$ rpki-client -vvf rpki.apnic.net/member_repository/A9170975/67C7A42A3A2611F0BCCF5E1FC4F9AE02/DGhYIowwF0gr3H85geiYuVbaoCk.mft File: DGhYIowwF0gr3H85geiYuVbaoCk.mft (raw, json) Hash identifier: rCklZHG2Aq7P+jtjPOuzj44Tsb7le0cnnnbbjuVRcCE= Subject key identifier: D8:19:02:D7:F3:29:3E:B8:AF:55:E4:6F:52:50:F6:02:09:B1:14:52 Authority key identifier: 0C:68:58:22:8C:30:17:48:2B:DC:7F:39:81:E8:98:B9:56:DA:A0:29 Certificate issuer: /CN=A9170975/serialNumber=0C6858228C3017482BDC7F3981E898B956DAA029 Certificate serial: C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DGhYIowwF0gr3H85geiYuVbaoCk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170975/67C7A42A3A2611F0BCCF5E1FC4F9AE02/DGhYIowwF0gr3H85geiYuVbaoCk.mft Manifest number: BD Signing time: Thu 21 May 2026 07:05:48 +0000 Manifest this update: Thu 21 May 2026 07:05:48 +0000 Manifest next update: Thu 28 May 2026 07:05:48 +0000 Files and hashes: 1: DGhYIowwF0gr3H85geiYuVbaoCk.crl (hash: 4VkeDCD8lzqkW8OyxsgzficBIX5u83Ljx10smob/a/s=) 2: B12A39803A2A11F09E37DB48C4F9AE02.roa (hash: CoN2ChPQA1qn/Xvwh+q1CXaNL7awqOvoz+KnawFyjQE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170975/67C7A42A3A2611F0BCCF5E1FC4F9AE02/DGhYIowwF0gr3H85geiYuVbaoCk.crl rsync://rpki.apnic.net/member_repository/A9170975/67C7A42A3A2611F0BCCF5E1FC4F9AE02/DGhYIowwF0gr3H85geiYuVbaoCk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DGhYIowwF0gr3H85geiYuVbaoCk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 07:05:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 193 (0xc1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170975, serialNumber=0C6858228C3017482BDC7F3981E898B956DAA029 Validity Not Before: May 21 07:05:48 2026 GMT Not After : May 28 07:05:48 2026 GMT Subject: CN=6a0eaecc-04fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:5b:84:e6:6f:62:d7:22:e3:bc:18:dd:9a:0e: 3d:da:11:d4:c0:b3:a6:ea:4f:b1:67:46:59:40:57: a1:7c:d8:d5:bb:d7:ef:32:cb:ee:54:15:2d:d4:55: 1c:8f:a6:82:d5:6f:88:4e:a0:0b:59:c9:e6:ba:13: 99:24:dc:a6:9e:17:c3:7a:08:a4:49:7c:39:40:cc: ca:36:40:f5:7b:1c:ce:b3:83:a3:8d:e0:e7:d5:e9: 6a:83:a2:ea:9f:6f:83:4e:99:ec:0a:d4:26:02:75: b8:90:69:1b:df:45:98:5a:ff:2a:83:36:be:9f:a7: 94:dd:7e:21:81:45:c7:39:92:86:81:8d:d3:92:3c: 30:f3:5f:74:2b:47:88:03:e5:37:9f:d2:db:b6:3f: 77:c4:b4:c8:ec:69:d7:57:1c:6a:31:4c:27:a9:f0: d5:b1:80:fa:57:a3:3b:60:83:b9:3f:47:aa:e2:f5: 0a:28:ae:a7:a0:3a:90:a3:a0:cc:8e:a1:67:98:5e: 9a:cc:0a:33:75:5b:5f:95:60:b3:6a:28:13:3d:f0: d9:86:10:c8:7e:ef:19:6a:da:19:b6:48:48:07:84: 45:3c:c7:89:a3:e6:a1:7f:40:38:dd:0d:60:df:a2: 24:7a:d5:97:0f:e8:54:53:fc:70:4a:79:d3:b6:7d: 41:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:19:02:D7:F3:29:3E:B8:AF:55:E4:6F:52:50:F6:02:09:B1:14:52 X509v3 Authority Key Identifier: keyid:0C:68:58:22:8C:30:17:48:2B:DC:7F:39:81:E8:98:B9:56:DA:A0:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170975/67C7A42A3A2611F0BCCF5E1FC4F9AE02/DGhYIowwF0gr3H85geiYuVbaoCk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DGhYIowwF0gr3H85geiYuVbaoCk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170975/67C7A42A3A2611F0BCCF5E1FC4F9AE02/DGhYIowwF0gr3H85geiYuVbaoCk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:a7:09:03:89:dc:77:56:ff:f8:cb:4a:b5:b4:e1:50:3b:90: 93:2f:98:dc:b3:2a:80:0d:a9:bb:91:74:21:ba:ec:64:7c:9a: 94:79:98:dc:0e:62:92:1b:e0:a6:b5:7d:8f:e1:d3:3c:23:4f: 26:29:ce:34:c8:fa:fa:da:2a:06:a7:36:1a:2d:8b:0d:54:94: ed:09:13:c9:c3:c3:fc:6f:eb:ab:d6:d7:f4:83:d6:1f:f9:57: d4:05:03:8b:ef:de:0e:ef:4c:8a:65:53:2c:99:ec:ca:88:b7: 60:aa:01:d9:08:fb:f6:d0:a0:d3:bd:47:6f:9d:3d:a2:8a:f7: e5:1d:0d:c1:99:5a:4a:77:b0:ea:5e:28:f2:65:b5:d9:98:43: 32:b2:1a:a0:07:f8:f8:34:c3:4e:c8:0f:65:dc:52:41:5d:2c: 08:4b:6f:5c:97:1d:4b:3a:69:c8:4f:b4:ee:b6:ca:63:c2:2e: 09:8b:a3:19:63:07:1a:98:99:86:8b:79:cf:21:60:bb:78:bc: e4:d7:9e:3f:55:34:19:f1:60:4d:91:3f:b6:81:b8:e5:ad:5a: c5:b9:bb:42:7a:c2:f7:d8:d3:d3:90:45:3f:ca:77:b1:e5:31: 92:cc:31:dc:54:df:87:f2:68:02:78:d9:42:f2:f1:90:a0:1f: 3e:2f:d3:86 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAMEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzA5NzUxMTAvBgNVBAUTKDBDNjg1ODIyOEMzMDE3NDgyQkRDN0YzOTgxRTg5OEI5 NTZEQUEwMjkwHhcNMjYwNTIxMDcwNTQ4WhcNMjYwNTI4MDcwNTQ4WjAYMRYwFAYD VQQDEw02YTBlYWVjYy0wNGZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqFuE5m9i1yLjvBjdmg492hHUwLOm6k+xZ0ZZQFehfNjVu9fvMsvuVBUt1FUc j6aC1W+ITqALWcnmuhOZJNymnhfDegikSXw5QMzKNkD1exzOs4OjjeDn1elqg6Lq n2+DTpnsCtQmAnW4kGkb30WYWv8qgza+n6eU3X4hgUXHOZKGgY3Tkjww8190K0eI A+U3n9Lbtj93xLTI7GnXVxxqMUwnqfDVsYD6V6M7YIO5P0eq4vUKKK6noDqQo6DM jqFnmF6azAozdVtflWCzaigTPfDZhhDIfu8ZatoZtkhIB4RFPMeJo+ahf0A43Q1g 36IketWXD+hUU/xwSnnTtn1BLQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNgZAtfz KT64r1Xkb1JQ9gIJsRRSMB8GA1UdIwQYMBaAFAxoWCKMMBdIK9x/OYHomLlW2qAp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDk3NS82N0M3QTQyQTNB MjYxMUYwQkNDRjVFMUZDNEY5QUUwMi9ER2hZSW93d0YwZ3IzSDg1Z2VpWXVWYmFv Q2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RHaFlJb3d3RjBncjNIODVnZWlZdVZiYW9Day5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MDk3NS82N0M3QTQyQTNBMjYxMUYwQkNDRjVFMUZDNEY5QUUwMi9ER2hZSW93d0Yw Z3IzSDg1Z2VpWXVWYmFvQ2subWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAracJA4ncd1b/+MtKtbThUDuQky+Y3LMqgA2pu5F0IbrsZHyalHmY3A5ikhvg prV9j+HTPCNPJinONMj6+toqBqc2Gi2LDVSU7QkTycPD/G/rq9bX9IPWH/lX1AUD i+/eDu9MimVTLJnsyoi3YKoB2Qj79tCg071Hb509oor35R0NwZlaSnew6l4o8mW1 2ZhDMrIaoAf4+DTDTsgPZdxSQV0sCEtvXJcdSzppyE+07rbKY8IuCYujGWMHGpiZ hot5zyFgu3i85NeeP1U0GfFgTZE/toG45a1axbm7QnrC99jT05BFP8p3seUxkswx 3FTfh/JoAnjZQvLxkKAfPi/Thg== -----END CERTIFICATE-----Generated at Thu May 21 10:15:30 2026 by rpki-client