$ rpki-client -vvf rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.mft File: drnTOfrNYrR-k-iITehQOW2877Q.mft (raw, json) Hash identifier: 2oiu7q1oDLzpmyZOId2JKj7TjRz60xpug/3hH/cfw54= Subject key identifier: 3D:F1:A7:35:68:52:19:16:51:C8:96:2E:28:54:9A:33:A4:C8:A1:D5 Authority key identifier: 76:B9:D3:39:FA:CD:62:B4:7E:93:E8:88:4D:E8:50:39:6D:BC:EF:B4 Certificate issuer: /CN=A911E6CA/serialNumber=76B9D339FACD62B47E93E8884DE850396DBCEFB4 Certificate serial: 0B90 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/drnTOfrNYrR-k-iITehQOW2877Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.mft Manifest number: 0B72 Signing time: Mon 30 Mar 2026 19:09:33 +0000 Manifest this update: Mon 30 Mar 2026 19:09:32 +0000 Manifest next update: Mon 06 Apr 2026 19:09:32 +0000 Files and hashes: 1: drnTOfrNYrR-k-iITehQOW2877Q.crl (hash: pjZEDFFOEdIt3vmto/uMvjBMvwauhCTJkwJZiWeXLTI=) 2: AA1ABF0AB20011EA9C0DFB2FC4F9AE02.roa (hash: bw6V3e8uxgz/w4mVGTTnR4lCFXMSeabuBZrROz8xFwc=) 3: 4FFC83964CA311EE815AF017C4F9AE02.roa (hash: nvrbL4K8UTuSHUzb0sameKGMaeUHHtqeYardPlMzhKY=) 4: 83882F7AF83B11ECB4154E31C4F9AE02.roa (hash: NYJZvZPzyDgeHzpdsKVjfnf0vb6jVGfn+iXWogNI5w0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.crl rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/drnTOfrNYrR-k-iITehQOW2877Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 Apr 2026 23:18:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2960 (0xb90) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E6CA, serialNumber=76B9D339FACD62B47E93E8884DE850396DBCEFB4 Validity Not Before: Mar 30 19:09:32 2026 GMT Not After : Apr 6 19:09:32 2026 GMT Subject: CN=69caca6d-6b0c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:cf:54:27:53:b5:fa:bb:b1:e1:8a:98:ec:f3: e4:ec:26:32:02:e9:6e:36:3a:9c:2b:e2:d5:81:46: ab:4e:f3:fa:78:43:2e:ec:36:e9:10:42:0d:64:93: 3b:f8:c3:54:4d:ab:b1:3b:29:fe:ca:93:69:ab:f3: c0:a5:59:c4:07:98:48:58:e7:07:29:ce:36:a6:11: d0:4d:1e:95:b3:33:63:b5:c5:f9:05:14:8a:f4:a3: 14:7e:79:15:0d:4c:36:13:6c:cb:93:61:8e:c4:31: 7f:1e:48:58:18:53:8b:86:13:79:ba:bd:35:a7:65: ad:97:96:7d:18:97:0c:af:21:87:6c:26:f3:fa:4b: 85:8e:e2:60:5a:d5:20:48:c2:1c:b0:f2:cf:40:86: 05:89:94:a5:93:27:79:e8:9c:31:84:ae:a9:e4:46: ea:9c:c7:b4:8f:c5:dd:b2:28:53:a3:27:77:11:49: 85:dc:11:f8:99:b3:b0:8b:0a:d0:8c:8f:ac:e6:56: cd:cd:a8:04:a0:a7:04:7f:41:b1:39:b4:1f:82:e0: 4e:f5:6f:4e:76:5f:46:4e:86:da:03:0d:b0:e4:2a: 53:e7:fd:77:77:ee:e7:8c:09:ec:32:c5:13:64:3b: b8:78:1b:4e:ff:32:72:b3:1e:30:f1:8f:bf:bc:aa: 2c:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:F1:A7:35:68:52:19:16:51:C8:96:2E:28:54:9A:33:A4:C8:A1:D5 X509v3 Authority Key