$ rpki-client -vvf rpki.apnic.net/member_repository/A9165C64/425B423CFFA311E98735A685C4F9AE02/QOvCWgi6XnVBzhQtK8KK5Pgoiks.mft File: QOvCWgi6XnVBzhQtK8KK5Pgoiks.mft (raw, json) Hash identifier: pCLmfQtI1NMd1TTuDpdLhC6NZ+ABrSvedOVuVA0wX80= Subject key identifier: 5C:74:8D:AA:FE:0C:40:2D:F0:FF:B0:66:40:01:7C:5B:28:5A:B1:34 Authority key identifier: 40:EB:C2:5A:08:BA:5E:75:41:CE:14:2D:2B:C2:8A:E4:F8:28:8A:4B Certificate issuer: /CN=A9165C64/serialNumber=40EBC25A08BA5E7541CE142D2BC28AE4F8288A4B Certificate serial: 0D1F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOvCWgi6XnVBzhQtK8KK5Pgoiks.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165C64/425B423CFFA311E98735A685C4F9AE02/QOvCWgi6XnVBzhQtK8KK5Pgoiks.mft Manifest number: 0D0D Signing time: Tue 24 Mar 2026 17:59:01 +0000 Manifest this update: Tue 24 Mar 2026 17:59:01 +0000 Manifest next update: Tue 31 Mar 2026 17:59:01 +0000 Files and hashes: 1: QOvCWgi6XnVBzhQtK8KK5Pgoiks.crl (hash: PYvaRAKAy5fu2iEYxtacPxGOxo1ADWk0/Nn5QVAKz0E=) 2: FD9E07EAAB1111EF89574855C4F9AE02.roa (hash: 3bEt+BEL0/++S5Hn6XyvCpw2hPaq5SjA7QhpJ7kxSWM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165C64/425B423CFFA311E98735A685C4F9AE02/QOvCWgi6XnVBzhQtK8KK5Pgoiks.crl rsync://rpki.apnic.net/member_repository/A9165C64/425B423CFFA311E98735A685C4F9AE02/QOvCWgi6XnVBzhQtK8KK5Pgoiks.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOvCWgi6XnVBzhQtK8KK5Pgoiks.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 17:59:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3359 (0xd1f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165C64, serialNumber=40EBC25A08BA5E7541CE142D2BC28AE4F8288A4B Validity Not Before: Mar 24 17:59:01 2026 GMT Not After : Mar 31 17:59:01 2026 GMT Subject: CN=69c2d0e5-cfa3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:30:95:23:ff:ec:5f:c5:fe:2e:b2:cc:2a:c0: 79:6f:02:7e:18:b5:4d:05:cc:95:93:32:ef:e3:d4: c7:7f:0d:75:58:41:6c:7a:ed:b9:01:01:af:f7:98: fd:69:11:6e:4c:8b:a0:95:d9:e3:6d:fb:f6:d4:8c: a5:9d:c3:32:82:a1:18:f0:9a:a5:db:a9:fb:d4:22: b2:f2:4e:8e:12:43:f4:a9:3a:b8:6e:8c:e1:d7:ac: 92:38:e4:31:57:3d:a6:c4:92:c6:06:7f:65:fc:be: 68:37:d0:33:29:9c:2f:0d:94:dc:02:c2:f6:28:f9: a4:ff:0f:d9:3e:37:13:b7:1d:f6:6e:61:ec:45:48: 42:a1:06:f7:6d:1c:10:f1:37:53:6a:d2:c9:a3:88: 64:26:a9:df:bb:47:e5:e7:61:9b:b7:58:f8:b2:97: 2d:6e:65:ef:a6:bb:c3:5f:47:04:0e:d0:97:66:2f: 4f:38:e8:7e:93:52:72:03:2e:61:2d:7f:12:68:b4: d7:65:d3:8b:3b:c4:e0:e9:a9:36:fe:54:99:e8:08: 05:ac:75:22:48:ea:7d:67:da:7f:12:8d:36:90:97: a0:5e:9a:64:e9:99:0a:57:aa:6b:fa:a3:ab:33:c5: c9:5f:71:77:ab:9b:94:05:f0:e3:b7:e8:02:f2:ee: 7d:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:74:8D:AA:FE:0C:40:2D:F0:FF:B0:66:40:01:7C:5B:28:5A:B1:34 X509v3 Authority Key Identifier: keyid:40:EB:C2:5A:08:BA:5E:75:41:CE:14:2D:2B:C2:8A:E4:F8:28:8A:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165C64/425B423CFFA311E98735A685C4F9AE02/QOvCWgi6XnVBzhQtK8KK5Pgoiks.