$ rpki-client -vvf rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.mft File: D2tHILCjVyLYXzRG79R0C9NBg04.mft (raw, json) Hash identifier: tZ3K2x+VdCDQLerMKvjX0puGYbjNTss6c9QLCWxLhNs= Subject key identifier: D8:E4:AD:D3:C1:4F:8D:74:DC:C9:C9:58:07:61:8F:A4:D8:60:FF:22 Authority key identifier: 0F:6B:47:20:B0:A3:57:22:D8:5F:34:46:EF:D4:74:0B:D3:41:83:4E Certificate issuer: /CN=A91850AD/serialNumber=0F6B4720B0A35722D85F3446EFD4740BD341834E Certificate serial: 0139 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D2tHILCjVyLYXzRG79R0C9NBg04.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.mft Manifest number: 012D Signing time: Wed 25 Mar 2026 04:50:21 +0000 Manifest this update: Wed 25 Mar 2026 04:50:21 +0000 Manifest next update: Wed 01 Apr 2026 04:50:21 +0000 Files and hashes: 1: D2tHILCjVyLYXzRG79R0C9NBg04.crl (hash: fqy9ntH4/P1uCGXa0so0z9m0c+AtlwOFry2dZR/XO8Q=) 2: CD1FB5C2643611EFA2C41948C4F9AE02.roa (hash: Oees07yYoqgn5PrN7dD6R0kAM+w8GIQPtiPs4eqC920=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.crl rsync://rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D2tHILCjVyLYXzRG79R0C9NBg04.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 313 (0x139) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91850AD, serialNumber=0F6B4720B0A35722D85F3446EFD4740BD341834E Validity Not Before: Mar 25 04:50:21 2026 GMT Not After : Apr 1 04:50:21 2026 GMT Subject: CN=69c3698d-fa75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:e3:e5:f3:df:65:16:66:26:63:36:83:a3:dd: 8d:a2:23:55:c6:16:3a:73:03:c8:dc:2d:79:8c:13: 25:09:8a:5f:d1:7c:80:13:b2:be:02:0a:79:9f:c1: c2:cc:da:4c:d1:c1:31:84:67:b7:fc:e1:33:6d:c3: 3c:ab:dd:a7:3b:6a:4d:dc:ac:d8:c3:4f:24:26:44: 3e:b5:fe:ee:f1:d1:2e:13:ee:14:2c:12:f0:20:01: 22:c2:9d:e0:94:72:af:a8:e9:bb:80:1c:a8:26:27: 87:03:66:20:40:54:d9:8c:fa:ec:33:c6:9c:e6:03: df:cc:70:02:f0:62:1a:8f:7a:c7:f1:7b:e7:5a:3c: ef:24:48:8c:aa:63:15:0a:f2:33:3a:f1:78:6c:e9: 3c:a0:1a:f7:d8:41:55:ff:c2:7d:79:53:34:3d:e6: 4f:21:07:ba:cf:8e:0f:9a:7b:66:20:ad:d5:1a:7d: f1:75:a2:8d:95:27:9a:c1:83:61:80:92:f3:f2:0e: e2:ce:ac:35:3d:63:f8:cb:21:2b:13:16:bb:28:62: cf:f8:9a:da:49:a9:d4:23:08:a0:75:4d:d4:a8:c8: c9:ed:08:2c:99:35:36:d8:95:5f:09:07:ff:9b:53: 54:9a:a7:73:a1:8d:cc:8f:a1:21:74:f5:26:ec:b9: de:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:E4:AD:D3:C1:4F:8D:74:DC:C9:C9:58:07:61:8F:A4:D8:60:FF:22 X509v3 Authority Key Identifier: keyid:0F:6B:47:20:B0:A3:57:22:D8:5F:34:46:EF:D4:74:0B:D3:41:83:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D2tHILCjVyLYXzRG79R0C9NBg04.