$ rpki-client -vvf rpki.apnic.net/member_repository/A9126A3C/7BFB4CACC6A011EF928B7960C4F9AE02/7oGaSbjIqEQT7o_oMm7xN_UYXGY.mft File: 7oGaSbjIqEQT7o_oMm7xN_UYXGY.mft (raw, json) Hash identifier: JYXcI5PhJruIxliLfQoe/ReglS5e3Ot5FpQXS+4q+o4= Subject key identifier: 8F:A8:BF:06:CE:1F:11:DD:3C:0A:93:47:FB:A0:16:65:E3:C3:BB:F7 Authority key identifier: EE:81:9A:49:B8:C8:A8:44:13:EE:8F:E8:32:6E:F1:37:F5:18:5C:66 Certificate issuer: /CN=A9126A3C/serialNumber=EE819A49B8C8A84413EE8FE8326EF137F5185C66 Certificate serial: F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7oGaSbjIqEQT7o_oMm7xN_UYXGY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9126A3C/7BFB4CACC6A011EF928B7960C4F9AE02/7oGaSbjIqEQT7o_oMm7xN_UYXGY.mft Manifest number: EE Signing time: Fri 27 Mar 2026 05:56:06 +0000 Manifest this update: Fri 27 Mar 2026 05:56:05 +0000 Manifest next update: Fri 03 Apr 2026 05:56:05 +0000 Files and hashes: 1: 7oGaSbjIqEQT7o_oMm7xN_UYXGY.crl (hash: 1nWgidP+s66hniJdrONW7nHFEvnU9JreAV8uw3h2KG8=) 2: 16E1C8ECC6DB11EFBDDB8A0AC4F9AE02.roa (hash: aHk0t2Hy2gHuEUEuWNA047fzWOktHu8vocVNcFbAJjo=) 3: E11BD76CC6D911EF8CC3C849C4F9AE02.roa (hash: qt3HSjdPuhwdbu7y+IBM5bXY+abtccfmEZI2ywYOKv4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9126A3C/7BFB4CACC6A011EF928B7960C4F9AE02/7oGaSbjIqEQT7o_oMm7xN_UYXGY.crl rsync://rpki.apnic.net/member_repository/A9126A3C/7BFB4CACC6A011EF928B7960C4F9AE02/7oGaSbjIqEQT7o_oMm7xN_UYXGY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7oGaSbjIqEQT7o_oMm7xN_UYXGY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 05:56:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 247 (0xf7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9126A3C, serialNumber=EE819A49B8C8A84413EE8FE8326EF137F5185C66 Validity Not Before: Mar 27 05:56:05 2026 GMT Not After : Apr 3 05:56:05 2026 GMT Subject: CN=69c61bf6-39f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:d6:63:17:b9:4a:de:b7:c8:8b:be:46:7b:c5: ba:41:c5:c9:e5:b7:b7:2e:90:d3:12:d4:0b:52:60: b8:14:1c:27:33:b7:20:43:f6:39:ca:f9:53:17:88: 79:6b:9f:6a:d8:47:c0:b8:aa:03:e9:63:18:68:ac: 78:08:d8:be:a4:b3:3a:88:9c:61:2b:3a:6b:33:17: ba:2f:fd:2b:cf:f9:b3:19:6b:6c:3c:dd:37:78:98: 19:8f:aa:58:88:dc:d3:2b:46:39:09:cd:3d:49:d9: 64:b5:a0:c6:5c:1b:78:a7:11:31:7a:61:91:c3:74: 2e:97:ee:23:db:f4:86:7a:21:4e:66:a2:6b:61:06: 6a:71:98:9d:7b:7e:17:10:5d:59:27:1b:70:e7:7c: c6:40:e8:95:71:ab:d5:91:58:bf:97:b0:73:8a:9c: ed:5a:41:ae:79:37:33:a1:24:6f:ab:be:88:cf:a7: b8:64:45:77:b1:79:bc:bc:7a:b8:74:a8:f8:35:82: 2f:2a:f4:68:f9:4b:12:71:be:a3:d3:dc:a7:88:b6: f7:fd:14:34:69:63:3a:86:04:90:62:e2:3e:76:60: 5a:02:16:de:ad:06:97:d8:e1:36:b3:6b:5d:21:eb: 61:6b:84:df:e3:e0:3b:e9:dd:af:d6:2c:b2:a6:b2: 2a:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:A8:BF:06:CE:1F:11:DD:3C:0A:93:47:FB:A0:16:65:E3:C3:BB:F7 X509v3 Authority Key Identifier: keyid:EE:81:9A:49:B8:C8:A8:44:13:EE:8F:E8:32:6E:F1:37:F5:18:5C:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9126A3C/7BFB4CACC6A011EF928B7960C4F9AE02/7oGaSbjIqEQT7o_oMm7xN_UYXGY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7oGaSbjIqEQT7o_oMm7xN_UYXGY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9126A3C/7BFB4CACC6A011EF928B7960C4F9AE02/7oGaSbjIqEQT7o_oMm7xN_UYXGY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:a6:5b:c8:6d:38:64:ac:ec:57:cf:3d:09:1a:2a:8a:7e:ed: dc:98:cb:8e:6f:d7:e1:42:29:f0:b0:00:73:66:cd:b0:ff:9e: b2:52:24:a8:9d:05:2c:88:55:5f:3e:84:73:a9:aa:7e:29:66: 33:6f:97:0c:54:4f:82:68:19:24:6a:58:d6:1d:29:f9:03:b9: c6:39:f9:db:f2:99:7e:96:ee:73:8e:ce:52:ab:a0:a8:33:f4: af:8b:e7:db:9e:f9:a9:91:f1:b0:f3:b6:44:00:43:b0:cf:ea: 8a:9d:e3:46:31:4e:2d:2d:dc:c5:9c:b2:13:0a:bc:f9:3d:be: 43:93:21:ca:ab:95:24:5f:c3:7e:4c:68:22:57:5e:a1:69:21: 90:6a:33:70:0e:bb:59:af:86:fa:b4:ff:7c:60:a4:78:25:ff: 00:1d:60:38:a2:6f:70:a8:3f:eb:4f:23:20:f4:7d:4d:c1:9e: 80:0f:9a:e1:31:8c:3a:a6:fd:1a:f3:a7:cc:a8:51:34:13:7e: a3:3b:4f:8e:69:10:d1:2e:44:f4:41:a1:0d:53:d4:0d:46:9e: dd:3a:93:71:7d:09:67:90:3a:c7:18:c2:e8:9d:c7:17:a7:68: 0d:37:0a:ca:2b:9a:58:ad:e2:c0:33:09:66:d7:ba:a7:39:03: be:e0:52:8a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAPcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjZBM0MxMTAvBgNVBAUTKEVFODE5QTQ5QjhDOEE4NDQxM0VFOEZFODMyNkVGMTM3 RjUxODVDNjYwHhcNMjYwMzI3MDU1NjA1WhcNMjYwNDAzMDU1NjA1WjAYMRYwFAYD VQQDEw02OWM2MWJmNi0zOWY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA59ZjF7lK3rfIi75Ge8W6QcXJ5be3LpDTEtQLUmC4FBwnM7cgQ/Y5yvlTF4h5 a59q2EfAuKoD6WMYaKx4CNi+pLM6iJxhKzprMxe6L/0rz/mzGWtsPN03eJgZj6pY iNzTK0Y5Cc09SdlktaDGXBt4pxExemGRw3Qul+4j2/SGeiFOZqJrYQZqcZide34X EF1ZJxtw53zGQOiVcavVkVi/l7BzipztWkGueTczoSRvq76Iz6e4ZEV3sXm8vHq4 dKj4NYIvKvRo+UsScb6j09yniLb3/RQ0aWM6hgSQYuI+dmBaAhberQaX2OE2s2td Ietha4Tf4+A76d2v1iyyprIqNQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFI+ovwbO HxHdPAqTR/ugFmXjw7v3MB8GA1UdIwQYMBaAFO6Bmkm4yKhEE+6P6DJu8Tf1GFxm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNkEzQy83QkZCNENBQ0M2 QTAxMUVGOTI4Qjc5NjBDNEY5QUUwMi83b0dhU2JqSXFFUVQ3b19vTW03eE5fVVlY R1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdvR2FTYmpJcUVRVDdvX29NbTd4Tl9VWVhHWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NkEzQy83QkZCNENBQ0M2QTAxMUVGOTI4Qjc5NjBDNEY5QUUwMi83b0dhU2JqSXFF UVQ3b19vTW03eE5fVVlYR1kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEASaZbyG04ZKzsV889CRoqin7t3JjLjm/X4UIp8LAAc2bNsP+eslIkqJ0FLIhV Xz6Ec6mqfilmM2+XDFRPgmgZJGpY1h0p+QO5xjn52/KZfpbuc47OUqugqDP0r4vn 2575qZHxsPO2RABDsM/qip3jRjFOLS3cxZyyEwq8+T2+Q5MhyquVJF/DfkxoIlde oWkhkGozcA67Wa+G+rT/fGCkeCX/AB1gOKJvcKg/608jIPR9TcGegA+a4TGMOqb9 GvOnzKhRNBN+oztPjmkQ0S5E9EGhDVPUDUae3TqTcX0JZ5A6xxjC6J3HF6doDTcK yiuaWK3iwDMJZte6pzkDvuBSig== -----END CERTIFICATE-----Generated at Fri Mar 27 22:27:20 2026 by rpki-client