$ rpki-client -vvf rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.mft File: -oEfUuUZWkKdcG0ZwAMjfDIJqjc.mft (raw, json) Hash identifier: Yz0R+FSF0rG1j47jW5C4r/MDtzWSlRllty9xptbZw2g= Subject key identifier: F5:B8:96:35:81:D1:F2:0E:E6:66:09:AE:49:17:84:69:3F:DF:6B:63 Authority key identifier: FA:81:1F:52:E5:19:5A:42:9D:70:6D:19:C0:03:23:7C:32:09:AA:37 Certificate issuer: /CN=A9167CB5/serialNumber=FA811F52E5195A429D706D19C003237C3209AA37 Certificate serial: 0158 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.mft Manifest number: 0153 Signing time: Wed 25 Mar 2026 04:18:33 +0000 Manifest this update: Wed 25 Mar 2026 04:18:33 +0000 Manifest next update: Wed 01 Apr 2026 04:18:33 +0000 Files and hashes: 1: -oEfUuUZWkKdcG0ZwAMjfDIJqjc.crl (hash: xOOTy+oSdIvGqPgkJ0YtcgeHn4ibr7TMO6O9n+IEVf0=) 2: D16A1B5C225711EF975F6747C4F9AE02.roa (hash: Cs2Nng8ExkKcdkzE5LqEYG6YI921OCl1yRvK1flrw98=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.crl rsync://rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:18:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 344 (0x158) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167CB5, serialNumber=FA811F52E5195A429D706D19C003237C3209AA37 Validity Not Before: Mar 25 04:18:33 2026 GMT Not After : Apr 1 04:18:33 2026 GMT Subject: CN=69c36219-ad10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:ee:d2:c0:b8:66:7d:bc:cc:c9:40:7f:7d:cd: 21:f8:f2:56:fc:9f:88:4b:09:01:e0:89:80:a2:f1: c6:49:76:29:23:61:55:d2:0b:ad:11:ab:2a:16:26: 95:56:61:5d:ef:cc:03:95:18:af:3b:b2:77:c7:c4: b2:04:ae:f2:8d:f2:91:a5:63:4b:af:8a:2a:41:03: c5:ae:ca:9b:84:8b:73:13:1b:70:9b:10:c0:23:4e: ea:cb:3b:07:6f:21:56:dc:99:b1:15:0a:4a:5e:23: 4e:e0:7f:a5:6a:bc:a0:56:e2:37:9b:2f:1a:21:00: fd:5e:15:48:b1:73:e6:ce:0b:6d:da:ff:83:0f:ec: f5:06:af:20:ef:82:03:1e:0c:39:fe:eb:dc:39:d8: 4d:0d:01:25:05:1e:72:1f:a5:97:7b:54:ad:81:99: 1a:3d:b6:ec:af:c1:01:eb:f3:3e:eb:85:e0:64:78: 9c:4b:50:de:e7:e1:d0:74:5f:45:99:bd:f1:57:44: 46:43:bc:af:19:03:6d:6f:a7:9d:a1:0b:02:10:0d: 89:6b:5b:cc:1d:1d:47:9f:88:1b:c3:bc:bd:b6:3f: 80:a6:ea:39:7e:3a:97:0d:0e:ca:a4:18:6a:26:0d: 40:f8:db:1a:5f:ac:1f:fd:d7:b8:c2:76:a4:f4:8b: 7b:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:B8:96:35:81:D1:F2:0E:E6:66:09:AE:49:17:84:69:3F:DF:6B:63 X509v3 Authority Key Identifier: keyid:FA:81:1F:52:E5:19:5A:42:9D:70:6D:19:C0:03:23:7C:32:09:AA:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:79:f2:55:9a:23:ac:04:1c:63:df:73:ed:5d:c2:03:a7:8f: 