$ rpki-client -vvf rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.mft File: _ONoVUVgesO8wzQNA5shaIJxJ74.mft (raw, json) Hash identifier: BxpaQRnPO083DDpO1v/Dyu6w3pWRKkLZq+Uu5PumSv4= Subject key identifier: D6:10:BF:8C:F2:0D:01:C5:DE:C0:9A:A0:46:98:5C:A2:DA:B1:8B:CC Authority key identifier: FC:E3:68:55:45:60:7A:C3:BC:C3:34:0D:03:9B:21:68:82:71:27:BE Certificate issuer: /CN=A9198D02/serialNumber=FCE3685545607AC3BCC3340D039B2168827127BE Certificate serial: 08DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_ONoVUVgesO8wzQNA5shaIJxJ74.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.mft Manifest number: 08BE Signing time: Tue 24 Mar 2026 20:13:03 +0000 Manifest this update: Tue 24 Mar 2026 20:13:02 +0000 Manifest next update: Tue 31 Mar 2026 20:13:02 +0000 Files and hashes: 1: _ONoVUVgesO8wzQNA5shaIJxJ74.crl (hash: AfaFC8JrhX31x0xOQUDl1Ou4l7I3MmeF4sduBNJROr8=) 2: 3BF0A4D868F511ECAB15DE18C4F9AE02.roa (hash: d8G/TfpNpL6HX37ocKvM5TsVlVjVR76JD7mZYT1iKdk=) 3: 51A7E3C28EB711EBB8A7B01DC4F9AE02.roa (hash: +lxeSugWEuY86E4w4UGBy7QvT+6uw0dBO3CLwKjhb3k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.crl rsync://rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_ONoVUVgesO8wzQNA5shaIJxJ74.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 20:13:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2269 (0x8dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198D02, serialNumber=FCE3685545607AC3BCC3340D039B2168827127BE Validity Not Before: Mar 24 20:13:02 2026 GMT Not After : Mar 31 20:13:02 2026 GMT Subject: CN=69c2f04e-fc0a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:45:09:5e:55:da:58:7d:f0:7d:36:4b:4e:97: 70:67:a7:16:d0:90:45:ef:25:31:ba:c1:47:50:2a: 78:84:6a:2b:d6:6d:81:a1:29:16:96:84:0f:78:20: 8f:2d:b2:61:34:04:81:dd:0e:99:1f:b1:b0:e2:a7: 9b:92:af:37:7b:88:62:14:06:6b:15:d2:ba:2b:d3: 1e:1a:16:2f:42:aa:16:6c:b8:3e:1c:bb:f9:0d:45: ed:a7:e4:1a:7d:08:3a:fa:b2:4a:27:89:a3:8a:57: ff:67:59:5f:e5:e4:a6:d2:ac:ac:64:ab:b7:31:50: dc:aa:7c:f6:0c:ef:a5:cc:b0:19:1f:a5:78:54:70: 3d:67:13:c5:4a:22:7e:66:98:3d:3d:38:4f:0c:5b: f0:f1:1c:f2:ff:db:a0:95:d6:93:fa:9a:f1:58:8c: e8:50:b4:9c:87:a9:3b:be:58:55:f2:ea:d7:3c:d4: fd:a1:ec:ab:4f:07:57:27:64:5e:cd:9c:9b:2a:3b: 75:98:c8:a2:e1:d9:b9:59:66:14:5c:7d:27:d5:09: 0f:f8:e6:0e:4d:d0:47:65:73:9c:4a:a4:00:66:b5: 87:30:4b:c8:c5:99:df:07:d1:3a:87:3b:ac:62:58: a5:57:3b:a3:00:d1:7c:0f:76:c2:2b:13:58:2e:2f: ea:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:10:BF:8C:F2:0D:01:C5:DE:C0:9A:A0:46:98:5C:A2:DA:B1:8B:CC X509v3 Authority Key Identifier: keyid:FC:E3:68:55:45:60:7A:C3:BC:C3:34:0D:03:9B:21:68:82:71:27:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_ONoVUVgesO8wzQNA5shaIJxJ74.