$ rpki-client -vvf rpki.apnic.net/member_repository/A913284A/854C0F5C1D2B11F1B91266B5153D8C67/oQCGP_euS0zjitmLfMw3suVvSQk.mft File: oQCGP_euS0zjitmLfMw3suVvSQk.mft (raw, json) Hash identifier: sDeX9a7BznZzcBHc4xfNhM6UH464r0JtTlZnVoF3pKU= Subject key identifier: 47:41:67:D2:EB:C6:3A:E5:D6:E1:35:4F:42:D4:BF:34:71:FD:04:9F Authority key identifier: A1:00:86:3F:F7:AE:4B:4C:E3:8A:D9:8B:7C:CC:37:B2:E5:6F:49:09 Certificate issuer: /CN=A913284A/serialNumber=A100863FF7AE4B4CE38AD98B7CCC37B2E56F4909 Certificate serial: 0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oQCGP_euS0zjitmLfMw3suVvSQk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913284A/854C0F5C1D2B11F1B91266B5153D8C67/oQCGP_euS0zjitmLfMw3suVvSQk.mft Manifest number: 09 Signing time: Wed 25 Mar 2026 08:20:35 +0000 Manifest this update: Wed 25 Mar 2026 08:20:34 +0000 Manifest next update: Wed 01 Apr 2026 08:20:34 +0000 Files and hashes: 1: oQCGP_euS0zjitmLfMw3suVvSQk.crl (hash: xnytc1DpJdQWdCKEvkz3CnaVuR0FWfEk/XHc4ityvwU=) 2: E437E9AA1D2B11F1A78643DA153D8C67.roa (hash: RhXXKNC+YYqsWGihres6AD8woRBHOi1Rql/obsHUIrE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913284A/854C0F5C1D2B11F1B91266B5153D8C67/oQCGP_euS0zjitmLfMw3suVvSQk.crl rsync://rpki.apnic.net/member_repository/A913284A/854C0F5C1D2B11F1B91266B5153D8C67/oQCGP_euS0zjitmLfMw3suVvSQk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oQCGP_euS0zjitmLfMw3suVvSQk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 08:20:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10 (0xa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913284A, serialNumber=A100863FF7AE4B4CE38AD98B7CCC37B2E56F4909 Validity Not Before: Mar 25 08:20:34 2026 GMT Not After : Apr 1 08:20:34 2026 GMT Subject: CN=69c39ad3-a727 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:32:56:04:3d:ec:72:85:9a:c9:28:58:ba:c4: a0:83:89:30:a4:4d:e0:83:6a:3d:94:b0:c3:5a:5b: ef:4d:31:53:77:d4:1a:1f:91:cc:d2:eb:d1:7d:d2: f8:51:b5:6b:d3:c5:a2:05:eb:15:6c:97:60:e8:fb: eb:31:0e:83:d4:bc:b9:a2:d9:ef:6c:fe:44:6b:37: 9f:fc:fb:40:20:62:31:8f:f7:2e:33:92:8e:49:b0: 9a:f4:8f:51:c4:80:18:84:cb:cc:ed:d9:c2:e2:e5: c2:27:68:21:3d:f8:ee:ce:e4:ee:99:2b:81:7b:82: 4c:b7:2e:75:65:3e:c6:76:a9:dd:5c:b6:1a:03:19: e7:7e:02:1f:54:46:7e:28:c2:48:bc:69:bc:f9:20: 8f:09:bb:df:dc:1d:b1:72:94:ae:10:1c:e5:43:39: 33:c0:22:40:76:6b:58:f3:e0:f9:34:a2:8d:ef:e4: 5a:ee:9d:78:dc:e4:c6:c6:16:bb:5d:a8:f7:52:6d: 93:fa:17:80:16:d4:4b:04:c1:9f:bd:2f:0f:9e:d3: 87:38:cb:13:be:16:83:84:5f:69:b5:65:ad:5f:4c: 6d:b8:4b:20:b6:5b:49:bf:9a:9b:03:e1:93:b2:a1: 52:24:e0:64:46:de:f9:c1:32:8e:1f:68:f8:60:43: c5:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:41:67:D2:EB:C6:3A:E5:D6:E1:35:4F:42:D4:BF:34:71:FD:04:9F X509v3 Authority Key Identifier: