$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB421/1198060AA0B411EA97719E35C4F9AE02/DO-JBd1l6R5Qazs5nCCiIork_T8.mft File: DO-JBd1l6R5Qazs5nCCiIork_T8.mft (raw, json) Hash identifier: eEqgb1xApAHA2awYhHJBkTcCgkYmcwIz29ofXgZa6Pg= Subject key identifier: CC:0C:B8:0A:88:44:E2:93:6C:17:27:83:42:93:76:1A:C9:31:8C:9E Authority key identifier: 0C:EF:89:05:DD:65:E9:1E:50:6B:3B:39:9C:20:A2:22:8A:E4:FD:3F Certificate issuer: /CN=A91DB421/serialNumber=0CEF8905DD65E91E506B3B399C20A2228AE4FD3F Certificate serial: 09C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DO-JBd1l6R5Qazs5nCCiIork_T8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB421/1198060AA0B411EA97719E35C4F9AE02/DO-JBd1l6R5Qazs5nCCiIork_T8.mft Manifest number: 09C1 Signing time: Tue 24 Mar 2026 19:42:36 +0000 Manifest this update: Tue 24 Mar 2026 19:42:36 +0000 Manifest next update: Tue 31 Mar 2026 19:42:36 +0000 Files and hashes: 1: DO-JBd1l6R5Qazs5nCCiIork_T8.crl (hash: CMIfIzl49UZwk5ofR/G+Uq4pNehnTPei02zEIz2ExwA=) 2: A9511B7AA0B511EA94365A38C4F9AE02.roa (hash: Odh6PwT4fG9VLouXcIwHNY2NadEY9PU7kLIfNQ4Io5U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB421/1198060AA0B411EA97719E35C4F9AE02/DO-JBd1l6R5Qazs5nCCiIork_T8.crl rsync://rpki.apnic.net/member_repository/A91DB421/1198060AA0B411EA97719E35C4F9AE02/DO-JBd1l6R5Qazs5nCCiIork_T8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DO-JBd1l6R5Qazs5nCCiIork_T8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 19:42:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2505 (0x9c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB421, serialNumber=0CEF8905DD65E91E506B3B399C20A2228AE4FD3F Validity Not Before: Mar 24 19:42:36 2026 GMT Not After : Mar 31 19:42:36 2026 GMT Subject: CN=69c2e92c-53bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:20:e3:f2:71:68:33:53:01:c3:d6:72:25:83: dc:8a:f6:7b:06:90:d9:af:01:f5:0d:1d:20:0c:8f: 7d:8f:99:7d:30:33:13:91:45:e9:34:a8:59:34:d0: 3f:9f:26:94:56:a4:13:34:9f:67:ad:fd:13:02:2d: d9:fe:36:86:52:64:78:90:fa:e3:49:98:59:96:6b: be:92:3f:d7:26:85:04:98:7d:58:b2:8f:57:d4:0f: de:55:84:5f:92:28:5b:08:95:ce:85:46:c2:1c:e0: ca:28:fe:72:86:2e:c5:86:20:6c:bb:16:7c:78:54: 2d:a0:18:07:7e:ce:5d:74:18:76:59:25:ca:53:14: 5e:c3:69:01:11:5e:2b:29:d4:7f:b4:73:bd:a6:f6: 88:1f:b8:d9:81:cd:f4:44:e2:f2:14:b2:82:89:65: 0f:5b:48:a8:22:29:2b:3c:b4:e2:9f:0a:83:c3:64: a9:5b:bf:2f:e7:65:51:71:8c:b9:ea:16:f3:95:12: 4a:11:fd:81:8d:c8:f9:81:39:6d:a8:a6:0f:c7:96: 32:cb:06:bc:e8:70:d8:b3:ca:e8:da:fd:40:ae:34: 57:de:1f:0c:5d:a8:fa:d0:19:ea:d1:5b:20:71:7f: 9b:e0:4f:89:be:6c:94:14:59:c0:43:c9:d7:af:95: 43:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:0C:B8:0A:88:44:E2:93:6C:17:27:83:42:93:76:1A:C9:31:8C:9E X509v3 Authority Key Identifier: keyid:0C:EF:89:05:DD:65:E9:1E:50:6B:3B:39:9C:20:A2:22:8A:E4:FD:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB421/1198060AA0B411EA97719E35C4F9AE02/DO-JBd1l6R5Qazs5nCCiIork_T8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DO-JBd1l6R5Qazs5nCCiIork_T8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB421/1198060AA0B411EA97719E35C4F9AE02/DO-JBd1l6R5Qazs5nCCiIork_T8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:58:6a:8d:70:02:7b:c6:30:da:98:bb:a6:0d:45:b5:51:9f: c4:b5:ae:96:4a:64:ec:69:18:ef:8a:d9:b2:d1:38:03:b1:88: eb:a5:b5:c5:02:52:58:1a:40:84:6e:93:76:a6:22:34:24:d9: ef:b1:cb:c8:17:90:72:10:8f:aa:d2:44:19:ee:f7:78:6c:e2: 0e:3f:26:5d:69:1d:9a:2b:42:f8:a8:70:52:e5:71:07:e5:ee: 6e:bb:88:d8:95:58:8b:4f:ef:a6:85:b4:1b:1f:4d:bb:25:13: 34:4f:b2:f0:ad:07:2b:9a:36:77:dc:16:83:a1:55:a0:c9:62: f0:6e:eb:d2:a5:1a:02:81:5b:b1:88:d0:83:a4:8f:18:84:1a: 9a:69:12:e6:98:02:d7:fb:41:5d:bb:70:a1:4f:e3:d6:fe:5b: 76:53:02:92:ad:bc:36:77:79:84:38:a1:e0:e7:db:a3:0e:12: fc:54:d6:05:54:49:18:c9:9e:a1:8d:54:e0:30:63:e2:3a:b3: f8:ce:08:0c:5c:7c:e4:70:dc:b8:a3:67:b8:eb:d0:91:4e:5d: 46:5e:59:30:1c:09:c3:b7:17:87:b7:ca:cf:98:81:2e:3b:43: 9f:c2:9a:71:d4:7e:ed:25:d3:7d:30:14:ad:59:82:1c:51:72: 93:3d:80:f8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCckwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REI0MjExMTAvBgNVBAUTKDBDRUY4OTA1REQ2NUU5MUU1MDZCM0IzOTlDMjBBMjIy OEFFNEZEM0YwHhcNMjYwMzI0MTk0MjM2WhcNMjYwMzMxMTk0MjM2WjAYMRYwFAYD VQQDEw02OWMyZTkyYy01M2JjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmSDj8nFoM1MBw9ZyJYPcivZ7BpDZrwH1DR0gDI99j5l9MDMTkUXpNKhZNNA/ nyaUVqQTNJ9nrf0TAi3Z/jaGUmR4kPrjSZhZlmu+kj/XJoUEmH1Yso9X1A/eVYRf kihbCJXOhUbCHODKKP5yhi7FhiBsuxZ8eFQtoBgHfs5ddBh2WSXKUxRew2kBEV4r KdR/tHO9pvaIH7jZgc30ROLyFLKCiWUPW0ioIikrPLTinwqDw2SpW78v52VRcYy5 6hbzlRJKEf2Bjcj5gTltqKYPx5Yyywa86HDYs8ro2v1ArjRX3h8MXaj60Bnq0Vsg cX+b4E+JvmyUFFnAQ8nXr5VDUwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMwMuAqI ROKTbBcng0KTdhrJMYyeMB8GA1UdIwQYMBaAFAzviQXdZekeUGs7OZwgoiKK5P0/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjQyMS8xMTk4MDYwQUEw QjQxMUVBOTc3MTlFMzVDNEY5QUUwMi9ETy1KQmQxbDZSNVFhenM1bkNDaUlvcmtf VDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RPLUpCZDFsNlI1UWF6czVuQ0NpSW9ya19UOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QjQyMS8xMTk4MDYwQUEwQjQxMUVBOTc3MTlFMzVDNEY5QUUwMi9ETy1KQmQxbDZS NVFhenM1bkNDaUlvcmtfVDgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAdVhqjXACe8Yw2pi7pg1FtVGfxLWulkpk7GkY74rZstE4A7GI66W1xQJSWBpA hG6TdqYiNCTZ77HLyBeQchCPqtJEGe73eGziDj8mXWkdmitC+KhwUuVxB+XubruI 2JVYi0/vpoW0Gx9NuyUTNE+y8K0HK5o2d9wWg6FVoMli8G7r0qUaAoFbsYjQg6SP GIQammkS5pgC1/tBXbtwoU/j1v5bdlMCkq28Nnd5hDih4Ofbow4S/FTWBVRJGMme oY1U4DBj4jqz+M4IDFx85HDcuKNnuOvQkU5dRl5ZMBwJw7cXh7fKz5iBLjtDn8Ka cdR+7SXTfTAUrVmCHFFykz2A+A== -----END CERTIFICATE-----Generated at Thu Mar 26 00:54:16 2026 by rpki-client