$ rpki-client -vvf rpki.apnic.net/member_repository/A914A4A1/68CEC094955911EC84728736C4F9AE02/o9c6Tp8QQ946v09e0Qhor20zW_Q.mft File: o9c6Tp8QQ946v09e0Qhor20zW_Q.mft (raw, json) Hash identifier: zqJMcJfpA2PubCxtkHyTk3IVt8E0UZxrl5WjZQdmwUE= Subject key identifier: B1:E9:C4:61:D3:4D:45:B9:61:99:5D:51:89:49:A7:F1:88:2D:94:09 Authority key identifier: A3:D7:3A:4E:9F:10:43:DE:3A:BF:4F:5E:D1:08:68:AF:6D:33:5B:F4 Certificate issuer: /CN=A914A4A1/serialNumber=A3D73A4E9F1043DE3ABF4F5ED10868AF6D335BF4 Certificate serial: 044C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9c6Tp8QQ946v09e0Qhor20zW_Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914A4A1/68CEC094955911EC84728736C4F9AE02/o9c6Tp8QQ946v09e0Qhor20zW_Q.mft Manifest number: 0445 Signing time: Tue 24 Mar 2026 23:53:56 +0000 Manifest this update: Tue 24 Mar 2026 23:53:56 +0000 Manifest next update: Tue 31 Mar 2026 23:53:56 +0000 Files and hashes: 1: o9c6Tp8QQ946v09e0Qhor20zW_Q.crl (hash: eVNujP4RQCBrVbnvEwsguyRzlUdpVvx6DbN+tyscQD0=) 2: 59212E58955D11EC97EC0461C4F9AE02.roa (hash: fiTho/TerZpO+3DrMondjvawf8v6tA9SLzSvEGlCEZE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914A4A1/68CEC094955911EC84728736C4F9AE02/o9c6Tp8QQ946v09e0Qhor20zW_Q.crl rsync://rpki.apnic.net/member_repository/A914A4A1/68CEC094955911EC84728736C4F9AE02/o9c6Tp8QQ946v09e0Qhor20zW_Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9c6Tp8QQ946v09e0Qhor20zW_Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 23:53:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1100 (0x44c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914A4A1, serialNumber=A3D73A4E9F1043DE3ABF4F5ED10868AF6D335BF4 Validity Not Before: Mar 24 23:53:56 2026 GMT Not After : Mar 31 23:53:56 2026 GMT Subject: CN=69c32414-7774 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:e6:95:33:69:bf:78:40:63:6a:d8:59:c6:56: 37:75:4f:0d:c3:36:4d:cf:0d:ee:6d:73:0a:61:9f: 8b:46:ee:76:6a:ea:5e:15:5d:1b:5a:eb:cb:d4:3c: 83:a5:3b:ae:af:ff:71:d3:f8:0f:bb:7c:a5:3e:e6: 7e:d1:b1:a1:e1:21:f8:f9:c0:8f:22:7a:de:49:0f: 50:d4:70:da:50:50:0f:5a:a5:f3:ad:b5:34:6c:08: 74:11:73:4e:2b:b1:ad:0c:f3:3e:08:20:73:02:e9: a2:65:d9:0f:d8:97:55:72:97:f5:8f:82:d8:72:56: e3:40:25:31:d2:78:5a:5b:a1:f9:76:12:23:87:c6: 97:31:71:ea:37:dc:f6:57:82:ca:89:09:60:77:d1: 1c:2c:6e:27:5e:c8:0f:2b:86:4b:11:a4:db:78:50: de:38:88:0f:e4:e0:50:1d:8d:c9:cd:cb:fb:0d:9c: 1c:59:a9:01:65:31:90:92:29:42:e6:d9:4e:09:19: ac:d2:a5:7e:b0:b3:ad:e9:d8:b0:0f:ab:d0:a7:ed: 60:9c:90:6f:fe:76:db:55:bb:ea:ca:38:68:75:27: e8:cb:bd:9c:46:83:d6:57:63:62:95:4b:e2:1a:41: a8:ad:1f:da:02:5c:8d:49:a6:f8:a2:24:98:2e:a1: 11:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:E9:C4:61:D3:4D:45:B9:61:99:5D:51:89:49:A7:F1:88:2D:94:09 X509v3 Authority Key Identifier: keyid:A3:D7:3A:4E:9F:10:43:DE:3A:BF:4F:5E:D1:08:68:AF:6D:33:5B:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914A4A1/68CEC094955911EC84728736C4F9AE02/o9c6Tp8QQ946v09e0Qhor20zW_Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9c6Tp8QQ946v09e0Qhor20zW_Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914A4A1/68CEC094955911EC84728736C4F9AE02/o9c6Tp8QQ946v09e0Qhor20zW_Q.