$ rpki-client -vvf rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.mft File: OqWspVx7NeP5Iru42qsdfYhw43M.mft (raw, json) Hash identifier: vfi/WkMwzKzAQsZxwqQ6VJRThlJuabtLhQwD3jbMDe8= Subject key identifier: E4:06:C1:C0:A9:BD:4D:4A:97:A9:EE:D4:F7:B9:9C:1C:88:DD:28:62 Authority key identifier: 3A:A5:AC:A5:5C:7B:35:E3:F9:22:BB:B8:DA:AB:1D:7D:88:70:E3:73 Certificate issuer: /CN=A915A533/serialNumber=3AA5ACA55C7B35E3F922BBB8DAAB1D7D8870E373 Certificate serial: 0221 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OqWspVx7NeP5Iru42qsdfYhw43M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.mft Manifest number: 021A Signing time: Wed 25 Mar 2026 02:14:21 +0000 Manifest this update: Wed 25 Mar 2026 02:14:21 +0000 Manifest next update: Wed 01 Apr 2026 02:14:21 +0000 Files and hashes: 1: OqWspVx7NeP5Iru42qsdfYhw43M.crl (hash: N/Oh+vadp+O0c6i83dy3dbOvF/tcdNiHfCqOHAvxbFA=) 2: 052E6FBAF9F511EDB2CAA636C4F9AE02.roa (hash: PQd/8cl7exmw5LNAxBVE8+5SKezKc679UfwN3IJFrBs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.crl rsync://rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OqWspVx7NeP5Iru42qsdfYhw43M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 02:14:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 545 (0x221) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A533, serialNumber=3AA5ACA55C7B35E3F922BBB8DAAB1D7D8870E373 Validity Not Before: Mar 25 02:14:21 2026 GMT Not After : Apr 1 02:14:21 2026 GMT Subject: CN=69c344fd-fe6e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:d8:d4:10:cd:94:08:ba:93:2f:52:c7:c0:bd: a2:68:33:1e:5e:0d:66:56:43:e7:58:fc:68:92:ed: 6f:23:b5:4a:32:8e:7f:b2:0f:e7:19:a2:e6:89:ee: 8e:00:81:d9:c6:7d:22:c8:fa:c8:1b:1a:9d:4b:9f: 5f:20:24:dc:95:13:c1:87:3a:98:14:59:d7:5a:73: b3:05:a9:fa:d2:34:4c:ac:ec:1d:73:09:6e:36:4d: 65:49:32:c8:e9:fa:b3:b1:32:d3:73:68:a4:0a:c6: 75:36:c4:ad:b2:e8:a5:29:2c:5b:27:39:76:dc:20: 33:14:aa:5f:9f:31:3a:82:dc:71:78:d4:bd:09:d4: 73:e6:dc:cd:5e:04:13:2a:6a:7f:f0:5a:c8:b7:09: eb:80:fb:71:35:c4:2e:7b:0a:fe:87:6e:b7:00:43: a0:ad:c3:d0:cb:29:b8:56:4a:b2:7a:69:65:6d:51: 4f:73:0d:87:df:86:72:f7:d6:18:5d:bb:8a:82:84: 71:d9:89:9e:18:6b:43:1b:84:2e:a9:cd:1e:34:c6: 2d:02:37:07:55:f0:3b:0a:f3:39:d2:29:38:69:49: 88:cf:e0:24:08:98:87:16:2e:da:dd:14:51:57:fb: 82:0f:a4:12:9d:bc:d4:4a:c7:70:1e:13:f5:5c:6e: 5b:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:06:C1:C0:A9:BD:4D:4A:97:A9:EE:D4:F7:B9:9C:1C:88:DD:28:62 X509v3 Authority Key Identifier: keyid:3A:A5:AC:A5:5C:7B:35:E3:F9:22:BB:B8:DA:AB:1D:7D:88:70:E3:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OqWspVx7NeP5Iru42qsdfYhw43M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:bd:7c:5f:50:c8:0c:f0:7b:07:1e:ff:44:3a:c2:88:89:0a: 66:37:fd:91:6c:74:99:7e:49:19:90:dd:2e:bb:f6:bd:b0:35: 7f:56:d1:ee:cd:ad:50:01:ac:d7:02:91:39:62:cc:7a:74:bc: 3e:af:14:ce:c6:2e:a7:99:c1:07:a8:69:1b:20:93:90:fb:53: e3:54:57:8a:7b:df:ca:de:14:d7:a1:a0:22:7f:7d:9b:02:b2: 99:02:3e:70:4d:e7:ad:2a:42:3b:44:a8:12:a7:78:9c:15:9c: be:69:f3:93:26:39:19:86:ec:d4:53:14:a2:4e:66:0c:44:11: 33:f3:4d:cf:b2:0b:7b:3d:29:63:13:27:b7:f8:3d:45:2f:dd: c8:0c:cf:7a:ca:b1:5c:17:82:db:b2:ec:17:78:b0:90:f3:d7: 8a:64:8e:01:58:5e:0d:a6:8c:b3:16:48:19:b8:81:bf:46:a9: 6a:c5:6d:3c:c4:e7:84:03:b2:bd:b4:54:33:86:f6:54:e7:c2: 27:f7:a5:5b:7d:5d:a6:5e:10:de:be:4a:ce:f7:ac:55:04:c1: 51:46:15:58:f2:a2:0d:6d:41:1d:9b:f1:b9:d9:fc:66:f1:c6: f8:d6:ab:32:d1:0e:68:ef:80:6f:17:aa:3b:f7:43:8d:e6:33: cf:36:8a:47 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAiEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUE1MzMxMTAvBgNVBAUTKDNBQTVBQ0E1NUM3QjM1RTNGOTIyQkJCOERBQUIxRDdE ODg3MEUzNzMwHhcNMjYwMzI1MDIxNDIxWhcNMjYwNDAxMDIxNDIxWjAYMRYwFAYD VQQDEw02OWMzNDRmZC1mZTZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAktjUEM2UCLqTL1LHwL2iaDMeXg1mVkPnWPxoku1vI7VKMo5/sg/nGaLmie6O AIHZxn0iyPrIGxqdS59fICTclRPBhzqYFFnXWnOzBan60jRMrOwdcwluNk1lSTLI 6fqzsTLTc2ikCsZ1NsStsuilKSxbJzl23CAzFKpfnzE6gtxxeNS9CdRz5tzNXgQT Kmp/8FrItwnrgPtxNcQuewr+h263AEOgrcPQyym4VkqyemllbVFPcw2H34Zy99YY XbuKgoRx2YmeGGtDG4Quqc0eNMYtAjcHVfA7CvM50ik4aUmIz+AkCJiHFi7a3RRR V/uCD6QSnbzUSsdwHhP1XG5bfQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOQGwcCp vU1Kl6nu1Pe5nByI3ShiMB8GA1UdIwQYMBaAFDqlrKVcezXj+SK7uNqrHX2IcONz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTUzMy80MDI5OTc4QUY4 N0QxMUVEOTRGMTdDNTdDNEY5QUUwMi9PcVdzcFZ4N05lUDVJcnU0MnFzZGZZaHc0 M00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09xV3NwVng3TmVQNUlydTQycXNkZllodzQzTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QTUzMy80MDI5OTc4QUY4N0QxMUVEOTRGMTdDNTdDNEY5QUUwMi9PcVdzcFZ4N05l UDVJcnU0MnFzZGZZaHc0M00ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAmr18X1DIDPB7Bx7/RDrCiIkKZjf9kWx0mX5JGZDdLrv2vbA1f1bR7s2tUAGs 1wKROWLMenS8Pq8UzsYup5nBB6hpGyCTkPtT41RXinvfyt4U16GgIn99mwKymQI+ cE3nrSpCO0SoEqd4nBWcvmnzkyY5GYbs1FMUok5mDEQRM/NNz7ILez0pYxMnt/g9 RS/dyAzPesqxXBeC27LsF3iwkPPXimSOAVheDaaMsxZIGbiBv0apasVtPMTnhAOy vbRUM4b2VOfCJ/elW31dpl4Q3r5KzvesVQTBUUYVWPKiDW1BHZvxudn8ZvHG+Nar MtEOaO+AbxeqO/dDjeYzzzaKRw== -----END CERTIFICATE-----Generated at Thu Mar 26 12:43:20 2026 by rpki-client