$ rpki-client -vvf rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/oktqYgRLcAZfBQY4hGDkry8X8_8.mft File: oktqYgRLcAZfBQY4hGDkry8X8_8.mft (raw, json) Hash identifier: eksf9Pv9Sv/I6EPIpDAGsm4m8iF2AdWLWCYxbFWMLb4= Subject key identifier: B0:40:71:74:A0:9C:9E:3F:3E:1E:AB:00:E0:DC:E3:1D:88:18:36:7A Authority key identifier: A2:4B:6A:62:04:4B:70:06:5F:05:06:38:84:60:E4:AF:2F:17:F3:FF Certificate issuer: /CN=A918F550/serialNumber=A24B6A62044B70065F0506388460E4AF2F17F3FF Certificate serial: 3625 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oktqYgRLcAZfBQY4hGDkry8X8_8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/oktqYgRLcAZfBQY4hGDkry8X8_8.mft Manifest number: 359D Signing time: Tue 24 Mar 2026 14:25:40 +0000 Manifest this update: Tue 24 Mar 2026 14:25:40 +0000 Manifest next update: Tue 31 Mar 2026 14:25:40 +0000 Files and hashes: 1: oktqYgRLcAZfBQY4hGDkry8X8_8.crl (hash: 0tzoIqjtk6na8MDv2/ZIcnALtp5he/pVD0wxzoKm3AM=) 2: DFC15BFCEE2A11F08F37AFA2486F56BC.roa (hash: thg12ZzEBgMuI/QMazCIjvAj3z0Vs1wd8yWbe5birCk=) 3: CC23ED70990811F08BF0CB55C4F9AE02.roa (hash: YESGPScKdeqm6JUMvHI6MDffPNS9ojoSYCUIFN6JUNQ=) 4: 6C1B853CB93811F09BBA425FC4F9AE02.roa (hash: 0zazze3bx11N53QYC29gvswb8iXwUt0H+vCU2B2AtJw=) 5: 02C97520985011F083EA2077C4F9AE02.roa (hash: yaT3E5Jwb6SOPRE/zc1jGw25lKy2464cuUmJv/l28Bs=) 6: 72378020EE2A11F0BE1A1CA2486F56BC.roa (hash: F533zLdXfqsdCW7ceEEa1GEWGavXYNK88VyQBzpq5/E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/oktqYgRLcAZfBQY4hGDkry8X8_8.crl rsync://rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/oktqYgRLcAZfBQY4hGDkry8X8_8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oktqYgRLcAZfBQY4hGDkry8X8_8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 14:25:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13861 (0x3625) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F550, serialNumber=A24B6A62044B70065F0506388460E4AF2F17F3FF Validity Not Before: Mar 24 14:25:40 2026 GMT Not After : Mar 31 14:25:40 2026 GMT Subject: CN=69c29ee4-d202 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:c7:59:81:a7:51:d5:f7:52:77:9b:cd:fa:14: 6a:19:b4:69:14:7c:b7:a4:ff:a4:38:9a:ec:01:ac: 60:e0:0e:b2:24:4f:c1:5d:1f:9b:ee:22:b9:56:22: f3:b6:af:86:17:d8:7d:4c:a9:f4:e2:83:bb:c0:7c: 34:7e:f5:35:b8:3f:2c:da:d5:51:ae:17:44:71:ce: b8:d6:9e:bc:fb:e2:18:98:98:5c:a5:53:a4:54:3e: 2e:2f:dc:ea:b8:36:02:2a:cd:b4:48:6d:f4:88:67: 67:a7:59:35:0d:83:13:9e:5c:18:ae:cb:05:c6:8c: 80:78:a7:bd:9d:ef:1a:cb:fe:92:2d:79:62:72:86: ac:4a:0a:9d:3f:a4:9e:25:6e:b1:44:f0:9a:5b:44: bf:f0:b0:93:6b:06:44:50:63:e0:20:96:9f:33:c6: cb:53:85:40:7b:93:b7:58:34:e1:41:26:74:b9:56: 5c:b7:a0:2d:63:e0:12:5f:34:ba:d7:c6:20:fb:6c: e6:32:dc:9b:94:43:cb:e9:bd:12:b8:0e:f0:0e:ec: 43:1b:59:84:5b:66:80:71:c8:39:e2:71:fc:55:ec: 51:8c:48:ce:c5:83:58:88:4b:55:f0:bc:79:21:d9: 04:eb:23:84:78:c9:d2:e4:1a:7c:5b:cf:e5:ea:7d: b1:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:40:71:74:A0:9C:9E:3F:3E:1E:AB:00:E0:DC:E3:1D:88:18:36:7A X509v3 Authority Key Identifier: keyid:A2:4B:6A:62:04:4B:70:06:5F:05:06:38:84:60:E4:AF:2F:17:F3:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/oktqYgRLcAZfBQY4hGDkry8X8_8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oktqYgRLcAZfBQY4hGDkry8X8_8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/oktqYgRLcAZfBQY4hGDkry8X8_8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:3c:6f:6e:d4:45:8f:78:8b:ac:1f:eb:47:6b:14:00:00:13: 34:1b:68:49:a5:6e:2a:c5:c1:15:da:39:02:25:d0:8c:c6:e6: c1:1c:47:29:83:21:bc:a1:b1:75:a8:b9:da:81:e3:3b:80:dc: fb:3e:b4:90:ca:4a:51:20:23:53:1b:14:6f:72:39:fc:c1:0a: 64:8c:ce:a5:58:82:c1:fb:9e:c1:3c:ff:29:a6:2e:47:96:0b: 1a:38:e1:e7:f1:5c:10:6a:54:94:6b:a2:fb:8e:37:38:cc:e9: 6b:de:87:8f:42:33:b5:da:96:4c:4b:84:7b:45:53:a9:f4:8d: 5c:e6:cd:81:67:2b:e1:83:21:63:b3:93:03:c7:91:e8:5a:df: 6e:1b:13:ea:ef:6c:7b:fe:f1:b0:5c:13:1b:a1:84:f8:3f:eb: 36:3f:5f:ea:1c:9f:51:7b:0a:d9:c1:5c:4d:12:64:b0:23:f5: b3:49:19:8a:22:be:fd:d8:0d:1b:d1:19:26:af:95:e4:3d:49: d5:26:73:75:97:37:fe:5f:59:8b:b5:23:4b:4e:bd:bd:ee:86: 24:d6:fb:af:b3:93:cd:36:2b:28:45:a4:56:d8:3a:70:85:15: 44:37:87:34:6b:6c:e1:cd:b6:f1:32:7c:23:20:28:01:8d:8e: d5:19:e9:af -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNiUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEY1NTAxMTAvBgNVBAUTKEEyNEI2QTYyMDQ0QjcwMDY1RjA1MDYzODg0NjBFNEFG MkYxN0YzRkYwHhcNMjYwMzI0MTQyNTQwWhcNMjYwMzMxMTQyNTQwWjAYMRYwFAYD VQQDEw02OWMyOWVlNC1kMjAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2sdZgadR1fdSd5vN+hRqGbRpFHy3pP+kOJrsAaxg4A6yJE/BXR+b7iK5ViLz tq+GF9h9TKn04oO7wHw0fvU1uD8s2tVRrhdEcc641p68++IYmJhcpVOkVD4uL9zq uDYCKs20SG30iGdnp1k1DYMTnlwYrssFxoyAeKe9ne8ay/6SLXlicoasSgqdP6Se JW6xRPCaW0S/8LCTawZEUGPgIJafM8bLU4VAe5O3WDThQSZ0uVZct6AtY+ASXzS6 18Yg+2zmMtyblEPL6b0SuA7wDuxDG1mEW2aAccg54nH8VexRjEjOxYNYiEtV8Lx5 IdkE6yOEeMnS5Bp8W8/l6n2xnQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLBAcXSg nJ4/Ph6rAODc4x2IGDZ6MB8GA1UdIwQYMBaAFKJLamIES3AGXwUGOIRg5K8vF/P/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RjU1MC84QjlCRDIwMjFE ODUxMUUyQjQxMjMwREMwOEIwMkNEMi9va3RxWWdSTGNBWmZCUVk0aEdEa3J5OFg4 XzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29rdHFZZ1JMY0FaZkJRWTRoR0Rrcnk4WDhfOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RjU1MC84QjlCRDIwMjFEODUxMUUyQjQxMjMwREMwOEIwMkNEMi9va3RxWWdSTGNB WmZCUVk0aEdEa3J5OFg4XzgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAnDxvbtRFj3iLrB/rR2sUAAATNBtoSaVuKsXBFdo5AiXQjMbmwRxHKYMhvKGx dai52oHjO4Dc+z60kMpKUSAjUxsUb3I5/MEKZIzOpViCwfuewTz/KaYuR5YLGjjh 5/FcEGpUlGui+443OMzpa96Hj0IztdqWTEuEe0VTqfSNXObNgWcr4YMhY7OTA8eR 6FrfbhsT6u9se/7xsFwTG6GE+D/rNj9f6hyfUXsK2cFcTRJksCP1s0kZiiK+/dgN G9EZJq+V5D1J1SZzdZc3/l9Zi7UjS069ve6GJNb7r7OTzTYrKEWkVtg6cIUVRDeH NGts4c228TJ8IyAoAY2O1Rnprw== -----END CERTIFICATE-----Generated at Thu Mar 26 13:10:06 2026 by rpki-client