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:98:23:16:a5:68:57:02:cd:7d:ba:88:d7:38:45:93:b0:92: 65:1f:fb:27:ec:23:c1:5c:23:1e:57:77:72:1d:94:c8:f1:ca: 58:79:74:6f:cd:23:bc:c0:8f:27:e8:71:5b:10:37:be:95:d3: 36:83:c5:5d:60:cb:50:4b:16:5d:6b:37:78:0f:e7:43:75:48: d6:6d:23:bf:6c:76:44:60:8d:3e:c0:36:75:32:86:d4:f6:f1: 5e:57:c7:b2:f2:0e:49:90:df:f6:62:dc:cb:fd:e0:43:b3:99: ad:11:66:85:52:cf:d8:0e:f3:03:a4:6c:72:9b:6c:af:ac:50: 7f:76:43:17:08:dc:6e:46:4a:97:cc:3d:72:7d:29:43:80:91: ba:c7:63:d4:9a:3d:66:99:0a:1c:56:32:26:b6:20:45:af:05: 81:72:e7:15:ee:9b:67:ac:67:d0:f3:a0:9a:f2:da:57:7c:2b: d5:04:79:84:d9:fe:c6:01:ba:e5:58:27:95:4f:fa:c8:6f:5b: 45:a6:c5:bc:77:62:d0:8a:2c:86:1b:9e:99:19:72:e8:99:53: 83:45:9f:1c:9d:09:63:bb:1e:7f:c2:b2:2c:46:48:61:0b:f9: 2c:69:50:4a:53:a2:58:3d:03:e4:da:4d:cd:16:84:09:10:7b: d5:77:b7:40 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBEwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEE0QTExMTAvBgNVBAUTKEEzRDczQTRFOUYxMDQzREUzQUJGNEY1RUQxMDg2OEFG NkQzMzVCRjQwHhcNMjYwMzI0MjM1MzU2WhcNMjYwMzMxMjM1MzU2WjAYMRYwFAYD VQQDEw02OWMzMjQxNC03Nzc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAseaVM2m/eEBjathZxlY3dU8NwzZNzw3ubXMKYZ+LRu52aupeFV0bWuvL1DyD pTuur/9x0/gPu3ylPuZ+0bGh4SH4+cCPInreSQ9Q1HDaUFAPWqXzrbU0bAh0EXNO K7GtDPM+CCBzAumiZdkP2JdVcpf1j4LYclbjQCUx0nhaW6H5dhIjh8aXMXHqN9z2 V4LKiQlgd9EcLG4nXsgPK4ZLEaTbeFDeOIgP5OBQHY3Jzcv7DZwcWakBZTGQkilC 5tlOCRms0qV+sLOt6diwD6vQp+1gnJBv/nbbVbvqyjhodSfoy72cRoPWV2NilUvi GkGorR/aAlyNSab4oiSYLqERTwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLHpxGHT TUW5YZldUYlJp/GILZQJMB8GA1UdIwQYMBaAFKPXOk6fEEPeOr9PXtEIaK9tM1v0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QTRBMS82OENFQzA5NDk1 NTkxMUVDODQ3Mjg3MzZDNEY5QUUwMi9vOWM2VHA4UVE5NDZ2MDllMFFob3IyMHpX X1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL285YzZUcDhRUTk0NnYwOWUwUWhvcjIweldfUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QTRBMS82OENFQzA5NDk1NTkxMUVDODQ3Mjg3MzZDNEY5QUUwMi9vOWM2VHA4UVE5 NDZ2MDllMFFob3IyMHpXX1EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAHJgjFqVoVwLNfbqI1zhFk7CSZR/7J+wjwVwjHld3ch2UyPHKWHl0b80jvMCP J+hxWxA3vpXTNoPFXWDLUEsWXWs3eA/nQ3VI1m0jv2x2RGCNPsA2dTKG1PbxXlfH svIOSZDf9mLcy/3gQ7OZrRFmhVLP2A7zA6Rscptsr6xQf3ZDFwjcbkZKl8w9cn0p Q4CRusdj1Jo9ZpkKHFYyJrYgRa8FgXLnFe6bZ6xn0POgmvLaV3wr1QR5hNn+xgG6 5VgnlU/6yG9bRabFvHdi0IoshhuemRly6JlTg0WfHJ0JY7sef8KyLEZIYQv5LGlQ SlOiWD0D5NpNzRaECRB71Xe3QA== -----END CERTIFICATE-----Generated at Thu Mar 26 06:27:00 2026 by rpki-client