$ rpki-client -vvf rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.mft File: DYtx2GteICkzvLAqW210CSpSoXw.mft (raw, json) Hash identifier: H8U69PexeZsPms6lwFDaALkU9JiZxHG4DXNGt1nmy3o= Subject key identifier: A0:18:41:F7:5F:01:6B:F7:1C:E3:7C:BF:ED:8E:67:C2:BD:ED:B1:6D Authority key identifier: 0D:8B:71:D8:6B:5E:20:29:33:BC:B0:2A:5B:6D:74:09:2A:52:A1:7C Certificate issuer: /CN=A91A395C/serialNumber=0D8B71D86B5E202933BCB02A5B6D74092A52A17C Certificate serial: 3599 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DYtx2GteICkzvLAqW210CSpSoXw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.mft Manifest number: 3541 Signing time: Thu 12 Mar 2026 14:49:25 +0000 Manifest this update: Thu 12 Mar 2026 14:49:25 +0000 Manifest next update: Thu 19 Mar 2026 14:49:25 +0000 Files and hashes: 1: DYtx2GteICkzvLAqW210CSpSoXw.crl (hash: foe6LLKY/PjOaDRpXYlIjUxTl8RTr5GXKl1G5DD+r5o=) 2: 9A2B0DE4593F11EA9F9FA238C4F9AE02.roa (hash: NLs+1lW2c+XRSot8ioe6j0/P90GPYhhRdikdITCoGOI=) 3: 3DBC186C5AD611EF85A4557BC4F9AE02.roa (hash: 6uLGUsAxDCCetxCSvWggNZXKnXx2TcJW5ybw8uE9+E8=) 4: 65552C3AE8D411ED8D0FAD45C4F9AE02.roa (hash: D7Y0D/y/CKTIEfmEtpoWEBzYAJ2qa9qCceCAIRlHBxE=) 5: D56D9FD87E8711EC9A928B6AC4F9AE02.roa (hash: l9+xBEny0RtitxX+horpYy85rL+QwU54sl8n7bTIiQE=) 6: 991EB004BE8511EE960E5082C4F9AE02.roa (hash: rP4EBcoYjp/fb5drtfKj/6SrPS0+St4OmibSJgW68j8=) 7: 9B71FEB0593F11EA9F9FA238C4F9AE02.roa (hash: Q4GRmFRI4ONgbTnKmbxTEpLs75sW5Sq4FWea39SXv98=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.crl rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DYtx2GteICkzvLAqW210CSpSoXw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 14:49:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13721 (0x3599) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A395C, serialNumber=0D8B71D86B5E202933BCB02A5B6D74092A52A17C Validity Not Before: Mar 12 14:49:25 2026 GMT Not After : Mar 19 14:49:25 2026 GMT Subject: CN=69b2d275-72ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:fb:fc:50:d8:62:85:90:75:d8:4c:7c:18:00: c9:b0:46:a3:89:71:f3:9a:24:27:8d:1b:95:09:e2: f7:7a:b2:ce:d6:bc:5a:4a:d0:3f:a8:a5:88:4c:2d: 69:4b:63:31:26:db:79:46:bc:45:aa:4b:26:ed:64: 38:af:2b:b5:cf:29:58:6f:8e:d9:62:05:17:58:eb: 4b:15:e8:8f:1f:b6:21:bc:d8:e9:72:4a:f7:9c:8a: a5:f7:80:71:0c:4b:07:9d:6c:1a:a6:01:4c:9f:75: 58:94:17:b1:4c:bd:f9:ce:c5:85:99:c6:9c:94:16: 77:c3:f8:76:87:53:b0:7c:1f:13:49:c4:be:e7:03: 6b:66:ec:12:1f:db:65:91:c2:72:c3:40:a6:17:6b: 21:0f:1f:e0:0f:bb:49:f9:18:6c:cf:ee:58:ee:c4: df:5a:26:ec:6b:a0:eb:85:58:06:0f:a4:3c:29:4e: fb:ca:6a:3d:46:68:8a:b2:4d:0f:0d:fa:ac:ef:4f: 6d:c9:7b:d6:1c:40:3a:b7:84:c5:3b:ae:f0:38:ef: d8:94:60:85:17:5a:ca:67:b6:34:bd:89:de:14:50: 15:fb:02:5b:fa:d4:a3:4b:14:8d:17:87:c6:44:87: 0e:d1:f9:85:50:e4:47:40:62:3f:40:df:0f:bb:a3: 00:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:18:41:F7:5F:01:6B:F7:1C:E3:7C:BF:ED:8E:67:C2:BD:ED:B1:6D X509v3 Authority Key Identifier: keyid:0D:8B:71:D8:6B:5E:20:29:33:BC:B0:2A:5B:6D:74:09:2A:52:A1:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DYtx2GteICkzvLAqW210CSpSoXw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c2:73:f3:d4:5e:56:86:c9:a6:c2:e2:b7:31:65:ad:e5:a0:be: db:1a:4e:07:74:ee:19:d0:f8:97:b3:b4:8b:27:de:98:b0:d1: 3a:76:28:15:1e:cd:3e:8e:47:c8:20:59:03:4f:fd:b7:fc:57: 0c:08:4f:15:8e:48:98:11:38:90:06:55:d5:96:18:a0:a4:e8: 2d:0a:39:42:27:eb:95:6b:a8:79:32:74:2f:a0:75:03:19:b3: ad:9a:3c:6d:b0:86:ae:37:bb:38:b0:e0:91:33:23:8d:e7:97: 8a:c3:ab:a6:b0:d6:f6:82:9a:8d:ef:2a:39:12:87:ce:39:14: 1d:04:2f:1e:3b:39:d2:b6:bf:0a:9a:b4:98:fe:4a:dc:b8:53: a9:88:75:dd:fa:f6:10:d5:13:2a:16:c2:44:fa:bc:ab:12:b0: 85:76:c8:77:75:cf:ef:54:0d:a5:db:70:36:36:0e:25:d4:68: 86:3d:0f:3f:15:43:aa:52:71:16:ad:72:e5:08:06:00:14:96: 3f:54:e1:6d:b0:98:d4:84:93:d8:db:d8:1e:02:d5:5e:af:60: 7a:fb:de:af:06:7a:25:46:3e:0b:59:df:84:6e:e5:f5:4e:40: d2:e8:df:c7:49:03:3d:9d:bd:49:f3:25:50:f0:9c:ba:76:b1: 3f:07:69:f5 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNZkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTM5NUMxMTAvBgNVBAUTKDBEOEI3MUQ4NkI1RTIwMjkzM0JDQjAyQTVCNkQ3NDA5 MkE1MkExN0MwHhcNMjYwMzEyMTQ0OTI1WhcNMjYwMzE5MTQ0OTI1WjAYMRYwFAYD VQQDEw02OWIyZDI3NS03MmVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnPv8UNhihZB12Ex8GADJsEajiXHzmiQnjRuVCeL3erLO1rxaStA/qKWITC1p S2MxJtt5RrxFqksm7WQ4ryu1zylYb47ZYgUXWOtLFeiPH7YhvNjpckr3nIql94Bx DEsHnWwapgFMn3VYlBexTL35zsWFmcaclBZ3w/h2h1OwfB8TScS+5wNrZuwSH9tl kcJyw0CmF2shDx/gD7tJ+Rhsz+5Y7sTfWibsa6DrhVgGD6Q8KU77ymo9RmiKsk0P Dfqs709tyXvWHEA6t4TFO67wOO/YlGCFF1rKZ7Y0vYneFFAV+wJb+tSjSxSNF4fG RIcO0fmFUORHQGI/QN8Pu6MATQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKAYQfdf AWv3HON8v+2OZ8K97bFtMB8GA1UdIwQYMBaAFA2LcdhrXiApM7ywKlttdAkqUqF8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzk1Qy9CQjM0MTdDMDFE OTYxMUUyQjhCQjgyN0YwOEIwMkNEMi9EWXR4Mkd0ZUlDa3p2TEFxVzIxMENTcFNv WHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RZdHgyR3RlSUNrenZMQXFXMjEwQ1NwU29Ydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Mzk1Qy9CQjM0MTdDMDFEOTYxMUUyQjhCQjgyN0YwOEIwMkNEMi9EWXR4Mkd0ZUlD a3p2TEFxVzIxMENTcFNvWHcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAwnPz1F5WhsmmwuK3MWWt5aC+2xpOB3TuGdD4l7O0iyfemLDROnYoFR7NPo5H yCBZA0/9t/xXDAhPFY5ImBE4kAZV1ZYYoKToLQo5QifrlWuoeTJ0L6B1AxmzrZo8 bbCGrje7OLDgkTMjjeeXisOrprDW9oKaje8qORKHzjkUHQQvHjs50ra/Cpq0mP5K 3LhTqYh13fr2ENUTKhbCRPq8qxKwhXbId3XP71QNpdtwNjYOJdRohj0PPxVDqlJx Fq1y5QgGABSWP1ThbbCY1IST2NvYHgLVXq9gevverwZ6JUY+C1nfhG7l9U5A0ujf x0kDPZ29SfMlUPCcunaxPwdp9Q== -----END CERTIFICATE-----Generated at Thu Mar 12 21:28:36 2026 by rpki-client