$ rpki-client -vvf rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.mft File: 1OMXbLn0iT50xOgF-n-12QpKewo.mft (raw, json) Hash identifier: 09JlVvPlkp+9jK+o3bo08YahOGLhJIOunQymqBiJffs= Subject key identifier: 73:07:13:E6:FF:3E:52:98:9C:68:E6:32:F4:6A:9F:7F:6C:32:BD:5E Authority key identifier: D4:E3:17:6C:B9:F4:89:3E:74:C4:E8:05:FA:7F:B5:D9:0A:4A:7B:0A Certificate issuer: /CN=A9154AFB/serialNumber=D4E3176CB9F4893E74C4E805FA7FB5D90A4A7B0A Certificate serial: 17DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1OMXbLn0iT50xOgF-n-12QpKewo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.mft Manifest number: 17C8 Signing time: Tue 24 Mar 2026 16:28:15 +0000 Manifest this update: Tue 24 Mar 2026 16:28:14 +0000 Manifest next update: Tue 31 Mar 2026 16:28:14 +0000 Files and hashes: 1: 1OMXbLn0iT50xOgF-n-12QpKewo.crl (hash: f1sVqlvw6LYbpV6yBXIE7xlUskWDHOR3mX3l0vtvF7U=) 2: 81368CD6594B11EE924DCC64C4F9AE02.roa (hash: uUcprOeIeycDQ3Jf3Ku14FN2jhUWJP1tQvvTnmQc7Vs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.crl rsync://rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1OMXbLn0iT50xOgF-n-12QpKewo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 16:28:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6110 (0x17de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154AFB, serialNumber=D4E3176CB9F4893E74C4E805FA7FB5D90A4A7B0A Validity Not Before: Mar 24 16:28:14 2026 GMT Not After : Mar 31 16:28:14 2026 GMT Subject: CN=69c2bb9f-3cf4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:00:ea:c5:bb:17:2a:5f:b2:1a:50:72:eb:a8: 58:82:95:5a:79:bb:1e:ef:75:c4:e2:86:78:27:98: b2:4f:f9:1f:9a:2f:c2:97:b4:3d:c2:ce:ce:b0:58: e6:82:a7:75:1a:d5:73:10:6e:4a:21:eb:58:40:03: ee:f3:7b:a9:80:20:43:09:77:7b:12:b2:73:73:de: 10:85:8b:ff:2c:34:3b:25:62:ce:b3:a9:0c:38:88: 45:3a:15:04:fc:2c:b1:28:d0:5d:36:9f:8d:cd:e6: 21:ed:ee:06:73:7a:fd:7f:e6:a9:8d:22:4e:80:42: 81:ad:d5:30:14:52:e0:cb:76:dd:2f:6a:4e:f2:b4: 31:ce:6a:68:a4:81:c0:27:b6:42:27:e0:35:5d:bd: 4b:6c:84:3e:bb:8f:33:20:3f:65:52:0e:14:91:f3: cc:b9:f6:7f:2d:f7:45:3d:5f:8b:f6:9e:74:bb:10: 25:5c:ae:03:7d:0d:e7:d9:fe:22:6b:a2:a4:0a:cf: 2f:62:22:b5:12:21:7c:43:ce:ba:d5:63:fd:4a:89: 20:4c:96:81:ff:ee:38:4e:2a:3b:09:cf:1c:cb:a6: 76:5c:c2:11:28:3b:ab:c0:70:6e:4f:de:36:51:35: cc:4e:07:42:04:23:b3:7e:d4:ed:6a:16:1c:74:55: a2:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:07:13:E6:FF:3E:52:98:9C:68:E6:32:F4:6A:9F:7F:6C:32:BD:5E X509v3 Authority Key Identifier: