$ rpki-client -vvf rpki.apnic.net/member_repository/A9148AC0/E4ED539431D811EE83006A41C4F9AE02/dmhXuj98cotoBSWsQfp84qHwCS0.mft File: dmhXuj98cotoBSWsQfp84qHwCS0.mft (raw, json) Hash identifier: pYDFyfWCFdKpP/K17aRIPtHIzN4zm0pNYQQl87oLsG4= Subject key identifier: BB:15:2D:1D:EA:2A:12:14:31:6D:BB:34:D1:45:F0:F0:F7:08:F9:9B Authority key identifier: 76:68:57:BA:3F:7C:72:8B:68:05:25:AC:41:FA:7C:E2:A1:F0:09:2D Certificate issuer: /CN=A9148AC0/serialNumber=766857BA3F7C728B680525AC41FA7CE2A1F0092D Certificate serial: 0207 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dmhXuj98cotoBSWsQfp84qHwCS0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148AC0/E4ED539431D811EE83006A41C4F9AE02/dmhXuj98cotoBSWsQfp84qHwCS0.mft Manifest number: 01F4 Signing time: Wed 25 Mar 2026 02:37:03 +0000 Manifest this update: Wed 25 Mar 2026 02:37:02 +0000 Manifest next update: Wed 01 Apr 2026 02:37:02 +0000 Files and hashes: 1: dmhXuj98cotoBSWsQfp84qHwCS0.crl (hash: rQobmI7EZnEX74OKcDn5t6ucXzZ93YEAIxuj/fErRnQ=) 2: 47854B9031DB11EEA02CF647C4F9AE02.roa (hash: GGFJyDNXeKU9lT+bTxvAzkG1O7Dgf7yckhosYzf3b1Y=) 3: 5C9259B631DA11EEBE28A546C4F9AE02.roa (hash: mxJVviu3Hptch60PLa/XEKp8ctUzhsRUSvChZ9yr8zw=) 4: 5D313B1C31DA11EEBE28A546C4F9AE02.roa (hash: 0AY62NK98rk5TGBieSIptVBTxWIVtw7dVGDsaIJvGI8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148AC0/E4ED539431D811EE83006A41C4F9AE02/dmhXuj98cotoBSWsQfp84qHwCS0.crl rsync://rpki.apnic.net/member_repository/A9148AC0/E4ED539431D811EE83006A41C4F9AE02/dmhXuj98cotoBSWsQfp84qHwCS0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dmhXuj98cotoBSWsQfp84qHwCS0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 02:37:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 519 (0x207) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148AC0, serialNumber=766857BA3F7C728B680525AC41FA7CE2A1F0092D Validity Not Before: Mar 25 02:37:02 2026 GMT Not After : Apr 1 02:37:02 2026 GMT Subject: CN=69c34a4f-9c3a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:33:76:cd:38:f6:0a:e0:09:3c:72:5a:a4:b2: a4:69:6b:c6:68:e1:e4:0b:70:c0:1e:5a:3a:c6:6b: 7f:f4:8e:35:b1:22:91:88:df:03:a7:df:92:46:1b: 42:f3:3c:fa:9f:75:ea:3f:f6:bb:69:76:ed:ba:bf: 46:9e:0f:e3:fd:05:ec:84:8c:d4:1b:0e:b5:f0:8b: 31:55:10:af:1d:67:16:80:f2:9a:14:e7:60:c5:2f: 5e:e7:21:88:fd:81:4f:ac:3c:49:64:10:5d:02:4a: 18:46:c1:c0:62:90:13:42:e7:20:84:6c:65:f9:90: 75:28:b1:41:49:02:f0:16:8d:53:39:33:22:e5:62: 78:af:80:cb:35:36:7f:1d:36:7e:02:7c:6b:94:4a: 3a:f5:6c:20:f7:e1:83:9e:ef:d2:2d:80:6c:9a:ee: 1f:0a:de:af:fc:4c:95:a8:8d:9e:9b:2c:cc:05:d6: d7:2f:16:31:e7:30:a2:41:2b:c8:15:29:35:2c:3b: f0:0e:85:e3:5b:28:ff:03:97:5a:45:6c:37:c1:30: ae:a0:a8:d2:ec:00:84:26:ff:aa:76:6d:28:fe:d5: fd:15:5a:a8:59:a1:aa:d9:96:8f:52:4f:61:92:f1: f1:2c:7a:8c:08:34:bc:f6:81:90:e2:43:8f:a4:5b: 1e:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:15:2D:1D:EA:2A:12:14:31:6D:BB:34:D1:45:F0:F0:F7:08:F9:9B