$ rpki-client -vvf rpki.apnic.net/member_repository/A91B588F/784D94B8B76111E6B1175A3CC4F9AE02/DfoUcOPJ6yHxewN7BM9O1UJO88k.mft File: DfoUcOPJ6yHxewN7BM9O1UJO88k.mft (raw, json) Hash identifier: 5xAc4ZZ90c9++Eeaxda3nib6BfcQndBYcI4rarSGoec= Subject key identifier: BD:32:2A:77:8D:E6:6F:B9:81:EE:28:B7:2E:BF:D5:B6:AE:BD:40:A2 Authority key identifier: 0D:FA:14:70:E3:C9:EB:21:F1:7B:03:7B:04:CF:4E:D5:42:4E:F3:C9 Certificate issuer: /CN=A91B588F/serialNumber=0DFA1470E3C9EB21F17B037B04CF4ED5424EF3C9 Certificate serial: 1DCC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DfoUcOPJ6yHxewN7BM9O1UJO88k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B588F/784D94B8B76111E6B1175A3CC4F9AE02/DfoUcOPJ6yHxewN7BM9O1UJO88k.mft Manifest number: 1DB9 Signing time: Tue 24 Mar 2026 16:01:55 +0000 Manifest this update: Tue 24 Mar 2026 16:01:55 +0000 Manifest next update: Tue 31 Mar 2026 16:01:55 +0000 Files and hashes: 1: DfoUcOPJ6yHxewN7BM9O1UJO88k.crl (hash: TnUETHMxDP/sJL8EX2ZvIHq5KIt3hmfXvJC9me89Pgc=) 2: 234A77E28D2111ECB33BB01AC4F9AE02.roa (hash: kR4y+WvgC3hkyFfy0t8WKjcUjP/sBiTZjAGWQPxf694=) 3: 09DBF798B76311E6AF11523EC4F9AE02.roa (hash: seFaisKP4ec6q9qFGmFZNr4zMFjr0TKVJUyLwQHYJXw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B588F/784D94B8B76111E6B1175A3CC4F9AE02/DfoUcOPJ6yHxewN7BM9O1UJO88k.crl rsync://rpki.apnic.net/member_repository/A91B588F/784D94B8B76111E6B1175A3CC4F9AE02/DfoUcOPJ6yHxewN7BM9O1UJO88k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DfoUcOPJ6yHxewN7BM9O1UJO88k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 16:01:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7628 (0x1dcc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B588F, serialNumber=0DFA1470E3C9EB21F17B037B04CF4ED5424EF3C9 Validity Not Before: Mar 24 16:01:55 2026 GMT Not After : Mar 31 16:01:55 2026 GMT Subject: CN=69c2b573-0519 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:04:96:c8:3d:2c:c0:9a:b3:ae:9d:57:58:0d: 4e:8d:04:2c:d1:af:27:f8:2f:6b:96:f7:0f:4b:2f: 1e:d3:7c:ec:db:53:65:43:01:12:dd:47:b5:af:62: 64:71:3f:14:ea:93:e6:49:dc:d9:cd:5c:df:06:37: c1:3a:37:7f:24:11:93:f9:fc:6b:df:43:4a:5d:c8: 47:ff:29:02:fd:1b:5d:cd:13:6a:09:e9:35:92:08: ae:51:0f:0a:ec:50:ee:80:f9:fc:c0:67:6e:54:a2: 44:0f:2c:ae:fd:a5:08:02:f4:4c:30:98:d7:4f:da: 6c:84:1c:f4:21:d6:a2:17:70:ce:f3:06:98:6f:01: 3d:5a:17:e7:b9:f3:8a:7b:7e:46:b0:36:0d:5d:c3: 4f:dd:3b:df:6f:d6:54:82:68:d9:d6:68:43:a6:af: e8:5a:cb:da:9c:8d:a9:ce:6a:f1:dc:d2:2f:da:68: 95:7a:b6:92:bd:ec:b1:0f:f2:fa:f2:6d:ea:53:f0: 4e:e3:c2:f4:44:51:5a:ea:7d:3a:19:dd:e1:0e:73: 2d:3d:fd:dc:04:b9:b2:6c:e2:2f:db:ab:ae:a4:2c: bd:fe:4d:d9:76:85:3a:04:a2:91:25:cd:bb:a6:90: 9e:32:ba:4d:2a:8b:46:df:d4:ae:73:ef:1f:61:24: 0a:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:32:2A:77:8D:E6:6F:B9:81:EE:28:B7:2E:BF:D5:B6:AE:BD:40:A2 X509v3 Authority Key Identifier: keyid:0D:FA:14:70:E3:C9:EB:21:F1:7B:03:7B:04:CF:4E:D5:42:4E:F3:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B588F/784D94B8B76111E6B1175A3CC4F9AE02/DfoUcOPJ6yHxewN7BM9O1UJO88k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DfoUcOPJ6yHxewN7BM9O1UJO88k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B588F/784D94B8B76111E6B1175A3CC4F9AE02/DfoUcOPJ6yHxewN7BM9O1UJO88k.