$ rpki-client -vvf rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.mft File: o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.mft (raw, json) Hash identifier: sSylFHf5n+Wl0W0EV87LPgjv8l70HcQbKBZRuhnqWbw= Subject key identifier: D8:28:76:2B:7D:8C:F4:26:BE:FF:8B:0A:F6:29:C5:86:6F:64:D1:E0 Authority key identifier: A3:B1:64:81:B5:D6:C1:79:FC:0B:73:AE:1E:0E:53:DE:96:76:41:DC Certificate issuer: /CN=A9158877/serialNumber=A3B16481B5D6C179FC0B73AE1E0E53DE967641DC Certificate serial: 0666 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.mft Manifest number: 0655 Signing time: Mon 20 Apr 2026 22:35:10 +0000 Manifest this update: Mon 20 Apr 2026 22:35:10 +0000 Manifest next update: Mon 27 Apr 2026 22:35:10 +0000 Files and hashes: 1: o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.crl (hash: cHTZtM1P+hjs9BPjxAAC0/s570+tge7iaoye2/G9U9w=) 2: 931EBB586D6E11EE8AF4BF30C4F9AE02.roa (hash: S1RgP1sPgVzK9sEPPWrODClUauDomS2mHohtTS+ssYc=) 3: DD21ADFACA7311EBAA6E0567C4F9AE02.roa (hash: kYZQI102gULrlo6M+q/iNg80nEai3K/GkCEv6GP+lLg=) 4: 58C1F4C06E2211EE98839C33C4F9AE02.roa (hash: +HKXGlrTWculTJ/ZbtVGZJnoqCsus/FX3Sf4l+Mr3Ho=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.crl rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Apr 2026 22:35:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1638 (0x666) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158877, serialNumber=A3B16481B5D6C179FC0B73AE1E0E53DE967641DC Validity Not Before: Apr 20 22:35:10 2026 GMT Not After : Apr 27 22:35:10 2026 GMT Subject: CN=69e6aa1e-ea28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:d2:c9:2c:c3:b4:c6:b4:83:19:58:3a:48:82: 26:21:e3:19:2a:e6:31:e2:c5:84:f1:25:ea:9d:7f: 82:35:29:ac:17:bb:3d:14:45:48:18:99:d6:fa:d2: d1:17:36:84:8e:7e:48:93:75:19:90:9b:10:bc:26: e7:8f:a5:3d:d7:9e:ba:4f:f7:4e:e9:f3:65:67:10: 65:39:e5:f6:65:33:03:fe:08:60:7a:77:30:12:cd: a7:be:66:02:1f:bc:06:af:4a:4f:e1:8d:69:99:f8: db:4a:a5:36:d8:81:4d:f7:80:e2:6f:e6:7b:57:e2: 07:c4:70:cb:2c:f9:98:70:29:5e:21:74:51:7c:d6: 85:6f:09:5a:ba:e0:b4:40:a0:33:f0:55:ea:7d:84: aa:56:9b:d7:53:18:4d:2d:b8:38:e6:be:79:55:a4: 4a:70:8b:e3:73:06:61:f6:ed:63:d2:77:e7:35:3f: c7:00:cd:0e:5f:c2:14:51:ef:cf:cb:3d:1f:5d:7d: d0:04:78:32:63:e1:cb:ee:5c:bc:45:af:09:bb:fa: 6e:af:97:e5:12:45:52:d9:70:c9:62:a8:93:55:5b: ca:ac:10:9c:cb:99:9a:d4:7f:2f:e3:6d:47:94:62: c0:1e:bb:ea:5e:f6:a9:25:dd:a5:78:4b:8b:84:d1: a4:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:28:76:2B:7D:8C:F4:26:BE:FF:8B:0A:F6:29:C5:86:6F:64:D1:E0 X509v3 Authority Key Identifier: