$ rpki-client -vvf rpki.apnic.net/member_repository/A911E660/F98711DAD24211EF88C5BC11C4F9AE02/diAma5iRohjA5fLvKI94LVcX8rw.mft File: diAma5iRohjA5fLvKI94LVcX8rw.mft (raw, json) Hash identifier: TwltP2/iD1texxnmzDCzyNCZMDaKlU3a6EF71HMNkgk= Subject key identifier: FA:D3:E3:27:55:6D:E0:B6:46:6A:B7:37:19:0A:A7:4F:FC:B5:F3:13 Authority key identifier: 76:20:26:6B:98:91:A2:18:C0:E5:F2:EF:28:8F:78:2D:57:17:F2:BC Certificate issuer: /CN=A911E660/serialNumber=7620266B9891A218C0E5F2EF288F782D5717F2BC Certificate serial: DC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/diAma5iRohjA5fLvKI94LVcX8rw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E660/F98711DAD24211EF88C5BC11C4F9AE02/diAma5iRohjA5fLvKI94LVcX8rw.mft Manifest number: D8 Signing time: Mon 02 Mar 2026 02:50:25 +0000 Manifest this update: Mon 02 Mar 2026 02:50:23 +0000 Manifest next update: Mon 09 Mar 2026 02:50:23 +0000 Files and hashes: 1: diAma5iRohjA5fLvKI94LVcX8rw.crl (hash: 9gioaHQP4/iBijf8DLEnHXRTDZwT7vxnj6HT00sO+x0=) 2: 4ECE44B0D24311EF919B6D12C4F9AE02.roa (hash: Duer1WVGQHeYZI/Azd1wOhsGz2PF1wG4VU8KdNzFWQc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E660/F98711DAD24211EF88C5BC11C4F9AE02/diAma5iRohjA5fLvKI94LVcX8rw.crl rsync://rpki.apnic.net/member_repository/A911E660/F98711DAD24211EF88C5BC11C4F9AE02/diAma5iRohjA5fLvKI94LVcX8rw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/diAma5iRohjA5fLvKI94LVcX8rw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 220 (0xdc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E660, serialNumber=7620266B9891A218C0E5F2EF288F782D5717F2BC Validity Not Before: Mar 2 02:50:23 2026 GMT Not After : Mar 9 02:50:23 2026 GMT Subject: CN=69a4faf0-abff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:8a:5f:dc:6b:4f:6f:e3:ab:cb:25:91:77:ba: a0:f1:89:8a:0b:21:88:87:89:27:c8:d4:4c:95:d4: 14:8d:18:78:3f:44:af:09:96:e6:4c:0f:94:45:24: 3a:e3:f3:e0:83:80:1a:c8:48:67:fd:88:ad:de:7e: 07:d7:df:7b:31:2a:b9:f2:61:5f:68:ab:44:9e:09: 68:cc:30:7a:99:49:db:b3:ea:72:9b:a1:e7:bf:8d: 15:50:74:8d:23:7b:4f:6c:95:77:ec:0c:e1:57:bc: be:3c:9a:96:f9:28:2c:4e:c5:d1:c7:2b:c6:14:d1: c8:aa:fb:d4:49:3b:c2:b2:65:47:f5:d1:07:71:aa: ae:de:89:29:9c:df:ca:0b:3e:2a:1f:85:73:df:62: 11:cb:68:97:b5:9d:76:32:cb:2a:53:3d:68:34:02: a7:db:1c:f8:d7:ef:db:c4:06:9b:bf:3f:78:83:3d: 09:d8:0b:c6:a8:98:97:46:18:a8:a6:e0:3d:2f:0e: 7e:00:4e:5a:51:2f:a9:ae:fe:6b:7e:eb:16:60:79: 82:3b:e9:ca:4d:6a:d7:27:b9:30:ef:43:a4:8a:56: 85:f7:7e:25:2c:85:ae:97:28:2b:69:60:4d:c0:ae: 50:14:7f:45:1c:30:4e:d5:4e:41:b4:b4:4f:89:21: 25:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:D3:E3:27:55:6D:E0:B6:46:6A:B7:37:19:0A:A7:4F:FC:B5:F3:13 