$ rpki-client -vvf rpki.apnic.net/member_repository/A916423B/DC49A5FA0AB211EE80B35537C4F9AE02/-AoX4Y4_OhL3UjNnLorGf4DlL98.mft File: -AoX4Y4_OhL3UjNnLorGf4DlL98.mft (raw, json) Hash identifier: bQfApam6OkN73X+jROMwtifo3NyQJMBWZu88BfZ2sf4= Subject key identifier: 01:02:45:94:B5:67:11:7F:FD:B0:F3:8A:B3:04:AE:A1:38:00:66:11 Authority key identifier: F8:0A:17:E1:8E:3F:3A:12:F7:52:33:67:2E:8A:C6:7F:80:E5:2F:DF Certificate issuer: /CN=A916423B/serialNumber=F80A17E18E3F3A12F75233672E8AC67F80E52FDF Certificate serial: 020F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-AoX4Y4_OhL3UjNnLorGf4DlL98.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916423B/DC49A5FA0AB211EE80B35537C4F9AE02/-AoX4Y4_OhL3UjNnLorGf4DlL98.mft Manifest number: 020A Signing time: Wed 25 Mar 2026 02:22:09 +0000 Manifest this update: Wed 25 Mar 2026 02:22:08 +0000 Manifest next update: Wed 01 Apr 2026 02:22:08 +0000 Files and hashes: 1: -AoX4Y4_OhL3UjNnLorGf4DlL98.crl (hash: rtDAFqhsYctZTatYpoDy7goTsbZswB6avG0i0u7RMgg=) 2: 593888C40AB811EE97CC7A32C4F9AE02.roa (hash: jKf/2MU5Ip9D+4pRX+4cB+cT7JgiaWNbV4ALOM87qH4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916423B/DC49A5FA0AB211EE80B35537C4F9AE02/-AoX4Y4_OhL3UjNnLorGf4DlL98.crl rsync://rpki.apnic.net/member_repository/A916423B/DC49A5FA0AB211EE80B35537C4F9AE02/-AoX4Y4_OhL3UjNnLorGf4DlL98.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-AoX4Y4_OhL3UjNnLorGf4DlL98.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 02:22:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 527 (0x20f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916423B, serialNumber=F80A17E18E3F3A12F75233672E8AC67F80E52FDF Validity Not Before: Mar 25 02:22:08 2026 GMT Not After : Apr 1 02:22:08 2026 GMT Subject: CN=69c346d1-e505 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:96:d1:75:14:c9:91:b7:62:87:46:b4:45:05: b2:f2:9d:c6:fc:29:7c:41:ed:b6:79:4c:06:c7:32: 42:90:67:e5:68:3b:06:7f:43:5c:4c:68:f0:39:43: e4:59:4d:1a:7c:ea:0c:96:94:4a:f1:12:a4:23:28: 88:30:60:09:a8:1c:99:1e:73:91:50:d2:9c:ef:ec: b5:79:3c:a3:7c:87:84:3c:66:4e:26:61:f8:2a:f0: d3:b2:ae:c6:02:40:d3:06:5e:31:cf:20:d7:a8:0d: 67:17:66:4a:73:d3:b5:16:64:75:3a:3e:a9:47:04: 12:11:a1:1f:4c:94:c7:d9:66:37:6d:d7:74:d6:ce: 34:08:1e:c5:49:ea:39:f4:4a:dd:75:b3:97:b3:2d: 7a:9b:6a:42:06:84:c6:ec:e3:87:d1:c7:0c:d5:d8: c0:e1:48:30:8a:70:34:72:6b:39:75:1b:d1:f5:35: 58:a2:9f:53:47:da:d0:a7:ae:0f:8e:29:14:19:c5: 36:b7:71:c0:81:e6:99:e7:4c:78:0f:be:79:bc:03: 99:81:6a:b9:f9:5a:0b:3c:a3:67:57:70:93:d5:46: 74:c8:20:36:ad:5c:1b:d8:bb:a2:a9:a6:3d:34:f0: 3f:93:12:02:70:a6:4b:33:47:8c:25:60:e3:78:37: 35:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:02:45:94:B5:67:11:7F:FD:B0:F3:8A:B3:04:AE:A1:38:00:66:11 X509v3 Authority Key Identifier: keyid:F8:0A:17:E1:8E:3F:3A:12:F7:52:33:67:2E:8A:C6:7F:80:E5:2F:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916423B/DC49A5FA0AB211EE80B35537C4F9AE02/-AoX4Y4_OhL3UjNnLorGf4DlL98.