keyid:D4:E3:17:6C:B9:F4:89:3E:74:C4:E8:05:FA:7F:B5:D9:0A:4A:7B:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1OMXbLn0iT50xOgF-n-12QpKewo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:c9:0b:be:a3:df:59:29:50:91:a3:9e:ec:96:6e:18:d5:2e: 08:01:77:8a:69:8c:c2:78:81:51:92:d5:a1:88:b6:a0:b4:d2: 2e:c7:99:04:3c:98:c9:97:0f:52:ac:a5:b4:83:62:74:b5:a5: 30:fe:01:8d:05:a7:f2:3e:1e:c5:60:6e:77:89:35:23:67:4a: 02:a8:b2:86:95:65:73:6a:2a:21:48:7c:6f:51:b7:e9:2f:d9: fd:f5:b6:fa:b0:1f:18:cf:3b:f5:a9:ed:57:aa:81:01:98:00: 50:65:ef:07:24:91:45:6f:79:74:6f:50:e5:0f:a8:d2:50:2d: 88:09:c6:f3:7d:d2:28:75:01:0a:f2:cf:74:41:df:e7:88:06: c3:80:be:8f:5a:38:e4:68:f6:c5:6e:a1:cc:66:bf:e9:b8:0c: b8:c1:5b:9b:72:1b:21:85:50:f9:aa:f5:a5:68:38:87:6b:30: 10:1d:84:57:6d:2d:e5:b8:d3:52:6c:6d:91:1f:ea:dd:68:e4: 4a:12:25:59:ff:7d:65:6f:de:2f:67:e5:1c:e6:b5:e6:04:c8: e9:24:07:ea:2a:7d:54:ff:69:9e:71:8b:77:58:75:28:a5:da: 6c:5e:5f:a8:c9:4f:09:54:31:9e:07:6e:5a:ce:21:c4:a5:46: 5b:3b:44:f6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICF94wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTRBRkIxMTAvBgNVBAUTKEQ0RTMxNzZDQjlGNDg5M0U3NEM0RTgwNUZBN0ZCNUQ5 MEE0QTdCMEEwHhcNMjYwMzI0MTYyODE0WhcNMjYwMzMxMTYyODE0WjAYMRYwFAYD VQQDEw02OWMyYmI5Zi0zY2Y0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2QDqxbsXKl+yGlBy66hYgpVaebse73XE4oZ4J5iyT/kfmi/Cl7Q9ws7OsFjm gqd1GtVzEG5KIetYQAPu83upgCBDCXd7ErJzc94QhYv/LDQ7JWLOs6kMOIhFOhUE /CyxKNBdNp+NzeYh7e4Gc3r9f+apjSJOgEKBrdUwFFLgy3bdL2pO8rQxzmpopIHA J7ZCJ+A1Xb1LbIQ+u48zID9lUg4UkfPMufZ/LfdFPV+L9p50uxAlXK4DfQ3n2f4i a6KkCs8vYiK1EiF8Q8661WP9SokgTJaB/+44Tio7Cc8cy6Z2XMIRKDurwHBuT942 UTXMTgdCBCOzftTtahYcdFWiXQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHMHE+b/ PlKYnGjmMvRqn39sMr1eMB8GA1UdIwQYMBaAFNTjF2y59Ik+dMToBfp/tdkKSnsK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NEFGQi83OEEwNEU0Q0Uz MkYxMUU3QjZDRUQ0MkZDNEY5QUUwMi8xT01YYkxuMGlUNTB4T2dGLW4tMTJRcEtl d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFPTVhiTG4waVQ1MHhPZ0Ytbi0xMlFwS2V3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NEFGQi83OEEwNEU0Q0UzMkYxMUU3QjZDRUQ0MkZDNEY5QUUwMi8xT01YYkxuMGlU NTB4T2dGLW4tMTJRcEtld28ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAPskLvqPfWSlQkaOe7JZuGNUuCAF3immMwniBUZLVoYi2oLTSLseZBDyYyZcP UqyltINidLWlMP4BjQWn8j4exWBud4k1I2dKAqiyhpVlc2oqIUh8b1G36S/Z/fW2 +rAfGM879antV6qBAZgAUGXvBySRRW95dG9Q5Q+o0lAtiAnG833SKHUBCvLPdEHf 54gGw4C+j1o45Gj2xW6hzGa/6bgMuMFbm3IbIYVQ+ar1pWg4h2swEB2EV20t5bjT UmxtkR/q3WjkShIlWf99ZW/eL2flHOa15gTI6SQH6ip9VP9pnnGLd1h1KKXabF5f qMlPCVQxngduWs4hxKVGWztE9g== -----END CERTIFICATE-----Generated at Thu Mar 26 05:54:12 2026 by rpki-client