$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3BDE/50A90E36081411EA8EB5F810C4F9AE02/DKQH8N1TBy-ooGCBaRkpbmV31oI.mft File: DKQH8N1TBy-ooGCBaRkpbmV31oI.mft (raw, json) Hash identifier: ZTpRx9pGRxHR5vR3GBfRHDt5A1S3Fc4zbpNJjo7JB04= Subject key identifier: 29:36:A4:D0:7A:22:02:79:DC:7F:9D:AE:A7:1E:6D:21:3F:D5:F9:9F Authority key identifier: 0C:A4:07:F0:DD:53:07:2F:A8:A0:60:81:69:19:29:6E:65:77:D6:82 Certificate issuer: /CN=A91F3BDE/serialNumber=0CA407F0DD53072FA8A060816919296E6577D682 Certificate serial: 0CED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DKQH8N1TBy-ooGCBaRkpbmV31oI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3BDE/50A90E36081411EA8EB5F810C4F9AE02/DKQH8N1TBy-ooGCBaRkpbmV31oI.mft Manifest number: 0CDD Signing time: Thu 26 Mar 2026 18:15:49 +0000 Manifest this update: Thu 26 Mar 2026 18:15:48 +0000 Manifest next update: Thu 02 Apr 2026 18:15:48 +0000 Files and hashes: 1: DKQH8N1TBy-ooGCBaRkpbmV31oI.crl (hash: CTcCMhyBdenDQaogTIySnTDAQn//I3q4Siq3O1DVEBw=) 2: 2A8DE0F42FA611EB980DEF79C4F9AE02.roa (hash: J461cEphYF9ExJLG4WmmjdszJJ1c691Yg3Tpfr+lnes=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3BDE/50A90E36081411EA8EB5F810C4F9AE02/DKQH8N1TBy-ooGCBaRkpbmV31oI.crl rsync://rpki.apnic.net/member_repository/A91F3BDE/50A90E36081411EA8EB5F810C4F9AE02/DKQH8N1TBy-ooGCBaRkpbmV31oI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DKQH8N1TBy-ooGCBaRkpbmV31oI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 14:54:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3309 (0xced) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3BDE, serialNumber=0CA407F0DD53072FA8A060816919296E6577D682 Validity Not Before: Mar 26 18:15:48 2026 GMT Not After : Apr 2 18:15:48 2026 GMT Subject: CN=69c577d4-a43c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:1f:61:a0:c1:0d:1c:62:51:d2:4d:ca:63:ee: 81:d5:8a:db:d8:d2:03:1c:b5:b0:5a:df:82:05:5d: 5f:9d:06:2d:1d:3e:ab:57:91:d4:44:a6:55:bd:9a: 96:4a:68:d5:88:6e:06:da:43:bd:ad:f5:a9:d7:66: e2:c1:2b:13:bb:dc:85:d8:5b:3e:43:6f:d8:12:de: 45:33:96:af:2c:45:22:b2:de:a3:f4:1c:f1:f1:82: f2:7c:79:b7:5b:62:5e:41:fa:7a:ee:6e:3e:b6:4d: 6a:93:ad:19:e9:7e:3f:64:e6:35:db:f3:90:0c:66: b5:a4:13:35:c5:c0:1c:64:0d:12:19:bc:7a:a7:0d: 4d:d5:1e:c3:50:f1:53:e4:03:38:30:7d:cb:41:b7: d9:2e:4c:3f:7d:ad:12:21:b9:c7:be:4e:8b:ed:01: 37:8b:67:87:53:a0:11:0e:55:42:3a:ba:d8:22:93: 3c:c0:64:26:a2:67:f2:29:17:a6:16:96:c9:8d:40: c8:20:bf:25:c1:6d:ae:be:27:82:93:77:37:fc:0c: 00:25:2f:6f:ce:f3:1e:b7:62:17:b2:49:81:8a:b2: d8:db:04:f0:15:d2:74:fb:22:e1:c8:32:1e:c8:c3: 83:1c:46:14:0c:33:28:5d:cd:f1:70:9f:bf:5e:cd: 41:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:36:A4:D0:7A:22:02:79:DC:7F:9D:AE:A7:1E:6D:21:3F:D5:F9:9F X509v3 Authority Key Identifier: