$ rpki-client -vvf rpki.apnic.net/member_repository/A9170975/67C7A42A3A2611F0BCCF5E1FC4F9AE02/DGhYIowwF0gr3H85geiYuVbaoCk.mft File: DGhYIowwF0gr3H85geiYuVbaoCk.mft (raw, json) Hash identifier: 7zgtwDmn2djrEpTp1Rr91Gk+TLPOKbnz0DB0ZQiULGM= Subject key identifier: 51:D7:43:F2:34:5D:38:51:DB:72:C0:CE:3A:CC:C2:BC:CA:33:79:04 Authority key identifier: 0C:68:58:22:8C:30:17:48:2B:DC:7F:39:81:E8:98:B9:56:DA:A0:29 Certificate issuer: /CN=A9170975/serialNumber=0C6858228C3017482BDC7F3981E898B956DAA029 Certificate serial: A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DGhYIowwF0gr3H85geiYuVbaoCk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170975/67C7A42A3A2611F0BCCF5E1FC4F9AE02/DGhYIowwF0gr3H85geiYuVbaoCk.mft Manifest number: A0 Signing time: Wed 25 Mar 2026 06:34:40 +0000 Manifest this update: Wed 25 Mar 2026 06:34:40 +0000 Manifest next update: Wed 01 Apr 2026 06:34:40 +0000 Files and hashes: 1: DGhYIowwF0gr3H85geiYuVbaoCk.crl (hash: gh738m8mFcEjPB40ifT2ftrvR+7dBUCXau78o9g5AS4=) 2: B12A39803A2A11F09E37DB48C4F9AE02.roa (hash: CoN2ChPQA1qn/Xvwh+q1CXaNL7awqOvoz+KnawFyjQE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170975/67C7A42A3A2611F0BCCF5E1FC4F9AE02/DGhYIowwF0gr3H85geiYuVbaoCk.crl rsync://rpki.apnic.net/member_repository/A9170975/67C7A42A3A2611F0BCCF5E1FC4F9AE02/DGhYIowwF0gr3H85geiYuVbaoCk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DGhYIowwF0gr3H85geiYuVbaoCk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 06:34:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 164 (0xa4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170975, serialNumber=0C6858228C3017482BDC7F3981E898B956DAA029 Validity Not Before: Mar 25 06:34:40 2026 GMT Not After : Apr 1 06:34:40 2026 GMT Subject: CN=69c38200-0bbd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:16:7e:59:bb:de:20:09:0e:63:66:65:2e:8b: 11:37:d9:2a:10:b4:78:44:4d:b1:9c:96:38:cf:b0: 9e:96:82:c0:00:5e:93:72:80:b9:4b:74:35:9e:6d: 66:5c:cb:81:a9:83:e3:2e:2d:c7:46:3b:16:5c:3e: 03:1b:6f:e8:5a:c8:24:e5:fd:6e:a8:72:cd:9e:ff: b1:0c:78:14:38:34:79:6d:96:67:a9:b5:32:b9:af: 30:6f:bc:d9:47:0d:a2:67:ed:ce:4d:9f:b2:bb:17: 2c:3c:39:82:86:80:0d:91:a3:c9:fc:65:e9:2b:e9: cf:a3:6d:6c:e0:96:a2:28:cc:5b:9c:bf:97:d4:7e: 2f:29:66:e7:66:ea:29:7e:a2:b7:07:cd:f1:e3:4f: cc:45:be:d4:5d:55:50:26:04:cf:b8:c1:30:c5:80: 63:0e:fd:cf:d1:79:03:33:a5:06:6c:c9:fc:47:45: dd:bb:ff:3f:5c:c1:9e:2b:35:f0:07:d2:c4:30:cc: e7:67:d1:dc:f0:b0:3f:3c:cc:c4:0b:39:45:c0:04: d5:96:6e:9c:39:c1:01:96:54:78:3b:19:7a:01:4d: ed:a8:09:86:1f:35:98:4a:f9:ee:bc:ab:db:b4:a0: b2:db:d8:dd:2d:0e:ea:76:51:0a:4b:50:32:7a:c2: a6:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:D7:43:F2:34:5D:38:51:DB:72:C0:CE:3A:CC:C2:BC:CA:33:79:04 X509v3 Authority Key Identifier: keyid:0C:68:58:22:8C:30:17:48:2B:DC:7F:39:81:E8:98:B9:56:DA:A0:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170975/67C7A42A3A2611F0BCCF5E1FC4F9AE02/DGhYIowwF0gr3H85geiYuVbaoCk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DGhYIowwF0gr3H85geiYuVbaoCk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170975/67C7A42A3A2611F0BCCF5E1FC4F9AE02/DGhYIowwF0gr3H85geiYuVbaoCk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:7b:fd:96:ff:22:36:6d:ca:8f:45:61:b1:be:35:ee:15:ec: 25:d4:21:93:c4:26:c1:fb:d2:e3:b0:e7:b2:03:a4:95:90:be: 06:1e:1c:e9:74:3d:29:7a:cd:eb:f3:60:2f:f1:22:48:0c:35: c5:c5:27:87:a1:e5:0f:97:bd:3e:98:af:f1:9f:e3:a6:d4:27: d5:4a:c9:58:9b:f3:52:95:08:66:38:69:1a:8b:83:02:64:63: cb:ca:a8:39:35:a2:e0:a5:1d:fc:fc:32:5d:8f:d5:d5:a4:3e: 5a:05:48:b3:8a:dc:cf:f9:ca:6d:35:76:d5:28:e1:ce:da:e3: 85:ef:8d:ad:67:82:ba:80:2d:88:1c:13:33:7a:ff:66:7d:50: 8d:e0:47:2d:41:2e:90:d7:44:81:7b:28:ff:ca:02:5f:1d:1c: 9e:de:28:40:dd:34:3a:21:2c:4b:e5:a9:92:6e:a1:87:8f:48: db:ee:f7:ee:de:d4:01:ce:50:4a:21:30:c6:a9:56:9f:5a:ad: 1f:12:68:ab:bb:76:8b:e7:96:60:aa:ae:00:6f:f4:90:0e:02: fd:e4:27:e3:12:f8:62:78:50:5a:e9:1c:43:ee:b4:36:35:44: 09:4b:d8:8c:35:bb:cd:ff:2f:3a:d4:c2:27:39:02:f9:7b:b4: ae:8f:7f:9a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAKQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzA5NzUxMTAvBgNVBAUTKDBDNjg1ODIyOEMzMDE3NDgyQkRDN0YzOTgxRTg5OEI5 NTZEQUEwMjkwHhcNMjYwMzI1MDYzNDQwWhcNMjYwNDAxMDYzNDQwWjAYMRYwFAYD VQQDEw02OWMzODIwMC0wYmJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlRZ+WbveIAkOY2ZlLosRN9kqELR4RE2xnJY4z7CeloLAAF6TcoC5S3Q1nm1m XMuBqYPjLi3HRjsWXD4DG2/oWsgk5f1uqHLNnv+xDHgUODR5bZZnqbUyua8wb7zZ Rw2iZ+3OTZ+yuxcsPDmChoANkaPJ/GXpK+nPo21s4JaiKMxbnL+X1H4vKWbnZuop fqK3B83x40/MRb7UXVVQJgTPuMEwxYBjDv3P0XkDM6UGbMn8R0Xdu/8/XMGeKzXw B9LEMMznZ9Hc8LA/PMzECzlFwATVlm6cOcEBllR4Oxl6AU3tqAmGHzWYSvnuvKvb tKCy29jdLQ7qdlEKS1AyesKm3QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFHXQ/I0 XThR23LAzjrMwrzKM3kEMB8GA1UdIwQYMBaAFAxoWCKMMBdIK9x/OYHomLlW2qAp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDk3NS82N0M3QTQyQTNB MjYxMUYwQkNDRjVFMUZDNEY5QUUwMi9ER2hZSW93d0YwZ3IzSDg1Z2VpWXVWYmFv Q2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RHaFlJb3d3RjBncjNIODVnZWlZdVZiYW9Day5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MDk3NS82N0M3QTQyQTNBMjYxMUYwQkNDRjVFMUZDNEY5QUUwMi9ER2hZSW93d0Yw Z3IzSDg1Z2VpWXVWYmFvQ2subWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAfHv9lv8iNm3Kj0Vhsb417hXsJdQhk8QmwfvS47DnsgOklZC+Bh4c6XQ9KXrN 6/NgL/EiSAw1xcUnh6HlD5e9Ppiv8Z/jptQn1UrJWJvzUpUIZjhpGouDAmRjy8qo OTWi4KUd/PwyXY/V1aQ+WgVIs4rcz/nKbTV21Sjhztrjhe+NrWeCuoAtiBwTM3r/ Zn1QjeBHLUEukNdEgXso/8oCXx0cnt4oQN00OiEsS+Wpkm6hh49I2+737t7UAc5Q SiEwxqlWn1qtHxJoq7t2i+eWYKquAG/0kA4C/eQn4xL4YnhQWukcQ+60NjVECUvY jDW7zf8vOtTCJzkC+Xu0ro9/mg== -----END CERTIFICATE-----Generated at Thu Mar 26 04:12:25 2026 by rpki-client