$ rpki-client -vvf rpki.apnic.net/member_repository/A91DDFF2/C9AF2934E5C111EE98DBE962C4F9AE02/-D3DokbRIVGsh6dyzsoO3SFfhio.mft File: -D3DokbRIVGsh6dyzsoO3SFfhio.mft (raw, json) Hash identifier: omHzMN9w73PMQFzPcYvblMzIwNV/Rhj/cfAiF2ZhcLA= Subject key identifier: BB:51:F4:34:70:20:3E:4A:B5:32:9F:E8:F2:5E:28:C4:26:45:88:DD Authority key identifier: F8:3D:C3:A2:46:D1:21:51:AC:87:A7:72:CE:CA:0E:DD:21:5F:86:2A Certificate issuer: /CN=A91DDFF2/serialNumber=F83DC3A246D12151AC87A772CECA0EDD215F862A Certificate serial: 0184 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-D3DokbRIVGsh6dyzsoO3SFfhio.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DDFF2/C9AF2934E5C111EE98DBE962C4F9AE02/-D3DokbRIVGsh6dyzsoO3SFfhio.mft Manifest number: 017E Signing time: Wed 25 Mar 2026 03:53:59 +0000 Manifest this update: Wed 25 Mar 2026 03:53:59 +0000 Manifest next update: Wed 01 Apr 2026 03:53:59 +0000 Files and hashes: 1: -D3DokbRIVGsh6dyzsoO3SFfhio.crl (hash: Ktk6DJjHWTAqXZLAEjSf8Pr1SytuuUMa6m3Q4hSS7ac=) 2: EC7311FEE5C311EEBF217685C4F9AE02.roa (hash: nCvz3RU6o2FWhURZ/L0SyrKbzGjsC9xVoGzwhNL9hs8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DDFF2/C9AF2934E5C111EE98DBE962C4F9AE02/-D3DokbRIVGsh6dyzsoO3SFfhio.crl rsync://rpki.apnic.net/member_repository/A91DDFF2/C9AF2934E5C111EE98DBE962C4F9AE02/-D3DokbRIVGsh6dyzsoO3SFfhio.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-D3DokbRIVGsh6dyzsoO3SFfhio.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 03:53:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 388 (0x184) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DDFF2, serialNumber=F83DC3A246D12151AC87A772CECA0EDD215F862A Validity Not Before: Mar 25 03:53:59 2026 GMT Not After : Apr 1 03:53:59 2026 GMT Subject: CN=69c35c57-54b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:40:99:be:67:a1:d8:12:d7:49:4f:66:bd:33: ae:71:07:fc:35:41:d2:5c:6e:e6:fe:59:e8:68:b4: d0:e4:ed:99:31:d9:ca:78:e3:0e:25:80:96:d5:ee: 09:42:c9:c9:b8:50:c8:ac:2b:28:c8:e5:d7:96:7b: 25:d4:f3:66:50:a8:49:ff:2a:7b:15:23:e4:50:05: 4f:a6:b0:46:f9:8a:53:b4:19:d3:ce:d6:6b:1b:2f: 38:5b:37:ac:63:01:7c:77:c5:64:8b:62:e1:cd:c9: 96:2b:73:d5:ce:59:a8:f6:41:a0:9f:c2:63:6a:18: ca:b2:b3:36:b4:59:25:9b:13:cd:55:c0:82:b7:40: bd:95:df:4e:5f:3a:5f:21:4c:8e:79:00:43:7c:5d: 86:88:dd:2f:54:63:bd:80:ef:de:09:1d:a3:44:8d: 1e:10:ac:9a:5b:01:d6:7e:81:90:a5:d6:14:b9:a3: f0:cd:e7:28:a5:ab:93:03:a1:ff:e9:36:01:95:e7: 89:bc:15:d7:48:fe:7d:e3:1d:0d:c6:bd:83:8e:68: 7b:a2:66:7b:49:2e:0d:5a:2c:67:75:62:10:a6:5c: 7c:5f:a5:7f:df:29:da:78:c3:4e:e1:3f:a4:bc:e8: 53:47:d0:15:a4:2a:23:c9:72:1c:d9:9b:ee:1b:3a: dd:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:51:F4:34:70:20:3E:4A:B5:32:9F:E8:F2:5E:28:C4:26:45:88:DD X509v3 Authority Key Identifier: keyid:F8:3D:C3:A2:46:D1:21:51:AC:87:A7:72:CE:CA:0E:DD:21:5F:86:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DDFF2/C9AF2934E5C111EE98DBE962C4F9AE02/-D3DokbRIVGsh6dyzsoO3SFfhio.