$ rpki-client -vvf rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.mft File: drnTOfrNYrR-k-iITehQOW2877Q.mft (raw, json) Hash identifier: bTaMJa7w+bj7RBKuAkiOdV8BMZBfqDtxnqFXvwPKlzY= Subject key identifier: 11:2A:5C:47:E3:FC:AD:B7:E7:DE:CD:97:47:22:33:E0:C5:0C:0E:0F Authority key identifier: 76:B9:D3:39:FA:CD:62:B4:7E:93:E8:88:4D:E8:50:39:6D:BC:EF:B4 Certificate issuer: /CN=A911E6CA/serialNumber=76B9D339FACD62B47E93E8884DE850396DBCEFB4 Certificate serial: 0B8D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/drnTOfrNYrR-k-iITehQOW2877Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.mft Manifest number: 0B6F Signing time: Tue 24 Mar 2026 18:59:26 +0000 Manifest this update: Tue 24 Mar 2026 18:59:25 +0000 Manifest next update: Tue 31 Mar 2026 18:59:25 +0000 Files and hashes: 1: drnTOfrNYrR-k-iITehQOW2877Q.crl (hash: r3Z98Vj/+P0hGeMJeU/fY5FYavCEQBHUMILGwNUR//4=) 2: AA1ABF0AB20011EA9C0DFB2FC4F9AE02.roa (hash: bw6V3e8uxgz/w4mVGTTnR4lCFXMSeabuBZrROz8xFwc=) 3: 4FFC83964CA311EE815AF017C4F9AE02.roa (hash: nvrbL4K8UTuSHUzb0sameKGMaeUHHtqeYardPlMzhKY=) 4: 83882F7AF83B11ECB4154E31C4F9AE02.roa (hash: NYJZvZPzyDgeHzpdsKVjfnf0vb6jVGfn+iXWogNI5w0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.crl rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/drnTOfrNYrR-k-iITehQOW2877Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 18:59:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2957 (0xb8d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E6CA, serialNumber=76B9D339FACD62B47E93E8884DE850396DBCEFB4 Validity Not Before: Mar 24 18:59:25 2026 GMT Not After : Mar 31 18:59:25 2026 GMT Subject: CN=69c2df0e-6ba1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:7f:c9:a7:23:65:31:56:4e:17:3b:22:e8:2c: da:7e:86:b8:1b:85:e7:a0:7d:5d:50:a7:3d:ec:73: b2:7e:0d:6a:ee:7b:80:75:f4:55:b3:a1:95:d2:2c: ff:d2:26:38:ae:ba:2d:75:d3:72:c7:2c:94:2d:89: 06:80:f0:46:7f:f0:0d:f9:9d:80:57:97:be:53:7f: 82:62:bc:df:ba:a1:e4:4d:04:5b:51:4f:43:3e:9c: 05:cf:e7:50:3b:e5:a0:e3:82:b7:db:bc:2d:df:8c: fd:d0:9b:8a:6e:a7:46:82:e8:28:60:34:50:8e:6d: 34:b2:36:94:72:ff:8b:a1:66:59:48:21:06:52:78: bf:bc:20:8e:df:3a:fe:ee:d8:4a:02:6c:ef:d7:dd: c6:fa:23:42:2f:10:52:00:23:0d:98:eb:1f:ce:08: d4:4c:2f:28:85:20:60:2e:f2:74:70:7c:ff:ff:21: 8c:e7:b0:17:e5:a7:3c:1f:fa:21:8d:24:80:4b:eb: 89:91:19:39:07:27:9e:6c:c8:2f:57:d7:b9:0a:e8: 21:13:2b:fe:b8:a2:33:f6:04:e8:c8:cf:66:9d:cc: 21:71:e8:33:b9:2d:d5:5b:38:6b:dc:d5:4d:6d:a5: 6f:05:fe:40:8c:67:9f:37:7b:38:0c:8d:8b:76:d3: 54:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:2A:5C:47:E3:FC:AD:B7:E7:DE:CD:97:47:22:33:E0:C5:0C:0E:0F X509v3 Authority Key Identifier: