$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4DC1/996F98EADBD711EBB9511745C4F9AE02/dt9_kRaaPzgMCmvNOOkYbe_zG6s.mft File: dt9_kRaaPzgMCmvNOOkYbe_zG6s.mft (raw, json) Hash identifier: EDlW9SYkwkb4NuPOcFYB7hP2p45Z+HUXWpXu5rejeDg= Subject key identifier: 82:C2:0F:AD:8D:5B:21:38:DD:18:3F:21:D9:2F:AB:5E:78:DC:4D:DB Authority key identifier: 76:DF:7F:91:16:9A:3F:38:0C:0A:6B:CD:38:E9:18:6D:EF:F3:1B:AB Certificate issuer: /CN=A91D4DC1/serialNumber=76DF7F91169A3F380C0A6BCD38E9186DEFF31BAB Certificate serial: 061E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dt9_kRaaPzgMCmvNOOkYbe_zG6s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4DC1/996F98EADBD711EBB9511745C4F9AE02/dt9_kRaaPzgMCmvNOOkYbe_zG6s.mft Manifest number: 0618 Signing time: Thu 26 Mar 2026 22:40:22 +0000 Manifest this update: Thu 26 Mar 2026 22:40:22 +0000 Manifest next update: Thu 02 Apr 2026 22:40:22 +0000 Files and hashes: 1: dt9_kRaaPzgMCmvNOOkYbe_zG6s.crl (hash: wDrTgFyq713CCQylxXgiSHwjn8QcCUBNwiYtWIl3vUI=) 2: B5A7B020DBDB11EB8EC1494EC4F9AE02.roa (hash: fYlbPfEs4vpEZMOqbZxRLfV0ETlA1noV8iqWKcS9gO4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4DC1/996F98EADBD711EBB9511745C4F9AE02/dt9_kRaaPzgMCmvNOOkYbe_zG6s.crl rsync://rpki.apnic.net/member_repository/A91D4DC1/996F98EADBD711EBB9511745C4F9AE02/dt9_kRaaPzgMCmvNOOkYbe_zG6s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dt9_kRaaPzgMCmvNOOkYbe_zG6s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 22:40:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1566 (0x61e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4DC1, serialNumber=76DF7F91169A3F380C0A6BCD38E9186DEFF31BAB Validity Not Before: Mar 26 22:40:22 2026 GMT Not After : Apr 2 22:40:22 2026 GMT Subject: CN=69c5b5d6-7b3b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:ce:cf:a4:14:c8:e0:ac:49:75:02:30:d5:20: 1e:5a:e2:58:b4:7a:fd:63:30:3a:7e:31:45:a8:b8: ea:6c:63:79:c9:67:b6:49:b3:83:70:9c:30:4c:a3: 3a:55:a9:c8:ce:e8:16:68:11:d8:57:85:d0:a6:f3: c2:81:48:4f:6d:db:03:6b:33:1a:8e:a1:32:5d:67: a9:cd:42:cb:be:e2:5d:8f:5b:1e:21:0d:9c:29:ad: a4:db:9c:65:35:c0:75:da:fb:9c:9d:bb:20:90:12: a5:e9:a6:60:f0:f5:9e:a5:26:8f:8f:3d:30:ef:4d: d0:c4:bd:b0:28:6f:75:e1:37:30:a3:d7:f1:f6:a4: 00:03:03:fb:69:e5:33:59:c0:d5:a0:6b:36:8b:b4: b4:99:c9:e9:6a:03:93:84:df:40:00:f9:4b:80:4c: ac:52:d9:5c:27:c7:30:3b:ac:a1:f2:06:75:7d:de: c2:83:88:f3:55:d1:9f:a8:f9:47:1a:91:5d:a0:f1: f7:49:23:42:bb:7c:04:03:c2:28:1d:d7:a9:25:68: 92:0b:16:e0:08:12:3e:8f:8c:99:c6:17:bb:73:d6: 4d:b1:e9:88:a9:22:72:7f:7b:ad:c8:fd:6a:a1:64: 50:ef:4b:6a:6e:9b:88:46:ca:94:af:d2:49:e9:10: 38:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:C2:0F:AD:8D:5B:21:38:DD:18:3F:21:D9:2F:AB:5E:78:DC:4D:DB X509v3 Authority Key Identifier: keyid:76:DF:7F:91:16:9A:3F:38:0C:0A:6B:CD:38:E9:18:6D:EF:F3:1B:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4DC1/996F98EADBD711EBB9511745C4F9AE02/dt9_kRaaPzgMCmvNOOkYbe_zG6s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dt9_kRaaPzgMCmvNOOkYbe_zG6s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4DC1/996F98EADBD711EBB9511745C4F9AE02/dt9_kRaaPzgMCmvNOOkYbe_zG6s.