$ rpki-client -vvf rpki.apnic.net/member_repository/A9123CA4/B7516B1089B611EE99512A6DC4F9AE02/DHxNa-htVb5Ey0rZZmbBU1GT93I.mft File: DHxNa-htVb5Ey0rZZmbBU1GT93I.mft (raw, json) Hash identifier: Xnlg2sVPkKMMxQgoEkYfdgdvR9pFrGBRqZEW6ZXSaYU= Subject key identifier: 5D:E6:4D:12:7E:08:FD:54:39:25:3E:40:57:3B:49:BE:6E:C3:3B:D3 Authority key identifier: 0C:7C:4D:6B:E8:6D:55:BE:44:CB:4A:D9:66:66:C1:53:51:93:F7:72 Certificate issuer: /CN=A9123CA4/serialNumber=0C7C4D6BE86D55BE44CB4AD96666C1535193F772 Certificate serial: 01C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DHxNa-htVb5Ey0rZZmbBU1GT93I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123CA4/B7516B1089B611EE99512A6DC4F9AE02/DHxNa-htVb5Ey0rZZmbBU1GT93I.mft Manifest number: 01C1 Signing time: Fri 27 Mar 2026 03:24:12 +0000 Manifest this update: Fri 27 Mar 2026 03:24:12 +0000 Manifest next update: Fri 03 Apr 2026 03:24:12 +0000 Files and hashes: 1: DHxNa-htVb5Ey0rZZmbBU1GT93I.crl (hash: xIHHvgpK90u+IxhCxW8pd5s7nlCQmKXZyXoO9GHqb60=) 2: 300438B6C03511EFA42E9085C4F9AE02.roa (hash: bPTiYTxBxLwgfGF9jUdmUbDxjsKoq1F4YRnN4H89Q34=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123CA4/B7516B1089B611EE99512A6DC4F9AE02/DHxNa-htVb5Ey0rZZmbBU1GT93I.crl rsync://rpki.apnic.net/member_repository/A9123CA4/B7516B1089B611EE99512A6DC4F9AE02/DHxNa-htVb5Ey0rZZmbBU1GT93I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DHxNa-htVb5Ey0rZZmbBU1GT93I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 03:24:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 457 (0x1c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123CA4, serialNumber=0C7C4D6BE86D55BE44CB4AD96666C1535193F772 Validity Not Before: Mar 27 03:24:12 2026 GMT Not After : Apr 3 03:24:12 2026 GMT Subject: CN=69c5f85c-0c24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:69:2e:d3:a1:15:93:2b:b9:b6:0b:73:26:14: 3d:48:7a:b2:bc:bf:5c:a0:5c:af:7c:66:33:3d:f4: e2:06:56:2b:9d:a2:20:8a:50:ee:2f:cc:8b:1a:ce: a1:c7:ca:66:1c:8e:d6:78:cb:fd:5a:80:56:75:af: 47:63:d4:0c:17:67:57:1b:59:5e:90:f5:06:01:c0: f8:51:c4:d0:db:fc:f5:94:89:22:19:8e:66:dc:5e: 51:0a:b4:7a:08:e9:3a:26:91:4f:f7:aa:27:03:5a: e9:bf:44:eb:52:e6:b1:f5:55:db:df:c5:39:17:c8: ea:a3:11:30:13:89:ec:f0:0e:bd:4e:ce:d6:e5:da: 48:20:39:a5:ca:5d:21:7f:61:19:4d:a3:c0:1b:ce: b1:16:c3:f5:3e:19:ff:56:da:88:d2:f0:c6:ae:22: 47:50:ab:3f:73:9f:77:36:9d:12:c8:18:3a:4e:22: 64:7c:df:e7:f5:62:9d:86:5b:3d:d5:6f:c5:ab:07: fe:a7:3f:20:8a:a2:61:14:e9:c0:0e:5c:76:a8:41: 04:82:4a:46:83:51:97:24:09:a5:7d:26:78:67:9a: b8:a5:15:a8:5d:2f:b9:a3:d2:e3:7b:4c:3f:79:4a: e7:d0:10:f0:44:8c:72:ee:e7:fa:c5:07:eb:0a:21: 2b:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:E6:4D:12:7E:08:FD:54:39:25:3E:40:57:3B:49:BE:6E:C3:3B:D3 X509v3 Authority Key Identifier: keyid:0C:7C:4D:6B:E8:6D:55:BE:44:CB:4A:D9:66:66:C1:53:51:93:F7:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123CA4/B7516B1089B611EE99512A6DC4F9AE02/DHxNa-htVb5Ey0rZZmbBU1GT93I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DHxNa-htVb5Ey0rZZmbBU1GT93I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123CA4/B7516B1089B611EE99512A6DC4F9AE02/DHxNa-htVb5Ey0rZZmbBU1GT93I.