X509v3 Authority Key Identifier: keyid:76:68:57:BA:3F:7C:72:8B:68:05:25:AC:41:FA:7C:E2:A1:F0:09:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148AC0/E4ED539431D811EE83006A41C4F9AE02/dmhXuj98cotoBSWsQfp84qHwCS0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dmhXuj98cotoBSWsQfp84qHwCS0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148AC0/E4ED539431D811EE83006A41C4F9AE02/dmhXuj98cotoBSWsQfp84qHwCS0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:b1:2c:47:86:c4:63:02:50:f8:30:c5:fe:e3:60:9b:9b:73: 2c:38:3c:a3:a8:3a:90:60:e4:0b:8d:84:48:68:2a:28:52:a2: 93:b8:4a:88:9b:61:ab:22:0a:de:a7:4a:8d:38:9d:39:40:f9: 34:c1:94:32:29:2c:66:e2:5d:6e:7c:d8:3e:c5:57:99:fc:dd: f6:ef:60:32:8e:59:53:ec:aa:f2:df:de:62:ed:25:66:b9:e3: 15:ed:bf:11:6b:d0:1b:1e:eb:d1:ed:00:c1:02:cc:4a:a2:2f: c1:6b:db:53:92:59:93:ac:3b:d3:5d:72:db:b3:06:8b:00:03: b2:d5:d9:26:7b:34:28:44:3b:cd:12:09:29:88:5f:f9:a0:5b: a9:a1:b4:03:e3:60:c6:1a:14:50:88:9e:ad:3c:8a:40:91:b9: d9:83:52:dd:22:37:4a:0e:8a:2d:68:03:06:87:5a:0e:4d:b7: f1:69:ca:33:10:f6:3d:0c:e5:6a:d2:df:56:dc:2c:c4:6b:2f: 6c:67:e5:f1:73:b1:66:9c:25:f0:a7:c0:50:d9:2c:ea:ba:c7: 5e:05:83:a0:0f:37:54:48:0e:d1:f2:be:5f:5e:b9:91:ec:0d: bd:09:4e:6f:de:4f:d2:8c:07:e0:84:e8:ab:8b:f6:47:a3:f0: fb:e2:c4:b6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAgcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhBQzAxMTAvBgNVBAUTKDc2Njg1N0JBM0Y3QzcyOEI2ODA1MjVBQzQxRkE3Q0Uy QTFGMDA5MkQwHhcNMjYwMzI1MDIzNzAyWhcNMjYwNDAxMDIzNzAyWjAYMRYwFAYD VQQDEw02OWMzNGE0Zi05YzNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlzN2zTj2CuAJPHJapLKkaWvGaOHkC3DAHlo6xmt/9I41sSKRiN8Dp9+SRhtC 8zz6n3XqP/a7aXbtur9Gng/j/QXshIzUGw618IsxVRCvHWcWgPKaFOdgxS9e5yGI /YFPrDxJZBBdAkoYRsHAYpATQucghGxl+ZB1KLFBSQLwFo1TOTMi5WJ4r4DLNTZ/ HTZ+AnxrlEo69Wwg9+GDnu/SLYBsmu4fCt6v/EyVqI2emyzMBdbXLxYx5zCiQSvI FSk1LDvwDoXjWyj/A5daRWw3wTCuoKjS7ACEJv+qdm0o/tX9FVqoWaGq2ZaPUk9h kvHxLHqMCDS89oGQ4kOPpFseawIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLsVLR3q KhIUMW27NNFF8PD3CPmbMB8GA1UdIwQYMBaAFHZoV7o/fHKLaAUlrEH6fOKh8Akt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEFDMC9FNEVENTM5NDMx RDgxMUVFODMwMDZBNDFDNEY5QUUwMi9kbWhYdWo5OGNvdG9CU1dzUWZwODRxSHdD UzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RtaFh1ajk4Y290b0JTV3NRZnA4NHFId0NTMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OEFDMC9FNEVENTM5NDMxRDgxMUVFODMwMDZBNDFDNEY5QUUwMi9kbWhYdWo5OGNv dG9CU1dzUWZwODRxSHdDUzAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAOrEsR4bEYwJQ+DDF/uNgm5tzLDg8o6g6kGDkC42ESGgqKFKik7hKiJthqyIK 3qdKjTidOUD5NMGUMiksZuJdbnzYPsVXmfzd9u9gMo5ZU+yq8t/eYu0lZrnjFe2/ EWvQGx7r0e0AwQLMSqIvwWvbU5JZk6w7011y27MGiwADstXZJns0KEQ7zRIJKYhf +aBbqaG0A+NgxhoUUIierTyKQJG52YNS3SI3Sg6KLWgDBodaDk238WnKMxD2PQzl atLfVtwsxGsvbGfl8XOxZpwl8KfAUNks6rrHXgWDoA83VEgO0fK+X165kewNvQlO b95P0owH4IToq4v2R6Pw++LEtg== -----END CERTIFICATE-----Generated at Thu Mar 26 11:29:38 2026 by rpki-client