$ rpki-client -vvf rpki.apnic.net/member_repository/A9144CB7/8C93F76CE17611EFB7981B19C4F9AE02/opgFnwZTffjAi4klX3lZQaMcGAA.mft File: opgFnwZTffjAi4klX3lZQaMcGAA.mft (raw, json) Hash identifier: qtsA7luJBvTxdoIa9+0QC0WPYi8cWMfZfHeN175vydI= Subject key identifier: C9:19:F1:AB:FE:F6:26:9D:8C:40:D2:48:2A:55:19:F0:E6:61:D0:D1 Authority key identifier: A2:98:05:9F:06:53:7D:F8:C0:8B:89:25:5F:79:59:41:A3:1C:18:00 Certificate issuer: /CN=A9144CB7/serialNumber=A298059F06537DF8C08B89255F795941A31C1800 Certificate serial: DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/opgFnwZTffjAi4klX3lZQaMcGAA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144CB7/8C93F76CE17611EFB7981B19C4F9AE02/opgFnwZTffjAi4klX3lZQaMcGAA.mft Manifest number: D4 Signing time: Fri 13 Mar 2026 05:40:32 +0000 Manifest this update: Fri 13 Mar 2026 05:40:32 +0000 Manifest next update: Fri 20 Mar 2026 05:40:32 +0000 Files and hashes: 1: opgFnwZTffjAi4klX3lZQaMcGAA.crl (hash: 81lPNJMB0FpS9R4CQ9KxqmVE7oELlS7dOkFR+RTkSt4=) 2: 903E0F1652BD11F0A9261F57C4F9AE02.roa (hash: dmB1cr7byswXq/X1M5OhCF6oVNLPlMisHj2PV9sIXP0=) 3: E8716FD4EA3511EF89116C52C4F9AE02.roa (hash: 0FCY4nM/xiPTvsko2lPHjPRBl+NB5R5liczHspFuXXU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144CB7/8C93F76CE17611EFB7981B19C4F9AE02/opgFnwZTffjAi4klX3lZQaMcGAA.crl rsync://rpki.apnic.net/member_repository/A9144CB7/8C93F76CE17611EFB7981B19C4F9AE02/opgFnwZTffjAi4klX3lZQaMcGAA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/opgFnwZTffjAi4klX3lZQaMcGAA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Mar 2026 05:40:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 220 (0xdc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144CB7, serialNumber=A298059F06537DF8C08B89255F795941A31C1800 Validity Not Before: Mar 13 05:40:32 2026 GMT Not After : Mar 20 05:40:32 2026 GMT Subject: CN=69b3a350-938b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:e0:a2:ea:54:dc:ae:3d:b3:c2:39:99:4b:5f: 94:0b:98:9d:c9:e3:69:22:d0:a5:64:a1:8d:72:5e: 27:f9:1e:86:10:32:24:a7:01:3d:3d:2c:57:ef:56: c5:1c:ed:d1:72:c6:a8:0f:b9:e2:d1:10:36:ea:74: cb:3b:1e:ec:21:fc:a5:84:be:ab:18:7a:77:56:82: 92:72:ac:b3:eb:44:7b:bd:8d:7d:20:a3:4e:5f:26: 87:af:63:c9:7c:25:a8:4c:7a:6c:c3:20:5b:a3:e2: a4:62:a7:8d:ab:2f:bb:e8:3e:bb:56:6e:42:ea:99: 4b:a8:e5:2f:5c:16:54:0a:97:51:84:92:f6:ae:ff: 4d:62:00:71:7e:db:be:18:c8:91:6c:7f:9c:28:ca: 5a:b5:ba:75:cf:e2:f4:e1:67:ef:71:61:b3:90:e0: d2:47:c9:44:7b:df:23:76:81:93:b3:2b:86:f0:d2: 57:fc:f7:ed:48:99:9a:59:b2:c9:29:bd:bc:f0:35: f5:31:f2:e1:a6:d6:71:f0:c4:dd:b9:4c:3f:82:e1: fc:88:bb:0b:0c:9a:94:ac:26:59:70:b3:20:0b:5e: b3:e9:47:24:ba:ff:43:be:fd:61:b4:b2:61:5e:a6: 56:43:d9:86:f4:52:78:56:38:54:b8:b5:44:c4:c4: bb:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:19:F1:AB:FE:F6:26:9D:8C:40:D2:48:2A:55:19:F0:E6:61:D0:D1 X509v3 Authority Key Identifier: keyid:A2:98:05:9F:06:53:7D:F8:C0:8B:89:25:5F:79:59:41:A3:1C:18:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144CB7/8C93F76CE17611EFB7981B19C4F9AE02/opgFnwZTffjAi4klX3lZQaMcGAA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/opgFnwZTffjAi4klX3lZQaMcGAA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144CB7/8C93F76CE17611EFB7981B19C4F9AE02/opgFnwZTffjAi4klX3lZQaMcGAA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:78:86:cd:92:bb:9e:71:f1:ac:a9:c5:a4:26:e5:34:af:6d: ba:c6:66:18:8e:58:e8:2d:67:ed:10:a7:01:d2:37:d4:67:96: d2:9c:b8:b9:7d:7d:38:d6:fc:e1:18:bc:0e:14:fe:93:72:91: 5a:6a:85:89:5e:a2:b1:2c:df:dc:a4:18:88:29:c0:2a:09:b8: a0:7d:7c:fe:e7:c6:ec:cb:0f:f8:59:db:d6:5a:3c:f0:df:2d: 3f:3f:ae:ab:0a:0c:d4:1a:52:6d:f9:04:9b:38:ae:ec:5b:2d: 97:47:44:eb:7f:46:6b:3f:df:04:0b:60:48:1e:c3:dc:c3:cb: 37:e8:ed:d8:7e:61:2e:b0:8c:14:cf:c9:82:5d:17:f2:9f:6a: b6:8e:8a:b2:81:dd:c8:11:e5:fb:94:6c:7b:df:e7:c9:b2:98: d3:3c:e9:45:41:48:9d:fc:0f:39:fd:75:e2:eb:93:f5:2a:b7: a2:c7:f0:7c:ec:e3:1b:b9:f4:d3:bc:53:1f:8c:8a:76:37:47: 54:b7:fa:b4:5d:a2:6c:75:76:87:8e:fd:c8:0f:80:09:d1:77: b4:b4:74:78:8b:21:29:03:14:e1:c2:e1:76:cc:40:0b:fa:77: 97:54:96:bd:50:7e:a4:6a:ea:42:b9:e3:93:ff:b4:e7:4f:9d: fa:12:95:51 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICANwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDRDQjcxMTAvBgNVBAUTKEEyOTgwNTlGMDY1MzdERjhDMDhCODkyNTVGNzk1OTQx QTMxQzE4MDAwHhcNMjYwMzEzMDU0MDMyWhcNMjYwMzIwMDU0MDMyWjAYMRYwFAYD VQQDEw02OWIzYTM1MC05MzhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApOCi6lTcrj2zwjmZS1+UC5idyeNpItClZKGNcl4n+R6GEDIkpwE9PSxX71bF HO3RcsaoD7ni0RA26nTLOx7sIfylhL6rGHp3VoKScqyz60R7vY19IKNOXyaHr2PJ fCWoTHpswyBbo+KkYqeNqy+76D67Vm5C6plLqOUvXBZUCpdRhJL2rv9NYgBxftu+ GMiRbH+cKMpatbp1z+L04WfvcWGzkODSR8lEe98jdoGTsyuG8NJX/PftSJmaWbLJ Kb288DX1MfLhptZx8MTduUw/guH8iLsLDJqUrCZZcLMgC16z6Uckuv9Dvv1htLJh XqZWQ9mG9FJ4VjhUuLVExMS7QQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMkZ8av+ 9iadjEDSSCpVGfDmYdDRMB8GA1UdIwQYMBaAFKKYBZ8GU334wIuJJV95WUGjHBgA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NENCNy84QzkzRjc2Q0Ux NzYxMUVGQjc5ODFCMTlDNEY5QUUwMi9vcGdGbndaVGZmakFpNGtsWDNsWlFhTWNH QUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29wZ0Zud1pUZmZqQWk0a2xYM2xaUWFNY0dBQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NENCNy84QzkzRjc2Q0UxNzYxMUVGQjc5ODFCMTlDNEY5QUUwMi9vcGdGbndaVGZm akFpNGtsWDNsWlFhTWNHQUEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAIXiGzZK7nnHxrKnFpCblNK9tusZmGI5Y6C1n7RCnAdI31GeW0py4uX19ONb8 4Ri8DhT+k3KRWmqFiV6isSzf3KQYiCnAKgm4oH18/ufG7MsP+Fnb1lo88N8tPz+u qwoM1BpSbfkEmziu7Fstl0dE639Gaz/fBAtgSB7D3MPLN+jt2H5hLrCMFM/Jgl0X 8p9qto6KsoHdyBHl+5Rse9/nybKY0zzpRUFInfwPOf114uuT9Sq3osfwfOzjG7n0 07xTH4yKdjdHVLf6tF2ibHV2h479yA+ACdF3tLR0eIshKQMU4cLhdsxAC/p3l1SW vVB+pGrqQrnjk/+050+d+hKVUQ== -----END CERTIFICATE-----Generated at Fri Mar 13 08:51:49 2026 by rpki-client