$ rpki-client -vvf rpki.apnic.net/member_repository/A911DFC9/8D35E82E302C11F087764A2BC4F9AE02/dmXig10WAIXjHsJFIi1LL35IRAk.mft File: dmXig10WAIXjHsJFIi1LL35IRAk.mft (raw, json) Hash identifier: OQ9B7L0UDVgNEhPvq0K5aBBQbiuEbrqXrrS+ajFj6nw= Subject key identifier: 4F:A2:C0:C8:26:91:A4:1A:E3:9B:8B:DB:FB:24:98:F9:B6:7E:18:E5 Authority key identifier: 76:65:E2:83:5D:16:00:85:E3:1E:C2:45:22:2D:4B:2F:7E:48:44:09 Certificate issuer: /CN=A911DFC9/serialNumber=7665E2835D160085E31EC245222D4B2F7E484409 Certificate serial: C7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dmXig10WAIXjHsJFIi1LL35IRAk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911DFC9/8D35E82E302C11F087764A2BC4F9AE02/dmXig10WAIXjHsJFIi1LL35IRAk.mft Manifest number: A6 Signing time: Wed 25 Mar 2026 06:29:39 +0000 Manifest this update: Wed 25 Mar 2026 06:29:38 +0000 Manifest next update: Wed 01 Apr 2026 06:29:38 +0000 Files and hashes: 1: dmXig10WAIXjHsJFIi1LL35IRAk.crl (hash: 0zjAd1pwkuBFhB47rkCuIJzUdUmMNdR9v/hMJk8sqtE=) 2: CC3E7A3A30E111F09B76D311C4F9AE02.roa (hash: i0U6RLy91T9DkhNZtnLF7FlhidMvmsCPREqfKmoGIdU=) 3: CA5B991430E111F09B76D311C4F9AE02.roa (hash: PEnLi/2yYSoy8XLBMGLd/6VOl25IvlE5IW4q9j8andY=) 4: CBDD09E430E111F09B76D311C4F9AE02.roa (hash: reMz8lDbqv/5MKQ6Imr6fG4CgsSrFCmBFY2a5YJcGm4=) 5: CAE10F4030E111F09B76D311C4F9AE02.roa (hash: QYbToAo1d6nye+FsjzAnvw3/lP4Nx+MEududWG8oDyc=) 6: CB4E186A30E111F09B76D311C4F9AE02.roa (hash: XTFl/MyUGXYDLMXaMRa7HDON+jfgJcrSfnOokKAkziU=) 7: E73A5E40A28C11F0A6491A72C4F9AE02.roa (hash: mmlD29Jwj8h5f301RfKicLwmF3TuYi2j0tYABjJXZO0=) 8: 570B12E0562611F09F085F44C4F9AE02.roa (hash: fh4pbk7ZgyPKBaTjsRWjp1tC+xa/lcPj1cdrRM1oMjA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911DFC9/8D35E82E302C11F087764A2BC4F9AE02/dmXig10WAIXjHsJFIi1LL35IRAk.crl rsync://rpki.apnic.net/member_repository/A911DFC9/8D35E82E302C11F087764A2BC4F9AE02/dmXig10WAIXjHsJFIi1LL35IRAk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dmXig10WAIXjHsJFIi1LL35IRAk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 06:29:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 199 (0xc7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911DFC9, serialNumber=7665E2835D160085E31EC245222D4B2F7E484409 Validity Not Before: Mar 25 06:29:38 2026 GMT Not After : Apr 1 06:29:38 2026 GMT Subject: CN=69c380d3-b47c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:11:4f:c2:f4:c9:53:b3:20:60:e8:3a:29:19: 3d:f4:f3:fc:9a:65:f5:eb:7d:6d:bc:b0:b4:16:fa: 83:09:fc:8a:75:ed:24:15:56:85:51:f7:24:1d:1d: bc:fb:9d:83:a8:5c:e0:c0:0b:55:d5:6a:24:f8:2e: 7b:f9:c0:f9:de:c3:29:af:7e:2f:5d:b6:16:44:81: 21:32:cf:50:68:e8:98:3b:69:e8:ab:07:1d:44:46: ae:6b:f5:95:72:6f:20:c3:34:6d:ee:28:6a:9f:f7: 63:9b:db:0d:e4:fd:c7:c6:30:bf:5b:2a:de:fe:67: 45:e9:57:88:4f:f4:80:0e:ff:0e:97:a1:62:a3:ed: 26:70:3b:db:47:15:df:2e:37:e3:1f:50:45:56:84: 9d:c0:4e:02:2f:f5:ee:27:91:fd:9f:30:9d:1a:29: 3a:2f:98:06:c8:a6:d2:6e:4b:de:9f:25:23:f1:63: 28:29:04:fe:92:ff:3b:17:15:08:1f:68:8b:8c:75: c1:eb:b8:b9:b7:94:96:fa:e5:a6:3d:cb:19:c7:c1: 26:80:29:1e:3a:d9:b1:55:c7:9b:1e:13:70:d2:c7: d2:7b:f1:96:cd:b8:96:30:21:d4:1a:f9:e0:c0:fa: 