$ rpki-client -vvf rpki.apnic.net/member_repository/A9112BDE/5E128FFC3E7D11EBBBEF274CC4F9AE02/DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.mft File: DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.mft (raw, json) Hash identifier: V7/E+hC2TNS1MF4yTURavCY+V8PsXbGimv70ttHx1Vw= Subject key identifier: A0:4A:2B:4E:ED:06:D2:AD:4D:11:12:CA:34:7C:A5:FD:14:F3:4F:43 Authority key identifier: 0D:03:46:C8:A2:66:BE:6A:DC:E4:B7:E8:39:50:AF:5F:E1:EB:E5:C4 Certificate issuer: /CN=A9112BDE/serialNumber=0D0346C8A266BE6ADCE4B7E83950AF5FE1EBE5C4 Certificate serial: 07B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9112BDE/5E128FFC3E7D11EBBBEF274CC4F9AE02/DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.mft Manifest number: 07A9 Signing time: Tue 24 Mar 2026 21:12:13 +0000 Manifest this update: Tue 24 Mar 2026 21:12:13 +0000 Manifest next update: Tue 31 Mar 2026 21:12:13 +0000 Files and hashes: 1: DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.crl (hash: X3TqR7EfFCdt4biSPPgmHebFYBQHyeKA+tuxiDCRZ4g=) 2: 511EBFFE3E7E11EB979F564CC4F9AE02.roa (hash: 9KtZPuEFaySBfCkE/NQSz20UG0qNsgPpWhyyVzH5fGo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9112BDE/5E128FFC3E7D11EBBBEF274CC4F9AE02/DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.crl rsync://rpki.apnic.net/member_repository/A9112BDE/5E128FFC3E7D11EBBBEF274CC4F9AE02/DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 21:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1970 (0x7b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9112BDE, serialNumber=0D0346C8A266BE6ADCE4B7E83950AF5FE1EBE5C4 Validity Not Before: Mar 24 21:12:13 2026 GMT Not After : Mar 31 21:12:13 2026 GMT Subject: CN=69c2fe2d-ed60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:b3:07:09:13:a2:d4:84:ff:9c:04:14:ae:dc: dc:76:95:37:e8:df:f9:ba:ce:27:7a:f1:97:6e:98: fb:80:30:50:07:6b:2e:01:af:d1:45:19:d8:aa:1c: c4:46:6e:f9:72:83:8e:46:af:ac:81:08:6d:d4:51: ce:a2:30:65:7c:9b:de:7d:70:56:98:43:34:53:a2: 8d:4b:e6:cf:17:02:39:2f:23:a9:c5:f0:56:1a:8d: 96:a3:3e:2a:60:7f:d7:21:e3:f3:02:8d:28:41:63: 5c:9b:43:88:c2:4c:87:a0:5d:60:eb:98:09:ac:9d: 84:e0:ab:1e:52:98:5d:0d:fa:95:14:a6:9a:7e:43: 74:aa:74:d4:3f:d3:59:e3:e9:95:7c:48:0a:fa:5f: 56:59:74:35:5d:c4:2a:b8:cf:32:86:c4:60:fc:c9: 2d:a5:d4:14:d0:8d:eb:1e:ec:32:2b:59:94:0c:90: 22:c8:02:d2:75:92:56:e6:e9:b0:4f:02:c4:64:3b: c0:ab:2f:e9:3e:e0:16:2e:38:16:6a:dd:42:c9:b3: 7c:f3:06:b6:aa:e1:e3:db:40:d6:65:1e:67:f9:aa: 76:fa:20:ea:90:e4:81:5d:ec:cb:df:8d:47:02:c8: 2c:97:4d:58:97:9f:61:83:3f:a3:b1:e3:c5:32:0e: 2b:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:4A:2B:4E:ED:06:D2:AD:4D:11:12:CA:34:7C:A5:FD:14:F3:4F:43 X509v3 Authority Key Identifier: keyid:0D:03:46:C8:A2:66:BE:6A:DC:E4:B7:E8:39:50:AF:5F:E1:EB:E5:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9112BDE/5E128FFC3E7D11EBBBEF274CC4F9AE02/DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112BDE/5E128FFC3E7D11EBBBEF274CC4F9AE02/DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:9f:cb:a6:83:56:6f:c0:17:d5:81:5f:04:d5:88:a9:a6:ae: ac:9b:12:47:35:95:ab:9b:59:af:e1:99:a5:89:fa:80:83:95: e8:79:45:98:a9:16:a1:77:9a:f8:3f:b6:27:79:08:4e:dc:9f: 24:c5:b0:1c:f9:c6:cc:7a:77:f5:80:24:a9:5d:9c:12:93:7d: 02:88:42:c0:b7:07:44:20:f3:ab:bb:fb:74:d1:9d:87:f6:ff: b6:63:4e:b5:d4:f8:50:a2:e8:4c:1d:3a:69:00:63:c0:39:1d: 84:4b:25:de:61:a8:60:32:6a:91:38:79:2c:90:f1:38:03:bf: 23:dd:be:da:fd:bb:16:35:ca:aa:5e:5c:33:84:ff:5b:fb:87: 34:0b:da:7b:7b:78:0e:1e:a5:23:78:33:29:7a:bc:0e:f0:a9: ad:e5:38:b9:c1:cf:3f:88:12:ce:e3:21:45:80:b0:61:84:00: 1a:74:49:21:38:24:93:56:3f:3a:21:6d:fe:d9:c4:a3:22:3e: 74:37:bf:a1:e1:0f:9a:d9:f7:20:73:5e:c9:9a:d8:5d:b1:70: 5a:15:35:37:46:60:f8:2e:17:1d:1d:da:7c:ad:c0:fe:97:f6: d2:39:a1:68:0a:d9:db:17:b0:ef:1b:23:0d:44:a6:8a:65:5b: e0:77:03:46 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICB7IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTJCREUxMTAvBgNVBAUTKDBEMDM0NkM4QTI2NkJFNkFEQ0U0QjdFODM5NTBBRjVG RTFFQkU1QzQwHhcNMjYwMzI0MjExMjEzWhcNMjYwMzMxMjExMjEzWjAYMRYwFAYD VQQDEw02OWMyZmUyZC1lZDYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwLMHCROi1IT/nAQUrtzcdpU36N/5us4nevGXbpj7gDBQB2suAa/RRRnYqhzE Rm75coOORq+sgQht1FHOojBlfJvefXBWmEM0U6KNS+bPFwI5LyOpxfBWGo2Woz4q YH/XIePzAo0oQWNcm0OIwkyHoF1g65gJrJ2E4KseUphdDfqVFKaafkN0qnTUP9NZ 4+mVfEgK+l9WWXQ1XcQquM8yhsRg/MktpdQU0I3rHuwyK1mUDJAiyALSdZJW5umw TwLEZDvAqy/pPuAWLjgWat1CybN88wa2quHj20DWZR5n+ap2+iDqkOSBXezL341H Asgsl01Yl59hgz+jsePFMg4r8wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKBKK07t BtKtTRESyjR8pf0U809DMB8GA1UdIwQYMBaAFA0DRsiiZr5q3OS36DlQr1/h6+XE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMkJERS81RTEyOEZGQzNF N0QxMUVCQkJFRjI3NENDNEY5QUUwMi9EUU5HeUtKbXZtcmM1TGZvT1ZDdlgtSHI1 Y1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RRTkd5S0ptdm1yYzVMZm9PVkN2WC1IcjVjUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MkJERS81RTEyOEZGQzNFN0QxMUVCQkJFRjI3NENDNEY5QUUwMi9EUU5HeUtKbXZt cmM1TGZvT1ZDdlgtSHI1Y1EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAgp/LpoNWb8AX1YFfBNWIqaaurJsSRzWVq5tZr+GZpYn6gIOV6HlFmKkWoXea +D+2J3kITtyfJMWwHPnGzHp39YAkqV2cEpN9AohCwLcHRCDzq7v7dNGdh/b/tmNO tdT4UKLoTB06aQBjwDkdhEsl3mGoYDJqkTh5LJDxOAO/I92+2v27FjXKql5cM4T/ W/uHNAvae3t4Dh6lI3gzKXq8DvCpreU4ucHPP4gSzuMhRYCwYYQAGnRJITgkk1Y/ OiFt/tnEoyI+dDe/oeEPmtn3IHNeyZrYXbFwWhU1N0Zg+C4XHR3afK3A/pf20jmh aArZ2xew7xsjDUSmimVb4HcDRg== -----END CERTIFICATE-----Generated at Thu Mar 26 13:08:45 2026 by rpki-client