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:54:7d:e8:02:34:de:76:de:8a:1c:97:b1:11:0a:98:36:f1: 16:8e:d9:f5:f8:bf:b0:6f:fd:df:a7:b7:61:6b:d5:40:5c:17: 4c:86:04:d7:15:2c:d0:f6:e3:c4:d8:f2:d2:13:d5:bd:2b:4c: a5:db:22:25:46:f6:f2:2a:46:32:f0:86:21:09:47:a6:15:4b: 16:b8:ee:2f:8c:32:64:9d:cd:66:55:78:87:6a:34:ed:d4:d7: 60:b6:23:d3:16:59:6f:83:94:51:c2:07:da:08:be:2e:0d:45: 78:d6:eb:4a:3f:9a:d3:04:31:e7:be:45:71:2c:7b:91:c1:08: 4c:08:cc:0e:8e:0d:f1:3a:b3:eb:a2:80:ef:62:e6:05:a2:ee: 7a:d2:22:f3:4c:dc:2b:51:19:59:01:c1:62:55:4a:29:fb:53: db:3c:e8:af:04:59:f8:5c:9c:01:52:7e:2a:15:91:2a:3e:6c: 0f:da:72:97:3c:c5:83:cc:e9:84:a6:e9:73:e6:d3:5d:97:13: 5f:8f:bc:9c:11:bb:dd:2c:de:6b:38:8e:63:db:8a:fc:a9:99: f1:68:da:7a:9e:47:b2:99:b7:b3:7e:d1:cd:2d:89:76:77:f8: 2e:5e:b6:42:d1:1f:bd:58:11:df:94:0d:0f:05:ee:57:bb:01: dc:cb:40:46 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICHcwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjU4OEYxMTAvBgNVBAUTKDBERkExNDcwRTNDOUVCMjFGMTdCMDM3QjA0Q0Y0RUQ1 NDI0RUYzQzkwHhcNMjYwMzI0MTYwMTU1WhcNMjYwMzMxMTYwMTU1WjAYMRYwFAYD VQQDEw02OWMyYjU3My0wNTE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlwSWyD0swJqzrp1XWA1OjQQs0a8n+C9rlvcPSy8e03zs21NlQwES3Ue1r2Jk cT8U6pPmSdzZzVzfBjfBOjd/JBGT+fxr30NKXchH/ykC/RtdzRNqCek1kgiuUQ8K 7FDugPn8wGduVKJEDyyu/aUIAvRMMJjXT9pshBz0IdaiF3DO8waYbwE9WhfnufOK e35GsDYNXcNP3Tvfb9ZUgmjZ1mhDpq/oWsvanI2pzmrx3NIv2miVeraSveyxD/L6 8m3qU/BO48L0RFFa6n06Gd3hDnMtPf3cBLmybOIv26uupCy9/k3ZdoU6BKKRJc27 ppCeMrpNKotG39Suc+8fYSQKswIDAQABo4ICczCCAm8wHQYDVR0OBBYEFL0yKneN 5m+5ge4oty6/1bauvUCiMB8GA1UdIwQYMBaAFA36FHDjyesh8XsDewTPTtVCTvPJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNTg4Ri83ODREOTRCOEI3 NjExMUU2QjExNzVBM0NDNEY5QUUwMi9EZm9VY09QSjZ5SHhld043Qk05TzFVSk84 OGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Rmb1VjT1BKNnlIeGV3TjdCTTlPMVVKTzg4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NTg4Ri83ODREOTRCOEI3NjExMUU2QjExNzVBM0NDNEY5QUUwMi9EZm9VY09QSjZ5 SHhld043Qk05TzFVSk84OGsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAWVR96AI03nbeihyXsREKmDbxFo7Z9fi/sG/936e3YWvVQFwXTIYE1xUs0Pbj xNjy0hPVvStMpdsiJUb28ipGMvCGIQlHphVLFrjuL4wyZJ3NZlV4h2o07dTXYLYj 0xZZb4OUUcIH2gi+Lg1FeNbrSj+a0wQx575FcSx7kcEITAjMDo4N8Tqz66KA72Lm BaLuetIi80zcK1EZWQHBYlVKKftT2zzorwRZ+FycAVJ+KhWRKj5sD9pylzzFg8zp hKbpc+bTXZcTX4+8nBG73SzeaziOY9uK/KmZ8Wjaep5Hspm3s37RzS2Jdnf4Ll62 QtEfvVgR35QNDwXuV7sB3MtARg== -----END CERTIFICATE-----Generated at Thu Mar 26 15:43:23 2026 by rpki-client