keyid:76:B9:D3:39:FA:CD:62:B4:7E:93:E8:88:4D:E8:50:39:6D:BC:EF:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/drnTOfrNYrR-k-iITehQOW2877Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:89:cc:63:ce:d6:15:bb:2e:e4:ba:bf:a3:2c:eb:4e:6b:8e: e9:56:4b:da:50:ff:5b:5f:fd:49:0c:00:7e:03:8d:b1:63:fb: d8:e3:42:f7:f6:25:cd:2b:f4:7a:6a:27:7c:16:84:d3:d1:37: 39:a8:44:e1:47:ad:a5:b7:f7:85:f8:54:a4:2d:40:b2:94:f7: 58:0d:18:df:f7:d8:1f:e6:ae:27:5f:29:e1:f8:0d:18:53:08: a0:6c:63:a9:37:16:c7:40:2d:da:43:93:ad:dd:1f:37:e6:42: d3:43:e8:96:1a:5c:b5:8c:07:fa:00:21:c1:ce:50:69:bc:84: a4:f7:22:ad:60:48:72:59:9b:90:9f:86:5a:b2:63:85:23:09: 5f:64:24:87:a2:e7:b0:c5:80:51:53:04:7c:e6:97:31:47:07: c0:26:65:f5:6f:c6:48:45:84:d5:d6:46:56:5e:c4:b4:80:ff: 22:9d:9c:c9:eb:1f:ef:45:2f:ad:24:94:a4:29:87:83:49:90: dd:46:bf:8e:72:b6:cd:79:fb:d0:ca:6f:c1:32:4f:18:67:e4: cb:4a:6d:51:d7:96:99:2f:98:1e:12:04:83:8d:f3:97:fc:de: b9:54:62:1f:0d:c9:0d:1f:37:29:ed:df:4a:89:02:9b:30:ce: 8c:b0:d9:36 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICC40wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUU2Q0ExMTAvBgNVBAUTKDc2QjlEMzM5RkFDRDYyQjQ3RTkzRTg4ODRERTg1MDM5 NkRCQ0VGQjQwHhcNMjYwMzI0MTg1OTI1WhcNMjYwMzMxMTg1OTI1WjAYMRYwFAYD VQQDEw02OWMyZGYwZS02YmExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuH/JpyNlMVZOFzsi6Czafoa4G4XnoH1dUKc97HOyfg1q7nuAdfRVs6GV0iz/ 0iY4rrotddNyxyyULYkGgPBGf/AN+Z2AV5e+U3+CYrzfuqHkTQRbUU9DPpwFz+dQ O+Wg44K327wt34z90JuKbqdGgugoYDRQjm00sjaUcv+LoWZZSCEGUni/vCCO3zr+ 7thKAmzv193G+iNCLxBSACMNmOsfzgjUTC8ohSBgLvJ0cHz//yGM57AX5ac8H/oh jSSAS+uJkRk5ByeebMgvV9e5CughEyv+uKIz9gToyM9mncwhcegzuS3VWzhr3NVN baVvBf5AjGefN3s4DI2LdtNU8wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBEqXEfj /K23597Nl0ciM+DFDA4PMB8GA1UdIwQYMBaAFHa50zn6zWK0fpPoiE3oUDltvO+0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRTZDQS83NDA5QjQ3QTRG QzcxMUVBOEU0NkQ0MTVDNEY5QUUwMi9kcm5UT2ZyTllyUi1rLWlJVGVoUU9XMjg3 N1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RyblRPZnJOWXJSLWstaUlUZWhRT1cyODc3US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RTZDQS83NDA5QjQ3QTRGQzcxMUVBOEU0NkQ0MTVDNEY5QUUwMi9kcm5UT2ZyTlly Ui1rLWlJVGVoUU9XMjg3N1EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAP4nMY87WFbsu5Lq/oyzrTmuO6VZL2lD/W1/9SQwAfgONsWP72ONC9/YlzSv0 emonfBaE09E3OahE4Uetpbf3hfhUpC1AspT3WA0Y3/fYH+auJ18p4fgNGFMIoGxj qTcWx0At2kOTrd0fN+ZC00PolhpctYwH+gAhwc5QabyEpPcirWBIclmbkJ+GWrJj hSMJX2Qkh6LnsMWAUVMEfOaXMUcHwCZl9W/GSEWE1dZGVl7EtID/Ip2cyesf70Uv rSSUpCmHg0mQ3Ua/jnK2zXn70MpvwTJPGGfky0ptUdeWmS+YHhIEg43zl/zeuVRi Hw3JDR83Ke3fSokCmzDOjLDZNg== -----END CERTIFICATE-----Generated at Thu Mar 26 19:32:09 2026 by rpki-client