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c6:e9:d1:44:39:81:fc:18:34:c3:a5:6e:f8:aa:eb:50:f9:5e: 20:cd:e7:a8:29:a9:11:cb:ba:08:67:a9:23:e2:4b:30:f3:fa: ab:7a:35:48:b1:c8:36:7f:8b:ba:f2:53:5b:d9:56:77:f5:99: 3a:02:fd:d9:4a:6a:ae:a3:ba:c9:a9:4a:ad:2e:71:cb:85:d9: 7a:62:4a:cb:f3:2d:ea:9f:c1:f7:39:24:14:97:27:dc:60:ab: 15:c3:ed:d1:40:5a:42:5c:c0:9e:fe:ec:35:c5:04:8f:44:1f: a0:f0:06:26:76:39:fd:8b:4e:1a:dd:4b:d7:3e:a4:04:c2:5f: f8:6f:be:d9:5e:bf:6a:e3:79:e8:2f:cc:15:f9:df:2f:82:a0: 80:ee:a3:85:a7:1d:73:2d:5c:fe:57:ff:a3:aa:2d:27:6a:8e: 07:d5:d3:96:b2:4f:10:80:58:1c:e5:0c:25:49:6a:ee:ff:00: b8:25:2a:7f:b4:65:cd:73:0d:64:62:2e:a9:8a:4f:2f:77:4d: fd:ff:7c:52:9e:7e:ff:fe:8c:be:b0:26:39:f3:5c:4a:b0:32: c9:8a:20:cf:66:df:fb:e4:2a:b6:e7:65:a0:71:24:06:3c:76: 42:64:60:34:0f:51:d3:17:e4:86:0f:b2:75:81:72:d3:72:8b: 26:b7:1e:43 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBh4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDREQzExMTAvBgNVBAUTKDc2REY3RjkxMTY5QTNGMzgwQzBBNkJDRDM4RTkxODZE RUZGMzFCQUIwHhcNMjYwMzI2MjI0MDIyWhcNMjYwNDAyMjI0MDIyWjAYMRYwFAYD VQQDEw02OWM1YjVkNi03YjNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0c7PpBTI4KxJdQIw1SAeWuJYtHr9YzA6fjFFqLjqbGN5yWe2SbODcJwwTKM6 VanIzugWaBHYV4XQpvPCgUhPbdsDazMajqEyXWepzULLvuJdj1seIQ2cKa2k25xl NcB12vucnbsgkBKl6aZg8PWepSaPjz0w703QxL2wKG914Tcwo9fx9qQAAwP7aeUz WcDVoGs2i7S0mcnpagOThN9AAPlLgEysUtlcJ8cwO6yh8gZ1fd7Cg4jzVdGfqPlH GpFdoPH3SSNCu3wEA8IoHdepJWiSCxbgCBI+j4yZxhe7c9ZNsemIqSJyf3utyP1q oWRQ70tqbpuIRsqUr9JJ6RA4wwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFILCD62N WyE43Rg/Idkvq1543E3bMB8GA1UdIwQYMBaAFHbff5EWmj84DAprzTjpGG3v8xur MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENERDMS85OTZGOThFQURC RDcxMUVCQjk1MTE3NDVDNEY5QUUwMi9kdDlfa1JhYVB6Z01DbXZOT09rWWJlX3pH NnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2R0OV9rUmFhUHpnTUNtdk5PT2tZYmVfekc2cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NERDMS85OTZGOThFQURCRDcxMUVCQjk1MTE3NDVDNEY5QUUwMi9kdDlfa1JhYVB6 Z01DbXZOT09rWWJlX3pHNnMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAxunRRDmB/Bg0w6Vu+KrrUPleIM3nqCmpEcu6CGepI+JLMPP6q3o1SLHINn+L uvJTW9lWd/WZOgL92UpqrqO6yalKrS5xy4XZemJKy/Mt6p/B9zkkFJcn3GCrFcPt 0UBaQlzAnv7sNcUEj0QfoPAGJnY5/YtOGt1L1z6kBMJf+G++2V6/auN56C/MFfnf L4KggO6jhacdcy1c/lf/o6otJ2qOB9XTlrJPEIBYHOUMJUlq7v8AuCUqf7RlzXMN ZGIuqYpPL3dN/f98Up5+//6MvrAmOfNcSrAyyYogz2bf++QqtudloHEkBjx2QmRg NA9R0xfkhg+ydYFy03KLJrceQw== -----END CERTIFICATE-----Generated at Sat Mar 28 12:20:41 2026 by rpki-client