$ rpki-client -vvf rpki.apnic.net/member_repository/A912465F/702C34C6064711F1B4BAFBC52D3D8C67/TonyDOHR4q7I1gVlBTEwvWB9W_0.mft File: TonyDOHR4q7I1gVlBTEwvWB9W_0.mft (raw, json) Hash identifier: rOMJe7mvXP8dDcyZty9+urOf8CU/jzEp0sRDKx0hIRI= Subject key identifier: 09:60:30:9E:66:2D:38:CC:0D:8D:16:DF:04:93:BC:1A:83:38:B3:83 Authority key identifier: 4E:89:F2:0C:E1:D1:E2:AE:C8:D6:05:65:05:31:30:BD:60:7D:5B:FD Certificate issuer: /CN=A912465F/serialNumber=4E89F20CE1D1E2AEC8D60565053130BD607D5BFD Certificate serial: 3C Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/TonyDOHR4q7I1gVlBTEwvWB9W_0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912465F/702C34C6064711F1B4BAFBC52D3D8C67/TonyDOHR4q7I1gVlBTEwvWB9W_0.mft Manifest number: 36 Signing time: Wed 13 May 2026 08:48:21 +0000 Manifest this update: Wed 13 May 2026 08:48:21 +0000 Manifest next update: Wed 20 May 2026 08:48:21 +0000 Files and hashes: 1: TonyDOHR4q7I1gVlBTEwvWB9W_0.crl (hash: L32I1A5ySZHthOJ9Jp4DX63NZUqjEJ26M3r/VmQ3Tyw=) 2: A885DC48100411F1A3563A300F3D8C67.roa (hash: tF3ywN7eYQwZg7AMUnYYT38GsrrKw6HcmRM3Hqi+nbg=) 3: 78CCC796100411F190DA552F0F3D8C67.roa (hash: 9ijSIQLwt2Gy2XEyUcUffnJwapZcaQTrQntZZWP4Uss=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912465F/702C34C6064711F1B4BAFBC52D3D8C67/TonyDOHR4q7I1gVlBTEwvWB9W_0.crl rsync://rpki.apnic.net/member_repository/A912465F/702C34C6064711F1B4BAFBC52D3D8C67/TonyDOHR4q7I1gVlBTEwvWB9W_0.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/TonyDOHR4q7I1gVlBTEwvWB9W_0.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 02:50:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60 (0x3c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912465F, serialNumber=4E89F20CE1D1E2AEC8D60565053130BD607D5BFD Validity Not Before: May 13 08:48:21 2026 GMT Not After : May 20 08:48:21 2026 GMT Subject: CN=6a043ad5-02a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:2f:50:e5:b6:9b:8a:a2:31:2b:95:26:2f:de: 56:a1:28:df:14:3e:7b:59:a0:71:94:3d:11:f6:f7: 35:6b:7d:2c:7e:2c:01:f6:81:f9:f6:36:50:f6:17: c8:18:99:a5:ef:06:28:a8:aa:59:a2:d7:56:aa:05: a1:01:31:de:05:13:e2:f8:86:98:49:b9:aa:64:9b: e1:61:68:84:3e:5b:04:44:cc:38:0d:96:76:72:c8: df:58:68:e4:8b:5b:f9:34:34:b1:4c:06:c2:99:9d: 81:e9:02:d1:e2:5e:0f:ad:9c:5d:57:9e:2e:14:25: 01:ae:76:49:58:1f:55:fe:dc:26:52:1a:1c:b5:9f: 4e:32:c5:4c:c2:4e:6b:8a:4f:b2:97:11:31:5f:8c: bf:b7:10:93:08:51:f7:96:3c:88:32:4d:8e:b8:41: 06:ac:f8:45:d9:ed:56:9f:69:6e:c9:55:71:03:2e: 3e:5b:48:5f:40:b7:e8:a2:4e:c2:e8:bf:40:73:da: 58:ad:8a:0d:2f:28:8e:fe:9a:f8:29:46:45:47:94: ce:7a:69:c1:9c:d7:6c:c7:90:ca:69:52:28:08:c5: 01:3b:15:b2:5c:33:8d:9e:db:d0:b6:75:1d:08:27: 0e:88:90:48:79:e3:0a:9e:5d:22:7a:ea:43:af:57: 50:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:60:30:9E:66:2D:38:CC:0D:8D:16:DF:04:93:BC:1A:83:38:B3:83 X509v3 Authority Key Identifier: keyid:4E:89:F2:0C:E1:D1:E2:AE:C8:D6:05:65:05:31:30:BD:60:7D:5B:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912465F/702C34C6064711F1B4BAFBC52D3D8C67/TonyDOHR4q7I1gVlBTEwvWB9W_0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/TonyDOHR4q7I1gVlBTEwvWB9W_0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912465F/702C34C6064711F1B4BAFBC52D3D8C67/TonyDOHR4q7I1gVlBTEwvWB9W_0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:28:c4:1c:a8:13:95:14:35:7f:f1:a8:e1:43:71:35:56:a6: 91:b1:9d:91:5f:9a:7c:0f:db:2c:91:1b:fc:60:8f:00:ad:84: 5e:e7:c8:bd:32:58:ef:dd:91:70:9c:7e:30:8b:e6:cc:13:cc: 55:32:45:be:b9:fb:78:37:2b:d4:6a:e1:6a:f7:5c:64:5d:55: 35:a3:6a:1a:c6:49:92:ff:af:3f:33:45:60:60:e0:36:e8:d0: b5:e0:e8:d5:62:e7:83:d0:07:19:62:45:84:5f:51:99:c8:2b: ac:36:67:cc:83:6a:37:75:a1:df:48:58:1d:18:d3:79:48:43: 0b:ea:9f:ee:0e:3a:99:f6:25:8a:8a:21:82:b0:50:b0:bf:3d: aa:a1:6d:0f:30:71:91:d4:03:2b:c7:ab:b5:6d:99:df:4a:56: 2d:f2:f7:72:60:90:42:78:06:a6:1c:88:df:3b:e0:79:21:2a: 9e:3e:61:df:64:fb:02:23:44:a4:85:cc:18:e0:d4:c3:07:35: ef:33:d5:7a:65:1f:63:b4:04:53:71:f1:6d:03:4e:15:d0:57: 02:3a:69:5e:09:f3:ad:89:2a:0a:f6:0f:87:4d:cb:11:3b:66: f8:54:21:ba:e8:f1:76:8d:9e:24:e7:13:28:a2:d5:43:8c:1c: 9f:dc:38:57 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBPDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy NDY1RjExMC8GA1UEBRMoNEU4OUYyMENFMUQxRTJBRUM4RDYwNTY1MDUzMTMwQkQ2 MDdENUJGRDAeFw0yNjA1MTMwODQ4MjFaFw0yNjA1MjAwODQ4MjFaMBgxFjAUBgNV BAMTDTZhMDQzYWQ1LTAyYTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCJL1DltpuKojErlSYv3lahKN8UPntZoHGUPRH29zVrfSx+LAH2gfn2NlD2F8gY maXvBiioqlmi11aqBaEBMd4FE+L4hphJuapkm+FhaIQ+WwREzDgNlnZyyN9YaOSL W/k0NLFMBsKZnYHpAtHiXg+tnF1Xni4UJQGudklYH1X+3CZSGhy1n04yxUzCTmuK T7KXETFfjL+3EJMIUfeWPIgyTY64QQas+EXZ7VafaW7JVXEDLj5bSF9At+iiTsLo v0Bz2litig0vKI7+mvgpRkVHlM56acGc12zHkMppUigIxQE7FbJcM42e29C2dR0I Jw6IkEh54wqeXSJ66kOvV1DXAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUCWAwnmYt OMwNjRbfBJO8GoM4s4MwHwYDVR0jBBgwFoAUTonyDOHR4q7I1gVlBTEwvWB9W/0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI0NjVGLzcwMkMzNEM2MDY0 NzExRjFCNEJBRkJDNTJEM0Q4QzY3L1RvbnlET0hSNHE3STFnVmxCVEV3dldCOVdf MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIvVG9ueURPSFI0cTdJMWdWbEJURXd2V0I5V18wLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI0 NjVGLzcwMkMzNEM2MDY0NzExRjFCNEJBRkJDNTJEM0Q4QzY3L1RvbnlET0hSNHE3 STFnVmxCVEV3dldCOVdfMC5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQARKMQcqBOVFDV/8ajhQ3E1VqaRsZ2RX5p8D9sskRv8YI8ArYRe58i9Mljv3ZFw nH4wi+bME8xVMkW+uft4NyvUauFq91xkXVU1o2oaxkmS/68/M0VgYOA26NC14OjV YueD0AcZYkWEX1GZyCusNmfMg2o3daHfSFgdGNN5SEML6p/uDjqZ9iWKiiGCsFCw vz2qoW0PMHGR1AMrx6u1bZnfSlYt8vdyYJBCeAamHIjfO+B5ISqePmHfZPsCI0Sk hcwY4NTDBzXvM9V6ZR9jtARTcfFtA04V0FcCOmleCfOtiSoK9g+HTcsRO2b4VCG6 6PF2jZ4k5xMootVDjByf3DhX -----END CERTIFICATE-----Generated at Wed May 13 14:55:29 2026 by rpki-client