$ rpki-client -vvf rpki.apnic.net/member_repository/A9160D0A/564A135ED22211ED9A206C46C4F9AE02/rGOF7VY-H9amaz5LUQ3MaTDNSww.mft File: rGOF7VY-H9amaz5LUQ3MaTDNSww.mft (raw, json) Hash identifier: TNfaX63sleLaqPsuNqM0W9AoQIv8iDTLn+J/3lV+lYA= Subject key identifier: 52:E9:31:04:9F:1C:6C:F4:D7:15:68:EF:10:BF:C3:E8:6B:87:5A:82 Authority key identifier: AC:63:85:ED:56:3E:1F:D6:A6:6B:3E:4B:51:0D:CC:69:30:CD:4B:0C Certificate issuer: /CN=A9160D0A/serialNumber=AC6385ED563E1FD6A66B3E4B510DCC6930CD4B0C Certificate serial: 0262 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rGOF7VY-H9amaz5LUQ3MaTDNSww.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9160D0A/564A135ED22211ED9A206C46C4F9AE02/rGOF7VY-H9amaz5LUQ3MaTDNSww.mft Manifest number: 0240 Signing time: Wed 25 Mar 2026 02:01:53 +0000 Manifest this update: Wed 25 Mar 2026 02:01:53 +0000 Manifest next update: Wed 01 Apr 2026 02:01:53 +0000 Files and hashes: 1: rGOF7VY-H9amaz5LUQ3MaTDNSww.crl (hash: npBye8yU6hglkN01u5gYgZ2oqIRMJJkHNGXhaLRcMjw=) 2: 096A1DB6D2BA11ED8E06CC13C4F9AE02.roa (hash: xjJh+3SCJ/mrp3JYArjRvZVJMzUf7HfzNFOkj330dzY=) 3: 42EC5F02D2B711EDAF6DC017C4F9AE02.roa (hash: pkC+D8p7TNYzPBnocLkHTaXfdgtNXvj2i4jRd1Gl3NY=) 4: D1EAA18CD2BC11ED9E7A9A1BC4F9AE02.roa (hash: s27t8mzFE7pAO+YQ8b7HEZWkopZAKcG8DRX9E1bRajo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9160D0A/564A135ED22211ED9A206C46C4F9AE02/rGOF7VY-H9amaz5LUQ3MaTDNSww.crl rsync://rpki.apnic.net/member_repository/A9160D0A/564A135ED22211ED9A206C46C4F9AE02/rGOF7VY-H9amaz5LUQ3MaTDNSww.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rGOF7VY-H9amaz5LUQ3MaTDNSww.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 02:01:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 610 (0x262) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9160D0A, serialNumber=AC6385ED563E1FD6A66B3E4B510DCC6930CD4B0C Validity Not Before: Mar 25 02:01:53 2026 GMT Not After : Apr 1 02:01:53 2026 GMT Subject: CN=69c34211-6211 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:dd:dd:06:d4:a0:37:22:ab:45:ab:b4:b3:4f: 7e:86:57:98:1e:5d:82:0c:c3:07:a9:9c:ff:1d:f3: a9:14:74:82:cc:fb:15:90:bb:5e:a8:90:fd:b8:d5: 11:ac:01:b0:83:c5:30:b2:d6:4a:fb:b8:34:9c:37: fd:c0:be:ce:45:19:95:a9:33:55:4c:02:a3:84:27: 59:72:33:9e:bd:1d:bc:8b:c5:70:c3:90:b0:11:1a: f5:11:f3:8a:6b:2e:f1:45:33:70:27:36:b3:8c:fc: fb:06:68:16:39:c5:62:5c:76:c0:a6:79:1f:34:aa: fc:3d:9a:fd:74:de:75:16:f5:94:4c:e3:23:2f:17: c6:a9:70:0f:71:87:eb:97:b5:0e:dd:25:ff:37:e1: 44:31:8d:bb:06:ef:ad:c1:25:c5:69:39:87:ad:1b: 1d:68:43:af:9e:0b:3c:83:4a:44:90:de:37:3e:73: e4:25:03:c7:2e:47:df:c5:99:41:f6:a9:81:cc:c7: a8:00:d3:46:2e:ff:6c:8f:61:82:59:28:47:fc:f4: 67:42:1a:1d:63:90:92:46:6b:bc:06:58:7e:81:e7: 26:b1:24:70:1e:e8:ca:e4:29:e0:7b:48:b0:cf:72: da:4b:ed:52:fe:57:99:17:19:82:6f:ce:bf:9a:45: 60:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:E9:31:04:9F:1C:6C:F4:D7:15:68:EF:10:BF:C3:E8:6B:87:5A:82 X509v3 Authority Key Identifier: keyid:AC:63:85:ED:56:3E:1F:D6:A6:6B:3E:4B:51:0D:CC:69:30:CD:4B:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9160D0A/564A135ED22211ED9A206C46C4F9AE02/rGOF7VY-H9amaz5LUQ3MaTDNSww.