$ rpki-client -vvf rpki.apnic.net/member_repository/A9163824/BA0EFE52FD2511E49D93273BC4F9AE02/cnOFPaBj78uOxUSwMg1acHuUwIk.mft File: cnOFPaBj78uOxUSwMg1acHuUwIk.mft (raw, json) Hash identifier: P5yP+VuzISgI1RZDkloTzdzUGxEpOfBURRcEPXAZG7E= Subject key identifier: FD:FD:40:A0:0E:84:8A:2C:9C:E5:DE:EC:E1:C7:BB:B3:CB:0F:CA:0D Authority key identifier: 72:73:85:3D:A0:63:EF:CB:8E:C5:44:B0:32:0D:5A:70:7B:94:C0:89 Certificate issuer: /CN=A9163824/serialNumber=7273853DA063EFCB8EC544B0320D5A707B94C089 Certificate serial: 07B7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cnOFPaBj78uOxUSwMg1acHuUwIk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9163824/BA0EFE52FD2511E49D93273BC4F9AE02/cnOFPaBj78uOxUSwMg1acHuUwIk.mft Manifest number: 2E3A Signing time: Tue 24 Mar 2026 15:37:45 +0000 Manifest this update: Tue 24 Mar 2026 15:37:44 +0000 Manifest next update: Tue 31 Mar 2026 15:37:44 +0000 Files and hashes: 1: cnOFPaBj78uOxUSwMg1acHuUwIk.crl (hash: USNqYQ8hP1UPIFq52709cpNqKgSDJbCIdArZaErZRVY=) 2: 4BB610C2E16511EC8EDF6621C4F9AE02.roa (hash: V2s04hpKMBAVv/lJnUKiNjyWl7KXuZCsoHa55XAdO8M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9163824/BA0EFE52FD2511E49D93273BC4F9AE02/cnOFPaBj78uOxUSwMg1acHuUwIk.crl rsync://rpki.apnic.net/member_repository/A9163824/BA0EFE52FD2511E49D93273BC4F9AE02/cnOFPaBj78uOxUSwMg1acHuUwIk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cnOFPaBj78uOxUSwMg1acHuUwIk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 15:37:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1975 (0x7b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9163824, serialNumber=7273853DA063EFCB8EC544B0320D5A707B94C089 Validity Not Before: Mar 24 15:37:44 2026 GMT Not After : Mar 31 15:37:44 2026 GMT Subject: CN=69c2afc9-097d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:d2:00:a2:07:0e:f4:2e:02:58:f6:0b:c2:6b: f5:65:77:83:ef:58:70:4e:f3:ef:ef:c5:74:4b:52: 03:cb:88:66:df:e2:a5:4b:7a:00:30:93:6f:fa:a4: be:9d:39:07:0a:eb:2a:ba:65:65:7c:13:3c:36:c9: 96:95:09:be:e5:cf:de:7c:78:fe:3f:aa:a6:10:76: 24:e1:72:18:95:ca:87:de:df:2d:24:86:49:10:89: 18:fb:58:6f:d3:5e:2e:09:80:f3:f8:bf:31:4a:5d: 2d:cc:f4:67:9a:92:bb:f8:42:de:40:ea:8a:80:60: 93:cb:a0:c1:7e:cb:3e:fa:dc:36:a8:72:81:26:a3: 0a:0a:fb:f9:7a:d6:53:dd:1c:c9:89:5a:78:ab:3b: 41:bf:f3:96:2e:51:49:9f:50:26:93:74:17:4a:a5: 49:e4:40:f2:ca:65:0b:34:94:62:40:09:d4:85:48: 16:b8:37:ac:d6:68:80:1b:38:87:c3:bd:42:cd:09: 05:11:f8:4d:8c:98:51:57:c5:69:47:6f:30:76:63: 27:b4:72:c5:d2:01:3a:12:cd:7d:56:3e:a6:17:d5: 9b:44:cb:98:fc:26:c6:04:74:f1:81:bd:f4:fe:7c: 7a:b3:73:07:28:a1:ce:42:59:14:de:82:44:1f:03: e1:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:FD:40:A0:0E:84:8A:2C:9C:E5:DE:EC:E1:C7:BB:B3:CB:0F:CA:0D X509v3 Authority Key Identifier: keyid:72:73:85:3D:A0:63:EF:CB:8E:C5:44:B0:32:0D:5A:70:7B:94:C0:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9163824/BA0EFE52FD2511E49D93273BC4F9AE02/cnOFPaBj78uOxUSwMg1acHuUwIk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cnOFPaBj78uOxUSwMg1acHuUwIk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9163824/BA0EFE52FD2511E49D93273BC4F9AE02/cnOFPaBj78uOxUSwMg1acHuUwIk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c3:f7:6c:eb:07:8c:04:12:a7:a9:c6:36:aa:42:bf:3c:42:9d: 89:69:f0:f2:67:30:2e:3e:bc:9c:29:bd:a3:23:80:22:08:4f: 49:1e:69:f7:7a:7f:9d:94:87:69:90:54:4e:1a:90:f5:82:2c: 1a:07:16:5f:aa:88:90:ac:02:1a:a3:68:7e:c6:9a:93:0f:3f: 5a:45:6a:8e:39:87:25:06:49:d7:56:df:6d:bc:cb:38:c2:96: 80:fc:a7:e0:35:b2:35:df:65:03:cc:b1:00:3c:13:9e:2b:29: 6b:84:8d:d0:32:45:e1:b7:6f:0f:6a:83:cc:c2:44:3e:c8:68: ea:84:86:4f:1f:8b:fc:c6:c0:00:8f:52:f4:d7:74:4c:db:62: d7:18:72:43:85:c5:6b:57:6f:2b:23:d3:d3:ad:aa:aa:54:e1: 6c:93:a0:19:6d:89:f6:64:72:5f:32:f9:83:b8:46:b5:e6:a6: db:b6:35:e7:1d:78:51:74:b3:7d:09:06:aa:8b:4f:70:71:37: a9:d8:d9:c9:99:b8:eb:80:c5:c5:ab:30:3f:97:c0:6b:1a:e6: 2f:85:9f:99:e9:c6:fc:fa:67:10:42:db:8b:64:53:2c:0a:19: 25:5d:33:2b:6b:f5:a8:80:97:a4:ce:3e:54:6d:d2:27:14:39: bc:12:d2:1e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICB7cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjM4MjQxMTAvBgNVBAUTKDcyNzM4NTNEQTA2M0VGQ0I4RUM1NDRCMDMyMEQ1QTcw N0I5NEMwODkwHhcNMjYwMzI0MTUzNzQ0WhcNMjYwMzMxMTUzNzQ0WjAYMRYwFAYD VQQDEw02OWMyYWZjOS0wOTdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzdIAogcO9C4CWPYLwmv1ZXeD71hwTvPv78V0S1IDy4hm3+KlS3oAMJNv+qS+ nTkHCusqumVlfBM8NsmWlQm+5c/efHj+P6qmEHYk4XIYlcqH3t8tJIZJEIkY+1hv 014uCYDz+L8xSl0tzPRnmpK7+ELeQOqKgGCTy6DBfss++tw2qHKBJqMKCvv5etZT 3RzJiVp4qztBv/OWLlFJn1Amk3QXSqVJ5EDyymULNJRiQAnUhUgWuDes1miAGziH w71CzQkFEfhNjJhRV8VpR28wdmMntHLF0gE6Es19Vj6mF9WbRMuY/CbGBHTxgb30 /nx6s3MHKKHOQlkU3oJEHwPhbQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFP39QKAO hIosnOXe7OHHu7PLD8oNMB8GA1UdIwQYMBaAFHJzhT2gY+/LjsVEsDINWnB7lMCJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MzgyNC9CQTBFRkU1MkZE MjUxMUU0OUQ5MzI3M0JDNEY5QUUwMi9jbk9GUGFCajc4dU94VVN3TWcxYWNIdVV3 SWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NuT0ZQYUJqNzh1T3hVU3dNZzFhY0h1VXdJay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MzgyNC9CQTBFRkU1MkZEMjUxMUU0OUQ5MzI3M0JDNEY5QUUwMi9jbk9GUGFCajc4 dU94VVN3TWcxYWNIdVV3SWsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAw/ds6weMBBKnqcY2qkK/PEKdiWnw8mcwLj68nCm9oyOAIghPSR5p93p/nZSH aZBUThqQ9YIsGgcWX6qIkKwCGqNofsaakw8/WkVqjjmHJQZJ11bfbbzLOMKWgPyn 4DWyNd9lA8yxADwTnispa4SN0DJF4bdvD2qDzMJEPsho6oSGTx+L/MbAAI9S9Nd0 TNti1xhyQ4XFa1dvKyPT062qqlThbJOgGW2J9mRyXzL5g7hGteam27Y15x14UXSz fQkGqotPcHE3qdjZyZm464DFxaswP5fAaxrmL4WfmenG/PpnEELbi2RTLAoZJV0z K2v1qICXpM4+VG3SJxQ5vBLSHg== -----END CERTIFICATE-----Generated at Thu Mar 26 16:55:10 2026 by rpki-client