$ rpki-client -vvf rpki.apnic.net/member_repository/A9170975/67C7A42A3A2611F0BCCF5E1FC4F9AE02/DGhYIowwF0gr3H85geiYuVbaoCk.mft File: DGhYIowwF0gr3H85geiYuVbaoCk.mft (raw, json) Hash identifier: NKbEi8SYenUCcncSBQU+jBJ3tUxlaInyG2EA7WttFMQ= Subject key identifier: 58:65:DA:A3:2E:35:E5:5C:7E:16:D3:DB:98:09:1D:CC:30:8A:33:EE Authority key identifier: 0C:68:58:22:8C:30:17:48:2B:DC:7F:39:81:E8:98:B9:56:DA:A0:29 Certificate issuer: /CN=A9170975/serialNumber=0C6858228C3017482BDC7F3981E898B956DAA029 Certificate serial: AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DGhYIowwF0gr3H85geiYuVbaoCk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170975/67C7A42A3A2611F0BCCF5E1FC4F9AE02/DGhYIowwF0gr3H85geiYuVbaoCk.mft Manifest number: A6 Signing time: Sun 05 Apr 2026 06:39:51 +0000 Manifest this update: Sun 05 Apr 2026 06:39:50 +0000 Manifest next update: Sun 12 Apr 2026 06:39:50 +0000 Files and hashes: 1: DGhYIowwF0gr3H85geiYuVbaoCk.crl (hash: Lt9VBS+njWKSf/aKbn3RtytCwiik3I3sR/0e2aGDCtk=) 2: B12A39803A2A11F09E37DB48C4F9AE02.roa (hash: CoN2ChPQA1qn/Xvwh+q1CXaNL7awqOvoz+KnawFyjQE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170975/67C7A42A3A2611F0BCCF5E1FC4F9AE02/DGhYIowwF0gr3H85geiYuVbaoCk.crl rsync://rpki.apnic.net/member_repository/A9170975/67C7A42A3A2611F0BCCF5E1FC4F9AE02/DGhYIowwF0gr3H85geiYuVbaoCk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DGhYIowwF0gr3H85geiYuVbaoCk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 06:39:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 170 (0xaa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170975, serialNumber=0C6858228C3017482BDC7F3981E898B956DAA029 Validity Not Before: Apr 5 06:39:50 2026 GMT Not After : Apr 12 06:39:50 2026 GMT Subject: CN=69d203b7-7120 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:97:37:bb:d6:d9:be:75:b0:43:6a:74:08:67: f5:7c:1e:f6:01:b7:73:6b:7e:80:8f:b2:8f:85:ed: 92:1a:47:82:51:4c:70:e2:19:ce:eb:b5:9f:23:a8: b8:1e:07:41:b3:7a:d2:eb:12:6e:25:06:e9:47:81: 77:bb:94:ec:76:e0:9c:b8:ae:3d:07:00:05:53:ff: d6:5a:73:25:d5:1e:81:96:59:de:43:35:32:60:7e: 85:f0:9d:89:b2:04:74:10:4a:ef:a5:3c:17:41:ef: 4c:af:e8:b2:da:4e:13:8c:f3:8b:bb:f7:35:6e:fa: 38:37:c4:9c:fb:3f:66:59:a1:ce:72:88:5b:db:8a: 98:6f:e7:df:b6:3b:64:2c:cc:1e:b5:91:6d:fb:1e: 28:fc:20:8a:94:44:ac:59:3b:3f:cd:df:2d:34:dd: f2:1c:93:e1:69:f6:36:3d:98:cf:28:6c:ef:7a:7b: d3:ee:aa:b7:9b:81:bc:4a:b3:e0:31:a5:bf:c9:65: 3c:7d:ee:cb:70:d9:ab:90:7f:92:2c:75:9b:13:b1: 18:16:fb:be:02:26:b9:77:f9:3a:4f:e0:65:af:87: 28:3d:c5:35:1a:37:90:d6:5e:31:25:1b:91:97:ae: c1:63:67:67:d9:00:04:f1:64:27:f2:f4:db:e9:14: ff:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:65:DA:A3:2E:35:E5:5C:7E:16:D3:DB:98:09:1D:CC:30:8A:33:EE X509v3 Authority Key Identifier: keyid:0C:68:58:22:8C:30:17:48:2B:DC:7F:39:81:E8:98:B9:56:DA:A0:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170975/67C7A42A3A2611F0BCCF5E1FC4F9AE02/DGhYIowwF0gr3H85geiYuVbaoCk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DGhYIowwF0gr3H85geiYuVbaoCk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170975/67C7A42A3A2611F0BCCF5E1FC4F9AE02/DGhYIowwF0gr3H85geiYuVbaoCk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:79:d3:8c:6a:0f:65:d6:2e:86:c0:0c:d2:12:cf:53:7d:ff: dd:2d:d0:11:21:b8:dc:6a:8b:b6:0d:96:68:f1:2e:26:20:de: bd:7f:c6:d5:27:e3:a7:e4:be:ff:a0:dc:cf:32:c0:71:5a:8e: 31:df:8e:5b:fb:d6:3e:29:71:b9:23:18:d3:a2:68:62:b9:7a: c4:bf:b1:34:28:91:af:90:2f:81:c2:05:26:eb:4d:66:87:5e: ef:2e:9c:10:fd:34:09:bc:08:20:0e:e2:5e:65:c3:5d:80:c6: 0a:9f:05:f5:77:a6:59:ee:10:6c:46:41:46:26:4e:ee:87:f4: d9:4e:d1:f8:46:5c:15:1c:03:56:80:be:ef:49:92:8c:f5:f4: b5:09:a2:eb:f6:25:14:99:6d:33:f8:66:1f:e2:42:ff:68:e1: 1d:7c:55:78:51:95:12:09:20:5a:18:45:8d:a5:a6:91:e2:81: 5c:42:bc:49:ac:91:c5:d2:68:f7:94:46:b4:fb:f9:e4:62:29: 07:26:02:90:90:ed:23:e9:e3:4b:bf:c4:62:7f:70:65:a8:0c: 1a:5c:8e:c0:5a:da:25:20:77:42:1c:7d:b2:b5:65:03:7b:34: 0d:72:c5:13:90:3e:64:46:5f:87:4a:69:80:12:8f:9a:94:7e: 99:0f:4e:6c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAKowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzA5NzUxMTAvBgNVBAUTKDBDNjg1ODIyOEMzMDE3NDgyQkRDN0YzOTgxRTg5OEI5 NTZEQUEwMjkwHhcNMjYwNDA1MDYzOTUwWhcNMjYwNDEyMDYzOTUwWjAYMRYwFAYD VQQDEw02OWQyMDNiNy03MTIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu5c3u9bZvnWwQ2p0CGf1fB72Abdza36Aj7KPhe2SGkeCUUxw4hnO67WfI6i4 HgdBs3rS6xJuJQbpR4F3u5TsduCcuK49BwAFU//WWnMl1R6BllneQzUyYH6F8J2J sgR0EErvpTwXQe9Mr+iy2k4TjPOLu/c1bvo4N8Sc+z9mWaHOcohb24qYb+fftjtk LMwetZFt+x4o/CCKlESsWTs/zd8tNN3yHJPhafY2PZjPKGzvenvT7qq3m4G8SrPg MaW/yWU8fe7LcNmrkH+SLHWbE7EYFvu+Aia5d/k6T+Blr4coPcU1GjeQ1l4xJRuR l67BY2dn2QAE8WQn8vTb6RT/uwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFhl2qMu NeVcfhbT25gJHcwwijPuMB8GA1UdIwQYMBaAFAxoWCKMMBdIK9x/OYHomLlW2qAp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDk3NS82N0M3QTQyQTNB MjYxMUYwQkNDRjVFMUZDNEY5QUUwMi9ER2hZSW93d0YwZ3IzSDg1Z2VpWXVWYmFv Q2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RHaFlJb3d3RjBncjNIODVnZWlZdVZiYW9Day5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MDk3NS82N0M3QTQyQTNBMjYxMUYwQkNDRjVFMUZDNEY5QUUwMi9ER2hZSW93d0Yw Z3IzSDg1Z2VpWXVWYmFvQ2subWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAmHnTjGoPZdYuhsAM0hLPU33/3S3QESG43GqLtg2WaPEuJiDevX/G1Sfjp+S+ /6DczzLAcVqOMd+OW/vWPilxuSMY06JoYrl6xL+xNCiRr5AvgcIFJutNZode7y6c EP00CbwIIA7iXmXDXYDGCp8F9XemWe4QbEZBRiZO7of02U7R+EZcFRwDVoC+70mS jPX0tQmi6/YlFJltM/hmH+JC/2jhHXxVeFGVEgkgWhhFjaWmkeKBXEK8SayRxdJo 95RGtPv55GIpByYCkJDtI+njS7/EYn9wZagMGlyOwFraJSB3Qhx9srVlA3s0DXLF E5A+ZEZfh0ppgBKPmpR+mQ9ObA== -----END CERTIFICATE-----Generated at Mon Apr 6 09:01:32 2026 by rpki-client