42:7e:62:ac:39:d6:a0:97:07:43:2f:29:ed:2f:fa: 24:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:A2:C0:C8:26:91:A4:1A:E3:9B:8B:DB:FB:24:98:F9:B6:7E:18:E5 X509v3 Authority Key Identifier: keyid:76:65:E2:83:5D:16:00:85:E3:1E:C2:45:22:2D:4B:2F:7E:48:44:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911DFC9/8D35E82E302C11F087764A2BC4F9AE02/dmXig10WAIXjHsJFIi1LL35IRAk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dmXig10WAIXjHsJFIi1LL35IRAk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911DFC9/8D35E82E302C11F087764A2BC4F9AE02/dmXig10WAIXjHsJFIi1LL35IRAk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:8d:3e:12:7f:d7:7b:2b:ad:e3:03:6f:98:2b:f1:29:c8:ef: 50:d6:59:71:32:f8:62:ae:17:a5:8a:40:d1:4b:c2:64:ff:eb: 27:9f:16:dd:cf:a2:41:a6:cc:ea:c6:2e:2a:8e:93:db:24:5e: 2c:64:a8:66:22:d8:48:61:cc:b7:26:23:2e:98:ef:39:e9:fe: 54:87:53:59:7e:e6:2a:41:e6:42:1c:a0:79:7a:15:b6:47:2b: fa:e9:0d:62:03:76:9c:c0:21:01:58:01:6f:72:9e:9f:fa:7d: 8a:0a:2e:ce:80:a9:86:25:22:8f:d4:da:c2:58:13:29:62:0f: 39:f0:60:6f:26:61:b6:8e:5b:6b:44:ba:ed:65:5b:1e:58:52: 11:74:bc:4f:09:a7:f9:4a:75:1e:e1:40:e5:b0:cd:6a:65:1c: 06:e6:92:0c:33:c2:6c:68:53:8c:25:db:01:4b:dc:9f:4d:9a: 02:80:17:85:45:b0:c2:d0:53:84:b1:fd:5f:37:68:bd:d8:e4: 91:6a:54:f4:37:48:95:96:c6:df:ef:df:38:6a:fa:b3:5a:50: d4:ac:b6:32:a1:8d:3f:b7:a8:8f:14:6c:54:5d:81:0a:97:83: 65:00:f7:ff:65:66:89:f2:36:f3:aa:3f:8e:80:83:80:52:e2: f7:89:8b:2b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAMcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MURGQzkxMTAvBgNVBAUTKDc2NjVFMjgzNUQxNjAwODVFMzFFQzI0NTIyMkQ0QjJG N0U0ODQ0MDkwHhcNMjYwMzI1MDYyOTM4WhcNMjYwNDAxMDYyOTM4WjAYMRYwFAYD VQQDEw02OWMzODBkMy1iNDdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjRFPwvTJU7MgYOg6KRk99PP8mmX1631tvLC0FvqDCfyKde0kFVaFUfckHR28 +52DqFzgwAtV1Wok+C57+cD53sMpr34vXbYWRIEhMs9QaOiYO2noqwcdREaua/WV cm8gwzRt7ihqn/djm9sN5P3HxjC/Wyre/mdF6VeIT/SADv8Ol6Fio+0mcDvbRxXf LjfjH1BFVoSdwE4CL/XuJ5H9nzCdGik6L5gGyKbSbkvenyUj8WMoKQT+kv87FxUI H2iLjHXB67i5t5SW+uWmPcsZx8EmgCkeOtmxVcebHhNw0sfSe/GWzbiWMCHUGvng wPpCfmKsOdaglwdDLyntL/okHwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFE+iwMgm kaQa45uL2/skmPm2fhjlMB8GA1UdIwQYMBaAFHZl4oNdFgCF4x7CRSItSy9+SEQJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExREZDOS84RDM1RTgyRTMw MkMxMUYwODc3NjRBMkJDNEY5QUUwMi9kbVhpZzEwV0FJWGpIc0pGSWkxTEwzNUlS QWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2RtWGlnMTBXQUlYakhzSkZJaTFMTDM1SVJBay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx REZDOS84RDM1RTgyRTMwMkMxMUYwODc3NjRBMkJDNEY5QUUwMi9kbVhpZzEwV0FJ WGpIc0pGSWkxTEwzNUlSQWsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAWY0+En/Xeyut4wNvmCvxKcjvUNZZcTL4Yq4XpYpA0UvCZP/rJ58W3c+iQabM 6sYuKo6T2yReLGSoZiLYSGHMtyYjLpjvOen+VIdTWX7mKkHmQhygeXoVtkcr+ukN YgN2nMAhAVgBb3Ken/p9igouzoCphiUij9TawlgTKWIPOfBgbyZhto5ba0S67WVb HlhSEXS8Twmn+Up1HuFA5bDNamUcBuaSDDPCbGhTjCXbAUvcn02aAoAXhUWwwtBT hLH9XzdovdjkkWpU9DdIlZbG3+/fOGr6s1pQ1Ky2MqGNP7eojxRsVF2BCpeDZQD3 /2VmifI286o/joCDgFLi94mLKw== -----END CERTIFICATE-----Generated at Thu Mar 26 06:12:38 2026 by rpki-client