$ rpki-client -vvf rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.mft File: o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.mft (raw, json) Hash identifier: 3gu2shjIA6Ep45SrBu5B57ET8K0xNOGXbFCm7Oicfw4= Subject key identifier: 11:02:E2:86:32:9A:AA:D3:32:17:C8:E1:26:4C:93:BA:34:D8:C1:4C Authority key identifier: A3:B1:64:81:B5:D6:C1:79:FC:0B:73:AE:1E:0E:53:DE:96:76:41:DC Certificate issuer: /CN=A9158877/serialNumber=A3B16481B5D6C179FC0B73AE1E0E53DE967641DC Certificate serial: 0671 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.mft Manifest number: 0660 Signing time: Tue 12 May 2026 22:43:42 +0000 Manifest this update: Tue 12 May 2026 22:43:42 +0000 Manifest next update: Tue 19 May 2026 22:43:42 +0000 Files and hashes: 1: o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.crl (hash: BCG/kQou8gzcqt5A9ATIQtIPKsgQ2Qrt+w5paCbFIS8=) 2: DD21ADFACA7311EBAA6E0567C4F9AE02.roa (hash: kYZQI102gULrlo6M+q/iNg80nEai3K/GkCEv6GP+lLg=) 3: 931EBB586D6E11EE8AF4BF30C4F9AE02.roa (hash: S1RgP1sPgVzK9sEPPWrODClUauDomS2mHohtTS+ssYc=) 4: 58C1F4C06E2211EE98839C33C4F9AE02.roa (hash: +HKXGlrTWculTJ/ZbtVGZJnoqCsus/FX3Sf4l+Mr3Ho=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.crl rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 19:57:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1649 (0x671) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158877, serialNumber=A3B16481B5D6C179FC0B73AE1E0E53DE967641DC Validity Not Before: May 12 22:43:42 2026 GMT Not After : May 19 22:43:42 2026 GMT Subject: CN=6a03ad1e-cb84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:e2:79:28:48:05:89:ec:b8:4e:7c:93:a5:6f: 65:3a:db:de:06:70:72:a8:05:fa:6c:b9:ee:8d:52: c5:25:a1:a3:64:b2:ef:6b:79:b6:6d:4c:90:26:ac: 89:cc:38:49:96:8d:4f:54:1e:04:db:85:5a:32:84: 3f:20:a3:1b:74:02:60:ec:3a:a1:ec:1e:b7:74:a6: ad:5f:0b:bd:95:fd:d4:ba:43:a0:cf:7a:29:04:8d: 05:c2:bc:d7:e8:28:eb:d8:85:6c:ff:2c:8c:d5:25: 5f:62:56:2f:a4:54:8f:70:cd:89:41:b9:e1:e9:dc: b6:73:66:a5:64:d3:35:8d:bc:e4:31:c8:34:b6:a5: 8a:65:fd:64:87:d3:2d:11:2d:50:9e:48:97:6b:4e: 50:64:44:b8:dc:3a:54:6e:4d:d8:94:99:4b:95:25: f7:ed:21:e8:5f:e3:2a:6c:c6:8b:41:65:b5:15:e6: 4d:2f:90:c3:99:cb:e7:74:6b:62:1a:e5:13:82:14: c4:76:44:6d:a3:d2:8e:4b:a3:9f:c0:7d:de:77:5c: 30:d6:96:45:42:a6:38:7d:eb:f6:ed:e3:2f:c3:d7: 94:90:a4:42:8f:2e:7f:ff:e3:ae:11:97:a8:07:7d: 42:33:97:48:31:bb:02:7b:75:0b:9e:71:0e:80:19: 19:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:02:E2:86:32:9A:AA:D3:32:17:C8:E1:26:4C:93:BA:34:D8:C1:4C X509v3 Authority Key Identifier: keyid:A3:B1:64:81:B5:D6:C1:79:FC:0B:73:AE:1E:0E:53:DE:96:76:41:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:ab:a5:14:62:7f:ef:b2:0f:8f:a6:ca:8d:c5:4f:b0:99:a9: 94:0b:28:d1:dc:c4:52:11:ef:50:41:1a:9c:25:d4:0b:ff:a6: 59:22:38:e6:01:ef:83:ec:7f:db:51:ef:df:ca:48:27:7f:28: 6f:46:7e:ac:79:1b:29:71:44:0d:2b:45:8b:c8:4c:b1:a8:0d: de:e5:b2:8a:55:f1:2b:47:22:2e:03:5f:3e:9c:3e:c6:2f:37: e5:c7:11:d5:76:1b:51:f1:bf:00:e7:0b:9f:f2:75:39:d9:ff: df:70:70:f7:65:5a:98:e3:5e:8b:5f:da:15:89:40:b2:d8:d6: 63:65:11:74:e5:bc:55:65:b6:34:3e:ea:5c:49:bd:75:a7:3e: 04:6d:d6:41:4e:da:5d:48:15:69:12:71:5e:ef:16:83:ab:a8: ef:f7:a6:f3:78:32:44:ad:85:93:53:7f:38:92:d8:b5:7f:f9: 93:d3:1f:38:e3:61:8c:1f:18:dc:6a:c7:db:ec:1b:cc:dd:25: bd:25:f5:1d:62:d9:ed:52:89:cf:78:a9:64:a9:71:06:42:63: 40:1a:71:fa:ce:51:bf:c3:a9:8c:b0:a9:04:91:71:15:ac:d5: 4d:17:a6:fe:b9:8f:e4:b1:3f:1e:f9:7e:5e:e4:a3:ee:dd:2b: 98:dd:c7:98 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBnEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg4NzcxMTAvBgNVBAUTKEEzQjE2NDgxQjVENkMxNzlGQzBCNzNBRTFFMEU1M0RF OTY3NjQxREMwHhcNMjYwNTEyMjI0MzQyWhcNMjYwNTE5MjI0MzQyWjAYMRYwFAYD VQQDEw02YTAzYWQxZS1jYjg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAluJ5KEgFiey4TnyTpW9lOtveBnByqAX6bLnujVLFJaGjZLLva3m2bUyQJqyJ zDhJlo1PVB4E24VaMoQ/IKMbdAJg7Dqh7B63dKatXwu9lf3UukOgz3opBI0FwrzX 6Cjr2IVs/yyM1SVfYlYvpFSPcM2JQbnh6dy2c2alZNM1jbzkMcg0tqWKZf1kh9Mt ES1QnkiXa05QZES43DpUbk3YlJlLlSX37SHoX+MqbMaLQWW1FeZNL5DDmcvndGti GuUTghTEdkRto9KOS6OfwH3ed1ww1pZFQqY4fev27eMvw9eUkKRCjy5//+OuEZeo B31CM5dIMbsCe3ULnnEOgBkZzQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBEC4oYy mqrTMhfI4SZMk7o02MFMMB8GA1UdIwQYMBaAFKOxZIG11sF5/Atzrh4OU96WdkHc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODg3Ny9GMDU4NThCOENB NzAxMUVCQTlEMkRDNjFDNEY5QUUwMi9vN0ZrZ2JYV3dYbjhDM091SGc1VDNwWjJR ZHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL283RmtnYlhXd1huOEMzT3VIZzVUM3BaMlFkdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODg3Ny9GMDU4NThCOENBNzAxMUVCQTlEMkRDNjFDNEY5QUUwMi9vN0ZrZ2JYV3dY bjhDM091SGc1VDNwWjJRZHcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAI6ulFGJ/77IPj6bKjcVPsJmplAso0dzEUhHvUEEanCXUC/+mWSI45gHvg+x/ 21Hv38pIJ38ob0Z+rHkbKXFEDStFi8hMsagN3uWyilXxK0ciLgNfPpw+xi835ccR 1XYbUfG/AOcLn/J1Odn/33Bw92VamONei1/aFYlAstjWY2URdOW8VWW2ND7qXEm9 dac+BG3WQU7aXUgVaRJxXu8Wg6uo7/em83gyRK2Fk1N/OJLYtX/5k9MfOONhjB8Y 3GrH2+wbzN0lvSX1HWLZ7VKJz3ipZKlxBkJjQBpx+s5Rv8OpjLCpBJFxFazVTRem /rmP5LE/Hvl+XuSj7t0rmN3HmA== -----END CERTIFICATE-----Generated at Wed May 13 01:42:45 2026 by rpki-client