keyid:0C:A4:07:F0:DD:53:07:2F:A8:A0:60:81:69:19:29:6E:65:77:D6:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3BDE/50A90E36081411EA8EB5F810C4F9AE02/DKQH8N1TBy-ooGCBaRkpbmV31oI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DKQH8N1TBy-ooGCBaRkpbmV31oI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3BDE/50A90E36081411EA8EB5F810C4F9AE02/DKQH8N1TBy-ooGCBaRkpbmV31oI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:0f:ee:56:80:57:1b:82:e8:e7:bc:47:7b:d8:28:6d:a4:07: b8:3d:6d:83:bb:09:75:7c:1d:3e:4b:f0:79:0b:27:22:4a:5d: 20:90:52:b6:da:9b:7b:0e:13:48:e0:37:41:20:14:4a:db:3b: 43:38:99:43:c3:d4:b0:81:ab:0b:ec:61:3f:c4:5f:fa:b0:65: 59:a9:b2:a3:13:df:0e:37:48:9d:16:f2:ca:e1:29:e5:64:d8: a3:9d:d1:7b:6f:85:df:a8:3f:8d:ad:b6:d7:0f:f9:88:20:38: dc:bc:c3:6d:5c:a3:27:9a:9f:0e:03:3b:96:b7:66:f8:fa:1a: 55:1b:2b:ca:df:2b:06:62:67:40:44:dd:6d:71:b9:d3:3c:09: c8:90:f3:27:c1:b9:2b:77:f2:6c:da:4c:1f:1d:f0:11:5d:77: 09:6e:cd:54:8c:bc:b9:47:03:e5:ef:3e:b3:51:ae:55:42:23: fd:6b:06:37:d0:b1:4e:1b:88:05:55:63:aa:a4:7d:fd:0d:66: 3e:b8:20:b6:45:ec:7d:14:d9:10:75:4a:de:6a:11:0a:e9:12: e0:67:3b:f4:8c:b4:ca:38:10:9b:58:f1:a8:50:10:e8:aa:87: 56:28:e7:98:57:4b:3e:61:64:d9:95:65:54:d2:b4:54:ff:f5: 6f:e7:2c:ba -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDO0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjNCREUxMTAvBgNVBAUTKDBDQTQwN0YwREQ1MzA3MkZBOEEwNjA4MTY5MTkyOTZF NjU3N0Q2ODIwHhcNMjYwMzI2MTgxNTQ4WhcNMjYwNDAyMTgxNTQ4WjAYMRYwFAYD VQQDEw02OWM1NzdkNC1hNDNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnR9hoMENHGJR0k3KY+6B1Yrb2NIDHLWwWt+CBV1fnQYtHT6rV5HURKZVvZqW SmjViG4G2kO9rfWp12biwSsTu9yF2Fs+Q2/YEt5FM5avLEUist6j9Bzx8YLyfHm3 W2JeQfp67m4+tk1qk60Z6X4/ZOY12/OQDGa1pBM1xcAcZA0SGbx6pw1N1R7DUPFT 5AM4MH3LQbfZLkw/fa0SIbnHvk6L7QE3i2eHU6ARDlVCOrrYIpM8wGQmomfyKRem FpbJjUDIIL8lwW2uvieCk3c3/AwAJS9vzvMet2IXskmBirLY2wTwFdJ0+yLhyDIe yMODHEYUDDMoXc3xcJ+/Xs1BCQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCk2pNB6 IgJ53H+drqcebSE/1fmfMB8GA1UdIwQYMBaAFAykB/DdUwcvqKBggWkZKW5ld9aC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGM0JERS81MEE5MEUzNjA4 MTQxMUVBOEVCNUY4MTBDNEY5QUUwMi9ES1FIOE4xVEJ5LW9vR0NCYVJrcGJtVjMx b0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RLUUg4TjFUQnktb29HQ0JhUmtwYm1WMzFvSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG M0JERS81MEE5MEUzNjA4MTQxMUVBOEVCNUY4MTBDNEY5QUUwMi9ES1FIOE4xVEJ5 LW9vR0NCYVJrcGJtVjMxb0kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAMw/uVoBXG4Lo57xHe9gobaQHuD1tg7sJdXwdPkvweQsnIkpdIJBSttqbew4T SOA3QSAUSts7QziZQ8PUsIGrC+xhP8Rf+rBlWamyoxPfDjdInRbyyuEp5WTYo53R e2+F36g/ja221w/5iCA43LzDbVyjJ5qfDgM7lrdm+PoaVRsryt8rBmJnQETdbXG5 0zwJyJDzJ8G5K3fybNpMHx3wEV13CW7NVIy8uUcD5e8+s1GuVUIj/WsGN9CxThuI BVVjqqR9/Q1mPrggtkXsfRTZEHVK3moRCukS4Gc79Iy0yjgQm1jxqFAQ6KqHVijn mFdLPmFk2ZVlVNK0VP/1b+csug== -----END CERTIFICATE-----Generated at Thu Mar 26 23:46:59 2026 by rpki-client