$ rpki-client -vvf rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.mft File: o9JQxdUsWorGe6AhiE0ZGl1KcYI.mft (raw, json) Hash identifier: wpkelxHZY3/Two/I7z7cYO5trAwk0cTkyWPhHZwc9RA= Subject key identifier: CE:21:B9:56:58:F9:3F:0B:44:32:D2:07:86:98:37:25:CD:8F:5D:B9 Authority key identifier: A3:D2:50:C5:D5:2C:5A:8A:C6:7B:A0:21:88:4D:19:1A:5D:4A:71:82 Certificate issuer: /CN=A914F6AF/serialNumber=A3D250C5D52C5A8AC67BA021884D191A5D4A7182 Certificate serial: 0274 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9JQxdUsWorGe6AhiE0ZGl1KcYI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.mft Manifest number: 026E Signing time: Wed 25 Mar 2026 01:26:02 +0000 Manifest this update: Wed 25 Mar 2026 01:26:01 +0000 Manifest next update: Wed 01 Apr 2026 01:26:01 +0000 Files and hashes: 1: o9JQxdUsWorGe6AhiE0ZGl1KcYI.crl (hash: +Wx2JyMv+TayD4tXLu9q8fBmlxkLVUnYiToVrmYQi7M=) 2: CCCA3842714711EDBB61A87FC4F9AE02.roa (hash: dQes4cKEo3vqUyE4KHkW1L+GW6dnJAq7VF/ynzV3hTs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.crl rsync://rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9JQxdUsWorGe6AhiE0ZGl1KcYI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 01:26:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 628 (0x274) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F6AF, serialNumber=A3D250C5D52C5A8AC67BA021884D191A5D4A7182 Validity Not Before: Mar 25 01:26:01 2026 GMT Not After : Apr 1 01:26:01 2026 GMT Subject: CN=69c339a9-1e50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:71:52:f2:64:f4:ba:dc:04:7a:02:0d:06:f3: ae:59:57:b8:9f:4b:09:94:e0:45:50:9c:e6:7c:2b: 5d:d5:d2:2c:fe:f3:9e:67:ab:fa:48:19:a3:b7:4c: e1:e3:f2:f8:a4:f7:93:48:7d:7e:a8:42:83:9d:c0: 84:42:5b:e5:c3:eb:58:e2:51:4f:41:55:ac:89:12: c0:8d:c9:a4:a4:eb:a7:88:5d:9e:9f:12:50:38:b6: e4:ac:86:bb:71:72:2a:49:d8:38:0e:c3:19:bf:31: 85:5a:fe:7d:2e:32:f8:3d:1b:85:38:04:86:a7:c7: ef:d6:12:f9:ee:b0:06:93:5d:1d:e4:19:7e:a5:a1: 57:ab:4b:e7:95:11:58:26:71:bb:05:86:2c:16:a2: c0:63:13:91:e9:79:b7:1e:d0:4d:a5:33:98:96:8f: 97:62:85:e5:68:1c:b1:de:5d:92:84:7a:c2:c1:7d: 35:19:e0:60:8f:49:c2:8b:e7:0b:b2:65:61:75:f3: 10:5d:cf:98:08:35:44:18:aa:41:c8:b9:9c:f4:fc: c3:9f:62:b1:28:fd:2a:57:9a:02:2e:8a:54:38:20: e7:2e:58:bc:bd:9d:2b:01:e3:e5:cf:eb:bb:ed:75: 0b:71:71:10:af:30:05:a3:25:b9:de:8d:cb:9a:1e: 84:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:21:B9:56:58:F9:3F:0B:44:32:D2:07:86:98:37:25:CD:8F:5D:B9 X509v3 Authority Key Identifier: keyid:A3:D2:50:C5:D5:2C:5A:8A:C6:7B:A0:21:88:4D:19:1A:5D:4A:71:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9JQxdUsWorGe6AhiE0ZGl1KcYI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:9a:4f:3d:2c:1b:0c:64:e0:c4:c2:59:1d:39:ad:65:a0:2a: 9d:88:a3:21:f3:75:3e:bb:e9:82:37:9d:ab:58:68:cc:a1:04: 9e:17:b8:b0:9d:10:18:a9:19:3c:88:a9:cf:75:6b:19:0b:54: 35:91:50:a6:0a:b5:49:da:d3:7d:11:57:4d:90:60:7e:48:ba: 84:4f:57:fa:b3:96:43:77:e1:fc:26:63:4f:c5:8b:4e:f3:9a: f4:78:34:94:9f:01:83:d9:20:26:b6:f1:5a:e5:d3:53:c5:a1: 1b:19:81:dd:ef:f4:94:33:76:84:05:90:ad:17:2d:ab:bd:7e: 90:b1:be:13:56:8c:bc:70:fd:1e:19:a7:51:58:51:d1:2c:83: f7:9d:f8:37:73:aa:1f:68:57:bd:40:b1:51:11:d8:b7:28:cb: 03:37:31:f9:67:00:05:e0:e7:57:dd:17:c6:62:5e:8b:59:93: 24:05:4f:32:04:0d:9c:e9:d1:8e:c5:00:74:25:29:10:2d:00: 20:a8:31:d4:ae:81:7f:7f:38:7b:f2:a4:55:4d:eb:b7:4d:fb: 37:1e:d4:54:8f:9d:58:a7:93:7f:f9:47:b6:74:0a:99:32:bd: 97:da:d1:98:e4:0c:6e:d8:5e:c1:4d:40:c3:09:73:7e:98:be: b0:4f:34:b1 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAnQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEY2QUYxMTAvBgNVBAUTKEEzRDI1MEM1RDUyQzVBOEFDNjdCQTAyMTg4NEQxOTFB NUQ0QTcxODIwHhcNMjYwMzI1MDEyNjAxWhcNMjYwNDAxMDEyNjAxWjAYMRYwFAYD VQQDEw02OWMzMzlhOS0xZTUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0HFS8mT0utwEegINBvOuWVe4n0sJlOBFUJzmfCtd1dIs/vOeZ6v6SBmjt0zh 4/L4pPeTSH1+qEKDncCEQlvlw+tY4lFPQVWsiRLAjcmkpOuniF2enxJQOLbkrIa7 cXIqSdg4DsMZvzGFWv59LjL4PRuFOASGp8fv1hL57rAGk10d5Bl+paFXq0vnlRFY JnG7BYYsFqLAYxOR6Xm3HtBNpTOYlo+XYoXlaByx3l2ShHrCwX01GeBgj0nCi+cL smVhdfMQXc+YCDVEGKpByLmc9PzDn2KxKP0qV5oCLopUOCDnLli8vZ0rAePlz+u7 7XULcXEQrzAFoyW53o3Lmh6ERQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFM4huVZY +T8LRDLSB4aYNyXNj125MB8GA1UdIwQYMBaAFKPSUMXVLFqKxnugIYhNGRpdSnGC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RjZBRi9GNkQ4REE5Qzcx NDQxMUVEOUZERjNEMTJDNEY5QUUwMi9vOUpReGRVc1dvckdlNkFoaUUwWkdsMUtj WUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL285SlF4ZFVzV29yR2U2QWhpRTBaR2wxS2NZSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RjZBRi9GNkQ4REE5QzcxNDQxMUVEOUZERjNEMTJDNEY5QUUwMi9vOUpReGRVc1dv ckdlNkFoaUUwWkdsMUtjWUkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEABZpPPSwbDGTgxMJZHTmtZaAqnYijIfN1Prvpgjedq1hozKEEnhe4sJ0QGKkZ PIipz3VrGQtUNZFQpgq1SdrTfRFXTZBgfki6hE9X+rOWQ3fh/CZjT8WLTvOa9Hg0 lJ8Bg9kgJrbxWuXTU8WhGxmB3e/0lDN2hAWQrRctq71+kLG+E1aMvHD9HhmnUVhR 0SyD9534N3OqH2hXvUCxURHYtyjLAzcx+WcABeDnV90XxmJei1mTJAVPMgQNnOnR jsUAdCUpEC0AIKgx1K6Bf384e/KkVU3rt037Nx7UVI+dWKeTf/lHtnQKmTK9l9rR mOQMbthewU1Awwlzfpi+sE80sQ== -----END CERTIFICATE-----Generated at Thu Mar 26 05:39:20 2026 by rpki-client