$ rpki-client -vvf rpki.apnic.net/member_repository/A9143DE2/D218DD528E9711EA8C2DE537C4F9AE02/320AK7yrolDSrmtEVOPL_WfSx-o.mft File: 320AK7yrolDSrmtEVOPL_WfSx-o.mft (raw, json) Hash identifier: IJiBWyS2GErV9tvcH3eQKOcGzrDdYeXS+8ZfIUW4Idk= Subject key identifier: EC:31:F1:9D:5B:B1:AA:9E:48:88:D3:1D:26:0B:BE:4B:F0:83:2B:88 Authority key identifier: DF:6D:00:2B:BC:AB:A2:50:D2:AE:6B:44:54:E3:CB:FD:67:D2:C7:EA Certificate issuer: /CN=A9143DE2/serialNumber=DF6D002BBCABA250D2AE6B4454E3CBFD67D2C7EA Certificate serial: 0A31 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/320AK7yrolDSrmtEVOPL_WfSx-o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143DE2/D218DD528E9711EA8C2DE537C4F9AE02/320AK7yrolDSrmtEVOPL_WfSx-o.mft Manifest number: 0A24 Signing time: Tue 24 Mar 2026 19:33:53 +0000 Manifest this update: Tue 24 Mar 2026 19:33:52 +0000 Manifest next update: Tue 31 Mar 2026 19:33:52 +0000 Files and hashes: 1: 320AK7yrolDSrmtEVOPL_WfSx-o.crl (hash: 4qRUunBii79iubjKIxQX0JvmpmWF4N+DFMjz0upLamw=) 2: C07738FE9F4511EB88EBCA76C4F9AE02.roa (hash: AksdzM4PbXGL/XcGvbH1UmcYB82GNXMH4wOGUwrHV60=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143DE2/D218DD528E9711EA8C2DE537C4F9AE02/320AK7yrolDSrmtEVOPL_WfSx-o.crl rsync://rpki.apnic.net/member_repository/A9143DE2/D218DD528E9711EA8C2DE537C4F9AE02/320AK7yrolDSrmtEVOPL_WfSx-o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/320AK7yrolDSrmtEVOPL_WfSx-o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 19:33:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2609 (0xa31) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143DE2, serialNumber=DF6D002BBCABA250D2AE6B4454E3CBFD67D2C7EA Validity Not Before: Mar 24 19:33:52 2026 GMT Not After : Mar 31 19:33:52 2026 GMT Subject: CN=69c2e721-5689 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:bf:4b:fa:d9:7f:34:33:5d:da:f9:43:36:f0: 9a:08:5c:70:e3:6e:93:b7:85:35:b7:07:fe:5a:b3: 84:71:cd:06:3f:8f:d0:67:27:7d:51:60:74:2b:59: 47:72:c0:31:a9:a4:c6:1f:97:43:d3:95:31:3b:4a: cb:c4:12:97:d5:f5:bb:53:49:fd:e2:6f:ec:66:95: 7c:66:c2:ec:c2:0f:c4:8d:5f:06:82:0a:2c:c4:26: 16:ca:f4:91:22:72:de:04:69:31:7e:0a:30:f7:c0: 93:00:2f:9e:3b:19:2e:97:82:a5:1c:c2:90:67:42: ac:bf:23:78:da:47:53:56:50:b2:b9:71:bc:05:db: 55:1e:14:3f:4b:70:d5:19:dd:33:d7:47:0a:cd:aa: 71:c6:41:51:af:a1:1a:dd:62:4d:fc:14:7b:fb:a7: c9:58:6c:38:40:54:b1:bf:6b:3e:27:db:d1:e3:83: 03:32:12:a7:e3:23:0e:ea:9a:b8:66:12:d4:98:10: 71:76:98:c4:42:87:11:4f:01:0e:0c:21:97:e8:46: aa:d6:dd:8d:06:b0:0b:e6:e8:35:c6:bd:d4:d6:27: 02:f5:03:9b:70:b6:e1:ae:66:83:a4:5f:53:3b:1d: 0a:da:b5:12:4b:8f:75:84:38:cf:d1:77:18:b3:2c: 03:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:31:F1:9D:5B:B1:AA:9E:48:88:D3:1D:26:0B:BE:4B:F0:83:2B:88 X509v3 Authority Key Identifier: keyid:DF:6D:00:2B:BC:AB:A2:50:D2:AE:6B:44:54:E3:CB:FD:67:D2:C7:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143DE2/D218DD528E9711EA8C2DE537C4F9AE02/320AK7yrolDSrmtEVOPL_WfSx-o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/320AK7yrolDSrmtEVOPL_WfSx-o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143DE2/D218DD528E9711EA8C2DE537C4F9AE02/320AK7yrolDSrmtEVOPL_WfSx-o.