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-AoX4Y4_OhL3UjNnLorGf4DlL98.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916423B/DC49A5FA0AB211EE80B35537C4F9AE02/-AoX4Y4_OhL3UjNnLorGf4DlL98.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:8d:f3:7d:17:52:85:24:26:94:4b:92:85:f0:12:22:b9:4c: 7e:85:05:a2:ef:7c:68:2f:f4:ef:c7:bd:13:47:9a:f9:65:98: f0:bd:2a:38:19:05:83:c4:c3:53:4a:d3:78:c4:17:51:1a:59: 12:07:11:c7:d9:c3:7f:1e:c0:04:fc:d1:a9:aa:29:6a:50:5d: 39:8e:30:39:45:37:28:95:fc:b1:14:99:47:5f:86:c2:f8:b4: 6b:30:c8:d7:d3:7d:4f:6a:6d:a8:cf:d7:4b:79:fb:d8:07:6f: 07:2d:24:4f:2e:78:4e:01:66:48:f5:7d:93:2f:c4:23:83:9e: cf:11:04:e1:90:30:ac:ed:f7:0f:5a:bb:ab:bf:e1:dc:d5:ae: ee:44:42:9b:3a:1a:5c:8f:60:68:1c:bf:f3:2d:e8:d2:86:ba: 28:c0:38:e2:ce:e8:e5:c3:c2:db:25:bb:e6:3d:ae:d7:0f:6e: b9:66:1f:66:63:aa:2c:ac:f7:39:b4:3e:e6:83:af:33:7d:52: b7:51:5a:b1:25:3a:dc:ac:13:a3:36:3a:8a:a4:57:b8:b1:2d: 51:3d:94:8b:27:53:ab:4f:a5:2a:dc:4d:c2:91:0a:7d:20:9e: c7:f5:b0:67:b3:a5:b5:96:4a:15:a9:e2:aa:75:47:05:7a:9a: d7:65:e3:c1 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAg8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjQyM0IxMTAvBgNVBAUTKEY4MEExN0UxOEUzRjNBMTJGNzUyMzM2NzJFOEFDNjdG ODBFNTJGREYwHhcNMjYwMzI1MDIyMjA4WhcNMjYwNDAxMDIyMjA4WjAYMRYwFAYD VQQDEw02OWMzNDZkMS1lNTA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs5bRdRTJkbdih0a0RQWy8p3G/Cl8Qe22eUwGxzJCkGflaDsGf0NcTGjwOUPk WU0afOoMlpRK8RKkIyiIMGAJqByZHnORUNKc7+y1eTyjfIeEPGZOJmH4KvDTsq7G AkDTBl4xzyDXqA1nF2ZKc9O1FmR1Oj6pRwQSEaEfTJTH2WY3bdd01s40CB7FSeo5 9ErddbOXsy16m2pCBoTG7OOH0ccM1djA4UgwinA0cms5dRvR9TVYop9TR9rQp64P jikUGcU2t3HAgeaZ50x4D755vAOZgWq5+VoLPKNnV3CT1UZ0yCA2rVwb2LuiqaY9 NPA/kxICcKZLM0eMJWDjeDc1ZwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAECRZS1 ZxF//bDzirMErqE4AGYRMB8GA1UdIwQYMBaAFPgKF+GOPzoS91IzZy6Kxn+A5S/f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NDIzQi9EQzQ5QTVGQTBB QjIxMUVFODBCMzU1MzdDNEY5QUUwMi8tQW9YNFk0X09oTDNVak5uTG9yR2Y0RGxM OTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1Bb1g0WTRfT2hMM1VqTm5Mb3JHZjREbEw5OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NDIzQi9EQzQ5QTVGQTBBQjIxMUVFODBCMzU1MzdDNEY5QUUwMi8tQW9YNFk0X09o TDNVak5uTG9yR2Y0RGxMOTgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAPY3zfRdShSQmlEuShfASIrlMfoUFou98aC/078e9E0ea+WWY8L0qOBkFg8TD U0rTeMQXURpZEgcRx9nDfx7ABPzRqaopalBdOY4wOUU3KJX8sRSZR1+Gwvi0azDI 19N9T2ptqM/XS3n72AdvBy0kTy54TgFmSPV9ky/EI4OezxEE4ZAwrO33D1q7q7/h 3NWu7kRCmzoaXI9gaBy/8y3o0oa6KMA44s7o5cPC2yW75j2u1w9uuWYfZmOqLKz3 ObQ+5oOvM31St1FasSU63KwTozY6iqRXuLEtUT2UiydTq0+lKtxNwpEKfSCex/Ww Z7OltZZKFaniqnVHBXqa12XjwQ== -----END CERTIFICATE-----Generated at Thu Mar 26 10:53:19 2026 by rpki-client