keyid:A3:B1:64:81:B5:D6:C1:79:FC:0B:73:AE:1E:0E:53:DE:96:76:41:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:55:02:2d:20:d6:47:e9:8c:7c:dc:2e:01:e6:6d:ac:b7:99: 7e:9b:fd:64:0c:94:b4:95:4c:e2:1b:f9:34:e4:d4:99:c4:db: 12:4a:13:2a:35:9a:1b:a6:1a:b6:58:2f:ad:3c:45:d5:69:43: 6b:b6:57:f1:54:ab:1f:d5:ee:a0:21:24:1c:bc:5a:1a:4b:70: 9e:f8:72:91:1e:6e:45:3a:2b:19:64:14:21:20:63:37:e5:42: d2:0e:43:69:57:25:79:48:e8:ab:99:c7:c4:e5:bd:f3:6f:f0: 53:b5:df:71:b8:ec:e4:28:6e:5b:5c:00:c8:61:04:0b:5e:a6: 2e:49:65:3a:20:ef:65:c3:95:40:a5:6f:16:65:8c:fd:7b:b5: b1:86:b8:05:90:0a:e8:6c:8b:61:7f:39:0f:46:7a:0d:43:b6: f9:85:d4:00:86:94:24:f4:d8:16:87:5e:c5:5d:9f:08:6f:73: 53:1e:0e:0d:24:45:45:92:38:56:7a:72:0d:9f:80:6e:ab:d5: 8f:b1:be:8b:d0:04:ef:3b:d9:2f:c5:f0:7f:74:4b:4c:ce:b6: 82:0e:b4:e6:0a:ec:4c:5d:e9:c7:2a:05:87:de:02:4c:09:33: 10:e7:c1:2e:db:0f:81:a4:46:a2:ee:30:36:7c:81:1b:7b:4a: 42:53:49:43 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBmYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg4NzcxMTAvBgNVBAUTKEEzQjE2NDgxQjVENkMxNzlGQzBCNzNBRTFFMEU1M0RF OTY3NjQxREMwHhcNMjYwNDIwMjIzNTEwWhcNMjYwNDI3MjIzNTEwWjAYMRYwFAYD VQQDEw02OWU2YWExZS1lYTI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArNLJLMO0xrSDGVg6SIImIeMZKuYx4sWE8SXqnX+CNSmsF7s9FEVIGJnW+tLR FzaEjn5Ik3UZkJsQvCbnj6U91566T/dO6fNlZxBlOeX2ZTMD/ghgencwEs2nvmYC H7wGr0pP4Y1pmfjbSqU22IFN94Dib+Z7V+IHxHDLLPmYcCleIXRRfNaFbwlauuC0 QKAz8FXqfYSqVpvXUxhNLbg45r55VaRKcIvjcwZh9u1j0nfnNT/HAM0OX8IUUe/P yz0fXX3QBHgyY+HL7ly8Ra8Ju/pur5flEkVS2XDJYqiTVVvKrBCcy5ma1H8v421H lGLAHrvqXvapJd2leEuLhNGk2QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNgodit9 jPQmvv+LCvYpxYZvZNHgMB8GA1UdIwQYMBaAFKOxZIG11sF5/Atzrh4OU96WdkHc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODg3Ny9GMDU4NThCOENB NzAxMUVCQTlEMkRDNjFDNEY5QUUwMi9vN0ZrZ2JYV3dYbjhDM091SGc1VDNwWjJR ZHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL283RmtnYlhXd1huOEMzT3VIZzVUM3BaMlFkdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODg3Ny9GMDU4NThCOENBNzAxMUVCQTlEMkRDNjFDNEY5QUUwMi9vN0ZrZ2JYV3dY bjhDM091SGc1VDNwWjJRZHcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAFlUCLSDWR+mMfNwuAeZtrLeZfpv9ZAyUtJVM4hv5NOTUmcTbEkoTKjWaG6Ya tlgvrTxF1WlDa7ZX8VSrH9XuoCEkHLxaGktwnvhykR5uRTorGWQUISBjN+VC0g5D aVcleUjoq5nHxOW982/wU7Xfcbjs5ChuW1wAyGEEC16mLkllOiDvZcOVQKVvFmWM /Xu1sYa4BZAK6GyLYX85D0Z6DUO2+YXUAIaUJPTYFodexV2fCG9zUx4ODSRFRZI4 VnpyDZ+AbqvVj7G+i9AE7zvZL8Xwf3RLTM62gg605grsTF3pxyoFh94CTAkzEOfB LtsPgaRGou4wNnyBG3tKQlNJQw== -----END CERTIFICATE-----Generated at Wed Apr 22 03:34:06 2026 by rpki-client