$ rpki-client -vvf rpki.apnic.net/member_repository/A918C158/AE51D802673B11EA99B2E556C4F9AE02/Ok9ILhJcCNuDBRbVGkot8eCqiso.mft File: Ok9ILhJcCNuDBRbVGkot8eCqiso.mft (raw, json) Hash identifier: I+6dm2EAnOrEVAFuy8ykj/Z0uGatG5/EewYweAJe5x4= Subject key identifier: 51:BC:80:13:D7:CC:FD:06:69:91:18:6C:BC:AD:E6:73:1D:F2:65:85 Authority key identifier: 3A:4F:48:2E:12:5C:08:DB:83:05:16:D5:1A:4A:2D:F1:E0:AA:8A:CA Certificate issuer: /CN=A918C158/serialNumber=3A4F482E125C08DB830516D51A4A2DF1E0AA8ACA Certificate serial: 0AF1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ok9ILhJcCNuDBRbVGkot8eCqiso.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918C158/AE51D802673B11EA99B2E556C4F9AE02/Ok9ILhJcCNuDBRbVGkot8eCqiso.mft Manifest number: 0AE9 Signing time: Tue 24 Mar 2026 19:11:39 +0000 Manifest this update: Tue 24 Mar 2026 19:11:38 +0000 Manifest next update: Tue 31 Mar 2026 19:11:38 +0000 Files and hashes: 1: Ok9ILhJcCNuDBRbVGkot8eCqiso.crl (hash: JajE8L8JQvrMQp41uicEVgm3xAQ4ZIMp4RQIWuBZZaY=) 2: F25A6266796A11EB82E0EE24C4F9AE02.roa (hash: gg5YRxm/OG8ParGdDVWKapchKMYooC3n6Om94oqfGGI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918C158/AE51D802673B11EA99B2E556C4F9AE02/Ok9ILhJcCNuDBRbVGkot8eCqiso.crl rsync://rpki.apnic.net/member_repository/A918C158/AE51D802673B11EA99B2E556C4F9AE02/Ok9ILhJcCNuDBRbVGkot8eCqiso.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ok9ILhJcCNuDBRbVGkot8eCqiso.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 19:11:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2801 (0xaf1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918C158, serialNumber=3A4F482E125C08DB830516D51A4A2DF1E0AA8ACA Validity Not Before: Mar 24 19:11:38 2026 GMT Not After : Mar 31 19:11:38 2026 GMT Subject: CN=69c2e1ea-2614 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:1f:95:68:39:a3:61:a6:2a:1b:d4:6e:59:e3: 55:c7:e8:12:d4:5a:1d:12:88:70:17:9d:2c:b5:0a: 3e:e6:77:f2:ca:69:df:ad:6c:b6:97:ab:96:da:f0: 12:03:ed:79:9e:1e:33:0d:56:8c:e4:c4:cd:d6:7f: 7c:73:dc:6e:2e:e0:ae:29:9f:46:40:8c:b1:89:52: 2f:0a:1e:dc:bd:c1:4d:1c:72:ca:9c:cc:76:ce:9d: d6:77:b0:95:82:79:1a:e6:8c:bd:4a:19:da:69:c3: 97:b1:b8:e9:dc:17:5d:1b:1c:fd:7f:00:b0:ed:c5: eb:ee:db:5c:a2:d3:64:72:10:1a:df:85:a0:db:f2: 8d:22:34:05:11:09:8d:6a:df:82:0d:31:d0:7d:77: 1d:1e:07:0b:dc:01:2b:05:c9:4f:31:3f:10:60:4f: 95:3f:91:11:76:49:a4:de:17:33:05:18:23:4a:1c: d0:db:5c:cf:ee:a7:35:73:ab:d6:25:1e:5b:ff:2a: 70:32:31:be:bf:fa:98:0a:96:a0:bd:15:a6:4f:5b: ba:40:5f:ac:61:1b:0e:4d:9a:fa:d0:e1:b1:9f:1e: 11:ac:07:25:5b:ca:84:72:75:79:ab:e4:ac:52:56: 8a:c2:d4:3d:fe:59:26:3b:e0:2f:30:34:fb:70:2d: 29:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:BC:80:13:D7:CC:FD:06:69:91:18:6C:BC:AD:E6:73:1D:F2:65:85 X509v3 Authority Key Identifier: keyid:3A:4F:48:2E:12:5C:08:DB:83:05:16:D5:1A:4A:2D:F1:E0:AA:8A:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918C158/AE51D802673B11EA99B2E556C4F9AE02/Ok9ILhJcCNuDBRbVGkot8eCqiso.