$ rpki-client -vvf rpki.apnic.net/member_repository/A9186249/A1F2343CD17011EEA6151C4DC4F9AE02/rOKNq-U2SWN_puTjId4bY0Y7g88.mft File: rOKNq-U2SWN_puTjId4bY0Y7g88.mft (raw, json) Hash identifier: T3KLtpDjVptfEEoaMW0su93WNzTQ0zLgtnlEbUZgVEg= Subject key identifier: FF:D6:B2:C6:E3:31:EE:D2:28:5B:D1:31:BE:BE:4B:FA:73:49:A3:38 Authority key identifier: AC:E2:8D:AB:E5:36:49:63:7F:A6:E4:E3:21:DE:1B:63:46:3B:83:CF Certificate issuer: /CN=A9186249/serialNumber=ACE28DABE53649637FA6E4E321DE1B63463B83CF Certificate serial: 018F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rOKNq-U2SWN_puTjId4bY0Y7g88.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186249/A1F2343CD17011EEA6151C4DC4F9AE02/rOKNq-U2SWN_puTjId4bY0Y7g88.mft Manifest number: 0189 Signing time: Wed 25 Mar 2026 03:46:43 +0000 Manifest this update: Wed 25 Mar 2026 03:46:42 +0000 Manifest next update: Wed 01 Apr 2026 03:46:42 +0000 Files and hashes: 1: rOKNq-U2SWN_puTjId4bY0Y7g88.crl (hash: 0Ftd7uMw4h0mAIjFnFJeJgZXHtP745uSm/SSZX08QWM=) 2: E7F6D15AD17411EE87F7325DC4F9AE02.roa (hash: tOv8I8JqW+YNhbrzCbO/AHIzq1jJ49VC9Cs7y7bsySc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186249/A1F2343CD17011EEA6151C4DC4F9AE02/rOKNq-U2SWN_puTjId4bY0Y7g88.crl rsync://rpki.apnic.net/member_repository/A9186249/A1F2343CD17011EEA6151C4DC4F9AE02/rOKNq-U2SWN_puTjId4bY0Y7g88.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rOKNq-U2SWN_puTjId4bY0Y7g88.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 03:46:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 399 (0x18f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186249, serialNumber=ACE28DABE53649637FA6E4E321DE1B63463B83CF Validity Not Before: Mar 25 03:46:42 2026 GMT Not After : Apr 1 03:46:42 2026 GMT Subject: CN=69c35aa3-b5f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:91:9e:e6:b6:a8:9c:30:d7:76:39:72:97:04: db:9e:5c:00:5b:58:2f:2c:61:99:e9:29:a2:7c:45: d4:37:6b:28:d2:d2:66:05:b3:c1:3d:ce:af:03:51: b0:9c:72:51:66:5e:1e:3c:8e:b0:e3:0f:9c:d3:91: cc:a9:13:68:63:20:19:45:32:ae:a0:df:e9:b1:aa: f0:71:b4:59:84:16:17:12:8f:25:ca:ce:47:f8:c4: b5:f5:a3:dc:6f:df:43:45:1d:e1:d1:ab:47:c8:b4: 0c:a4:50:20:49:a9:9a:86:dd:8c:be:3e:67:77:90: 10:89:34:c9:d9:ed:ef:c8:eb:f1:0b:1f:c9:43:73: d1:9b:cd:1d:4a:e0:ca:17:55:0e:a6:b7:81:65:b5: 39:6e:94:2a:66:d9:b7:12:e1:ea:7a:dd:da:e0:ea: 26:b4:48:e4:82:c0:e8:d1:82:c1:e2:7c:b7:3e:9d: b1:27:ca:45:e9:83:52:a7:e9:7b:2c:84:49:9f:6a: 72:44:bc:0c:14:a7:2b:54:95:37:be:33:3b:2b:1a: ef:ac:62:d1:91:be:1b:53:0f:c1:35:6b:bc:06:84: 24:c6:c9:3e:52:60:9c:f6:2d:40:e6:5c:72:7c:c7: a3:b5:4b:8a:69:5d:bb:9b:b0:af:88:2f:cc:c0:28: 30:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:D6:B2:C6:E3:31:EE:D2:28:5B:D1:31:BE:BE:4B:FA:73:49:A3:38 X509v3 Authority Key Identifier: keyid:AC:E2:8D:AB:E5:36:49:63:7F:A6:E4:E3:21:DE:1B:63:46:3B:83:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186249/A1F2343CD17011EEA6151C4DC4F9AE02/rOKNq-U2SWN_puTjId4bY0Y7g88.