$ rpki-client -vvf rpki.apnic.net/member_repository/A916B95A/512C705E37AE11EF8A458E37C4F9AE02/8kxEMhD3QcvlnQFOum7pcrXN2uc.mft File: 8kxEMhD3QcvlnQFOum7pcrXN2uc.mft (raw, json) Hash identifier: Wu6gnmZplYjxZgeeB3KsxA0a2OEhBSGYa+i91GfaPpY= Subject key identifier: AA:8A:84:5A:1A:8D:A1:B5:F1:53:AD:26:C6:64:91:32:3E:BA:E3:D9 Authority key identifier: F2:4C:44:32:10:F7:41:CB:E5:9D:01:4E:BA:6E:E9:72:B5:CD:DA:E7 Certificate issuer: /CN=A916B95A/serialNumber=F24C443210F741CBE59D014EBA6EE972B5CDDAE7 Certificate serial: 0156 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8kxEMhD3QcvlnQFOum7pcrXN2uc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B95A/512C705E37AE11EF8A458E37C4F9AE02/8kxEMhD3QcvlnQFOum7pcrXN2uc.mft Manifest number: 0146 Signing time: Wed 25 Mar 2026 04:27:37 +0000 Manifest this update: Wed 25 Mar 2026 04:27:37 +0000 Manifest next update: Wed 01 Apr 2026 04:27:37 +0000 Files and hashes: 1: 8kxEMhD3QcvlnQFOum7pcrXN2uc.crl (hash: 73EhnEClt0pasRgCSDvfjJBhcnGShOQcEf8IFsLRutU=) 2: 2117AE6E37AF11EF844EC638C4F9AE02.roa (hash: fXNyTYwGL5hwQV4+C/rGk2vU+rMPw5B8cRLeFXzc6ZM=) 3: 20A6C35C37AF11EF844EC638C4F9AE02.roa (hash: EdoKG/rO2TUcNqvrT3rmtowwCMBDjmlbd0wrAkkItCE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B95A/512C705E37AE11EF8A458E37C4F9AE02/8kxEMhD3QcvlnQFOum7pcrXN2uc.crl rsync://rpki.apnic.net/member_repository/A916B95A/512C705E37AE11EF8A458E37C4F9AE02/8kxEMhD3QcvlnQFOum7pcrXN2uc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8kxEMhD3QcvlnQFOum7pcrXN2uc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:27:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 342 (0x156) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B95A, serialNumber=F24C443210F741CBE59D014EBA6EE972B5CDDAE7 Validity Not Before: Mar 25 04:27:37 2026 GMT Not After : Apr 1 04:27:37 2026 GMT Subject: CN=69c36439-4535 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:31:1d:1b:aa:4b:24:fd:e5:de:07:a9:c6:9a: 26:a0:60:7b:2b:7d:97:d8:71:93:3d:f9:ea:3d:74: 24:4f:d8:37:b6:bc:16:b5:88:c5:4c:72:3c:7e:5d: de:b3:63:28:2d:d6:6f:2e:2a:cf:68:91:73:e7:54: a0:26:83:12:62:72:8f:06:44:6d:a1:c2:cf:c6:bd: 44:53:5d:77:33:9f:2f:f4:e2:c6:a0:8d:c9:5f:e5: e7:80:63:44:ae:50:80:06:d8:6d:61:3b:d6:e4:db: a5:ba:a5:1b:b3:e6:32:9c:fc:da:87:87:ec:6a:3b: 0f:6a:98:a4:be:41:27:cb:ee:00:74:ce:74:9e:f1: f9:9e:8f:e6:b3:90:f2:c8:7d:a9:ce:48:51:dc:17: b6:0f:bc:bb:ce:27:53:1a:5c:6c:e4:2b:0e:0f:69: 59:2e:2b:99:b4:42:ed:7a:a5:08:bf:56:5f:f9:d8: 0a:51:08:2e:c7:c6:9c:fd:3d:8d:e0:1b:be:3f:f7: 62:ce:0c:25:1c:91:03:18:49:6a:3d:b4:52:fa:6d: f3:e4:b9:a1:40:b3:db:00:83:37:e7:e2:7d:f0:af: a6:96:9a:75:89:29:22:7d:69:1b:57:42:c8:e3:3e: ab:0e:75:f6:a5:49:c2:1f:d4:06:d4:e4:8a:cc:8e: 5a:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:8A:84:5A:1A:8D:A1:B5:F1:53:AD:26:C6:64:91:32:3E:BA:E3:D9 X509v3 Authority Key Identifier: keyid:F2:4C:44:32:10:F7:41:CB:E5:9D:01:4E:BA:6E:E9:72:B5:CD:DA:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B95A/512C705E37AE11EF8A458E37C4F9AE02/8kxEMhD3QcvlnQFOum7pcrXN2uc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8kxEMhD3QcvlnQFOum7pcrXN2uc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B95A/512C705E37AE11EF8A458E37C4F9AE02/8kxEMhD3QcvlnQFOum7pcrXN2uc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:cf:d7:a6:d1:5b:14:ca:a3:d3:f9:cd:c2:f8:e4:82:0c:9b: 3b:44:2a:c7:ac:5a:5e:ae:b4:a2:b9:7a:86:85:3f:e7:5d:52: 9a:7b:39:a5:fe:2e:ab:09:96:a8:f4:e2:58:aa:25:47:e3:e3: 98:0a:7f:e1:4b:a4:b3:4c:57:50:80:bd:dd:7d:8e:68:be:20: 57:7e:57:dd:44:c4:4f:d6:a4:55:a7:cd:de:e7:77:d0:5b:4f: 0e:59:67:6f:81:42:09:02:a8:38:1f:cc:89:e5:90:04:b1:49: d2:fd:22:79:36:fe:77:09:e2:7c:a5:03:3a:74:c7:97:fa:81: f6:30:89:1e:51:e1:12:0f:21:01:f5:da:50:67:a9:36:9d:30: c6:69:a8:97:a9:67:e5:f2:cb:45:6c:0d:41:40:07:42:b4:09: 22:40:f2:9d:c5:85:1c:0a:14:c0:ae:19:3e:56:1c:dd:13:b0: 50:34:92:ba:e7:5d:92:be:5a:da:28:0c:21:14:a0:51:c2:2b: 9a:0e:9f:4b:91:53:b3:d3:4c:86:41:e0:5a:6d:30:47:2c:7e: 0c:f6:f2:66:bc:db:4e:01:f5:02:dc:52:82:a1:c4:0c:ac:d5: 04:4f:0a:98:20:0f:f8:da:86:90:37:58:ba:57:d8:c4:13:cd: ec:95:81:a4 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAVYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkI5NUExMTAvBgNVBAUTKEYyNEM0NDMyMTBGNzQxQ0JFNTlEMDE0RUJBNkVFOTcy QjVDRERBRTcwHhcNMjYwMzI1MDQyNzM3WhcNMjYwNDAxMDQyNzM3WjAYMRYwFAYD VQQDEw02OWMzNjQzOS00NTM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4DEdG6pLJP3l3gepxpomoGB7K32X2HGTPfnqPXQkT9g3trwWtYjFTHI8fl3e s2MoLdZvLirPaJFz51SgJoMSYnKPBkRtocLPxr1EU113M58v9OLGoI3JX+XngGNE rlCABthtYTvW5NuluqUbs+YynPzah4fsajsPapikvkEny+4AdM50nvH5no/ms5Dy yH2pzkhR3Be2D7y7zidTGlxs5CsOD2lZLiuZtELteqUIv1Zf+dgKUQgux8ac/T2N 4Bu+P/dizgwlHJEDGElqPbRS+m3z5LmhQLPbAIM35+J98K+mlpp1iSkifWkbV0LI 4z6rDnX2pUnCH9QG1OSKzI5aPwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKqKhFoa jaG18VOtJsZkkTI+uuPZMB8GA1UdIwQYMBaAFPJMRDIQ90HL5Z0BTrpu6XK1zdrn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2Qjk1QS81MTJDNzA1RTM3 QUUxMUVGOEE0NThFMzdDNEY5QUUwMi84a3hFTWhEM1FjdmxuUUZPdW03cGNyWE4y dWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzhreEVNaEQzUWN2bG5RRk91bTdwY3JYTjJ1Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 Qjk1QS81MTJDNzA1RTM3QUUxMUVGOEE0NThFMzdDNEY5QUUwMi84a3hFTWhEM1Fj dmxuUUZPdW03cGNyWE4ydWMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAhc/XptFbFMqj0/nNwvjkggybO0Qqx6xaXq60orl6hoU/511Smns5pf4uqwmW qPTiWKolR+PjmAp/4Uuks0xXUIC93X2OaL4gV35X3UTET9akVafN3ud30FtPDlln b4FCCQKoOB/MieWQBLFJ0v0ieTb+dwnifKUDOnTHl/qB9jCJHlHhEg8hAfXaUGep Np0wxmmol6ln5fLLRWwNQUAHQrQJIkDyncWFHAoUwK4ZPlYc3ROwUDSSuuddkr5a 2igMIRSgUcIrmg6fS5FTs9NMhkHgWm0wRyx+DPbyZrzbTgH1AtxSgqHEDKzVBE8K mCAP+NqGkDdYulfYxBPN7JWBpA== -----END CERTIFICATE-----Generated at Thu Mar 26 20:43:20 2026 by rpki-client