$ rpki-client -vvf rpki.apnic.net/member_repository/A9135D1F/AD2021A4977411F080BF1E64C4F9AE02/DKto4GkIOkOI6PxpdY8EWWL9Aa8.mft File: DKto4GkIOkOI6PxpdY8EWWL9Aa8.mft (raw, json) Hash identifier: O95y554VBd4Io+CPlhyoBbmmdl1GrSzXewwwhrWNknc= Subject key identifier: 69:28:81:EF:58:E6:2E:C6:9C:00:43:4C:41:B4:44:9B:BB:88:8B:DF Authority key identifier: 0C:AB:68:E0:69:08:3A:43:88:E8:FC:69:75:8F:04:59:62:FD:01:AF Certificate issuer: /CN=A9135D1F/serialNumber=0CAB68E069083A4388E8FC69758F045962FD01AF Certificate serial: 8B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DKto4GkIOkOI6PxpdY8EWWL9Aa8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9135D1F/AD2021A4977411F080BF1E64C4F9AE02/DKto4GkIOkOI6PxpdY8EWWL9Aa8.mft Manifest number: 71 Signing time: Sat 21 Mar 2026 06:56:24 +0000 Manifest this update: Sat 21 Mar 2026 06:56:23 +0000 Manifest next update: Sat 28 Mar 2026 06:56:23 +0000 Files and hashes: 1: DKto4GkIOkOI6PxpdY8EWWL9Aa8.crl (hash: nD2HMWMhYcH+8O6Tv3o2lUmMD7JnD/b1PtS2BYzs/bQ=) 2: ABF8D808CA6D11F084F59728C4F9AE02.roa (hash: CpehDruHAKWYlilkVXEQKfS5FGCQ1Hj+67P+aQNX0UE=) 3: 08B79AD09C4111F0A9483031C4F9AE02.roa (hash: ubB2L+A+WYJ8AjqCrJi8J5YRaDtXq+7jruwojcEkTbc=) 4: 8EAC217CCA5611F089E70D44C4F9AE02.roa (hash: XXxBCtuO8EG8rucnL16es476f6BaiYAikV+U/4E8csQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9135D1F/AD2021A4977411F080BF1E64C4F9AE02/DKto4GkIOkOI6PxpdY8EWWL9Aa8.crl rsync://rpki.apnic.net/member_repository/A9135D1F/AD2021A4977411F080BF1E64C4F9AE02/DKto4GkIOkOI6PxpdY8EWWL9Aa8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DKto4GkIOkOI6PxpdY8EWWL9Aa8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 06:56:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 139 (0x8b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9135D1F, serialNumber=0CAB68E069083A4388E8FC69758F045962FD01AF Validity Not Before: Mar 21 06:56:23 2026 GMT Not After : Mar 28 06:56:23 2026 GMT Subject: CN=69be4118-195c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:20:3a:4f:28:44:ba:fb:79:f5:66:fa:76:b7: 16:7c:22:e5:72:cf:52:87:7e:97:ff:2e:a8:df:8e: b6:77:4c:ea:0b:ed:47:8e:ae:16:f4:6b:56:ae:c1: 87:44:fd:80:ae:36:a4:e5:ac:5e:47:89:32:c4:6a: 87:70:9f:91:32:3a:ba:5a:d1:be:ca:89:79:58:bc: fd:90:84:69:9e:d1:d8:02:f0:3d:8e:61:ee:69:03: 4d:b6:9e:7f:9e:8c:52:d2:1d:91:12:7f:5f:18:bd: 1d:44:a7:0f:99:7d:0a:47:d4:f0:98:5c:f4:89:37: 11:c0:43:b2:64:f2:95:41:97:40:61:b3:5a:80:f5: 87:f9:7a:ab:f5:3e:0d:fd:f2:a4:77:66:0f:c2:1d: 3f:fe:06:eb:35:7a:8c:ca:2a:f1:36:c1:6d:71:a8: cd:a7:d5:3c:95:98:c3:cc:9c:6f:b5:d7:09:f0:0d: 90:a9:c2:3e:78:79:f6:48:71:2e:b0:a5:36:4f:0e: c7:86:0f:09:67:48:39:bb:b2:c0:c3:3a:75:2b:73: a4:c9:b4:f4:90:cc:f8:a9:3f:23:52:f9:6b:69:fe: 18:af:54:1e:61:75:a3:bc:01:e3:86:39:41:6f:63: dc:36:c9:08:20:ba:7c:36:50:0d:5f:9b:e2:4b:f4: 21:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:28:81:EF:58:E6:2E:C6:9C:00:43:4C:41:B4:44:9B:BB:88:8B:DF X509v3 