$ rpki-client -vvf rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.mft File: dNRNlor0Y--xfAgNX60BDErAl6o.mft (raw, json) Hash identifier: q7VJ6ceFVfQ1SZ5xuPpo9WwOBhzJW30O+eM6gHdnMcA= Subject key identifier: E8:78:31:F3:7A:65:6F:4D:47:F6:C4:09:3A:CF:F7:01:9F:E0:C7:57 Authority key identifier: 74:D4:4D:96:8A:F4:63:EF:B1:7C:08:0D:5F:AD:01:0C:4A:C0:97:AA Certificate issuer: /CN=A917E0A8/serialNumber=74D44D968AF463EFB17C080D5FAD010C4AC097AA Certificate serial: 06E1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dNRNlor0Y--xfAgNX60BDErAl6o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.mft Manifest number: 06D2 Signing time: Mon 02 Mar 2026 19:16:12 +0000 Manifest this update: Mon 02 Mar 2026 19:16:12 +0000 Manifest next update: Mon 09 Mar 2026 19:16:12 +0000 Files and hashes: 1: dNRNlor0Y--xfAgNX60BDErAl6o.crl (hash: tkLR09fDtu0/vR2ncLTYtFwAgxxwD9Q4QFMF1GevepE=) 2: F9C23E2A3ACB11EC9FEBB367C4F9AE02.roa (hash: 2RPaofcBmVRp+rnkKNh5LcywLDf5c7LR9zPp5ibVZFk=) 3: 11C0D5DA9B4011EB9C1BFC4EC4F9AE02.roa (hash: UhjZCQXMTH4EcImSo4POBU6QddKCD4qTUt+kDu3goss=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.crl rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dNRNlor0Y--xfAgNX60BDErAl6o.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 19:16:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1761 (0x6e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E0A8, serialNumber=74D44D968AF463EFB17C080D5FAD010C4AC097AA Validity Not Before: Mar 2 19:16:12 2026 GMT Not After : Mar 9 19:16:12 2026 GMT Subject: CN=69a5e1fc-a523 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:3e:d2:85:83:b0:d7:35:93:6a:3b:59:d0:d9: eb:a9:7e:24:73:98:3c:cd:f7:dc:16:c3:42:31:2f: 14:57:95:01:2a:72:93:40:00:f8:07:e1:24:16:e9: 6f:e6:9e:66:ed:3f:cb:1f:cf:df:ff:24:be:9d:d3: 26:57:f7:1f:ea:00:fe:23:ef:55:de:ca:f5:6c:6d: e3:91:52:cc:ea:38:dd:08:16:0f:69:ef:6b:96:8e: 28:d8:20:58:c9:a2:27:d8:12:5f:f9:d8:34:2c:d2: 3c:a9:19:fa:59:46:c3:0a:d1:65:31:92:d1:3c:be: 06:99:6a:2e:13:7b:64:0a:e6:35:b9:aa:40:e9:a4: 00:d0:3e:44:f3:7f:55:c0:bd:da:30:f1:88:1f:bf: fe:8d:a7:9e:89:be:0e:ed:6d:6d:20:79:78:15:bd: 88:00:53:0a:ff:c2:a0:7b:ee:a5:2a:5e:09:7d:70: 69:09:3f:e3:3e:ce:90:f3:fb:2c:86:b8:1f:ff:d6: 05:93:98:ce:9b:6d:83:78:79:de:b6:c9:c1:f0:38: 3f:13:92:22:76:73:07:6a:ef:03:74:a5:61:1f:d7: 4e:ad:f6:16:ba:95:c5:8a:60:f5:97:6c:db:fc:8b: 29:8b:76:2d:3e:b6:99:ec:02:ba:4e:54:5d:3f:0a: 83:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:78:31:F3:7A:65:6F:4D:47:F6:C4:09:3A:CF:F7:01:9F:E0:C7:57 X509v3 Authority Key Identifier: keyid:74:D4:4D:96:8A:F4:63:EF:B1:7C:08:0D:5F:AD:01:0C:4A:C0:97:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dNRNlor0Y--xfAgNX60BDErAl6o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption be:10:b7:32:be:c1:07:47:8e:3a:a0:a6:75:69:f4:a7:ea:0d: 90:3d:12:87:e8:dd:d0:23:cc:b7:f7:f9:21:b7:98:06:56:f2: 29:f3:7d:d9:c3:6f:21:d4:45:f2:cd:33:ad:31:d9:56:b6:59: 89:93:a8:07:62:69:b2:77:f2:9b:f9:b2:05:d3:76:86:a1:7a: 53:30:52:11:0e:6c:0a:55:a5:19:01:e0:71:4f:cb:d7:b5:51: 2a:25:5a:67:b2:fc:a3:97:57:bd:dc:c0:40:db:36:23:7c:80: 99:ae:3a:5d:00:1d:89:00:a4:9c:db:05:43:54:7f:59:54:50: 5c:33:3d:34:61:f2:01:77:9d:0e:77:b4:72:41:a2:b8:ca:80: 11:a5:df:bc:14:a4:3a:1a:bf:5b:e2:5e:dd:52:ff:ff:75:c9: b9:bb:52:00:47:f6:f2:66:7d:bf:95:66:21:21:35:7d:3b:09: 9b:6a:9b:8f:3e:2c:20:e4:30:e1:51:01:1c:b7:2c:ca:08:78: e4:0e:1b:b6:46:1d:67:81:e5:aa:4c:cc:0f:d2:ff:ba:97:ce: f0:68:ed:f2:e3:34:ae:28:f5:d4:92:04:ef:70:9d:b9:8a:ec: ec:2e:71:1c:f9:82:df:a5:f5:ac:2a:09:fe:12:a0:a2:15:51: fb:ff:bc:ad -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBuEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UwQTgxMTAvBgNVBAUTKDc0RDQ0RDk2OEFGNDYzRUZCMTdDMDgwRDVGQUQwMTBD NEFDMDk3QUEwHhcNMjYwMzAyMTkxNjEyWhcNMjYwMzA5MTkxNjEyWjAYMRYwFAYD VQQDEw02OWE1ZTFmYy1hNTIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtD7ShYOw1zWTajtZ0NnrqX4kc5g8zffcFsNCMS8UV5UBKnKTQAD4B+EkFulv 5p5m7T/LH8/f/yS+ndMmV/cf6gD+I+9V3sr1bG3jkVLM6jjdCBYPae9rlo4o2CBY yaIn2BJf+dg0LNI8qRn6WUbDCtFlMZLRPL4GmWouE3tkCuY1uapA6aQA0D5E839V wL3aMPGIH7/+jaeeib4O7W1tIHl4Fb2IAFMK/8Kge+6lKl4JfXBpCT/jPs6Q8/ss hrgf/9YFk5jOm22DeHnetsnB8Dg/E5IidnMHau8DdKVhH9dOrfYWupXFimD1l2zb /Ispi3YtPraZ7AK6TlRdPwqDaQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOh4MfN6 ZW9NR/bECTrP9wGf4MdXMB8GA1UdIwQYMBaAFHTUTZaK9GPvsXwIDV+tAQxKwJeq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTBBOC82RUZDMEJFRTk4 NEMxMUVCOEE0MUZBMjBDNEY5QUUwMi9kTlJObG9yMFktLXhmQWdOWDYwQkRFckFs Nm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2ROUk5sb3IwWS0teGZBZ05YNjBCREVyQWw2by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTBBOC82RUZDMEJFRTk4NEMxMUVCOEE0MUZBMjBDNEY5QUUwMi9kTlJObG9yMFkt LXhmQWdOWDYwQkRFckFsNm8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAvhC3Mr7BB0eOOqCmdWn0p+oNkD0Sh+jd0CPMt/f5IbeYBlbyKfN92cNvIdRF 8s0zrTHZVrZZiZOoB2Jpsnfym/myBdN2hqF6UzBSEQ5sClWlGQHgcU/L17VRKiVa Z7L8o5dXvdzAQNs2I3yAma46XQAdiQCknNsFQ1R/WVRQXDM9NGHyAXedDne0ckGi uMqAEaXfvBSkOhq/W+Je3VL//3XJubtSAEf28mZ9v5VmISE1fTsJm2qbjz4sIOQw 4VEBHLcsygh45A4btkYdZ4HlqkzMD9L/upfO8Gjt8uM0rij11JIE73CduYrs7C5x HPmC36X1rCoJ/hKgohVR+/+8rQ== -----END CERTIFICATE-----Generated at Wed Mar 4 08:40:56 2026 by rpki-client