$ rpki-client -vvf rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/dnhyvdDvgmpkldgSahOfxASTgA8.mft File: dnhyvdDvgmpkldgSahOfxASTgA8.mft (raw, json) Hash identifier: vmZ1JFaHpMan7p7e7Q5RG0PtLJD1zTe3/OOql3B9OOw= Subject key identifier: 8A:39:BC:2D:97:6E:DB:DF:95:D0:9C:04:C7:95:02:B3:DB:6E:40:4E Authority key identifier: 76:78:72:BD:D0:EF:82:6A:64:95:D8:12:6A:13:9F:C4:04:93:80:0F Certificate issuer: /CN=A91B67D1/serialNumber=767872BDD0EF826A6495D8126A139FC40493800F Certificate serial: 1056 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dnhyvdDvgmpkldgSahOfxASTgA8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/dnhyvdDvgmpkldgSahOfxASTgA8.mft Manifest number: 102B Signing time: Thu 26 Mar 2026 17:23:28 +0000 Manifest this update: Thu 26 Mar 2026 17:23:28 +0000 Manifest next update: Thu 02 Apr 2026 17:23:28 +0000 Files and hashes: 1: dnhyvdDvgmpkldgSahOfxASTgA8.crl (hash: V+RWBNyHrv+pGv9EdsPSjl6J+ksEdHLQfQqdnhNWBIM=) 2: 5C1DBC489BEA11EFBCB36227C4F9AE02.roa (hash: v5H4fJJFXDpxvnkvndLnuywB0eTLMDeUHDuPRNGLC1o=) 3: 5B3CBC209BEA11EFBCB36227C4F9AE02.roa (hash: URL1ReTticLSrWgLn6MiNA2clbnttkHn48DN8d9RREQ=) 4: 5CCDCD7C9BEA11EFBCB36227C4F9AE02.roa (hash: lEGaA4sdvdJB9ZdOckx6GXw78zY9nH89g3CEg6GczLQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/dnhyvdDvgmpkldgSahOfxASTgA8.crl rsync://rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/dnhyvdDvgmpkldgSahOfxASTgA8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dnhyvdDvgmpkldgSahOfxASTgA8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 17:23:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4182 (0x1056) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B67D1, serialNumber=767872BDD0EF826A6495D8126A139FC40493800F Validity Not Before: Mar 26 17:23:28 2026 GMT Not After : Apr 2 17:23:28 2026 GMT Subject: CN=69c56b90-d10a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:94:c7:0f:a3:59:44:ca:7a:c0:f7:91:c2:d6: 6a:b3:c1:09:8d:8c:82:01:74:dd:66:39:74:50:b0: a1:6f:c7:dd:64:f9:36:91:5a:34:26:d8:3d:ce:68: 3e:5b:fb:b9:b8:72:cf:3a:55:c3:b1:db:75:62:e3: d8:f5:84:d6:b5:d6:9e:f8:55:1b:9a:13:9e:e8:ff: d1:5b:21:98:1e:e4:01:f4:54:af:20:91:c1:ba:ee: f0:fb:77:f4:22:d1:22:d8:7a:89:5b:6b:87:c5:11: 3e:33:bb:00:4b:88:0d:c0:39:32:b4:37:67:cf:96: d0:69:29:d1:bb:cd:a5:a5:31:67:cd:27:c2:a2:95: 5d:5e:dd:f9:83:3f:c1:0a:3a:6e:a4:ee:de:f5:04: 7a:2e:13:82:1a:f7:0d:7b:c8:53:83:01:89:85:6c: 80:7b:2d:75:41:8e:e9:07:9b:a5:92:dd:ba:c0:2f: 7b:d0:00:46:9f:e3:e8:c3:b2:7f:03:89:12:8c:1c: 67:5d:f6:a8:40:e7:b1:25:db:88:f9:18:09:8e:f3: 1c:7a:67:ff:b6:9b:ff:f8:17:1a:94:1b:20:11:c7: d3:ff:01:a1:85:b2:68:7c:34:0e:5f:8d:79:16:df: 8f:51:19:de:e9:c1:92:be:f3:37:29:ef:90:b8:af: 59:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:39:BC:2D:97:6E:DB:DF:95:D0:9C:04:C7:95:02:B3:DB:6E:40:4E X509v3 Authority Key