$ rpki-client -vvf rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.mft File: dNRNlor0Y--xfAgNX60BDErAl6o.mft (raw, json) Hash identifier: xSsD3+RgoUmOCHyaItXE2sobLC7bwq7fek+j87oGpaw= Subject key identifier: 20:EF:03:E1:36:BD:1F:47:2A:67:C9:FA:6D:E9:40:30:14:19:E8:11 Authority key identifier: 74:D4:4D:96:8A:F4:63:EF:B1:7C:08:0D:5F:AD:01:0C:4A:C0:97:AA Certificate issuer: /CN=A917E0A8/serialNumber=74D44D968AF463EFB17C080D5FAD010C4AC097AA Certificate serial: 06EC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dNRNlor0Y--xfAgNX60BDErAl6o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.mft Manifest number: 06DD Signing time: Tue 24 Mar 2026 19:09:26 +0000 Manifest this update: Tue 24 Mar 2026 19:09:25 +0000 Manifest next update: Tue 31 Mar 2026 19:09:25 +0000 Files and hashes: 1: dNRNlor0Y--xfAgNX60BDErAl6o.crl (hash: qGTjKBbZjcKd+hX+QeDsQS1Xftbby/Ob/bceA3pPePI=) 2: F9C23E2A3ACB11EC9FEBB367C4F9AE02.roa (hash: 2RPaofcBmVRp+rnkKNh5LcywLDf5c7LR9zPp5ibVZFk=) 3: 11C0D5DA9B4011EB9C1BFC4EC4F9AE02.roa (hash: UhjZCQXMTH4EcImSo4POBU6QddKCD4qTUt+kDu3goss=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.crl rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dNRNlor0Y--xfAgNX60BDErAl6o.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 19:09:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1772 (0x6ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E0A8, serialNumber=74D44D968AF463EFB17C080D5FAD010C4AC097AA Validity Not Before: Mar 24 19:09:25 2026 GMT Not After : Mar 31 19:09:25 2026 GMT Subject: CN=69c2e165-c42e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:88:dd:75:d5:5f:0a:40:a3:dc:34:5c:18:8b: fd:93:80:b7:2e:a9:45:3e:f7:8e:18:6f:7d:c2:ab: 8f:9e:6f:a9:02:8c:41:ae:90:d5:96:38:69:e7:5c: 6a:ba:59:57:73:a0:0e:c8:00:dc:04:78:63:f7:9d: 91:83:e8:f5:64:1a:f3:eb:02:ca:97:d6:22:ff:d1: 99:98:71:c9:80:9e:69:e6:2f:cf:fe:c8:d0:17:60: 36:2e:86:02:d7:b7:ea:d5:aa:29:6f:94:a3:48:64: 6f:7e:30:3d:12:65:8d:78:f6:a4:2f:50:c1:15:ef: fd:5c:57:e1:ba:9f:48:ee:22:3e:07:7c:d6:d7:98: 26:b3:e3:2c:38:bc:0f:5f:ee:9d:cf:de:71:d7:69: 56:c6:33:6c:bd:df:01:0a:ed:71:45:89:5c:f0:2d: bd:df:c4:33:a0:5b:de:b4:d1:00:3c:c6:18:ca:44: 2d:27:df:68:22:93:e0:6f:9f:00:25:67:70:ac:c1: 8d:df:49:05:8b:cb:08:c6:60:64:4a:02:e8:65:f3: 45:c2:b4:a1:40:9a:b0:bb:9e:e3:72:81:74:c7:99: 69:07:01:af:52:60:7b:18:2d:f5:5f:38:81:78:7e: 51:5d:4a:eb:1f:99:ed:78:69:55:d3:15:bd:12:dd: 18:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:EF:03:E1:36:BD:1F:47:2A:67:C9:FA:6D:E9:40:30:14:19:E8:11 X509v3 Authority Key Identifier: keyid:74:D4:4D:96:8A:F4:63:EF:B1:7C:08:0D:5F:AD:01:0C:4A:C0:97:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dNRNlor0Y--xfAgNX60BDErAl6o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:fe:21:ec:1d:fb:d1:9e:70:f5:39:42:cb:d7:9c:66:cd:1c: 47:65:e5:4c:97:15:99:d3:c2:a4:49:17:7f:59:df:db:6c:a9: cc:2d:66:ca:7c:2b:66:b9:11:a0:cb:3e:31:a6:da:8b:95:31: 55:cd:06:47:0f:f9:40:9d:57:c7:a1:46:75:62:04:8e:1b:e5: 76:5d:db:50:75:5a:3a:69:83:50:41:9c:0a:cc:e4:8f:e2:3e: 76:06:45:65:37:96:10:41:5a:7e:c7:be:23:ae:9d:e8:21:23: 7b:c1:5d:b4:ec:d7:83:5d:cd:7a:9f:66:29:ba:c5:24:b8:f7: 27:63:dd:22:a7:66:b5:df:45:f9:1d:14:0a:2b:be:24:36:2e: d3:c5:98:f1:84:3c:cf:96:2e:5e:14:42:1c:8e:aa:81:0a:50: bd:a0:6b:23:5a:78:54:89:90:f7:e8:b9:c3:94:b6:b8:27:b0: 4e:4b:9b:c6:b3:bf:ab:ad:df:52:a3:c5:75:26:e1:37:ce:6e: ba:97:a1:a9:24:a9:b3:73:99:b2:13:ee:5c:67:11:03:d5:78: d8:33:5a:be:e6:a6:61:68:fe:84:39:ce:ce:bb:49:c3:28:d8: e5:c1:8e:f8:8a:29:7c:06:52:9b:d3:f3:a7:d4:d1:99:a6:58: 44:09:7e:6a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBuwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UwQTgxMTAvBgNVBAUTKDc0RDQ0RDk2OEFGNDYzRUZCMTdDMDgwRDVGQUQwMTBD NEFDMDk3QUEwHhcNMjYwMzI0MTkwOTI1WhcNMjYwMzMxMTkwOTI1WjAYMRYwFAYD VQQDEw02OWMyZTE2NS1jNDJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz4jdddVfCkCj3DRcGIv9k4C3LqlFPveOGG99wquPnm+pAoxBrpDVljhp51xq ullXc6AOyADcBHhj952Rg+j1ZBrz6wLKl9Yi/9GZmHHJgJ5p5i/P/sjQF2A2LoYC 17fq1aopb5SjSGRvfjA9EmWNePakL1DBFe/9XFfhup9I7iI+B3zW15gms+MsOLwP X+6dz95x12lWxjNsvd8BCu1xRYlc8C2938QzoFvetNEAPMYYykQtJ99oIpPgb58A JWdwrMGN30kFi8sIxmBkSgLoZfNFwrShQJqwu57jcoF0x5lpBwGvUmB7GC31XziB eH5RXUrrH5nteGlV0xW9Et0YJwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCDvA+E2 vR9HKmfJ+m3pQDAUGegRMB8GA1UdIwQYMBaAFHTUTZaK9GPvsXwIDV+tAQxKwJeq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTBBOC82RUZDMEJFRTk4 NEMxMUVCOEE0MUZBMjBDNEY5QUUwMi9kTlJObG9yMFktLXhmQWdOWDYwQkRFckFs Nm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2ROUk5sb3IwWS0teGZBZ05YNjBCREVyQWw2by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTBBOC82RUZDMEJFRTk4NEMxMUVCOEE0MUZBMjBDNEY5QUUwMi9kTlJObG9yMFkt LXhmQWdOWDYwQkRFckFsNm8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEACP4h7B370Z5w9TlCy9ecZs0cR2XlTJcVmdPCpEkXf1nf22ypzC1mynwrZrkR oMs+Mabai5UxVc0GRw/5QJ1Xx6FGdWIEjhvldl3bUHVaOmmDUEGcCszkj+I+dgZF ZTeWEEFafse+I66d6CEje8FdtOzXg13Nep9mKbrFJLj3J2PdIqdmtd9F+R0UCiu+ JDYu08WY8YQ8z5YuXhRCHI6qgQpQvaBrI1p4VImQ9+i5w5S2uCewTkubxrO/q63f UqPFdSbhN85uupehqSSps3OZshPuXGcRA9V42DNavuamYWj+hDnOzrtJwyjY5cGO +IopfAZSm9Pzp9TRmaZYRAl+ag== -----END CERTIFICATE-----Generated at Thu Mar 26 14:43:13 2026 by rpki-client