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:ca:70:7a:f8:22:82:95:99:60:c5:a1:75:91:de:45:7a:ea: a8:ef:b0:5c:d5:71:1f:7f:24:9c:b1:84:18:64:a7:2e:7c:af: 3c:50:6c:c1:00:30:a8:17:c4:e4:72:fe:52:94:c4:7d:71:29: dd:0f:8d:50:6a:7c:9f:a0:57:98:ad:c7:65:93:00:26:c5:5e: 08:79:59:d1:92:10:69:6b:17:7b:2d:fc:1e:06:26:9f:e2:04: 35:60:14:0a:47:40:87:40:4a:50:03:84:9a:ba:51:01:35:86: fa:91:e7:13:15:6d:eb:03:e6:d0:c9:4d:3e:03:24:50:cd:56: d3:48:27:5b:11:8f:da:14:87:16:bf:c8:35:6d:68:7d:42:b7: d7:2a:c8:4a:58:ea:db:11:45:68:20:c2:91:a5:85:32:34:55: 8e:a0:43:80:ba:64:35:e0:e5:b5:7f:a3:68:3f:2c:ea:cf:18: 8b:fe:b9:6b:96:46:89:49:be:d3:01:b1:81:c1:c3:38:1a:5c: dd:a2:e3:ac:48:c1:75:41:7d:06:3e:28:46:08:51:7a:c8:8c: 5f:6d:8c:1a:bc:76:f6:02:8e:6d:45:d4:a8:ac:a1:b6:cc:52: f6:f5:a9:6e:ff:c8:b6:93:4f:e4:88:37:8e:c6:ec:4c:1d:45: 16:a3:60:19 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCjEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNERTIxMTAvBgNVBAUTKERGNkQwMDJCQkNBQkEyNTBEMkFFNkI0NDU0RTNDQkZE NjdEMkM3RUEwHhcNMjYwMzI0MTkzMzUyWhcNMjYwMzMxMTkzMzUyWjAYMRYwFAYD VQQDEw02OWMyZTcyMS01Njg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlL9L+tl/NDNd2vlDNvCaCFxw426Tt4U1twf+WrOEcc0GP4/QZyd9UWB0K1lH csAxqaTGH5dD05UxO0rLxBKX1fW7U0n94m/sZpV8ZsLswg/EjV8GggosxCYWyvSR InLeBGkxfgow98CTAC+eOxkul4KlHMKQZ0KsvyN42kdTVlCyuXG8BdtVHhQ/S3DV Gd0z10cKzapxxkFRr6Ea3WJN/BR7+6fJWGw4QFSxv2s+J9vR44MDMhKn4yMO6pq4 ZhLUmBBxdpjEQocRTwEODCGX6Eaq1t2NBrAL5ug1xr3U1icC9QObcLbhrmaDpF9T Ox0K2rUSS491hDjP0XcYsywDDQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOwx8Z1b saqeSIjTHSYLvkvwgyuIMB8GA1UdIwQYMBaAFN9tACu8q6JQ0q5rRFTjy/1n0sfq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0RFMi9EMjE4REQ1MjhF OTcxMUVBOEMyREU1MzdDNEY5QUUwMi8zMjBBSzd5cm9sRFNybXRFVk9QTF9XZlN4 LW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzMyMEFLN3lyb2xEU3JtdEVWT1BMX1dmU3gtby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 M0RFMi9EMjE4REQ1MjhFOTcxMUVBOEMyREU1MzdDNEY5QUUwMi8zMjBBSzd5cm9s RFNybXRFVk9QTF9XZlN4LW8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAbMpwevgigpWZYMWhdZHeRXrqqO+wXNVxH38knLGEGGSnLnyvPFBswQAwqBfE 5HL+UpTEfXEp3Q+NUGp8n6BXmK3HZZMAJsVeCHlZ0ZIQaWsXey38HgYmn+IENWAU CkdAh0BKUAOEmrpRATWG+pHnExVt6wPm0MlNPgMkUM1W00gnWxGP2hSHFr/INW1o fUK31yrISljq2xFFaCDCkaWFMjRVjqBDgLpkNeDltX+jaD8s6s8Yi/65a5ZGiUm+ 0wGxgcHDOBpc3aLjrEjBdUF9Bj4oRghResiMX22MGrx29gKObUXUqKyhtsxS9vWp bv/ItpNP5Ig3jsbsTB1FFqNgGQ== -----END CERTIFICATE-----Generated at Thu Mar 26 17:35:46 2026 by rpki-client