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:c8:4c:31:15:d1:c7:d0:6d:4a:24:d0:de:26:30:00:67:73: 78:8d:09:57:c7:5f:5b:d7:22:9f:57:db:3c:9b:14:35:ac:8f: 17:3e:5a:ef:79:94:3c:1f:2e:dd:15:ed:51:08:6c:83:1a:6a: 7b:44:71:db:bb:cd:02:f2:3b:a5:6e:c2:ed:c6:61:6f:ff:aa: ca:55:96:39:bb:c0:c4:bf:47:ae:59:1f:35:88:5a:c6:76:25: 98:b4:f7:72:44:2f:f5:77:22:47:91:44:da:81:3c:02:dc:8d: ef:35:ad:a0:4b:86:6b:e6:ef:b8:18:03:21:99:55:15:2e:92: ee:94:e0:67:72:4d:51:ba:5d:44:18:28:ed:a8:7a:d2:21:de: d9:f4:33:cf:e4:e0:a6:f1:a8:2c:8e:92:fa:2c:96:21:77:89: d3:22:7e:e6:1a:fb:df:f5:8f:f0:7c:3c:f6:af:16:eb:c6:18: 2e:b5:ae:bb:76:4a:fc:32:8a:ae:5f:ba:3b:40:ec:46:08:26: e7:d9:53:42:18:37:d0:3e:35:64:19:81:2c:98:4a:df:96:fa: 83:90:0e:e8:be:4e:28:8f:99:4c:6d:1c:3f:ef:f4:33:13:26: 00:2c:c7:28:d3:5f:13:23:8f:a7:37:4c:d2:5a:3c:3f:46:89: fc:e2:62:b8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCN0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OThEMDIxMTAvBgNVBAUTKEZDRTM2ODU1NDU2MDdBQzNCQ0MzMzQwRDAzOUIyMTY4 ODI3MTI3QkUwHhcNMjYwMzI0MjAxMzAyWhcNMjYwMzMxMjAxMzAyWjAYMRYwFAYD VQQDEw02OWMyZjA0ZS1mYzBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5EUJXlXaWH3wfTZLTpdwZ6cW0JBF7yUxusFHUCp4hGor1m2BoSkWloQPeCCP LbJhNASB3Q6ZH7Gw4qebkq83e4hiFAZrFdK6K9MeGhYvQqoWbLg+HLv5DUXtp+Qa fQg6+rJKJ4mjilf/Z1lf5eSm0qysZKu3MVDcqnz2DO+lzLAZH6V4VHA9ZxPFSiJ+ Zpg9PThPDFvw8Rzy/9ugldaT+prxWIzoULSch6k7vlhV8urXPNT9oeyrTwdXJ2Re zZybKjt1mMii4dm5WWYUXH0n1QkP+OYOTdBHZXOcSqQAZrWHMEvIxZnfB9E6hzus YlilVzujANF8D3bCKxNYLi/qJwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNYQv4zy DQHF3sCaoEaYXKLasYvMMB8GA1UdIwQYMBaAFPzjaFVFYHrDvMM0DQObIWiCcSe+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OEQwMi8yOEE1MDZGQUQ4 NjcxMUVBOEI1MTYyMERDNEY5QUUwMi9fT05vVlVWZ2VzTzh3elFOQTVzaGFJSnhK NzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19PTm9WVVZnZXNPOHd6UU5BNXNoYUlKeEo3NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OEQwMi8yOEE1MDZGQUQ4NjcxMUVBOEI1MTYyMERDNEY5QUUwMi9fT05vVlVWZ2Vz Tzh3elFOQTVzaGFJSnhKNzQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAa8hMMRXRx9BtSiTQ3iYwAGdzeI0JV8dfW9cin1fbPJsUNayPFz5a73mUPB8u 3RXtUQhsgxpqe0Rx27vNAvI7pW7C7cZhb/+qylWWObvAxL9HrlkfNYhaxnYlmLT3 ckQv9XciR5FE2oE8AtyN7zWtoEuGa+bvuBgDIZlVFS6S7pTgZ3JNUbpdRBgo7ah6 0iHe2fQzz+TgpvGoLI6S+iyWIXeJ0yJ+5hr73/WP8Hw89q8W68YYLrWuu3ZK/DKK rl+6O0DsRggm59lTQhg30D41ZBmBLJhK35b6g5AO6L5OKI+ZTG0cP+/0MxMmACzH KNNfEyOPpzdM0lo8P0aJ/OJiuA== -----END CERTIFICATE-----Generated at Thu Mar 26 02:41:20 2026 by rpki-client