$ rpki-client -vvf rpki.apnic.net/member_repository/A91273B6/5481AFC081AA11F0B4CDAD1CC4F9AE02/dRHLMT64Pxw5AqpjxDt6A2rMYxc.mft File: dRHLMT64Pxw5AqpjxDt6A2rMYxc.mft (raw, json) Hash identifier: YrYEjur1ekkfW5uUBnnsjiG+wUDvQ0xyzfBnEt0T5SE= Subject key identifier: D9:51:F1:4B:22:BC:BD:B8:BA:11:1D:94:92:45:4A:FD:4C:C9:1D:BD Authority key identifier: 75:11:CB:31:3E:B8:3F:1C:39:02:AA:63:C4:3B:7A:03:6A:CC:63:17 Certificate issuer: /CN=A91273B6/serialNumber=7511CB313EB83F1C3902AA63C43B7A036ACC6317 Certificate serial: 75 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dRHLMT64Pxw5AqpjxDt6A2rMYxc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91273B6/5481AFC081AA11F0B4CDAD1CC4F9AE02/dRHLMT64Pxw5AqpjxDt6A2rMYxc.mft Manifest number: 70 Signing time: Wed 25 Mar 2026 07:04:38 +0000 Manifest this update: Wed 25 Mar 2026 07:04:38 +0000 Manifest next update: Wed 01 Apr 2026 07:04:38 +0000 Files and hashes: 1: dRHLMT64Pxw5AqpjxDt6A2rMYxc.crl (hash: 6nxX7+WF1YeM5/fNV5QKZnG5laWG5c7PF5rz4jNtD2g=) 2: A7FC3D6C041F11F1A6FA4A091E3D8C67.roa (hash: zqRSIq7TQ9YhehrRszjYHmmXVsq7Z1RZBr7dzybRlhI=) 3: 90034B4C041F11F1953EEBDB1D3D8C67.roa (hash: O2t9f2ogcGV3x7WMv8XiYkP5DDfbHONXGddoSTXjm4Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91273B6/5481AFC081AA11F0B4CDAD1CC4F9AE02/dRHLMT64Pxw5AqpjxDt6A2rMYxc.crl rsync://rpki.apnic.net/member_repository/A91273B6/5481AFC081AA11F0B4CDAD1CC4F9AE02/dRHLMT64Pxw5AqpjxDt6A2rMYxc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dRHLMT64Pxw5AqpjxDt6A2rMYxc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 07:04:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 117 (0x75) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91273B6, serialNumber=7511CB313EB83F1C3902AA63C43B7A036ACC6317 Validity Not Before: Mar 25 07:04:38 2026 GMT Not After : Apr 1 07:04:38 2026 GMT Subject: CN=69c38906-5e66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:1d:72:c3:52:05:7a:7f:1c:25:d3:d9:97:1e: 03:93:15:13:ba:62:84:79:48:2a:01:77:6f:78:5b: 8c:ea:b4:3f:97:73:b2:24:42:e9:4f:2a:52:dc:b0: 6d:38:d8:f9:34:e5:3e:2c:43:81:31:c4:a4:f6:77: e8:f3:1f:63:9e:7a:59:84:b2:eb:82:db:8f:6c:6f: dc:4f:01:79:b0:c3:17:ce:ab:7f:7d:c8:8f:49:77: 85:d5:54:ba:3c:4c:28:b0:f4:9c:76:af:42:fb:9a: d3:1c:07:b2:53:0a:a6:06:b2:27:ee:1d:14:81:6f: 92:97:4a:bd:85:8b:ad:52:2f:49:fb:5c:28:59:a6: 0b:9d:b2:0a:bb:d2:21:17:66:8d:7d:2d:ed:22:d7: 39:4b:9c:b2:d9:eb:8f:e2:e2:e3:18:0a:a7:db:33: 6d:06:91:67:4c:c1:d7:87:08:fb:b1:b8:ae:d7:1d: 34:f3:2a:25:cf:7f:bf:30:55:a1:06:37:ed:1e:6b: de:43:26:da:0f:48:7e:5e:f0:39:47:e0:85:49:a9: 0f:f2:c0:ef:7d:18:f5:93:0e:e3:ef:f9:64:d5:c0: 15:3b:79:d0:d9:0c:3d:4b:3b:0c:f3:3d:f5:b0:21: d4:94:57:46:f5:80:f3:c6:c1:d6:84:4b:c1:8f:c9: 77:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:51:F1:4B:22:BC:BD:B8:BA:11:1D:94:92:45:4A:FD:4C:C9:1D:BD X509v3 Authority Key Identifier: keyid:75:11:CB:31:3E:B8:3F:1C:39:02:AA:63:C4:3B:7A:03:6A:CC:63:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91273B6/5481AFC081AA11F0B4CDAD1CC4F9AE02/dRHLMT64Pxw5AqpjxDt6A2rMYxc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dRHLMT64Pxw5AqpjxDt6A2rMYxc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91273B6/5481AFC081AA11F0B4CDAD1CC4F9AE02/dRHLMT64Pxw5AqpjxDt6A2rMYxc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:07:93:7b:d1:b3:56:00:52:a8:a4:90:53:ce:cc:61:e4:2e: 78:fa:15:d5:81:12:b1:c6:97:d6:93:80:bf:62:0b:e3:a6:c6: 79:7c:46:a0:f8:8d:2f:28:cc:c9:01:e5:9d:29:4f:52:4a:86: 93:2e:ff:7f:22:6a:66:87:36:ae:5c:56:4d:0c:e3:a8:93:c6: d0:64:11:2a:5a:42:02:1b:7c:90:a1:b0:8f:70:1f:d8:9d:ec: ba:14:cf:fb:f9:16:2b:67:86:82:e9:72:d4:81:2a:1b:13:c8: 7d:5d:51:20:a0:b8:1b:c3:26:ae:41:5a:d6:52:a6:76:93:06: 2c:15:b8:ef:5e:78:bc:cd:bd:f6:a8:c2:fb:dc:53:28:1a:61: 1c:78:15:90:0e:0c:e3:fa:f7:4b:64:2c:e6:9f:ce:39:9e:87: 95:5f:89:16:82:da:83:0a:f2:2a:7a:ea:70:e9:76:4a:14:e4: e0:75:85:4a:66:0b:10:8a:48:a5:53:d4:2d:27:aa:0e:c6:13: 2c:c3:ff:9a:b5:12:46:5b:33:4e:cc:e5:cd:78:68:ad:e9:46: fa:b2:1b:89:bc:84:73:c4:ee:22:d1:55:79:34:d9:fe:eb:98: 83:83:56:13:eb:33:2f:7e:99:a0:99:b0:99:ae:09:c6:d2:f8: 71:3e:67:7b -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBdTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy NzNCNjExMC8GA1UEBRMoNzUxMUNCMzEzRUI4M0YxQzM5MDJBQTYzQzQzQjdBMDM2 QUNDNjMxNzAeFw0yNjAzMjUwNzA0MzhaFw0yNjA0MDEwNzA0MzhaMBgxFjAUBgNV BAMTDTY5YzM4OTA2LTVlNjYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCtHXLDUgV6fxwl09mXHgOTFRO6YoR5SCoBd294W4zqtD+Xc7IkQulPKlLcsG04 2Pk05T4sQ4ExxKT2d+jzH2OeelmEsuuC249sb9xPAXmwwxfOq399yI9Jd4XVVLo8 TCiw9Jx2r0L7mtMcB7JTCqYGsifuHRSBb5KXSr2Fi61SL0n7XChZpgudsgq70iEX Zo19Le0i1zlLnLLZ64/i4uMYCqfbM20GkWdMwdeHCPuxuK7XHTTzKiXPf78wVaEG N+0ea95DJtoPSH5e8DlH4IVJqQ/ywO99GPWTDuPv+WTVwBU7edDZDD1LOwzzPfWw IdSUV0b1gPPGwdaES8GPyXddAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQU2VHxSyK8 vbi6ER2UkkVK/UzJHb0wHwYDVR0jBBgwFoAUdRHLMT64Pxw5AqpjxDt6A2rMYxcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI3M0I2LzU0ODFBRkMwODFB QTExRjBCNENEQUQxQ0M0RjlBRTAyL2RSSExNVDY0UHh3NUFxcGp4RHQ2QTJyTVl4 Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZFJITE1UNjRQeHc1QXFwanhEdDZBMnJNWXhjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI3 M0I2LzU0ODFBRkMwODFBQTExRjBCNENEQUQxQ0M0RjlBRTAyL2RSSExNVDY0UHh3 NUFxcGp4RHQ2QTJyTVl4Yy5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQA3B5N70bNWAFKopJBTzsxh5C54+hXVgRKxxpfWk4C/YgvjpsZ5fEag+I0vKMzJ AeWdKU9SSoaTLv9/ImpmhzauXFZNDOOok8bQZBEqWkICG3yQobCPcB/Yney6FM/7 +RYrZ4aC6XLUgSobE8h9XVEgoLgbwyauQVrWUqZ2kwYsFbjvXni8zb32qML73FMo GmEceBWQDgzj+vdLZCzmn845noeVX4kWgtqDCvIqeupw6XZKFOTgdYVKZgsQikil U9QtJ6oOxhMsw/+atRJGWzNOzOXNeGit6Ub6shuJvIRzxO4i0VV5NNn+65iDg1YT 6zMvfpmgmbCZrgnG0vhxPmd7 -----END CERTIFICATE-----Generated at Thu Mar 26 04:16:29 2026 by rpki-client