$ rpki-client -vvf rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.mft File: o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.mft (raw, json) Hash identifier: zrbIv0hOR0xqxHvoUy5PqIIWshoHG2DrylumB7SoPV4= Subject key identifier: 56:17:A3:4A:94:21:37:F5:7D:2A:97:BC:A0:E2:00:C2:BB:39:26:D3 Authority key identifier: A3:B1:64:81:B5:D6:C1:79:FC:0B:73:AE:1E:0E:53:DE:96:76:41:DC Certificate issuer: /CN=A9158877/serialNumber=A3B16481B5D6C179FC0B73AE1E0E53DE967641DC Certificate serial: 0659 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.mft Manifest number: 0648 Signing time: Thu 26 Mar 2026 22:32:32 +0000 Manifest this update: Thu 26 Mar 2026 22:32:32 +0000 Manifest next update: Thu 02 Apr 2026 22:32:32 +0000 Files and hashes: 1: o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.crl (hash: oY0+ic58IDfo5UpaVMZWVgSmPb6xcI/P4E4qipc7Uwo=) 2: DD21ADFACA7311EBAA6E0567C4F9AE02.roa (hash: kYZQI102gULrlo6M+q/iNg80nEai3K/GkCEv6GP+lLg=) 3: 931EBB586D6E11EE8AF4BF30C4F9AE02.roa (hash: S1RgP1sPgVzK9sEPPWrODClUauDomS2mHohtTS+ssYc=) 4: 58C1F4C06E2211EE98839C33C4F9AE02.roa (hash: +HKXGlrTWculTJ/ZbtVGZJnoqCsus/FX3Sf4l+Mr3Ho=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.crl rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 22:32:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1625 (0x659) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158877, serialNumber=A3B16481B5D6C179FC0B73AE1E0E53DE967641DC Validity Not Before: Mar 26 22:32:32 2026 GMT Not After : Apr 2 22:32:32 2026 GMT Subject: CN=69c5b400-bc30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:fe:c1:ce:63:6e:f1:32:7e:48:36:a1:c0:2c: 29:83:5e:26:c2:df:4e:74:fe:65:15:2c:9d:ee:74: fa:23:dd:3b:b3:75:c0:c3:e6:6d:32:b9:a3:aa:61: 31:6b:db:29:58:c3:19:60:86:1b:e3:8e:33:82:21: b9:eb:70:0f:cd:e0:87:1a:35:96:89:81:19:7e:96: 4d:70:22:3b:87:bc:59:88:d4:8f:4b:29:c6:bd:80: 83:5a:74:51:b4:c8:da:29:85:85:5a:33:81:cd:e5: 7c:5a:f0:e5:b9:91:00:71:6a:52:e3:ee:8b:9b:49: 5b:04:2c:f4:fd:f0:c9:33:f9:d4:0a:b6:ad:d4:26: c8:b6:aa:1a:37:19:57:11:c6:b9:bc:c2:60:34:3e: b3:8a:80:b5:fe:70:d2:1a:d3:c4:bf:b1:72:c0:59: c7:5b:c2:11:73:41:8e:c1:b2:78:fa:8d:19:fb:48: 97:50:d6:57:15:94:6b:73:ba:88:fa:6c:25:0e:d3: 77:ae:91:e3:b3:70:3f:f9:b8:02:58:f8:da:b0:95: ed:e1:fb:02:09:b3:41:a2:ed:dc:5a:ba:df:4f:8b: 1a:05:c5:71:fd:76:e5:58:9a:4f:63:0f:65:82:39: 99:7e:60:2d:01:b8:5e:1a:0f:04:66:cf:79:ba:5c: 02:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:17:A3:4A:94:21:37:F5:7D:2A:97:BC:A0:E2:00:C2:BB:39:26:D3 X509v3 Authority Key Identifier: keyid:A3:B1:64:81:B5:D6:C1:79:FC:0B:73:AE:1E:0E:53:DE:96:76:41:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:cf:68:08:a4:ed:f9:44:af:d0:6b:5d:ec:24:a5:1b:47:78: 45:3e:09:59:79:5f:cc:84:d4:ee:c4:3d:ce:74:3d:8b:18:3e: 02:8b:ed:f9:b1:59:f7:58:71:f1:cf:6b:0d:4e:b4:58:b9:3a: 12:46:62:ce:be:ae:10:89:64:8e:a6:90:bb:a5:8f:8a:1a:4d: c3:7c:7c:af:92:43:44:8f:02:e8:bf:a5:c7:06:7b:f8:bc:32: f3:79:df:69:98:a3:50:10:68:42:77:01:2f:50:99:2a:77:19: c2:fa:9f:a2:25:87:5d:2a:9e:a8:71:1a:b1:b3:e5:d2:d2:40: 5c:0a:1c:0f:07:a3:ac:8a:1d:ac:2e:e1:d6:b6:36:d6:1a:14: bf:27:3e:d5:bc:de:49:fe:44:27:09:f2:ba:f1:e5:33:40:c2: 8f:cf:8b:dc:92:3c:12:a1:74:ed:2b:8e:09:82:68:bf:93:d3: 2c:d0:b8:42:58:04:18:cb:c6:05:9c:b2:10:a7:c0:e9:bf:4b: 6b:de:e3:39:7b:2d:23:d2:a3:29:6f:a2:61:14:e0:e4:b8:7f: 5f:78:da:65:11:3d:b0:07:a7:e8:7a:24:ed:0d:5d:81:d5:88: d3:e2:57:f5:a4:81:c2:47:c1:f1:bb:ee:af:f5:ac:f9:1a:21: 92:8b:62:12 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBlkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg4NzcxMTAvBgNVBAUTKEEzQjE2NDgxQjVENkMxNzlGQzBCNzNBRTFFMEU1M0RF OTY3NjQxREMwHhcNMjYwMzI2MjIzMjMyWhcNMjYwNDAyMjIzMjMyWjAYMRYwFAYD VQQDEw02OWM1YjQwMC1iYzMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqf7BzmNu8TJ+SDahwCwpg14mwt9OdP5lFSyd7nT6I907s3XAw+ZtMrmjqmEx a9spWMMZYIYb444zgiG563APzeCHGjWWiYEZfpZNcCI7h7xZiNSPSynGvYCDWnRR tMjaKYWFWjOBzeV8WvDluZEAcWpS4+6Lm0lbBCz0/fDJM/nUCrat1CbItqoaNxlX Eca5vMJgND6zioC1/nDSGtPEv7FywFnHW8IRc0GOwbJ4+o0Z+0iXUNZXFZRrc7qI +mwlDtN3rpHjs3A/+bgCWPjasJXt4fsCCbNBou3cWrrfT4saBcVx/XblWJpPYw9l gjmZfmAtAbheGg8EZs95ulwCqwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFYXo0qU ITf1fSqXvKDiAMK7OSbTMB8GA1UdIwQYMBaAFKOxZIG11sF5/Atzrh4OU96WdkHc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODg3Ny9GMDU4NThCOENB NzAxMUVCQTlEMkRDNjFDNEY5QUUwMi9vN0ZrZ2JYV3dYbjhDM091SGc1VDNwWjJR ZHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL283RmtnYlhXd1huOEMzT3VIZzVUM3BaMlFkdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODg3Ny9GMDU4NThCOENBNzAxMUVCQTlEMkRDNjFDNEY5QUUwMi9vN0ZrZ2JYV3dY bjhDM091SGc1VDNwWjJRZHcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAIM9oCKTt+USv0Gtd7CSlG0d4RT4JWXlfzITU7sQ9znQ9ixg+Aovt+bFZ91hx 8c9rDU60WLk6EkZizr6uEIlkjqaQu6WPihpNw3x8r5JDRI8C6L+lxwZ7+Lwy83nf aZijUBBoQncBL1CZKncZwvqfoiWHXSqeqHEasbPl0tJAXAocDwejrIodrC7h1rY2 1hoUvyc+1bzeSf5EJwnyuvHlM0DCj8+L3JI8EqF07SuOCYJov5PTLNC4QlgEGMvG BZyyEKfA6b9La97jOXstI9KjKW+iYRTg5Lh/X3jaZRE9sAen6Hok7Q1dgdWI0+JX 9aSBwkfB8bvur/Ws+RohkotiEg== -----END CERTIFICATE-----Generated at Sat Mar 28 10:42:18 2026 by rpki-client