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:b7:e0:fe:05:85:e4:28:8e:44:d7:61:64:d7:9e:08:35:91: a7:bf:30:1e:92:d3:c5:2b:7c:f4:22:64:e9:3a:5b:7d:b1:88: 30:b3:d8:df:d0:7a:39:f5:c0:47:42:c9:d5:3b:e3:70:15:06: 17:88:ee:cb:9c:d6:a0:bd:25:09:8f:58:1e:6a:fa:b3:eb:70: f6:81:98:bb:aa:f4:60:ab:58:e0:63:2d:be:89:51:87:8b:a4: 39:1e:a6:8f:03:77:0b:15:cb:46:75:53:36:63:80:84:1b:d3: 1c:11:3e:a6:f3:34:54:68:26:4f:bd:6f:c4:82:fd:f8:d6:35: 7a:97:b7:cd:84:52:05:a7:d0:a7:2f:ef:e7:4f:ab:e0:8f:77: 84:fa:47:f6:b3:49:b1:a7:0c:a0:4b:3e:24:99:ab:97:58:f5: 98:b9:f9:c5:5f:d3:a1:89:6e:0e:0b:a8:e1:65:dc:d6:5a:d4: 67:77:51:66:e5:65:ad:22:06:c4:a3:a5:d1:cc:9a:de:fe:29: f0:61:b6:61:17:4c:43:63:7a:cb:84:b7:4c:b0:26:27:1a:a2: 44:19:7d:05:e4:1f:57:e0:61:9f:d6:57:4e:36:fa:3f:0e:36: ce:a3:e6:0e:0f:d7:39:20:74:32:83:d7:8d:7f:e5:d9:38:bb: a9:44:bf:21 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAckwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjNDQTQxMTAvBgNVBAUTKDBDN0M0RDZCRTg2RDU1QkU0NENCNEFEOTY2NjZDMTUz NTE5M0Y3NzIwHhcNMjYwMzI3MDMyNDEyWhcNMjYwNDAzMDMyNDEyWjAYMRYwFAYD VQQDEw02OWM1Zjg1Yy0wYzI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Gku06EVkyu5tgtzJhQ9SHqyvL9coFyvfGYzPfTiBlYrnaIgilDuL8yLGs6h x8pmHI7WeMv9WoBWda9HY9QMF2dXG1lekPUGAcD4UcTQ2/z1lIkiGY5m3F5RCrR6 COk6JpFP96onA1rpv0TrUuax9VXb38U5F8jqoxEwE4ns8A69Ts7W5dpIIDmlyl0h f2EZTaPAG86xFsP1Phn/VtqI0vDGriJHUKs/c593Np0SyBg6TiJkfN/n9WKdhls9 1W/Fqwf+pz8giqJhFOnADlx2qEEEgkpGg1GXJAmlfSZ4Z5q4pRWoXS+5o9Lje0w/ eUrn0BDwRIxy7uf6xQfrCiErrQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFF3mTRJ+ CP1UOSU+QFc7Sb5uwzvTMB8GA1UdIwQYMBaAFAx8TWvobVW+RMtK2WZmwVNRk/dy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyM0NBNC9CNzUxNkIxMDg5 QjYxMUVFOTk1MTJBNkRDNEY5QUUwMi9ESHhOYS1odFZiNUV5MHJaWm1iQlUxR1Q5 M0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RIeE5hLWh0VmI1RXkwclpabWJCVTFHVDkzSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy M0NBNC9CNzUxNkIxMDg5QjYxMUVFOTk1MTJBNkRDNEY5QUUwMi9ESHhOYS1odFZi NUV5MHJaWm1iQlUxR1Q5M0kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAWLfg/gWF5CiORNdhZNeeCDWRp78wHpLTxSt89CJk6TpbfbGIMLPY39B6OfXA R0LJ1TvjcBUGF4juy5zWoL0lCY9YHmr6s+tw9oGYu6r0YKtY4GMtvolRh4ukOR6m jwN3CxXLRnVTNmOAhBvTHBE+pvM0VGgmT71vxIL9+NY1epe3zYRSBafQpy/v50+r 4I93hPpH9rNJsacMoEs+JJmrl1j1mLn5xV/ToYluDguo4WXc1lrUZ3dRZuVlrSIG xKOl0cya3v4p8GG2YRdMQ2N6y4S3TLAmJxqiRBl9BeQfV+Bhn9ZXTjb6Pw42zqPm Dg/XOSB0MoPXjX/l2Ti7qUS/IQ== -----END CERTIFICATE-----Generated at Sat Mar 28 12:15:24 2026 by rpki-client