54:d8:75:82:52:c8:22:bc:ab:0c:4f:3d:95:6f:5d:93:fd:ad: c4:c8:ae:fb:d4:31:5c:55:af:2e:cc:f9:6a:56:5c:29:e6:d3: 4b:df:51:a0:6e:7a:f1:91:3a:9d:ac:25:b3:28:6f:99:84:2b: aa:f5:f1:44:dd:a7:f4:e5:7d:b8:25:57:16:d1:e5:da:9f:66: 90:8e:07:24:0d:58:f1:25:57:55:f5:79:52:63:75:7d:90:ef: f1:02:83:e4:a3:2c:c6:49:c4:98:f0:0b:8f:7c:58:cc:e2:bd: 09:d7:a8:8d:57:94:64:f3:57:a3:7a:6b:07:f1:4b:12:b4:52: 20:f0:36:f9:8d:3b:08:17:99:71:75:ca:0e:25:cd:fe:85:d0: 50:16:93:c3:6d:eb:2f:cf:24:96:37:e2:0f:9b:0d:9b:90:28: 51:fe:87:99:8d:6b:13:e7:73:37:cb:0d:3e:69:31:90:ff:6a: bd:74:b8:4e:65:52:1c:59:a4:9c:68:8f:d0:b1:a1:c9:9c:29: ef:7f:75:fc:70:d8:d3:1c:fb:b0:37:5a:c9:27:70:4c:3f:2d: d1:5d:0a:ec:7b:06:ad:92:91:2f:cc:e8:0a:06:42:ba:be:2f: 9c:c2:66:0e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAVgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdDQjUxMTAvBgNVBAUTKEZBODExRjUyRTUxOTVBNDI5RDcwNkQxOUMwMDMyMzdD MzIwOUFBMzcwHhcNMjYwMzI1MDQxODMzWhcNMjYwNDAxMDQxODMzWjAYMRYwFAYD VQQDEw02OWMzNjIxOS1hZDEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzO7SwLhmfbzMyUB/fc0h+PJW/J+ISwkB4ImAovHGSXYpI2FV0gutEasqFiaV VmFd78wDlRivO7J3x8SyBK7yjfKRpWNLr4oqQQPFrsqbhItzExtwmxDAI07qyzsH byFW3JmxFQpKXiNO4H+larygVuI3my8aIQD9XhVIsXPmzgtt2v+DD+z1Bq8g74ID Hgw5/uvcOdhNDQElBR5yH6WXe1StgZkaPbbsr8EB6/M+64XgZHicS1De5+HQdF9F mb3xV0RGQ7yvGQNtb6edoQsCEA2Ja1vMHR1Hn4gbw7y9tj+Apuo5fjqXDQ7KpBhq Jg1A+NsaX6wf/de4wnak9It71QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPW4ljWB 0fIO5mYJrkkXhGk/32tjMB8GA1UdIwQYMBaAFPqBH1LlGVpCnXBtGcADI3wyCao3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0NCNS9GQTM3QzYzRTIy NTYxMUVGQjc1NjFGNDZDNEY5QUUwMi8tb0VmVXVVWldrS2RjRzBad0FNamZESUpx amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1vRWZVdVVaV2tLZGNHMFp3QU1qZkRJSnFqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0NCNS9GQTM3QzYzRTIyNTYxMUVGQjc1NjFGNDZDNEY5QUUwMi8tb0VmVXVVWldr S2RjRzBad0FNamZESUpxamMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAb3nyVZojrAQcY99z7V3CA6ePVNh1glLIIryrDE89lW9dk/2txMiu+9QxXFWv Lsz5alZcKebTS99RoG568ZE6nawlsyhvmYQrqvXxRN2n9OV9uCVXFtHl2p9mkI4H JA1Y8SVXVfV5UmN1fZDv8QKD5KMsxknEmPALj3xYzOK9CdeojVeUZPNXo3prB/FL ErRSIPA2+Y07CBeZcXXKDiXN/oXQUBaTw23rL88kljfiD5sNm5AoUf6HmY1rE+dz N8sNPmkxkP9qvXS4TmVSHFmknGiP0LGhyZwp7391/HDY0xz7sDdaySdwTD8t0V0K 7HsGrZKRL8zoCgZCur4vnMJmDg== -----END CERTIFICATE-----Generated at Thu Mar 26 04:40:41 2026 by rpki-client