$ rpki-client -vvf rpki.apnic.net/member_repository/A917E27F/769D2D6672B711F09C04690DC4F9AE02/2OexX5y5FnTlEn_UBtfZ5xjgirA.mft File: 2OexX5y5FnTlEn_UBtfZ5xjgirA.mft (raw, json) Hash identifier: KF0nJz/ZqNcPLgq5yKD+eIHsEN6dhRB1bMWG7oWFcQQ= Subject key identifier: 48:B9:E7:6A:F6:B1:96:3A:FF:97:6D:3B:9D:8B:56:E3:CC:55:63:3A Authority key identifier: D8:E7:B1:5F:9C:B9:16:74:E5:12:7F:D4:06:D7:D9:E7:18:E0:8A:B0 Certificate issuer: /CN=A917E27F/serialNumber=D8E7B15F9CB91674E5127FD406D7D9E718E08AB0 Certificate serial: 7C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2OexX5y5FnTlEn_UBtfZ5xjgirA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E27F/769D2D6672B711F09C04690DC4F9AE02/2OexX5y5FnTlEn_UBtfZ5xjgirA.mft Manifest number: 7A Signing time: Wed 25 Mar 2026 06:59:45 +0000 Manifest this update: Wed 25 Mar 2026 06:59:45 +0000 Manifest next update: Wed 01 Apr 2026 06:59:45 +0000 Files and hashes: 1: 2OexX5y5FnTlEn_UBtfZ5xjgirA.crl (hash: rgOjgAeyT0NOSrpq6VuqeI/z0Hmp1pLDviBZiZLZUv8=) 2: 4197AB74735611F080D68151C4F9AE02.roa (hash: KJWSfbOSquMIKpz7QMLAGjevQAyuwiO61hki9DtvT9A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E27F/769D2D6672B711F09C04690DC4F9AE02/2OexX5y5FnTlEn_UBtfZ5xjgirA.crl rsync://rpki.apnic.net/member_repository/A917E27F/769D2D6672B711F09C04690DC4F9AE02/2OexX5y5FnTlEn_UBtfZ5xjgirA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2OexX5y5FnTlEn_UBtfZ5xjgirA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 06:59:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 124 (0x7c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E27F, serialNumber=D8E7B15F9CB91674E5127FD406D7D9E718E08AB0 Validity Not Before: Mar 25 06:59:45 2026 GMT Not After : Apr 1 06:59:45 2026 GMT Subject: CN=69c387e1-6885 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:77:b8:66:ee:35:6b:09:cf:62:24:fa:a7:64: 4b:9e:97:3c:12:f7:a2:d4:dc:b0:b8:04:cb:c8:b6: a7:47:b7:80:f7:24:d2:90:f4:25:63:10:19:12:4a: 14:81:c0:08:f0:d6:05:13:98:1b:5a:39:1c:02:26: aa:e8:8c:3a:26:3e:fa:e3:57:2b:24:65:00:10:9a: fe:61:c4:cc:45:2d:3b:3d:76:b3:06:af:9d:3c:a2: 94:dc:65:a5:57:d3:7a:83:74:29:da:dc:d4:83:ff: 11:0f:06:28:8a:83:22:c0:e9:e0:af:b4:0d:9a:ea: 5e:35:68:55:59:3c:64:59:5a:67:eb:7d:2d:63:5e: 7d:2e:b3:f6:6f:8f:a4:b0:3f:08:f9:d7:e0:30:ef: 41:5a:05:bb:90:ce:f4:6d:6e:76:49:e5:fe:19:20: f2:4e:36:b5:57:83:79:8c:ab:f0:53:7a:0b:64:a6: 34:32:df:29:5c:fe:b4:d3:66:0c:96:e4:72:9d:08: e3:42:95:d3:aa:b7:61:0d:bd:99:ee:3b:0b:cf:65: aa:05:5b:ab:c1:71:7d:29:38:27:ff:42:29:ae:ee: 3e:e6:5f:f9:5f:aa:d0:17:f5:97:b4:06:d5:c7:c2: ef:62:15:a4:16:79:96:70:24:2f:d0:25:56:ff:f5: 07:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:B9:E7:6A:F6:B1:96:3A:FF:97:6D:3B:9D:8B:56:E3:CC:55:63:3A X509v3 Authority Key Identifier: