$ rpki-client -vvf rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.mft File: DYtx2GteICkzvLAqW210CSpSoXw.mft (raw, json) Hash identifier: l14faXpD6BuhMYPwgjM27koy+tcQrf2bEm1JDPUh5Vc= Subject key identifier: 58:80:5E:91:48:E9:65:AF:CB:B0:73:D9:1D:74:F3:1E:E9:E4:AE:44 Authority key identifier: 0D:8B:71:D8:6B:5E:20:29:33:BC:B0:2A:5B:6D:74:09:2A:52:A1:7C Certificate issuer: /CN=A91A395C/serialNumber=0D8B71D86B5E202933BCB02A5B6D74092A52A17C Certificate serial: 359F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DYtx2GteICkzvLAqW210CSpSoXw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.mft Manifest number: 3547 Signing time: Tue 24 Mar 2026 14:49:50 +0000 Manifest this update: Tue 24 Mar 2026 14:49:50 +0000 Manifest next update: Tue 31 Mar 2026 14:49:50 +0000 Files and hashes: 1: DYtx2GteICkzvLAqW210CSpSoXw.crl (hash: xmLNzoUZJofWQXz454S75kmTlGpKG8P48YplKI88QVE=) 2: D56D9FD87E8711EC9A928B6AC4F9AE02.roa (hash: l9+xBEny0RtitxX+horpYy85rL+QwU54sl8n7bTIiQE=) 3: 9A2B0DE4593F11EA9F9FA238C4F9AE02.roa (hash: NLs+1lW2c+XRSot8ioe6j0/P90GPYhhRdikdITCoGOI=) 4: 991EB004BE8511EE960E5082C4F9AE02.roa (hash: rP4EBcoYjp/fb5drtfKj/6SrPS0+St4OmibSJgW68j8=) 5: 9B71FEB0593F11EA9F9FA238C4F9AE02.roa (hash: Q4GRmFRI4ONgbTnKmbxTEpLs75sW5Sq4FWea39SXv98=) 6: 65552C3AE8D411ED8D0FAD45C4F9AE02.roa (hash: D7Y0D/y/CKTIEfmEtpoWEBzYAJ2qa9qCceCAIRlHBxE=) 7: 3DBC186C5AD611EF85A4557BC4F9AE02.roa (hash: 6uLGUsAxDCCetxCSvWggNZXKnXx2TcJW5ybw8uE9+E8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.crl rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DYtx2GteICkzvLAqW210CSpSoXw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 14:49:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13727 (0x359f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A395C, serialNumber=0D8B71D86B5E202933BCB02A5B6D74092A52A17C Validity Not Before: Mar 24 14:49:50 2026 GMT Not After : Mar 31 14:49:50 2026 GMT Subject: CN=69c2a48e-de0c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:15:b6:32:87:96:cf:d9:a0:bf:79:22:2b:ef: 5e:72:09:d8:53:ee:cd:8c:14:c1:b4:33:05:76:62: 52:27:12:fd:c6:a8:e1:de:e7:c6:5f:bc:bf:34:0e: 30:cb:7a:39:d7:11:84:28:94:a4:a1:ba:4f:ec:5d: e8:af:2f:39:5c:a7:78:0a:bb:cd:40:cc:4a:49:57: 76:5f:40:31:bb:28:03:eb:9c:a9:f9:0d:ef:93:22: 2d:99:87:6a:54:2c:cf:bc:fe:26:11:f1:88:df:61: 55:77:95:ce:cd:d6:37:03:39:74:bd:e1:e6:66:ca: ac:01:26:33:61:c8:6e:d5:94:57:80:6b:fe:c4:ba: 96:25:55:53:89:76:5e:95:0e:65:27:e2:2d:79:09: c1:08:ab:e9:c4:69:4f:5e:ba:cd:10:f5:31:72:71: f0:78:1e:92:9b:0b:a7:ac:e1:ad:d9:12:40:d6:a9: fc:aa:8a:d2:74:42:b0:03:fd:59:8e:16:a2:8c:81: fc:54:5e:6a:28:c6:4c:90:57:78:66:fd:6c:d1:c0: ce:b6:08:e4:78:74:6b:db:3c:6f:f0:f0:2b:af:65: 29:a6:5d:b2:31:3a:59:cc:c2:6c:56:de:f4:1d:34: 1c:22:8d:cb:11:72:3e:89:0f:89:a1:37:a8:66:1d: a6:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:80:5E:91:48:E9:65:AF:CB:B0:73:D9:1D:74:F3:1E:E9:E4:AE:44 X509v3 Authority Key Identifier: keyid:0D:8B:71:D8:6B:5E:20:29:33:BC:B0:2A:5B:6D:74:09:2A:52:A1:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DYtx2GteICkzvLAqW210CSpSoXw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:6d:44:5c:c6:d6:1e:b0:be:07:f3:ee:d4:69:c8:e0:d4:0b: 00:39:40:d5:80:9f:21:95:cd:ec:8e:49:87:db:4b:04:da:9d: 70:81:40:32:38:dd:55:4e:4e:b0:84:96:c5:39:0b:9f:75:0a: a1:c8:ae:49:44:7a:a0:6e:9f:c9:bc:1d:0d:b8:0b:8c:fd:0f: 17:cd:9a:bd:93:60:b1:50:8b:a3:c9:af:cd:3a:6f:89:69:ce: c8:b2:19:17:7f:93:87:d3:0d:5a:a6:b3:8e:d0:08:b9:85:1e: 40:ec:12:89:1e:be:1d:c1:b5:54:71:87:7d:4a:40:9f:06:a0: 95:2e:8b:43:bf:0c:31:b9:1b:d7:7a:4b:14:5d:84:29:5f:74: a2:ef:96:05:0d:4e:1b:3a:ec:42:b8:6a:a3:02:7f:ad:3b:2b: bf:8b:4c:53:46:89:f9:f6:8c:ac:63:bd:9e:0f:4b:d3:f6:d3: 63:a1:f0:b3:e6:67:45:22:92:d3:63:64:42:e9:55:d2:eb:0d: 33:2f:3d:a7:f6:63:07:ac:b5:01:e5:b6:3f:27:b6:f8:99:b2: 79:d2:b9:f2:bd:82:50:8c:63:ca:83:fb:25:35:9b:6d:db:bc: 4f:75:a8:82:95:77:e7:58:65:df:43:4c:2a:fa:5a:a3:b7:8e: 76:c1:f8:92 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNZ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTM5NUMxMTAvBgNVBAUTKDBEOEI3MUQ4NkI1RTIwMjkzM0JDQjAyQTVCNkQ3NDA5 MkE1MkExN0MwHhcNMjYwMzI0MTQ0OTUwWhcNMjYwMzMxMTQ0OTUwWjAYMRYwFAYD VQQDEw02OWMyYTQ4ZS1kZTBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzRW2MoeWz9mgv3kiK+9ecgnYU+7NjBTBtDMFdmJSJxL9xqjh3ufGX7y/NA4w y3o51xGEKJSkobpP7F3ory85XKd4CrvNQMxKSVd2X0AxuygD65yp+Q3vkyItmYdq VCzPvP4mEfGI32FVd5XOzdY3Azl0veHmZsqsASYzYchu1ZRXgGv+xLqWJVVTiXZe lQ5lJ+IteQnBCKvpxGlPXrrNEPUxcnHweB6SmwunrOGt2RJA1qn8qorSdEKwA/1Z jhaijIH8VF5qKMZMkFd4Zv1s0cDOtgjkeHRr2zxv8PArr2Uppl2yMTpZzMJsVt70 HTQcIo3LEXI+iQ+JoTeoZh2mZwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFiAXpFI 6WWvy7Bz2R108x7p5K5EMB8GA1UdIwQYMBaAFA2LcdhrXiApM7ywKlttdAkqUqF8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzk1Qy9CQjM0MTdDMDFE OTYxMUUyQjhCQjgyN0YwOEIwMkNEMi9EWXR4Mkd0ZUlDa3p2TEFxVzIxMENTcFNv WHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RZdHgyR3RlSUNrenZMQXFXMjEwQ1NwU29Ydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Mzk1Qy9CQjM0MTdDMDFEOTYxMUUyQjhCQjgyN0YwOEIwMkNEMi9EWXR4Mkd0ZUlD a3p2TEFxVzIxMENTcFNvWHcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAZm1EXMbWHrC+B/Pu1GnI4NQLADlA1YCfIZXN7I5Jh9tLBNqdcIFAMjjdVU5O sISWxTkLn3UKociuSUR6oG6fybwdDbgLjP0PF82avZNgsVCLo8mvzTpviWnOyLIZ F3+Th9MNWqazjtAIuYUeQOwSiR6+HcG1VHGHfUpAnwaglS6LQ78MMbkb13pLFF2E KV90ou+WBQ1OGzrsQrhqowJ/rTsrv4tMU0aJ+faMrGO9ng9L0/bTY6Hws+ZnRSKS 02NkQulV0usNMy89p/ZjB6y1AeW2Pye2+JmyedK58r2CUIxjyoP7JTWbbdu8T3Wo gpV351hl30NMKvpao7eOdsH4kg== -----END CERTIFICATE-----Generated at Thu Mar 26 00:51:33 2026 by rpki-client