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rOKNq-U2SWN_puTjId4bY0Y7g88.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186249/A1F2343CD17011EEA6151C4DC4F9AE02/rOKNq-U2SWN_puTjId4bY0Y7g88.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:9c:d0:24:0f:8f:80:52:ed:6f:c3:50:51:38:2e:90:ce:f1: 90:b4:4a:98:82:23:11:3d:10:c7:94:3f:4d:78:08:4c:3b:32: 77:f0:67:3d:f6:6d:8b:99:3c:6e:f4:74:85:a7:c0:48:b2:43: 7b:f9:cd:85:55:88:37:91:6e:55:ab:d0:7c:57:da:c6:80:bc: 99:7e:d2:51:7b:5a:64:e8:95:54:30:32:2b:b2:73:4c:52:f4: 66:9e:3b:62:ab:1a:eb:18:f0:66:29:31:b0:0f:52:5c:36:96: 23:8c:53:99:c6:29:fe:7e:3f:f5:1d:b5:4e:02:d5:cd:d3:d4: 2b:07:db:24:3f:56:ce:a9:c3:48:cf:27:47:0b:43:36:f3:7b: c8:87:b7:55:09:fa:db:f5:82:49:17:52:50:a4:bc:4b:33:e6: df:bb:ec:f3:1d:ed:64:27:1b:76:6a:67:70:21:f7:91:6b:3b: 96:df:ee:55:bd:b7:d4:3d:62:21:e6:25:66:53:91:4f:1e:30: 75:9b:bb:bf:d7:07:65:2c:81:4f:4c:2d:41:5c:1c:5d:73:9d: 2f:4b:0c:4b:b8:3a:af:b5:44:73:e3:a3:37:0d:1f:28:e4:6b: e0:55:41:32:61:e2:f4:0d:14:08:d3:52:84:33:bb:b7:14:e3: c4:f3:40:e2 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAY8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODYyNDkxMTAvBgNVBAUTKEFDRTI4REFCRTUzNjQ5NjM3RkE2RTRFMzIxREUxQjYz NDYzQjgzQ0YwHhcNMjYwMzI1MDM0NjQyWhcNMjYwNDAxMDM0NjQyWjAYMRYwFAYD VQQDEw02OWMzNWFhMy1iNWYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0ZGe5raonDDXdjlylwTbnlwAW1gvLGGZ6SmifEXUN2so0tJmBbPBPc6vA1Gw nHJRZl4ePI6w4w+c05HMqRNoYyAZRTKuoN/psarwcbRZhBYXEo8lys5H+MS19aPc b99DRR3h0atHyLQMpFAgSamaht2Mvj5nd5AQiTTJ2e3vyOvxCx/JQ3PRm80dSuDK F1UOpreBZbU5bpQqZtm3EuHqet3a4OomtEjkgsDo0YLB4ny3Pp2xJ8pF6YNSp+l7 LIRJn2pyRLwMFKcrVJU3vjM7KxrvrGLRkb4bUw/BNWu8BoQkxsk+UmCc9i1A5lxy fMejtUuKaV27m7CviC/MwCgwgwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFP/Wssbj Me7SKFvRMb6+S/pzSaM4MB8GA1UdIwQYMBaAFKzijavlNkljf6bk4yHeG2NGO4PP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjI0OS9BMUYyMzQzQ0Qx NzAxMUVFQTYxNTFDNERDNEY5QUUwMi9yT0tOcS1VMlNXTl9wdVRqSWQ0YlkwWTdn ODguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JPS05xLVUyU1dOX3B1VGpJZDRiWTBZN2c4OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NjI0OS9BMUYyMzQzQ0QxNzAxMUVFQTYxNTFDNERDNEY5QUUwMi9yT0tOcS1VMlNX Tl9wdVRqSWQ0YlkwWTdnODgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAa5zQJA+PgFLtb8NQUTgukM7xkLRKmIIjET0Qx5Q/TXgITDsyd/BnPfZti5k8 bvR0hafASLJDe/nNhVWIN5FuVavQfFfaxoC8mX7SUXtaZOiVVDAyK7JzTFL0Zp47 Yqsa6xjwZikxsA9SXDaWI4xTmcYp/n4/9R21TgLVzdPUKwfbJD9WzqnDSM8nRwtD NvN7yIe3VQn62/WCSRdSUKS8SzPm37vs8x3tZCcbdmpncCH3kWs7lt/uVb231D1i IeYlZlORTx4wdZu7v9cHZSyBT0wtQVwcXXOdL0sMS7g6r7VEc+OjNw0fKORr4FVB MmHi9A0UCNNShDO7txTjxPNA4g== -----END CERTIFICATE-----Generated at Thu Mar 26 02:33:30 2026 by rpki-client