Authority Key Identifier: keyid:0C:AB:68:E0:69:08:3A:43:88:E8:FC:69:75:8F:04:59:62:FD:01:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9135D1F/AD2021A4977411F080BF1E64C4F9AE02/DKto4GkIOkOI6PxpdY8EWWL9Aa8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DKto4GkIOkOI6PxpdY8EWWL9Aa8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9135D1F/AD2021A4977411F080BF1E64C4F9AE02/DKto4GkIOkOI6PxpdY8EWWL9Aa8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b7:8c:a2:f8:2c:c3:35:c3:44:a3:88:b1:a0:15:b6:b8:9c:11: 35:3b:92:38:08:e8:18:d3:5f:85:9d:81:26:af:1c:e9:48:98: 51:43:a1:62:f9:af:bc:13:b6:0f:0a:0b:5e:f3:82:75:c9:30: f6:7d:7a:74:ae:fe:c9:59:24:07:b4:6b:d4:02:1d:f7:fa:41: 22:fd:e9:86:ec:39:e1:8b:bf:c1:ed:d3:b9:a7:a5:6b:35:03: ec:39:c2:5b:bd:fa:44:07:13:77:72:d9:83:41:bf:21:a2:ef: 1c:51:03:b2:3b:63:db:0d:11:3e:2f:7e:f3:66:79:83:af:cb: 26:9a:4e:2a:44:b8:ae:65:37:2b:c8:38:e8:c2:15:56:34:af: 48:fc:a2:78:19:e8:44:2f:6d:09:68:d1:86:9a:f6:4b:2c:b9: 6e:9c:f4:ff:cb:95:86:c7:8a:29:54:3c:70:de:d8:26:16:eb: 5b:e3:cc:12:be:a6:5d:08:db:67:f1:7b:90:2d:5e:d6:6e:7f: c0:4f:52:1a:df:3d:08:b2:13:27:55:46:6b:1e:74:9d:a2:f3: 78:68:b1:cc:2e:6c:d1:c3:29:a8:10:48:59:dd:a7:46:c3:7e: 0d:0a:12:85:2d:74:88:47:07:04:c6:03:8d:fa:a9:b8:32:09: 58:51:7d:75 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAIswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzVEMUYxMTAvBgNVBAUTKDBDQUI2OEUwNjkwODNBNDM4OEU4RkM2OTc1OEYwNDU5 NjJGRDAxQUYwHhcNMjYwMzIxMDY1NjIzWhcNMjYwMzI4MDY1NjIzWjAYMRYwFAYD VQQDEw02OWJlNDExOC0xOTVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtyA6TyhEuvt59Wb6drcWfCLlcs9Sh36X/y6o3462d0zqC+1Hjq4W9GtWrsGH RP2Arjak5axeR4kyxGqHcJ+RMjq6WtG+yol5WLz9kIRpntHYAvA9jmHuaQNNtp5/ noxS0h2REn9fGL0dRKcPmX0KR9TwmFz0iTcRwEOyZPKVQZdAYbNagPWH+Xqr9T4N /fKkd2YPwh0//gbrNXqMyirxNsFtcajNp9U8lZjDzJxvtdcJ8A2QqcI+eHn2SHEu sKU2Tw7Hhg8JZ0g5u7LAwzp1K3OkybT0kMz4qT8jUvlraf4Yr1QeYXWjvAHjhjlB b2PcNskIILp8NlANX5viS/QhCQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGkoge9Y 5i7GnABDTEG0RJu7iIvfMB8GA1UdIwQYMBaAFAyraOBpCDpDiOj8aXWPBFli/QGv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNUQxRi9BRDIwMjFBNDk3 NzQxMUYwODBCRjFFNjRDNEY5QUUwMi9ES3RvNEdrSU9rT0k2UHhwZFk4RVdXTDlB YTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RLdG80R2tJT2tPSTZQeHBkWThFV1dMOUFhOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NUQxRi9BRDIwMjFBNDk3NzQxMUYwODBCRjFFNjRDNEY5QUUwMi9ES3RvNEdrSU9r T0k2UHhwZFk4RVdXTDlBYTgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAt4yi+CzDNcNEo4ixoBW2uJwRNTuSOAjoGNNfhZ2BJq8c6UiYUUOhYvmvvBO2 DwoLXvOCdckw9n16dK7+yVkkB7Rr1AId9/pBIv3phuw54Yu/we3TuaelazUD7DnC W736RAcTd3LZg0G/IaLvHFEDsjtj2w0RPi9+82Z5g6/LJppOKkS4rmU3K8g46MIV VjSvSPyieBnoRC9tCWjRhpr2Syy5bpz0/8uVhseKKVQ8cN7YJhbrW+PMEr6mXQjb Z/F7kC1e1m5/wE9SGt89CLITJ1VGax50naLzeGixzC5s0cMpqBBIWd2nRsN+DQoS hS10iEcHBMYDjfqpuDIJWFF9dQ== -----END CERTIFICATE-----Generated at Sat Mar 21 13:41:05 2026 by rpki-client