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ok9ILhJcCNuDBRbVGkot8eCqiso.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918C158/AE51D802673B11EA99B2E556C4F9AE02/Ok9ILhJcCNuDBRbVGkot8eCqiso.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:d1:af:e5:b4:ea:ad:2a:90:21:c2:b2:be:bf:a9:23:20:43: 00:63:92:fc:0f:b7:66:60:03:bb:65:d9:d9:5e:84:82:a5:d9: ef:6d:c3:2b:3c:a3:dc:69:75:2b:e1:20:26:66:f4:a1:f8:61: 79:06:4c:2a:b1:6b:5a:5f:fe:c1:81:50:55:87:e1:3c:63:2c: 5d:d0:10:d9:8d:03:34:66:53:2d:5e:8b:95:52:1a:c0:a0:09: 33:2c:f6:94:21:37:38:a7:0f:51:02:7f:3a:8f:42:ce:52:02: 78:23:8a:0f:41:d4:9a:df:45:7d:e3:43:95:55:a2:7d:08:54: db:bd:16:0c:1b:5d:5e:17:0f:f7:4d:6e:97:2f:d9:63:a7:79: af:4c:c2:41:24:8d:83:98:36:18:49:2d:1f:bf:8b:f5:4e:7d: 6c:4d:38:e0:d8:95:7c:06:4c:fc:77:56:e7:8d:d6:00:24:c8: 97:aa:7a:b1:a4:25:83:28:54:23:18:ad:eb:91:0a:c6:67:bf: 92:43:7f:40:a2:71:7d:76:d1:17:6b:12:1f:d6:8f:18:54:9e: a2:ec:f1:db:54:d8:d9:7f:45:ab:70:cf:7e:fa:04:b4:46:12: 59:a8:6a:d6:6c:59:a1:67:03:18:29:23:28:8c:21:12:0c:bb: 0d:d6:fc:af -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCvEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEMxNTgxMTAvBgNVBAUTKDNBNEY0ODJFMTI1QzA4REI4MzA1MTZENTFBNEEyREYx RTBBQThBQ0EwHhcNMjYwMzI0MTkxMTM4WhcNMjYwMzMxMTkxMTM4WjAYMRYwFAYD VQQDEw02OWMyZTFlYS0yNjE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9h+VaDmjYaYqG9RuWeNVx+gS1FodEohwF50stQo+5nfyymnfrWy2l6uW2vAS A+15nh4zDVaM5MTN1n98c9xuLuCuKZ9GQIyxiVIvCh7cvcFNHHLKnMx2zp3Wd7CV gnka5oy9ShnaacOXsbjp3BddGxz9fwCw7cXr7ttcotNkchAa34Wg2/KNIjQFEQmN at+CDTHQfXcdHgcL3AErBclPMT8QYE+VP5ERdkmk3hczBRgjShzQ21zP7qc1c6vW JR5b/ypwMjG+v/qYCpagvRWmT1u6QF+sYRsOTZr60OGxnx4RrAclW8qEcnV5q+Ss UlaKwtQ9/lkmO+AvMDT7cC0p+wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFG8gBPX zP0GaZEYbLyt5nMd8mWFMB8GA1UdIwQYMBaAFDpPSC4SXAjbgwUW1RpKLfHgqorK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QzE1OC9BRTUxRDgwMjY3 M0IxMUVBOTlCMkU1NTZDNEY5QUUwMi9PazlJTGhKY0NOdURCUmJWR2tvdDhlQ3Fp c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09rOUlMaEpjQ051REJSYlZHa290OGVDcWlzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QzE1OC9BRTUxRDgwMjY3M0IxMUVBOTlCMkU1NTZDNEY5QUUwMi9PazlJTGhKY0NO dURCUmJWR2tvdDhlQ3Fpc28ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAh9Gv5bTqrSqQIcKyvr+pIyBDAGOS/A+3ZmADu2XZ2V6EgqXZ723DKzyj3Gl1 K+EgJmb0ofhheQZMKrFrWl/+wYFQVYfhPGMsXdAQ2Y0DNGZTLV6LlVIawKAJMyz2 lCE3OKcPUQJ/Oo9CzlICeCOKD0HUmt9FfeNDlVWifQhU270WDBtdXhcP901uly/Z Y6d5r0zCQSSNg5g2GEktH7+L9U59bE044NiVfAZM/HdW543WACTIl6p6saQlgyhU Ixit65EKxme/kkN/QKJxfXbRF2sSH9aPGFSeouzx21TY2X9Fq3DPfvoEtEYSWahq 1mxZoWcDGCkjKIwhEgy7Ddb8rw== -----END CERTIFICATE-----Generated at Thu Mar 26 10:53:20 2026 by rpki-client