$ rpki-client -vvf rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/dnhyvdDvgmpkldgSahOfxASTgA8.mft File: dnhyvdDvgmpkldgSahOfxASTgA8.mft (raw, json) Hash identifier: oaDTb17+ya3Z0MB+89kzlf84/RW5/mwGx0xHDFybvHk= Subject key identifier: BC:03:04:63:6C:92:5B:40:F4:53:3B:A9:C9:5A:21:38:3F:4D:85:D4 Authority key identifier: 76:78:72:BD:D0:EF:82:6A:64:95:D8:12:6A:13:9F:C4:04:93:80:0F Certificate issuer: /CN=A91B67D1/serialNumber=767872BDD0EF826A6495D8126A139FC40493800F Certificate serial: 104B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dnhyvdDvgmpkldgSahOfxASTgA8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/dnhyvdDvgmpkldgSahOfxASTgA8.mft Manifest number: 1020 Signing time: Wed 04 Mar 2026 17:17:22 +0000 Manifest this update: Wed 04 Mar 2026 17:17:22 +0000 Manifest next update: Wed 11 Mar 2026 17:17:22 +0000 Files and hashes: 1: dnhyvdDvgmpkldgSahOfxASTgA8.crl (hash: AsUTeLUOZsdCIzIAdOK2L4GCzrOkRhqCQn8+gBaFrgg=) 2: 5B3CBC209BEA11EFBCB36227C4F9AE02.roa (hash: URL1ReTticLSrWgLn6MiNA2clbnttkHn48DN8d9RREQ=) 3: 5CCDCD7C9BEA11EFBCB36227C4F9AE02.roa (hash: lEGaA4sdvdJB9ZdOckx6GXw78zY9nH89g3CEg6GczLQ=) 4: 5C1DBC489BEA11EFBCB36227C4F9AE02.roa (hash: v5H4fJJFXDpxvnkvndLnuywB0eTLMDeUHDuPRNGLC1o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/dnhyvdDvgmpkldgSahOfxASTgA8.crl rsync://rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/dnhyvdDvgmpkldgSahOfxASTgA8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dnhyvdDvgmpkldgSahOfxASTgA8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Mar 2026 17:17:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4171 (0x104b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B67D1, serialNumber=767872BDD0EF826A6495D8126A139FC40493800F Validity Not Before: Mar 4 17:17:22 2026 GMT Not After : Mar 11 17:17:22 2026 GMT Subject: CN=69a86922-4677 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:49:d6:38:ff:01:67:19:25:16:ea:2e:3e:a9: 30:5f:69:e8:bb:ba:aa:71:1b:c5:ec:ee:d1:05:bc: df:07:c7:93:78:27:7f:b8:74:a8:51:0d:c0:a7:3b: 51:21:9d:3b:17:8d:4c:fb:70:32:0f:c6:b1:9b:53: 16:dc:2a:8a:bc:f3:a0:a9:9a:03:d2:96:b7:64:02: dc:dc:cb:12:48:57:a2:b8:6a:3c:da:7a:e5:40:ab: bd:b9:c0:8f:fb:fd:0c:6a:7e:3d:37:4e:41:91:21: bb:6b:00:6c:69:7b:80:9c:4a:dc:63:cf:98:dc:b9: 2b:a4:4b:4a:ba:b9:f4:fc:bf:57:a9:ff:d4:b0:05: aa:92:03:63:5c:9f:43:9c:99:fc:bb:0a:c6:c3:02: 5f:a4:ca:3a:4e:34:c2:59:20:e8:3f:c0:da:84:be: 71:af:32:dc:ba:2d:56:2c:aa:39:31:29:eb:ee:ff: 2d:ba:5c:bf:ca:e2:62:f3:aa:03:1b:23:99:f8:ca: 13:8b:e7:35:ca:11:79:8a:2d:43:2c:75:c5:9a:63: 26:ce:f6:26:38:e9:8c:42:a2:e6:d5:ef:78:a5:ad: c0:69:c9:51:a2:bb:3b:63:3d:cf:91:6d:9c:4e:03: 76:6f:4d:52:99:97:7a:2f:69:d5:f6:70:dc:88:4d: 83:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:03:04:63:6C:92:5B:40:F4:53:3B:A9:C9:5A:21:38:3F:4D:85:D4 X509v3 Authority