Identifier: keyid:76:B9:D3:39:FA:CD:62:B4:7E:93:E8:88:4D:E8:50:39:6D:BC:EF:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/drnTOfrNYrR-k-iITehQOW2877Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:f6:8c:8b:76:7c:64:56:9c:16:f5:1a:cb:3d:a5:57:17:63: a4:8a:94:ac:d3:d1:51:6b:49:40:4c:25:84:86:05:43:9e:eb: 40:f8:75:55:57:b9:b4:a4:bf:ae:5b:76:6b:ef:9b:a2:3a:ff: 43:75:81:61:1d:c2:25:5b:bb:0e:80:89:db:01:1b:20:ef:51: d6:7e:fe:28:70:0b:ad:95:fe:9a:1b:0b:75:bc:d9:a9:a4:67: 51:76:38:30:e1:50:ad:4f:08:41:e4:da:ca:40:b6:8c:b1:e4: ca:de:bd:ff:d2:7c:46:26:f8:8e:af:90:b3:ef:a6:d7:22:12: 77:8e:ed:9c:29:bc:3a:9c:f7:55:0a:08:11:b5:ac:82:db:1c: 48:1d:1f:be:be:4f:3d:b9:ec:b0:83:dc:df:f3:76:6d:2b:d5: 11:6b:59:1e:36:8d:98:59:ce:09:7e:8d:d3:f7:db:d8:65:32: 76:b2:5c:db:1a:dd:41:fa:98:fd:27:1f:1e:0f:c2:c4:e9:27: 75:01:ca:f3:09:38:b8:05:04:a2:6e:04:ab:eb:7b:e6:04:c7: 90:7a:ce:88:52:b5:7e:3e:1e:59:d6:c8:f4:ca:11:64:6d:c9: 25:22:3f:bc:f7:12:08:1d:7c:db:dd:35:2b:12:12:ce:c0:21: f8:69:c2:5e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICC5AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUU2Q0ExMTAvBgNVBAUTKDc2QjlEMzM5RkFDRDYyQjQ3RTkzRTg4ODRERTg1MDM5 NkRCQ0VGQjQwHhcNMjYwMzMwMTkwOTMyWhcNMjYwNDA2MTkwOTMyWjAYMRYwFAYD VQQDEw02OWNhY2E2ZC02YjBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz89UJ1O1+rux4YqY7PPk7CYyAuluNjqcK+LVgUarTvP6eEMu7DbpEEINZJM7 +MNUTauxOyn+ypNpq/PApVnEB5hIWOcHKc42phHQTR6VszNjtcX5BRSK9KMUfnkV DUw2E2zLk2GOxDF/HkhYGFOLhhN5ur01p2Wtl5Z9GJcMryGHbCbz+kuFjuJgWtUg SMIcsPLPQIYFiZSlkyd56JwxhK6p5EbqnMe0j8XdsihToyd3EUmF3BH4mbOwiwrQ jI+s5lbNzagEoKcEf0GxObQfguBO9W9Odl9GTobaAw2w5CpT5/13d+7njAnsMsUT ZDu4eBtO/zJysx4w8Y+/vKoscwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFD3xpzVo UhkWUciWLihUmjOkyKHVMB8GA1UdIwQYMBaAFHa50zn6zWK0fpPoiE3oUDltvO+0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRTZDQS83NDA5QjQ3QTRG QzcxMUVBOEU0NkQ0MTVDNEY5QUUwMi9kcm5UT2ZyTllyUi1rLWlJVGVoUU9XMjg3 N1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RyblRPZnJOWXJSLWstaUlUZWhRT1cyODc3US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RTZDQS83NDA5QjQ3QTRGQzcxMUVBOEU0NkQ0MTVDNEY5QUUwMi9kcm5UT2ZyTlly Ui1rLWlJVGVoUU9XMjg3N1EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAFvaMi3Z8ZFacFvUayz2lVxdjpIqUrNPRUWtJQEwlhIYFQ57rQPh1VVe5tKS/ rlt2a++bojr/Q3WBYR3CJVu7DoCJ2wEbIO9R1n7+KHALrZX+mhsLdbzZqaRnUXY4 MOFQrU8IQeTaykC2jLHkyt69/9J8Rib4jq+Qs++m1yISd47tnCm8Opz3VQoIEbWs gtscSB0fvr5PPbnssIPc3/N2bSvVEWtZHjaNmFnOCX6N0/fb2GUydrJc2xrdQfqY /ScfHg/CxOkndQHK8wk4uAUEom4Eq+t75gTHkHrOiFK1fj4eWdbI9MoRZG3JJSI/ vPcSCB182901KxISzsAh+GnCXg== -----END CERTIFICATE-----Generated at Mon Mar 30 22:48:46 2026 by rpki-client