keyid:A1:00:86:3F:F7:AE:4B:4C:E3:8A:D9:8B:7C:CC:37:B2:E5:6F:49:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913284A/854C0F5C1D2B11F1B91266B5153D8C67/oQCGP_euS0zjitmLfMw3suVvSQk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oQCGP_euS0zjitmLfMw3suVvSQk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913284A/854C0F5C1D2B11F1B91266B5153D8C67/oQCGP_euS0zjitmLfMw3suVvSQk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:47:b5:e9:f4:69:92:9c:95:80:80:a4:69:9d:50:83:59:64: 7d:3d:69:cb:8e:56:28:a1:10:15:40:b2:a1:fc:30:e1:f0:d3: ba:4f:a6:97:2f:3d:d6:c9:67:64:2c:b1:dc:89:4c:44:50:dd: e5:81:c9:d4:86:80:35:e1:d8:1b:f1:b1:d5:9c:22:59:ff:fa: f7:67:d4:4f:54:c8:47:c2:89:04:10:c2:0d:de:c3:02:a9:f0: 44:dc:e6:28:ca:f7:8f:ef:95:c1:dd:0f:50:c4:72:c6:71:9c: b3:c4:4e:19:6d:90:1c:f7:95:b1:20:8a:34:ce:cc:5b:5e:b0: c2:a2:01:90:9d:9a:e3:ab:6f:ab:0e:ae:f1:58:33:89:a0:68: 19:eb:87:89:6d:04:d7:f3:ca:79:08:a7:f4:0c:85:8b:44:06: ad:3c:75:54:1f:0d:d6:52:bc:41:07:49:82:a2:3f:1c:60:4f: 1b:e9:dc:35:f2:46:7d:9a:3d:05:82:41:9c:d1:dd:9f:51:92: 74:f9:4d:6d:19:fe:48:e8:99:7b:ce:15:b5:76:18:cb:c5:df: 55:15:a3:53:35:9b:b0:ee:1a:c3:31:2e:3d:e2:85:9e:65:f1: 4c:1b:69:70:64:fd:5d:5c:89:bc:30:84:bc:72:3b:b7:ed:3b: 79:b3:ec:4a -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBCjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz Mjg0QTExMC8GA1UEBRMoQTEwMDg2M0ZGN0FFNEI0Q0UzOEFEOThCN0NDQzM3QjJF NTZGNDkwOTAeFw0yNjAzMjUwODIwMzRaFw0yNjA0MDEwODIwMzRaMBgxFjAUBgNV BAMTDTY5YzM5YWQzLWE3MjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC8MlYEPexyhZrJKFi6xKCDiTCkTeCDaj2UsMNaW+9NMVN31BofkczS69F90vhR tWvTxaIF6xVsl2Do++sxDoPUvLmi2e9s/kRrN5/8+0AgYjGP9y4zko5JsJr0j1HE gBiEy8zt2cLi5cInaCE9+O7O5O6ZK4F7gky3LnVlPsZ2qd1cthoDGed+Ah9URn4o wki8abz5II8Ju9/cHbFylK4QHOVDOTPAIkB2a1jz4Pk0oo3v5FrunXjc5MbGFrtd qPdSbZP6F4AW1EsEwZ+9Lw+e04c4yxO+FoOEX2m1Za1fTG24SyC2W0m/mpsD4ZOy oVIk4GRG3vnBMo4faPhgQ8XlAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUR0Fn0uvG OuXW4TVPQtS/NHH9BJ8wHwYDVR0jBBgwFoAUoQCGP/euS0zjitmLfMw3suVvSQkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTMyODRBLzg1NEMwRjVDMUQy QjExRjFCOTEyNjZCNTE1M0Q4QzY3L29RQ0dQX2V1UzB6aml0bUxmTXczc3VWdlNR ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvb1FDR1BfZXVTMHpqaXRtTGZNdzNzdVZ2U1FrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTMy ODRBLzg1NEMwRjVDMUQyQjExRjFCOTEyNjZCNTE1M0Q4QzY3L29RQ0dQX2V1UzB6 aml0bUxmTXczc3VWdlNRay5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQCcR7Xp9GmSnJWAgKRpnVCDWWR9PWnLjlYooRAVQLKh/DDh8NO6T6aXLz3WyWdk LLHciUxEUN3lgcnUhoA14dgb8bHVnCJZ//r3Z9RPVMhHwokEEMIN3sMCqfBE3OYo yveP75XB3Q9QxHLGcZyzxE4ZbZAc95WxIIo0zsxbXrDCogGQnZrjq2+rDq7xWDOJ oGgZ64eJbQTX88p5CKf0DIWLRAatPHVUHw3WUrxBB0mCoj8cYE8b6dw18kZ9mj0F gkGc0d2fUZJ0+U1tGf5I6Jl7zhW1dhjLxd9VFaNTNZuw7hrDMS494oWeZfFMG2lw ZP1dXIm8MIS8cju37Tt5s+xK -----END CERTIFICATE-----Generated at Thu Mar 26 01:48:30 2026 by rpki-client