Key Identifier: keyid:76:78:72:BD:D0:EF:82:6A:64:95:D8:12:6A:13:9F:C4:04:93:80:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/dnhyvdDvgmpkldgSahOfxASTgA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dnhyvdDvgmpkldgSahOfxASTgA8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/dnhyvdDvgmpkldgSahOfxASTgA8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:28:c0:cd:11:1c:4c:d9:cd:ef:34:cc:77:c8:19:45:98:3d: 27:26:04:da:e1:29:94:98:44:c1:e3:09:ce:47:65:24:7a:c4: 6e:4f:c6:22:a6:79:af:bb:dd:52:e8:25:38:a8:a5:a1:33:8b: aa:1c:c8:38:60:c5:bb:c1:3a:6a:77:ce:4f:a7:1e:36:50:c0: 61:5f:1b:6e:ef:b6:4d:e1:4c:53:7b:5a:38:92:37:20:a7:14: 8b:27:5d:c2:2b:ef:16:17:61:3c:b8:ed:e6:03:2d:31:9d:6c: 06:60:a1:98:f8:92:97:15:c4:be:6c:63:f2:ae:4a:22:9e:ec: 70:24:b7:9d:63:05:0d:59:80:3c:46:71:0f:5d:fc:68:fa:3d: f2:2a:9b:60:e0:09:60:d9:b6:15:32:cc:6e:67:2e:cf:25:c9: 80:f9:ba:c6:9f:59:c4:a1:78:f3:f2:46:89:ef:dd:92:df:e0: 4c:7b:03:61:ca:aa:41:82:ad:94:98:2c:2e:89:bf:ae:52:25: 0a:e3:52:a3:68:14:da:b3:a2:49:09:ad:70:19:ad:3e:75:b3: 84:f9:28:7a:f5:c1:78:29:e6:61:76:1c:24:cd:7f:e9:03:47: 64:d7:af:d7:e6:8d:de:64:b2:2e:ee:68:46:ba:8b:a5:19:d7: 7b:00:41:f6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICEEswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjY3RDExMTAvBgNVBAUTKDc2Nzg3MkJERDBFRjgyNkE2NDk1RDgxMjZBMTM5RkM0 MDQ5MzgwMEYwHhcNMjYwMzA0MTcxNzIyWhcNMjYwMzExMTcxNzIyWjAYMRYwFAYD VQQDEw02OWE4NjkyMi00Njc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmEnWOP8BZxklFuouPqkwX2nou7qqcRvF7O7RBbzfB8eTeCd/uHSoUQ3ApztR IZ07F41M+3AyD8axm1MW3CqKvPOgqZoD0pa3ZALc3MsSSFeiuGo82nrlQKu9ucCP +/0Man49N05BkSG7awBsaXuAnErcY8+Y3LkrpEtKurn0/L9Xqf/UsAWqkgNjXJ9D nJn8uwrGwwJfpMo6TjTCWSDoP8DahL5xrzLcui1WLKo5MSnr7v8tuly/yuJi86oD GyOZ+MoTi+c1yhF5ii1DLHXFmmMmzvYmOOmMQqLm1e94pa3AaclRors7Yz3PkW2c TgN2b01SmZd6L2nV9nDciE2DvwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLwDBGNs kltA9FM7qclaITg/TYXUMB8GA1UdIwQYMBaAFHZ4cr3Q74JqZJXYEmoTn8QEk4AP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjdEMS82Q0JDOUI0MDYx MUQxMUU5QjAxMkRCMzdDNEY5QUUwMi9kbmh5dmREdmdtcGtsZGdTYWhPZnhBU1Rn QTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RuaHl2ZER2Z21wa2xkZ1NhaE9meEFTVGdBOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NjdEMS82Q0JDOUI0MDYxMUQxMUU5QjAxMkRCMzdDNEY5QUUwMi9kbmh5dmREdmdt cGtsZGdTYWhPZnhBU1RnQTgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAMSjAzREcTNnN7zTMd8gZRZg9JyYE2uEplJhEweMJzkdlJHrEbk/GIqZ5r7vd UuglOKiloTOLqhzIOGDFu8E6anfOT6ceNlDAYV8bbu+2TeFMU3taOJI3IKcUiydd wivvFhdhPLjt5gMtMZ1sBmChmPiSlxXEvmxj8q5KIp7scCS3nWMFDVmAPEZxD138 aPo98iqbYOAJYNm2FTLMbmcuzyXJgPm6xp9ZxKF48/JGie/dkt/gTHsDYcqqQYKt lJgsLom/rlIlCuNSo2gU2rOiSQmtcBmtPnWzhPkoevXBeCnmYXYcJM1/6QNHZNev 1+aN3mSyLu5oRrqLpRnXewBB9g== -----END CERTIFICATE-----Generated at Fri Mar 6 06:53:53 2026 by rpki-client