$ rpki-client -vvf rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.mft File: OAzWvMnhwR_sTuJ9qJOCTa21ISo.mft (raw, json) Hash identifier: 9918CCLvs/e2qca8RcUnV/gUwXDF9vO7SguBD8REY+k= Subject key identifier: 30:D2:69:0F:96:F3:6D:C9:7F:A2:A0:B1:DB:BE:D0:00:42:2F:3F:6E Authority key identifier: 38:0C:D6:BC:C9:E1:C1:1F:EC:4E:E2:7D:A8:93:82:4D:AD:B5:21:2A Certificate issuer: /CN=A917B520/serialNumber=380CD6BCC9E1C11FEC4EE27DA893824DADB5212A Certificate serial: 0176 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OAzWvMnhwR_sTuJ9qJOCTa21ISo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.mft Manifest number: 016E Signing time: Wed 25 Mar 2026 02:07:34 +0000 Manifest this update: Wed 25 Mar 2026 02:07:33 +0000 Manifest next update: Wed 01 Apr 2026 02:07:33 +0000 Files and hashes: 1: OAzWvMnhwR_sTuJ9qJOCTa21ISo.crl (hash: RUfvuE6jPL69E3EdBqi0BlIROg3yWHlS70fB+Fs/9E4=) 2: 9580A702548211EFAADB996FC4F9AE02.roa (hash: W7D/CE6bwRnzbpMvwdGdNhRCXEBo9prgW8s4Z6/gD9o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.crl rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OAzWvMnhwR_sTuJ9qJOCTa21ISo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 02:07:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 374 (0x176) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B520, serialNumber=380CD6BCC9E1C11FEC4EE27DA893824DADB5212A Validity Not Before: Mar 25 02:07:33 2026 GMT Not After : Apr 1 02:07:33 2026 GMT Subject: CN=69c34366-0981 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:fb:85:2a:b1:ec:7a:b9:dc:17:11:db:03:6c: 06:c1:e4:d0:6e:34:33:d9:6e:d3:d3:26:5b:2f:85: 95:88:6a:b5:bd:d1:c6:3c:87:f6:69:c6:8d:21:bd: 95:f5:41:31:82:6e:d9:ea:cd:5a:26:85:86:c6:0b: e6:65:12:93:24:52:95:a5:4c:5e:59:70:7d:f0:a2: 02:e7:88:7c:67:30:43:0c:61:9f:70:5f:f7:d5:7b: 81:40:5b:09:a4:57:7a:be:90:bc:ad:8d:81:d8:3e: e3:e3:04:f1:23:6b:47:dc:a2:15:34:b2:f9:22:4d: 95:50:e8:ea:85:be:41:30:8b:90:e7:9b:1c:4d:b5: 51:4c:62:c4:4b:6a:7c:cd:a2:7c:eb:3e:94:a0:31: 2c:dd:84:d2:be:9e:9a:f8:49:fd:c7:c4:65:e3:67: 7b:55:3d:7d:61:66:ef:09:59:7c:46:cb:1c:8b:cf: c4:86:2c:c2:62:98:43:48:4e:42:d8:e3:24:66:37: 53:24:27:30:15:9e:2b:54:8d:b5:9a:67:1d:42:03: 1e:0e:72:db:0c:91:23:5a:d8:74:c6:56:30:f3:7b: 43:e6:9c:63:54:8b:bb:cf:2a:44:f6:9e:be:76:e3: d0:63:56:a6:9d:58:4a:b5:3b:44:3d:5d:46:ea:59: 9c:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:D2:69:0F:96:F3:6D:C9:7F:A2:A0:B1:DB:BE:D0:00:42:2F:3F:6E X509v3 Authority Key Identifier: keyid:38:0C:D6:BC:C9:E1:C1:1F:EC:4E:E2:7D:A8:93:82:4D:AD:B5:21:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OAzWvMnhwR_sTuJ9qJOCTa21ISo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:a0:3b:1c:11:b4:55:b6:c5:39:2f:4e:4e:87:16:c4:75:82: 7e:0f:f1:09:11:71:d9:18:36:e5:77:9e:bb:2a:bb:41:56:dc: d8:5c:ef:e8:b5:b9:d3:4e:0e:50:00:81:bb:df:50:36:e2:d0: b9:1d:a8:e4:5c:f5:f9:4c:a9:05:f4:20:b1:1b:d9:d0:8a:f8: cc:81:c7:ba:f3:7a:16:3a:67:b9:61:ba:14:13:fc:c2:65:fc: 0a:b7:1f:52:66:49:ac:85:60:fa:ec:8e:1c:69:3a:af:2a:1c: 57:4b:06:42:40:ec:e3:5c:7d:ee:bc:eb:cb:f7:87:37:39:27: bc:9e:df:17:65:60:55:a3:18:8a:7f:25:e2:89:d7:59:7f:7f: 6e:c2:98:1e:ae:a4:17:89:c4:c6:65:ae:a7:cc:73:40:5c:30: d7:49:f5:c5:e9:42:1a:2c:b6:8b:eb:6f:f6:64:a8:ff:26:9e: e5:ed:13:fd:2f:10:c8:7e:bf:b4:f4:9a:27:d9:6f:15:02:06: 08:f2:b8:4d:c2:3c:a9:d1:2f:37:9f:99:b1:e3:6a:8a:4c:75: 2c:25:2b:37:97:8b:4f:85:a6:e4:a4:75:25:a9:6a:13:d6:3c: 30:b5:e9:77:cf:5e:0c:6d:e9:75:a7:38:13:bd:99:c8:f5:50: d5:ea:22:3a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAXYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I1MjAxMTAvBgNVBAUTKDM4MENENkJDQzlFMUMxMUZFQzRFRTI3REE4OTM4MjRE QURCNTIxMkEwHhcNMjYwMzI1MDIwNzMzWhcNMjYwNDAxMDIwNzMzWjAYMRYwFAYD VQQDEw02OWMzNDM2Ni0wOTgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvfuFKrHserncFxHbA2wGweTQbjQz2W7T0yZbL4WViGq1vdHGPIf2acaNIb2V 9UExgm7Z6s1aJoWGxgvmZRKTJFKVpUxeWXB98KIC54h8ZzBDDGGfcF/31XuBQFsJ pFd6vpC8rY2B2D7j4wTxI2tH3KIVNLL5Ik2VUOjqhb5BMIuQ55scTbVRTGLES2p8 zaJ86z6UoDEs3YTSvp6a+En9x8Rl42d7VT19YWbvCVl8Rssci8/EhizCYphDSE5C 2OMkZjdTJCcwFZ4rVI21mmcdQgMeDnLbDJEjWth0xlYw83tD5pxjVIu7zypE9p6+ duPQY1amnVhKtTtEPV1G6lmcQQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDDSaQ+W 823Jf6Kgsdu+0ABCLz9uMB8GA1UdIwQYMBaAFDgM1rzJ4cEf7E7ifaiTgk2ttSEq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjUyMC84RjkwOTFENDMy QjAxMUVGQTRDQkY5NkFDNEY5QUUwMi9PQXpXdk1uaHdSX3NUdUo5cUpPQ1RhMjFJ U28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL09Beld2TW5od1Jfc1R1SjlxSk9DVGEyMUlTby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjUyMC84RjkwOTFENDMyQjAxMUVGQTRDQkY5NkFDNEY5QUUwMi9PQXpXdk1uaHdS X3NUdUo5cUpPQ1RhMjFJU28ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAhKA7HBG0VbbFOS9OTocWxHWCfg/xCRFx2Rg25Xeeuyq7QVbc2Fzv6LW5004O UACBu99QNuLQuR2o5Fz1+UypBfQgsRvZ0Ir4zIHHuvN6FjpnuWG6FBP8wmX8Crcf UmZJrIVg+uyOHGk6ryocV0sGQkDs41x97rzry/eHNzknvJ7fF2VgVaMYin8l4onX WX9/bsKYHq6kF4nExmWup8xzQFww10n1xelCGiy2i+tv9mSo/yae5e0T/S8QyH6/ tPSaJ9lvFQIGCPK4TcI8qdEvN5+ZseNqikx1LCUrN5eLT4Wm5KR1JalqE9Y8MLXp d89eDG3pdac4E72ZyPVQ1eoiOg== -----END CERTIFICATE-----Generated at Thu Mar 26 16:55:05 2026 by rpki-client