$ rpki-client -vvf rpki.apnic.net/member_repository/A9128DE9/D0049F861BD511EA80CBCF36C4F9AE02/RiOppNLqhemPtaEaDSywgDiHjw8.mft File: RiOppNLqhemPtaEaDSywgDiHjw8.mft (raw, json) Hash identifier: hPPmk3h7FWKC8oAzqNvSIzr/IhNdvGlnqu7KS86YDRA= Subject key identifier: DC:8E:9F:3B:99:FF:E2:57:DA:FF:6B:6C:1F:F7:09:C7:4A:29:C4:E7 Authority key identifier: 46:23:A9:A4:D2:EA:85:E9:8F:B5:A1:1A:0D:2C:B0:80:38:87:8F:0F Certificate issuer: /CN=A9128DE9/serialNumber=4623A9A4D2EA85E98FB5A11A0D2CB08038878F0F Certificate serial: 0C68 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RiOppNLqhemPtaEaDSywgDiHjw8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128DE9/D0049F861BD511EA80CBCF36C4F9AE02/RiOppNLqhemPtaEaDSywgDiHjw8.mft Manifest number: 0C5F Signing time: Mon 02 Mar 2026 18:34:47 +0000 Manifest this update: Mon 02 Mar 2026 18:34:46 +0000 Manifest next update: Mon 09 Mar 2026 18:34:46 +0000 Files and hashes: 1: RiOppNLqhemPtaEaDSywgDiHjw8.crl (hash: eT4ER2r5OpslSgjErMeSiZTR+mxkQnVBDIMZXheicWI=) 2: 75E6DD481BDA11EAB3F45D44C4F9AE02.roa (hash: n9Crm/X8BIyWrbtx9XSuVfzuzzUyJa39Yk0aZo9vy/0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128DE9/D0049F861BD511EA80CBCF36C4F9AE02/RiOppNLqhemPtaEaDSywgDiHjw8.crl rsync://rpki.apnic.net/member_repository/A9128DE9/D0049F861BD511EA80CBCF36C4F9AE02/RiOppNLqhemPtaEaDSywgDiHjw8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RiOppNLqhemPtaEaDSywgDiHjw8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 18:34:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3176 (0xc68) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128DE9, serialNumber=4623A9A4D2EA85E98FB5A11A0D2CB08038878F0F Validity Not Before: Mar 2 18:34:46 2026 GMT Not After : Mar 9 18:34:46 2026 GMT Subject: CN=69a5d846-9204 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:5b:1a:ce:c4:67:2d:cf:00:2f:b1:52:ff:d6: c2:87:86:76:05:01:9a:a2:fa:e5:9f:f9:01:50:d5: c7:47:5e:3b:60:87:5c:77:1d:f6:9b:39:b9:fe:66: 87:2e:24:47:3c:0a:7f:56:bf:4e:f7:d4:fe:e4:b1: 87:dd:77:6b:31:1f:1b:60:eb:9f:9a:16:e7:f9:00: 17:02:73:67:d9:15:43:b1:75:75:a9:95:61:31:32: 83:87:a2:f1:53:0d:8f:eb:a1:48:9d:c2:38:35:8b: 6d:44:71:57:9e:54:dc:4a:71:c1:90:c7:98:f6:a2: 2d:68:41:2d:86:1b:23:30:5b:b0:28:48:12:d0:86: cd:81:cf:3f:eb:85:31:0a:9e:b6:c9:3b:4a:fe:95: b2:a1:94:e9:0b:bd:f2:e5:a2:8f:b2:56:b8:a3:a8: 3e:77:25:9f:da:53:d6:67:ff:71:db:76:26:15:05: af:76:84:58:54:e8:9e:36:ef:44:57:8a:b8:86:a2: 93:ca:62:b8:5c:15:39:68:6e:13:72:fe:42:01:8e: 52:2b:02:63:7d:ce:08:78:cf:1a:c6:72:e6:4c:2e: 7a:ab:a9:b5:47:e5:f6:bd:fd:6a:03:3b:7c:d3:08: 66:f5:a9:8f:19:04:87:07:ca:ff:14:87:38:96:bc: 14:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:8E:9F:3B:99:FF:E2:57:DA:FF:6B:6C:1F:F7:09:C7:4A:29:C4:E7 X509v3 Authority Key Identifier: keyid:46:23:A9:A4:D2:EA:85:E9:8F:B5:A1:1A:0D:2C:B0:80:38:87:8F:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128DE9/D0049F861BD511EA80CBCF36C4F9AE02/RiOppNLqhemPtaEaDSywgDiHjw8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RiOppNLqhemPtaEaDSywgDiHjw8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128DE9/D0049F861BD511EA80CBCF36C4F9AE02/RiOppNLqhemPtaEaDSywgDiHjw8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:57:d1:5e:3e:70:a5:63:7d:08:e2:69:f5:f8:41:64:4a:a9: f6:cc:f8:51:68:6a:8b:2b:93:89:31:0d:cb:8d:f0:7f:d1:44: de:83:ec:34:09:74:55:f1:1c:b5:f2:95:7c:0c:63:3e:cd:40: fc:d7:3a:e9:01:63:35:a7:68:96:c6:8f:ce:f9:bf:56:a5:ba: e8:4b:79:4c:89:fb:f9:d3:ea:ac:5b:37:c5:7f:60:db:39:b6: c2:36:5e:95:6d:e0:b0:38:27:59:b8:b9:9f:62:8d:9e:1d:3e: 0a:cb:ed:9f:92:07:7d:d1:d1:ac:ff:89:d0:09:9d:9d:3c:d9: 54:78:7f:8f:aa:c6:e4:65:82:cc:c6:db:9f:7e:0a:67:02:96: 63:77:5a:96:31:32:4b:cd:1f:f2:89:9f:d5:85:5b:13:4b:c0: 0d:26:d5:9e:a7:91:45:3d:48:85:ee:4c:58:08:d5:1a:cd:c9: e7:36:d9:7e:7f:fc:3c:77:7f:05:8d:d7:5b:34:a1:b7:3c:64: 43:a7:19:aa:d4:af:40:e1:12:87:2f:07:97:60:bd:01:6a:38: e6:be:2f:25:6c:f0:cb:cc:d5:bb:4e:95:06:78:fd:07:3e:10: 2a:84:77:0d:72:f9:2e:89:80:a4:bd:b5:66:0b:ce:90:2e:86: bc:f2:73:2c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDGgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjhERTkxMTAvBgNVBAUTKDQ2MjNBOUE0RDJFQTg1RTk4RkI1QTExQTBEMkNCMDgw Mzg4NzhGMEYwHhcNMjYwMzAyMTgzNDQ2WhcNMjYwMzA5MTgzNDQ2WjAYMRYwFAYD VQQDEw02OWE1ZDg0Ni05MjA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuVsazsRnLc8AL7FS/9bCh4Z2BQGaovrln/kBUNXHR147YIdcdx32mzm5/maH LiRHPAp/Vr9O99T+5LGH3XdrMR8bYOufmhbn+QAXAnNn2RVDsXV1qZVhMTKDh6Lx Uw2P66FIncI4NYttRHFXnlTcSnHBkMeY9qItaEEthhsjMFuwKEgS0IbNgc8/64Ux Cp62yTtK/pWyoZTpC73y5aKPsla4o6g+dyWf2lPWZ/9x23YmFQWvdoRYVOieNu9E V4q4hqKTymK4XBU5aG4Tcv5CAY5SKwJjfc4IeM8axnLmTC56q6m1R+X2vf1qAzt8 0whm9amPGQSHB8r/FIc4lrwUPQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNyOnzuZ /+JX2v9rbB/3CcdKKcTnMB8GA1UdIwQYMBaAFEYjqaTS6oXpj7WhGg0ssIA4h48P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOERFOS9EMDA0OUY4NjFC RDUxMUVBODBDQkNGMzZDNEY5QUUwMi9SaU9wcE5McWhlbVB0YUVhRFN5d2dEaUhq dzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1JpT3BwTkxxaGVtUHRhRWFEU3l3Z0RpSGp3OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OERFOS9EMDA0OUY4NjFCRDUxMUVBODBDQkNGMzZDNEY5QUUwMi9SaU9wcE5McWhl bVB0YUVhRFN5d2dEaUhqdzgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAjVfRXj5wpWN9COJp9fhBZEqp9sz4UWhqiyuTiTENy43wf9FE3oPsNAl0VfEc tfKVfAxjPs1A/Nc66QFjNadolsaPzvm/VqW66Et5TIn7+dPqrFs3xX9g2zm2wjZe lW3gsDgnWbi5n2KNnh0+Csvtn5IHfdHRrP+J0AmdnTzZVHh/j6rG5GWCzMbbn34K ZwKWY3daljEyS80f8omf1YVbE0vADSbVnqeRRT1Ihe5MWAjVGs3J5zbZfn/8PHd/ BY3XWzShtzxkQ6cZqtSvQOEShy8Hl2C9AWo45r4vJWzwy8zVu06VBnj9Bz4QKoR3 DXL5LomApL21ZgvOkC6GvPJzLA== -----END CERTIFICATE-----Generated at Wed Mar 4 08:39:59 2026 by rpki-client