$ rpki-client -vvf rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/DfmeMksOOlPo5W1wIP9vvFvxywI.mft File: DfmeMksOOlPo5W1wIP9vvFvxywI.mft (raw, json) Hash identifier: laxOnuuC7niYgHCcwTVxt9vzwCvv+iLymJ6yMIdGAuU= Subject key identifier: 64:F1:C0:2C:40:1B:D7:2B:C8:F8:83:34:2D:78:4A:49:12:A2:2C:A3 Authority key identifier: 0D:F9:9E:32:4B:0E:3A:53:E8:E5:6D:70:20:FF:6F:BC:5B:F1:CB:02 Certificate issuer: /CN=A91D72CC/serialNumber=0DF99E324B0E3A53E8E56D7020FF6FBC5BF1CB02 Certificate serial: 0E91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DfmeMksOOlPo5W1wIP9vvFvxywI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/DfmeMksOOlPo5W1wIP9vvFvxywI.mft Manifest number: 0F72 Signing time: Thu 26 Mar 2026 17:41:42 +0000 Manifest this update: Thu 26 Mar 2026 17:41:42 +0000 Manifest next update: Thu 02 Apr 2026 17:41:42 +0000 Files and hashes: 1: DfmeMksOOlPo5W1wIP9vvFvxywI.crl (hash: YvoS6dyChegEUfbkodkrTe2L/+nsSdpDEB2v1S2UIlU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/DfmeMksOOlPo5W1wIP9vvFvxywI.crl rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/DfmeMksOOlPo5W1wIP9vvFvxywI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DfmeMksOOlPo5W1wIP9vvFvxywI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 17:41:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3729 (0xe91) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D72CC, serialNumber=0DF99E324B0E3A53E8E56D7020FF6FBC5BF1CB02 Validity Not Before: Mar 26 17:41:42 2026 GMT Not After : Apr 2 17:41:42 2026 GMT Subject: CN=69c56fd6-deec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:e8:2a:63:ef:ea:b6:4f:cf:0f:17:68:89:fc: aa:2d:b5:fe:61:db:06:30:63:88:21:c6:ec:01:5a: 62:8d:2a:1b:e1:12:2d:f8:e7:f7:57:18:49:ee:5b: 2c:f4:70:1c:50:af:69:41:51:c1:12:69:5d:50:dc: b4:f2:0b:09:cc:61:ce:9c:8d:a8:6c:1d:bf:15:bf: b0:2b:9f:3f:ce:43:26:92:90:30:fb:9a:48:28:c3: 93:3b:fe:9a:14:f4:46:be:fa:40:06:31:98:c4:59: 2c:ca:f5:0a:92:2f:03:e5:ce:11:38:8c:07:ff:85: 58:0f:fa:4f:35:77:60:88:3a:9a:2a:4a:a8:24:72: ab:f1:71:22:b0:0c:8f:0d:e4:3d:fa:48:02:72:0b: 05:05:a9:be:b7:5b:0b:14:5d:87:0e:05:99:91:08: 4d:3c:3d:32:1f:be:8b:0e:74:83:8f:66:15:2d:7f: b4:a7:90:95:9f:2b:c7:f1:52:00:91:81:70:e0:e1: de:65:25:0b:e5:a0:6a:15:15:1f:06:58:23:d6:68: 11:da:a2:d0:f7:e7:c2:8a:87:7d:78:75:1b:37:27: c2:75:c6:a8:e5:bf:bb:cf:85:00:5b:84:68:a2:cf: 15:2d:6e:25:16:af:20:8c:85:c9:92:e8:74:e6:9a: 85:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:F1:C0:2C:40:1B:D7:2B:C8:F8:83:34:2D:78:4A:49:12:A2:2C:A3 X509v3 Authority Key Identifier: keyid:0D:F9:9E:32:4B:0E:3A:53:E8:E5:6D:70:20:FF:6F:BC:5B:F1:CB:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/DfmeMksOOlPo5W1wIP9vvFvxywI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DfmeMksOOlPo5W1wIP9vvFvxywI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/DfmeMksOOlPo5W1wIP9vvFvxywI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cd:14:05:16:4b:34:ef:1c:48:49:ed:e5:aa:e1:ac:48:91:25: c9:fb:ce:4a:26:4d:65:ba:03:60:e7:4d:27:24:71:64:02:ac: d7:46:42:cb:54:31:1c:fc:ba:e4:6e:9a:62:52:78:82:cb:f8: 95:7b:aa:e5:13:3f:34:0f:93:34:11:11:c7:25:73:a2:a4:df: 95:61:ce:d1:e6:10:1f:bf:17:bb:f4:d4:e6:9e:23:83:ec:f6: d1:86:7e:1d:0b:32:e7:cd:3d:47:cb:8f:2a:64:22:4d:a9:07: 90:41:e7:11:9b:7e:43:f5:a4:e6:0c:0c:40:b1:db:83:f2:80: e0:1d:d2:ea:d0:19:68:c3:2a:8f:19:a9:0d:a3:14:90:17:49: 41:60:6b:e9:a1:1f:dd:69:30:23:50:dc:67:b1:99:72:7f:82: 32:0a:bc:a2:14:d6:37:cd:00:9b:ab:3e:d2:9e:a2:f9:d5:8f: 7d:53:9e:59:39:a2:4b:82:af:17:e9:43:fb:b8:0b:e3:7d:f5: 53:dc:a4:3b:84:d9:8e:59:e9:15:c9:e1:f2:bc:6d:44:68:35: b5:ca:02:4c:2c:f1:2d:87:3b:89:c5:c9:d4:a8:f7:3d:10:4a: 3a:af:0f:72:fb:d9:ce:5d:c2:20:3a:a4:16:aa:ef:6f:ef:51: 66:61:c2:5e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDpEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDcyQ0MxMTAvBgNVBAUTKDBERjk5RTMyNEIwRTNBNTNFOEU1NkQ3MDIwRkY2RkJD NUJGMUNCMDIwHhcNMjYwMzI2MTc0MTQyWhcNMjYwNDAyMTc0MTQyWjAYMRYwFAYD VQQDEw02OWM1NmZkNi1kZWVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq+gqY+/qtk/PDxdoifyqLbX+YdsGMGOIIcbsAVpijSob4RIt+Of3VxhJ7lss 9HAcUK9pQVHBEmldUNy08gsJzGHOnI2obB2/Fb+wK58/zkMmkpAw+5pIKMOTO/6a FPRGvvpABjGYxFksyvUKki8D5c4ROIwH/4VYD/pPNXdgiDqaKkqoJHKr8XEisAyP DeQ9+kgCcgsFBam+t1sLFF2HDgWZkQhNPD0yH76LDnSDj2YVLX+0p5CVnyvH8VIA kYFw4OHeZSUL5aBqFRUfBlgj1mgR2qLQ9+fCiod9eHUbNyfCdcao5b+7z4UAW4Ro os8VLW4lFq8gjIXJkuh05pqFDwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGTxwCxA G9cryPiDNC14SkkSoiyjMB8GA1UdIwQYMBaAFA35njJLDjpT6OVtcCD/b7xb8csC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENzJDQy80MzMwQUM5Q0Iz NkQxMUU5ODI0NkVEMEFDNEY5QUUwMi9EZm1lTWtzT09sUG81VzF3SVA5dnZGdnh5 d0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RmbWVNa3NPT2xQbzVXMXdJUDl2dkZ2eHl3SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NzJDQy80MzMwQUM5Q0IzNkQxMUU5ODI0NkVEMEFDNEY5QUUwMi9EZm1lTWtzT09s UG81VzF3SVA5dnZGdnh5d0kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAzRQFFks07xxISe3lquGsSJElyfvOSiZNZboDYOdNJyRxZAKs10ZCy1QxHPy6 5G6aYlJ4gsv4lXuq5RM/NA+TNBERxyVzoqTflWHO0eYQH78Xu/TU5p4jg+z20YZ+ HQsy5809R8uPKmQiTakHkEHnEZt+Q/Wk5gwMQLHbg/KA4B3S6tAZaMMqjxmpDaMU kBdJQWBr6aEf3WkwI1DcZ7GZcn+CMgq8ohTWN80Am6s+0p6i+dWPfVOeWTmiS4Kv F+lD+7gL4331U9ykO4TZjlnpFcnh8rxtRGg1tcoCTCzxLYc7icXJ1Kj3PRBKOq8P cvvZzl3CIDqkFqrvb+9RZmHCXg== -----END CERTIFICATE-----Generated at Sat Mar 28 12:11:08 2026 by rpki-client