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rGOF7VY-H9amaz5LUQ3MaTDNSww.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160D0A/564A135ED22211ED9A206C46C4F9AE02/rGOF7VY-H9amaz5LUQ3MaTDNSww.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:b2:54:1f:f2:f4:8c:db:79:2e:84:6c:5d:92:d3:77:d0:70: 10:86:1a:bb:60:6e:53:cd:a1:26:c9:61:2d:d0:26:d8:86:7c: 64:c2:72:eb:83:93:48:40:59:79:0e:d0:59:85:29:66:77:92: 29:ed:26:5f:08:f4:8b:bb:34:d7:ea:5c:ee:d4:a1:91:b2:52: 44:e7:1d:c1:64:32:88:30:a5:a8:88:81:c0:d8:74:42:7d:cd: 10:c5:52:f1:87:7f:8a:b3:4e:2b:3a:38:ae:ac:8d:03:bb:58: 84:34:39:23:86:b8:71:01:2e:45:46:65:73:eb:78:69:79:65: 4b:30:6e:70:90:29:7d:f1:14:d5:49:ad:69:f1:0d:d9:ed:c1: 9f:3a:ad:57:2a:09:3c:63:a6:bd:77:1b:53:fe:80:5e:54:a0: 89:70:76:e3:da:52:f7:72:ce:22:6b:2c:7b:44:c3:fb:14:9e: 54:53:c0:53:78:25:50:b9:b7:94:4d:0e:b1:b8:35:b6:33:30: 60:4e:ac:66:e0:4e:ea:e4:5e:42:96:91:80:18:83:8c:47:1d: 19:35:f2:a7:ca:8c:f3:fe:70:04:a5:d2:0f:2f:1d:bf:f8:1a: ad:6d:c0:7e:77:94:96:28:d7:03:ce:b0:07:48:03:18:19:c9: a6:65:81:d4 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAmIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjBEMEExMTAvBgNVBAUTKEFDNjM4NUVENTYzRTFGRDZBNjZCM0U0QjUxMERDQzY5 MzBDRDRCMEMwHhcNMjYwMzI1MDIwMTUzWhcNMjYwNDAxMDIwMTUzWjAYMRYwFAYD VQQDEw02OWMzNDIxMS02MjExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0d3dBtSgNyKrRau0s09+hleYHl2CDMMHqZz/HfOpFHSCzPsVkLteqJD9uNUR rAGwg8UwstZK+7g0nDf9wL7ORRmVqTNVTAKjhCdZcjOevR28i8Vww5CwERr1EfOK ay7xRTNwJzazjPz7BmgWOcViXHbApnkfNKr8PZr9dN51FvWUTOMjLxfGqXAPcYfr l7UO3SX/N+FEMY27Bu+twSXFaTmHrRsdaEOvngs8g0pEkN43PnPkJQPHLkffxZlB 9qmBzMeoANNGLv9sj2GCWShH/PRnQhodY5CSRmu8Blh+gecmsSRwHujK5Cnge0iw z3LaS+1S/leZFxmCb86/mkVgDwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFLpMQSf HGz01xVo7xC/w+hrh1qCMB8GA1UdIwQYMBaAFKxjhe1WPh/Wpms+S1ENzGkwzUsM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MEQwQS81NjRBMTM1RUQy MjIxMUVEOUEyMDZDNDZDNEY5QUUwMi9yR09GN1ZZLUg5YW1hejVMVVEzTWFURE5T d3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JHT0Y3VlktSDlhbWF6NUxVUTNNYVRETlN3dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MEQwQS81NjRBMTM1RUQyMjIxMUVEOUEyMDZDNDZDNEY5QUUwMi9yR09GN1ZZLUg5 YW1hejVMVVEzTWFURE5Td3cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAhbJUH/L0jNt5LoRsXZLTd9BwEIYau2BuU82hJslhLdAm2IZ8ZMJy64OTSEBZ eQ7QWYUpZneSKe0mXwj0i7s01+pc7tShkbJSROcdwWQyiDClqIiBwNh0Qn3NEMVS 8Yd/irNOKzo4rqyNA7tYhDQ5I4a4cQEuRUZlc+t4aXllSzBucJApffEU1UmtafEN 2e3BnzqtVyoJPGOmvXcbU/6AXlSgiXB249pS93LOImsse0TD+xSeVFPAU3glULm3 lE0Osbg1tjMwYE6sZuBO6uReQpaRgBiDjEcdGTXyp8qM8/5wBKXSDy8dv/garW3A fneUlijXA86wB0gDGBnJpmWB1A== -----END CERTIFICATE-----Generated at Thu Mar 26 15:28:33 2026 by rpki-client