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-D3DokbRIVGsh6dyzsoO3SFfhio.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DDFF2/C9AF2934E5C111EE98DBE962C4F9AE02/-D3DokbRIVGsh6dyzsoO3SFfhio.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:fc:c6:a5:fd:06:3b:bf:26:aa:af:22:b6:e3:d0:c0:65:04: f2:d1:dc:1e:27:6d:9e:b5:3f:a6:2f:f9:62:03:01:42:8a:60: f3:14:f9:99:f1:9f:0e:c2:c1:cc:c8:f7:25:bf:1a:22:5e:b4: f6:2e:10:9f:40:68:80:6b:6a:37:45:ba:79:fd:6c:e9:45:c1: 7f:27:c1:e1:06:22:6f:54:2d:06:0f:b3:a0:47:b8:9e:ca:62: 53:b0:7e:79:54:a5:36:c2:e3:dc:ea:a4:63:b4:98:e6:50:89: 69:d7:20:36:68:8d:07:a1:8d:72:19:d8:9a:f7:ee:39:cc:5d: d5:a4:9a:01:79:60:fc:1b:56:aa:71:a5:15:bc:59:f8:0c:42: 62:71:2b:97:ce:53:56:5d:03:b7:ec:44:0a:14:ab:06:63:1b: fa:c3:75:96:a0:4c:4f:b5:d9:81:74:b6:2b:7a:52:15:d6:71: 03:b3:25:46:a1:d4:09:8b:ca:c0:09:34:56:d9:7f:16:68:2d: e0:de:b3:79:54:b4:29:ec:1b:41:60:85:8f:4d:df:3a:7b:86: 56:b9:26:52:e6:ed:8b:7d:c3:29:55:17:f9:95:1c:57:cf:f5: e9:6a:e5:fe:b9:16:f7:37:a8:ea:d1:e3:45:7b:de:e4:c4:a7: d0:99:4d:cc -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAYQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RERGRjIxMTAvBgNVBAUTKEY4M0RDM0EyNDZEMTIxNTFBQzg3QTc3MkNFQ0EwRURE MjE1Rjg2MkEwHhcNMjYwMzI1MDM1MzU5WhcNMjYwNDAxMDM1MzU5WjAYMRYwFAYD VQQDEw02OWMzNWM1Ny01NGI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA30CZvmeh2BLXSU9mvTOucQf8NUHSXG7m/lnoaLTQ5O2ZMdnKeOMOJYCW1e4J QsnJuFDIrCsoyOXXlnsl1PNmUKhJ/yp7FSPkUAVPprBG+YpTtBnTztZrGy84Wzes YwF8d8Vki2LhzcmWK3PVzlmo9kGgn8JjahjKsrM2tFklmxPNVcCCt0C9ld9OXzpf IUyOeQBDfF2GiN0vVGO9gO/eCR2jRI0eEKyaWwHWfoGQpdYUuaPwzecopauTA6H/ 6TYBleeJvBXXSP594x0Nxr2Djmh7omZ7SS4NWixndWIQplx8X6V/3ynaeMNO4T+k vOhTR9AVpCojyXIc2ZvuGzrdJwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLtR9DRw ID5KtTKf6PJeKMQmRYjdMB8GA1UdIwQYMBaAFPg9w6JG0SFRrIencs7KDt0hX4Yq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEREZGMi9DOUFGMjkzNEU1 QzExMUVFOThEQkU5NjJDNEY5QUUwMi8tRDNEb2tiUklWR3NoNmR5enNvTzNTRmZo aW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1EM0Rva2JSSVZHc2g2ZHl6c29PM1NGZmhpby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE REZGMi9DOUFGMjkzNEU1QzExMUVFOThEQkU5NjJDNEY5QUUwMi8tRDNEb2tiUklW R3NoNmR5enNvTzNTRmZoaW8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAg/zGpf0GO78mqq8ituPQwGUE8tHcHidtnrU/pi/5YgMBQopg8xT5mfGfDsLB zMj3Jb8aIl609i4Qn0BogGtqN0W6ef1s6UXBfyfB4QYib1QtBg+zoEe4nspiU7B+ eVSlNsLj3OqkY7SY5lCJadcgNmiNB6GNchnYmvfuOcxd1aSaAXlg/BtWqnGlFbxZ +AxCYnErl85TVl0Dt+xEChSrBmMb+sN1lqBMT7XZgXS2K3pSFdZxA7MlRqHUCYvK wAk0Vtl/Fmgt4N6zeVS0KewbQWCFj03fOnuGVrkmUubti33DKVUX+ZUcV8/16Wrl /rkW9zeo6tHjRXve5MSn0JlNzA== -----END CERTIFICATE-----Generated at Thu Mar 26 02:25:34 2026 by rpki-client