Identifier: keyid:76:78:72:BD:D0:EF:82:6A:64:95:D8:12:6A:13:9F:C4:04:93:80:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/dnhyvdDvgmpkldgSahOfxASTgA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dnhyvdDvgmpkldgSahOfxASTgA8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/dnhyvdDvgmpkldgSahOfxASTgA8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:1c:f3:67:13:7c:09:19:a3:dd:50:da:0f:99:e5:0e:13:e1: 88:54:ca:a6:c4:5b:12:7a:ea:bb:0c:56:f2:b9:0e:3e:3d:6b: 40:7d:9f:46:11:35:da:7b:66:18:50:c9:ea:02:6e:cc:ab:a0: f0:f7:86:3f:20:05:1b:d2:90:bc:6c:bf:83:ba:3c:04:c9:ed: 6f:40:28:75:75:5e:23:17:09:8d:b8:fe:14:e6:ec:af:f6:b5: 34:35:1d:4f:6e:cc:43:5e:02:1d:f8:34:41:dc:12:94:9a:99: 2c:89:bc:ed:10:3b:09:db:85:d7:11:28:05:25:78:95:41:ca: 6c:b0:5d:8c:f1:f5:a2:8d:b9:15:f0:1e:78:ce:45:1e:c2:c8: 4e:b7:83:13:07:6b:54:76:8b:ff:36:b8:1c:02:78:cc:12:9d: bf:93:2d:dd:73:e5:1e:4a:9c:2a:f0:0a:47:8f:8b:86:8a:9c: 8c:0c:d4:3b:e9:a7:79:92:f4:dd:1b:c7:49:fe:5a:7a:42:b8: c3:37:2b:5b:65:b7:ac:38:bc:ca:b2:49:4f:8a:78:36:66:cc: c2:f1:95:b0:54:9c:cf:6e:b8:4f:cd:b7:ff:86:99:a0:05:c3: 3b:b3:b0:fc:6e:01:f5:10:c8:05:31:62:b6:17:40:3a:47:8e: 85:83:ae:c6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICEFYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjY3RDExMTAvBgNVBAUTKDc2Nzg3MkJERDBFRjgyNkE2NDk1RDgxMjZBMTM5RkM0 MDQ5MzgwMEYwHhcNMjYwMzI2MTcyMzI4WhcNMjYwNDAyMTcyMzI4WjAYMRYwFAYD VQQDEw02OWM1NmI5MC1kMTBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxZTHD6NZRMp6wPeRwtZqs8EJjYyCAXTdZjl0ULChb8fdZPk2kVo0Jtg9zmg+ W/u5uHLPOlXDsdt1YuPY9YTWtdae+FUbmhOe6P/RWyGYHuQB9FSvIJHBuu7w+3f0 ItEi2HqJW2uHxRE+M7sAS4gNwDkytDdnz5bQaSnRu82lpTFnzSfCopVdXt35gz/B CjpupO7e9QR6LhOCGvcNe8hTgwGJhWyAey11QY7pB5ulkt26wC970ABGn+Pow7J/ A4kSjBxnXfaoQOexJduI+RgJjvMcemf/tpv/+BcalBsgEcfT/wGhhbJofDQOX415 Ft+PURne6cGSvvM3Ke+QuK9Z6QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIo5vC2X btvfldCcBMeVArPbbkBOMB8GA1UdIwQYMBaAFHZ4cr3Q74JqZJXYEmoTn8QEk4AP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjdEMS82Q0JDOUI0MDYx MUQxMUU5QjAxMkRCMzdDNEY5QUUwMi9kbmh5dmREdmdtcGtsZGdTYWhPZnhBU1Rn QTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RuaHl2ZER2Z21wa2xkZ1NhaE9meEFTVGdBOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NjdEMS82Q0JDOUI0MDYxMUQxMUU5QjAxMkRCMzdDNEY5QUUwMi9kbmh5dmREdmdt cGtsZGdTYWhPZnhBU1RnQTgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAhBzzZxN8CRmj3VDaD5nlDhPhiFTKpsRbEnrquwxW8rkOPj1rQH2fRhE12ntm GFDJ6gJuzKug8PeGPyAFG9KQvGy/g7o8BMntb0AodXVeIxcJjbj+FObsr/a1NDUd T27MQ14CHfg0QdwSlJqZLIm87RA7CduF1xEoBSV4lUHKbLBdjPH1oo25FfAeeM5F HsLITreDEwdrVHaL/za4HAJ4zBKdv5Mt3XPlHkqcKvAKR4+LhoqcjAzUO+mneZL0 3RvHSf5aekK4wzcrW2W3rDi8yrJJT4p4NmbMwvGVsFScz264T823/4aZoAXDO7Ow /G4B9RDIBTFithdAOkeOhYOuxg== -----END CERTIFICATE-----Generated at Sat Mar 28 08:46:42 2026 by rpki-client