnMU8RAUQ8dH4kkV9atvbjT5KJZ1qC9NGfePqdoNIs3oEYnjvERd9jlrai suMDGprRSnuTNkvbwSfEZcrEqlIyPGy+R3s0BGy7/xBQeqISAomFUiPq+RxAFjM8 wUSMYfW4ueA7jGYHathkqGr+8zTGEZc1lmcA0yNs4wjEfRmtYAgNH5vxYcKxQoAM HXsHWvnmuQ1zWUSk61BoCSzWbwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLCYJRy0 7LiTnpQYhp5HyCOAImOcMB8GA1UdIwQYMBaAFNDS9FpG0mdmAUt4YBmgmoM0hz2t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMjIxOS84MkZFODlDQzND MzcxMUVBODczRTE0NjBDNEY5QUUwMi8wTkwwV2tiU1oyWUJTM2hnR2FDYWd6U0hQ YTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBOTDBXa2JTWjJZQlMzaGdHYUNhZ3pTSFBhMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MjIxOS84MkZFODlDQzNDMzcxMUVBODczRTE0NjBDNEY5QUUwMi8wTkwwV2tiU1oy WUJTM2hnR2FDYWd6U0hQYTAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAJa2uPwuPaPSBILQJhTIyQ7k7bFoNPa1+6PzTP6wXJpDb4hih5XD7fG72Cyap XkUoUU14tzfQDtNCL1WTvNxfRjbQVDVCqe/SFkmmono5GnlgjvoTfe51KA1W7p77 xRR9C/4jjMmfpg+c1t4rgz3XCEIPcG3ncUacurX5fBS2lpoqj8FAmGrDixpDhRuv /BYF83oQS8uudkeVMBEJUA7hZxwJtzqijmJv37yPJcPoC3MdvrgkCVNtYyIDVWjd 1+U1z4dLtDc8dg4um22VK/HSI7eeXUCQjtyg2qAnRfN2BJy3GYs8ealIEHsoykDS dWsNqnfsKFgKeO8F0hAJXLsdBQ== -----END CERTIFICATE-----Generated at Sat Mar 28 12:18:42 2026 by rpki-client