keyid:D8:E7:B1:5F:9C:B9:16:74:E5:12:7F:D4:06:D7:D9:E7:18:E0:8A:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E27F/769D2D6672B711F09C04690DC4F9AE02/2OexX5y5FnTlEn_UBtfZ5xjgirA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2OexX5y5FnTlEn_UBtfZ5xjgirA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E27F/769D2D6672B711F09C04690DC4F9AE02/2OexX5y5FnTlEn_UBtfZ5xjgirA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:74:28:90:9b:24:6b:0a:27:59:8b:9a:6f:34:ec:a0:3d:ac: d5:ab:4b:cd:fa:ca:cc:8b:88:3d:c0:ce:1a:4e:58:34:03:7a: dd:f6:ab:59:fa:b9:82:9a:d6:ac:18:e0:06:56:87:66:e6:9f: 91:0f:db:96:bd:d7:59:58:2f:5d:92:b2:28:22:af:3c:4d:52: c6:30:49:e2:33:82:1d:82:d2:47:a7:09:ea:65:cd:13:35:80: 6d:de:af:44:da:8b:21:5b:09:63:54:e5:c8:48:12:0f:4c:80: 02:00:e4:70:b4:25:05:98:25:c0:59:79:48:40:39:ac:34:a6: 30:e9:64:fd:4d:65:ba:1e:1a:a9:69:3b:cd:00:3f:15:1e:fd: 55:b2:03:60:83:fe:75:3e:91:7e:43:0f:af:7c:00:8b:38:60: 68:94:26:34:79:6d:69:3a:9f:be:ac:5e:75:7e:db:53:9c:04: 04:e2:55:ec:67:0f:d6:da:f6:97:7a:66:19:7c:be:95:4f:c5: 0b:1e:64:69:fc:a4:aa:c1:b5:e6:86:10:fd:c0:30:9f:a8:5d: 87:90:36:f9:f1:d6:e9:02:2d:a2:cd:f2:dc:82:6e:c7:d7:bf: da:45:31:80:8f:9a:b5:79:b2:e1:58:2a:64:7e:3e:43:aa:d2: b2:63:3a:91 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBfDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 RTI3RjExMC8GA1UEBRMoRDhFN0IxNUY5Q0I5MTY3NEU1MTI3RkQ0MDZEN0Q5RTcx OEUwOEFCMDAeFw0yNjAzMjUwNjU5NDVaFw0yNjA0MDEwNjU5NDVaMBgxFjAUBgNV BAMTDTY5YzM4N2UxLTY4ODUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCad7hm7jVrCc9iJPqnZEuelzwS96LU3LC4BMvItqdHt4D3JNKQ9CVjEBkSShSB wAjw1gUTmBtaORwCJqrojDomPvrjVyskZQAQmv5hxMxFLTs9drMGr508opTcZaVX 03qDdCna3NSD/xEPBiiKgyLA6eCvtA2a6l41aFVZPGRZWmfrfS1jXn0us/Zvj6Sw Pwj51+Aw70FaBbuQzvRtbnZJ5f4ZIPJONrVXg3mMq/BTegtkpjQy3ylc/rTTZgyW 5HKdCONCldOqt2ENvZnuOwvPZaoFW6vBcX0pOCf/Qimu7j7mX/lfqtAX9Ze0BtXH wu9iFaQWeZZwJC/QJVb/9QclAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUSLnnavax ljr/l207nYtW48xVYzowHwYDVR0jBBgwFoAU2OexX5y5FnTlEn/UBtfZ5xjgirAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdFMjdGLzc2OUQyRDY2NzJC NzExRjA5QzA0NjkwREM0RjlBRTAyLzJPZXhYNXk1Rm5UbEVuX1VCdGZaNXhqZ2ly QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvMk9leFg1eTVGblRsRW5fVUJ0Zlo1eGpnaXJBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdF MjdGLzc2OUQyRDY2NzJCNzExRjA5QzA0NjkwREM0RjlBRTAyLzJPZXhYNXk1Rm5U bEVuX1VCdGZaNXhqZ2lyQS5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQBwdCiQmyRrCidZi5pvNOygPazVq0vN+srMi4g9wM4aTlg0A3rd9qtZ+rmCmtas GOAGVodm5p+RD9uWvddZWC9dkrIoIq88TVLGMEniM4IdgtJHpwnqZc0TNYBt3q9E 2oshWwljVOXISBIPTIACAORwtCUFmCXAWXlIQDmsNKYw6WT9TWW6HhqpaTvNAD8V Hv1VsgNgg/51PpF+Qw+vfACLOGBolCY0eW1pOp++rF51fttTnAQE4lXsZw/W2vaX emYZfL6VT8ULHmRp/KSqwbXmhhD9wDCfqF2HkDb58dbpAi2izfLcgm7H17/aRTGA j5q1ebLhWCpkfj5DqtKyYzqR -----END CERTIFICATE-----Generated at Thu Mar 26 14:36:50 2026 by rpki-client