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:9d:df:f9:04:1e:3f:cf:69:8a:a1:67:f7:09:df:e1:03:6d: 7b:0c:e9:ba:bd:e8:12:19:24:17:59:a9:df:cb:87:59:09:45: a6:71:f7:32:df:5c:08:90:e4:ae:d4:fe:8c:d4:4b:7b:1a:7b: 18:3f:a7:a1:15:5b:61:8f:84:28:a3:d4:15:8c:6d:1d:a5:da: 71:c5:d1:8e:5e:fd:44:ce:b9:e2:cf:a5:cc:e6:ab:37:a4:88: bd:86:58:46:10:99:f4:f1:72:7e:58:87:ac:d9:cd:1d:be:02: 41:91:21:30:3b:3a:f5:2b:cf:ff:af:b4:ea:d2:5a:49:00:36: 02:c9:ab:1d:16:d4:c9:54:cf:d9:95:01:e4:88:2a:c8:fe:ab: 78:d5:1a:d5:7b:fc:10:32:e0:64:fb:45:2d:62:13:4c:66:11: e5:46:39:a8:6c:ba:13:2e:2f:3b:75:0f:ef:9d:9b:38:92:9f: 01:01:f3:8c:19:11:75:c9:a5:d5:77:15:e5:a1:0c:d1:02:a7: 61:58:78:b2:29:4f:98:51:f3:57:1e:9f:8c:56:d4:46:cc:ac: 13:19:7e:26:54:d4:b4:40:87:1c:28:40:d9:cb:f4:4d:67:79: 04:1e:da:6e:56:73:62:c2:ed:ae:d9:eb:0a:a9:a5:72:30:c0: f9:51:a7:59 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICATkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODUwQUQxMTAvBgNVBAUTKDBGNkI0NzIwQjBBMzU3MjJEODVGMzQ0NkVGRDQ3NDBC RDM0MTgzNEUwHhcNMjYwMzI1MDQ1MDIxWhcNMjYwNDAxMDQ1MDIxWjAYMRYwFAYD VQQDEw02OWMzNjk4ZC1mYTc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAouPl899lFmYmYzaDo92NoiNVxhY6cwPI3C15jBMlCYpf0XyAE7K+Agp5n8HC zNpM0cExhGe3/OEzbcM8q92nO2pN3KzYw08kJkQ+tf7u8dEuE+4ULBLwIAEiwp3g lHKvqOm7gByoJieHA2YgQFTZjPrsM8ac5gPfzHAC8GIaj3rH8XvnWjzvJEiMqmMV CvIzOvF4bOk8oBr32EFV/8J9eVM0PeZPIQe6z44PmntmIK3VGn3xdaKNlSeawYNh gJLz8g7izqw1PWP4yyErExa7KGLP+JraSanUIwigdU3UqMjJ7QgsmTU22JVfCQf/ m1NUmqdzoY3Mj6EhdPUm7LneJwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNjkrdPB T4103MnJWAdhj6TYYP8iMB8GA1UdIwQYMBaAFA9rRyCwo1ci2F80Ru/UdAvTQYNO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTBBRC82MEVCRTFBQzY0 MzQxMUVGODQyRkM2MjBDNEY5QUUwMi9EMnRISUxDalZ5TFlYelJHNzlSMEM5TkJn MDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0QydEhJTENqVnlMWVh6Ukc3OVIwQzlOQmcwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NTBBRC82MEVCRTFBQzY0MzQxMUVGODQyRkM2MjBDNEY5QUUwMi9EMnRISUxDalZ5 TFlYelJHNzlSMEM5TkJnMDQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAA53f+QQeP89piqFn9wnf4QNtewzpur3oEhkkF1mp38uHWQlFpnH3Mt9cCJDk rtT+jNRLexp7GD+noRVbYY+EKKPUFYxtHaXaccXRjl79RM654s+lzOarN6SIvYZY RhCZ9PFyfliHrNnNHb4CQZEhMDs69SvP/6+06tJaSQA2AsmrHRbUyVTP2ZUB5Igq yP6reNUa1Xv8EDLgZPtFLWITTGYR5UY5qGy6Ey4vO3UP752bOJKfAQHzjBkRdcml 1XcV5aEM0QKnYVh4silPmFHzVx6fjFbURsysExl+JlTUtECHHChA2cv0TWd5BB7a blZzYsLtrtnrCqmlcjDA+VGnWQ== -----END CERTIFICATE-----Generated at Thu Mar 26 12:54:08 2026 by rpki-client