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOvCWgi6XnVBzhQtK8KK5Pgoiks.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165C64/425B423CFFA311E98735A685C4F9AE02/QOvCWgi6XnVBzhQtK8KK5Pgoiks.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:a9:bf:92:66:72:e9:1d:a3:b6:f5:d9:87:28:57:1e:24:00: 4f:8a:74:7a:71:17:d7:0a:90:df:21:b6:62:80:e9:00:84:3e: 18:97:e5:ab:e9:79:3b:8b:dd:d8:76:bd:ea:c3:d2:ca:92:4e: 03:2b:29:4b:f1:c9:dd:7a:63:ee:04:91:f9:51:23:f5:30:32: be:1c:0b:82:61:05:5a:dd:08:68:14:6c:59:d3:44:4c:57:fb: ab:a1:cd:83:56:49:ae:4a:5d:38:4c:56:2e:c5:13:e2:e4:67: bc:c1:2d:fc:d8:b1:7e:a5:26:9a:3e:39:53:5b:ed:ca:9f:3c: c9:f5:3d:3e:08:77:ad:5e:db:54:23:24:af:05:ca:ed:93:6e: 42:24:00:af:ad:d5:c0:26:83:30:d7:43:2e:1a:c2:60:b5:db: 5e:f2:6d:f3:23:e3:13:16:2a:0e:61:4f:f7:60:be:ed:a4:a5: ae:16:00:ea:67:63:b0:ae:f2:b3:f3:f6:7c:3a:da:06:65:82: ea:6e:cc:55:67:0b:70:3c:a9:cf:92:c0:01:77:8c:94:1e:e1: ae:49:24:1b:81:15:fb:65:db:43:d5:d5:91:81:22:82:e9:b4: 6f:da:5f:34:ec:24:59:10:4a:d2:90:ec:fd:45:35:dd:ce:5f: 04:80:ae:df -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDR8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjVDNjQxMTAvBgNVBAUTKDQwRUJDMjVBMDhCQTVFNzU0MUNFMTQyRDJCQzI4QUU0 RjgyODhBNEIwHhcNMjYwMzI0MTc1OTAxWhcNMjYwMzMxMTc1OTAxWjAYMRYwFAYD VQQDEw02OWMyZDBlNS1jZmEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7TCVI//sX8X+LrLMKsB5bwJ+GLVNBcyVkzLv49THfw11WEFseu25AQGv95j9 aRFuTIugldnjbfv21IylncMygqEY8Jql26n71CKy8k6OEkP0qTq4bozh16ySOOQx Vz2mxJLGBn9l/L5oN9AzKZwvDZTcAsL2KPmk/w/ZPjcTtx32bmHsRUhCoQb3bRwQ 8TdTatLJo4hkJqnfu0fl52Gbt1j4spctbmXvprvDX0cEDtCXZi9POOh+k1JyAy5h LX8SaLTXZdOLO8Tg6ak2/lSZ6AgFrHUiSOp9Z9p/Eo02kJegXppk6ZkKV6pr+qOr M8XJX3F3q5uUBfDjt+gC8u59AwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFx0jar+ DEAt8P+wZkABfFsoWrE0MB8GA1UdIwQYMBaAFEDrwloIul51Qc4ULSvCiuT4KIpL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NUM2NC80MjVCNDIzQ0ZG QTMxMUU5ODczNUE2ODVDNEY5QUUwMi9RT3ZDV2dpNlhuVkJ6aFF0SzhLSzVQZ29p a3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FPdkNXZ2k2WG5WQnpoUXRLOEtLNVBnb2lrcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NUM2NC80MjVCNDIzQ0ZGQTMxMUU5ODczNUE2ODVDNEY5QUUwMi9RT3ZDV2dpNlhu VkJ6aFF0SzhLSzVQZ29pa3MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAn6m/kmZy6R2jtvXZhyhXHiQAT4p0enEX1wqQ3yG2YoDpAIQ+GJflq+l5O4vd 2Ha96sPSypJOAyspS/HJ3Xpj7gSR+VEj9TAyvhwLgmEFWt0IaBRsWdNETFf7q6HN g1ZJrkpdOExWLsUT4uRnvMEt/NixfqUmmj45U1vtyp88yfU9Pgh3rV7bVCMkrwXK 7ZNuQiQAr63VwCaDMNdDLhrCYLXbXvJt8yPjExYqDmFP92C+7aSlrhYA6mdjsK7y s/P2fDraBmWC6m7MVWcLcDypz5LAAXeMlB7hrkkkG4EV+2XbQ9XVkYEigum0b9pf NOwkWRBK0pDs/UU13c5fBICu3w== -----END CERTIFICATE-----Generated at Thu Mar 26 15:31:21 2026 by rpki-client