$ rpki-client -vvf rpki.apnic.net/member_repository/A912465F/702C34C6064711F1B4BAFBC52D3D8C67/TonyDOHR4q7I1gVlBTEwvWB9W_0.mft File: TonyDOHR4q7I1gVlBTEwvWB9W_0.mft (raw, json) Hash identifier: r4sPWTKjOLSwOlgKBV8APpoIawI21ThDw9Yk3SrzsoM= Subject key identifier: 76:EE:C6:E7:66:1F:1E:E9:3D:08:BD:AF:74:65:A2:23:34:7B:8C:D9 Authority key identifier: 4E:89:F2:0C:E1:D1:E2:AE:C8:D6:05:65:05:31:30:BD:60:7D:5B:FD Certificate issuer: /CN=A912465F/serialNumber=4E89F20CE1D1E2AEC8D60565053130BD607D5BFD Certificate serial: 23 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/TonyDOHR4q7I1gVlBTEwvWB9W_0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912465F/702C34C6064711F1B4BAFBC52D3D8C67/TonyDOHR4q7I1gVlBTEwvWB9W_0.mft Manifest number: 1D Signing time: Wed 25 Mar 2026 08:09:16 +0000 Manifest this update: Wed 25 Mar 2026 08:09:15 +0000 Manifest next update: Wed 01 Apr 2026 08:09:15 +0000 Files and hashes: 1: TonyDOHR4q7I1gVlBTEwvWB9W_0.crl (hash: a3tmhoOatAruUOZb3m8Lwt/TufPvCqm368sX25KUyXc=) 2: A885DC48100411F1A3563A300F3D8C67.roa (hash: tF3ywN7eYQwZg7AMUnYYT38GsrrKw6HcmRM3Hqi+nbg=) 3: 78CCC796100411F190DA552F0F3D8C67.roa (hash: 9ijSIQLwt2Gy2XEyUcUffnJwapZcaQTrQntZZWP4Uss=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912465F/702C34C6064711F1B4BAFBC52D3D8C67/TonyDOHR4q7I1gVlBTEwvWB9W_0.crl rsync://rpki.apnic.net/member_repository/A912465F/702C34C6064711F1B4BAFBC52D3D8C67/TonyDOHR4q7I1gVlBTEwvWB9W_0.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/TonyDOHR4q7I1gVlBTEwvWB9W_0.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 08:09:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35 (0x23) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912465F, serialNumber=4E89F20CE1D1E2AEC8D60565053130BD607D5BFD Validity Not Before: Mar 25 08:09:15 2026 GMT Not After : Apr 1 08:09:15 2026 GMT Subject: CN=69c3982c-6a29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:78:ac:dc:f2:65:9f:df:ef:3c:d7:09:e8:98: b6:24:60:ba:2a:03:24:43:28:68:71:02:e4:08:db: 13:d7:f9:b1:ad:10:12:d1:8b:09:5f:20:c3:7b:86: 11:e5:a5:26:83:a6:02:4f:de:5c:cf:c8:1d:f5:bd: 36:f2:f2:3e:3e:55:4c:ca:5a:a9:29:28:40:84:df: 63:58:77:63:57:3a:6b:ac:1a:54:f5:76:9b:c3:51: f2:df:1f:2b:cd:1c:9f:dd:8a:5d:cb:82:94:d4:6e: 57:f2:9a:6f:64:12:1b:69:68:cb:c1:71:32:d5:27: 58:b9:e7:77:76:c6:6f:17:df:da:52:ab:d9:d7:45: 4a:5b:ca:f8:05:45:d6:1f:50:6a:95:42:6e:e4:58: 24:9a:0a:17:78:a7:37:3e:93:0d:b3:26:78:81:75: 13:bf:ce:e5:39:b1:1a:3e:30:b5:30:a6:58:06:c2: a5:4b:d6:85:10:17:e8:25:c0:4c:5d:fb:03:a5:f4: ff:24:16:02:97:83:2a:98:9e:30:f5:2e:90:3f:ec: 57:cc:58:2e:db:22:e3:dc:c9:ff:a4:4c:fa:80:3d: 1f:8c:a0:d7:34:72:fc:89:5e:b9:53:f2:15:f5:c7: 79:f3:8e:ae:59:c0:ef:5b:65:cb:82:96:df:30:1f: db:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:EE:C6:E7:66:1F:1E:E9:3D:08:BD:AF:74:65:A2:23:34:7B:8C:D9 X509v3 Authority Key Identifier: keyid:4E:89:F2:0C:E1:D1:E2:AE:C8:D6:05:65:05:31:30:BD:60:7D:5B:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912465F/702C34C6064711F1B4BAFBC52D3D8C67/TonyDOHR4q7I1gVlBTEwvWB9W_0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/TonyDOHR4q7I1gVlBTEwvWB9W_0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912465F/702C34C6064711F1B4BAFBC52D3D8C67/TonyDOHR4q7I1gVlBTEwvWB9W_0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:82:0a:96:cd:c5:29:bd:43:72:92:ee:8b:ad:73:48:54:0f: 9a:fc:84:d4:96:f4:79:38:39:56:59:9a:85:fe:a6:c5:f1:97: 7c:fb:cf:74:3e:b9:f7:b8:9a:c2:f9:cf:05:6f:4f:9a:41:ff: cc:d5:4d:73:82:4b:32:3d:4f:e3:73:ab:14:0a:83:e3:44:94: 4b:3d:44:bd:a0:d5:2a:ff:9c:7f:05:4a:ef:97:8e:ae:16:e6: 39:f5:69:28:25:99:09:c3:55:5a:65:d3:6d:fc:5e:4e:f4:19: 79:db:9f:be:ac:97:9f:fb:a2:25:56:f6:90:c1:17:46:9d:aa: 0b:53:2c:71:c0:b2:5e:ff:fe:d7:3a:c9:da:18:4c:a4:87:e7: 94:3d:0f:ea:48:96:ab:a2:89:d8:ad:62:27:56:e1:a3:c5:ff: cb:03:fe:9a:80:14:1f:2f:69:4c:5d:f9:90:1c:0b:6e:51:75: 72:db:ff:01:1d:d6:89:40:01:50:0a:e7:b7:5d:e7:8f:27:1c: a8:04:bd:c0:07:1f:eb:b9:e8:67:0b:2c:38:0d:79:ff:bf:64: e0:c3:36:c1:64:3a:f7:e5:90:8e:f5:cd:ab:3d:ed:e6:8a:9d: f3:63:2d:5a:73:bb:0b:45:be:81:1c:9d:d0:49:40:86:71:bc: a0:07:ca:32 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBIzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy NDY1RjExMC8GA1UEBRMoNEU4OUYyMENFMUQxRTJBRUM4RDYwNTY1MDUzMTMwQkQ2 MDdENUJGRDAeFw0yNjAzMjUwODA5MTVaFw0yNjA0MDEwODA5MTVaMBgxFjAUBgNV BAMTDTY5YzM5ODJjLTZhMjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDheKzc8mWf3+881wnomLYkYLoqAyRDKGhxAuQI2xPX+bGtEBLRiwlfIMN7hhHl pSaDpgJP3lzPyB31vTby8j4+VUzKWqkpKECE32NYd2NXOmusGlT1dpvDUfLfHyvN HJ/dil3LgpTUblfymm9kEhtpaMvBcTLVJ1i553d2xm8X39pSq9nXRUpbyvgFRdYf UGqVQm7kWCSaChd4pzc+kw2zJniBdRO/zuU5sRo+MLUwplgGwqVL1oUQF+glwExd +wOl9P8kFgKXgyqYnjD1LpA/7FfMWC7bIuPcyf+kTPqAPR+MoNc0cvyJXrlT8hX1 x3nzjq5ZwO9bZcuClt8wH9uhAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUdu7G52Yf Huk9CL2vdGWiIzR7jNkwHwYDVR0jBBgwFoAUTonyDOHR4q7I1gVlBTEwvWB9W/0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI0NjVGLzcwMkMzNEM2MDY0 NzExRjFCNEJBRkJDNTJEM0Q4QzY3L1RvbnlET0hSNHE3STFnVmxCVEV3dldCOVdf MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIvVG9ueURPSFI0cTdJMWdWbEJURXd2V0I5V18wLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI0 NjVGLzcwMkMzNEM2MDY0NzExRjFCNEJBRkJDNTJEM0Q4QzY3L1RvbnlET0hSNHE3 STFnVmxCVEV3dldCOVdfMC5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQBSggqWzcUpvUNyku6LrXNIVA+a/ITUlvR5ODlWWZqF/qbF8Zd8+890Prn3uJrC +c8Fb0+aQf/M1U1zgksyPU/jc6sUCoPjRJRLPUS9oNUq/5x/BUrvl46uFuY59Wko JZkJw1VaZdNt/F5O9Bl525++rJef+6IlVvaQwRdGnaoLUyxxwLJe//7XOsnaGEyk h+eUPQ/qSJaroonYrWInVuGjxf/LA/6agBQfL2lMXfmQHAtuUXVy2/8BHdaJQAFQ Cue3XeePJxyoBL3ABx/ruehnCyw4DXn/v2TgwzbBZDr35ZCO9c2rPe3mip3zYy1a c7sLRb6BHJ3QSUCGcbygB8oy -----END CERTIFICATE-----Generated at Thu Mar 26 00:28:18 2026 by rpki-client