X509v3 Authority Key Identifier: keyid:76:20:26:6B:98:91:A2:18:C0:E5:F2:EF:28:8F:78:2D:57:17:F2:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E660/F98711DAD24211EF88C5BC11C4F9AE02/diAma5iRohjA5fLvKI94LVcX8rw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/diAma5iRohjA5fLvKI94LVcX8rw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E660/F98711DAD24211EF88C5BC11C4F9AE02/diAma5iRohjA5fLvKI94LVcX8rw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:7f:44:5a:06:aa:cb:b6:0f:fd:96:4c:c7:dc:08:d1:a4:d8: 09:cc:74:aa:20:3f:ae:22:34:11:84:1a:0a:be:ae:6c:64:65: 6f:94:e1:e8:f1:53:a8:aa:e4:c1:33:6e:1e:62:c7:5e:d7:03: 51:2c:de:f5:ce:43:e0:a7:25:1c:5c:6f:1e:ea:be:ce:18:ad: db:a9:4b:27:5a:a8:f3:70:26:71:3b:57:7b:d9:1f:5d:8a:44: d3:b4:c2:61:b3:eb:aa:8b:0e:07:74:df:19:f2:eb:30:07:9e: c7:b7:c9:f0:d2:fe:47:ff:c2:43:52:6e:68:63:bf:4e:a2:16: 31:fd:ef:55:e0:ab:85:e9:9a:fe:6c:60:dc:a1:70:25:e0:9a: 96:21:06:4b:64:b0:ef:80:94:9e:43:29:cb:d1:dd:ce:ff:f9: 0d:ac:9c:f9:95:42:68:1e:54:7a:9c:5c:83:45:cc:e8:4b:89: e3:aa:fa:25:58:bf:ee:ef:18:d5:77:8e:ff:2b:af:61:22:1a: ba:f2:c6:c0:60:47:88:35:1f:78:2a:e2:e7:75:b2:19:69:a4: 9e:de:0b:d4:1a:91:62:f3:5b:55:e0:0c:79:ce:1f:a0:97:c8: 88:32:2b:24:92:1c:73:6e:4c:72:b4:a1:ab:0e:45:41:90:ed: aa:1e:5d:50 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICANwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUU2NjAxMTAvBgNVBAUTKDc2MjAyNjZCOTg5MUEyMThDMEU1RjJFRjI4OEY3ODJE NTcxN0YyQkMwHhcNMjYwMzAyMDI1MDIzWhcNMjYwMzA5MDI1MDIzWjAYMRYwFAYD VQQDEw02OWE0ZmFmMC1hYmZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuYpf3GtPb+OryyWRd7qg8YmKCyGIh4knyNRMldQUjRh4P0SvCZbmTA+URSQ6 4/Pgg4AayEhn/Yit3n4H1997MSq58mFfaKtEnglozDB6mUnbs+pym6Hnv40VUHSN I3tPbJV37AzhV7y+PJqW+SgsTsXRxyvGFNHIqvvUSTvCsmVH9dEHcaqu3okpnN/K Cz4qH4Vz32IRy2iXtZ12MssqUz1oNAKn2xz41+/bxAabvz94gz0J2AvGqJiXRhio puA9Lw5+AE5aUS+prv5rfusWYHmCO+nKTWrXJ7kw70OkilaF934lLIWulygraWBN wK5QFH9FHDBO1U5BtLRPiSElPQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPrT4ydV beC2Rmq3NxkKp0/8tfMTMB8GA1UdIwQYMBaAFHYgJmuYkaIYwOXy7yiPeC1XF/K8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRTY2MC9GOTg3MTFEQUQy NDIxMUVGODhDNUJDMTFDNEY5QUUwMi9kaUFtYTVpUm9oakE1Zkx2S0k5NExWY1g4 cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2RpQW1hNWlSb2hqQTVmTHZLSTk0TFZjWDhydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RTY2MC9GOTg3MTFEQUQyNDIxMUVGODhDNUJDMTFDNEY5QUUwMi9kaUFtYTVpUm9o akE1Zkx2S0k5NExWY1g4cncubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAOn9EWgaqy7YP/ZZMx9wI0aTYCcx0qiA/riI0EYQaCr6ubGRlb5Th6PFTqKrk wTNuHmLHXtcDUSze9c5D4KclHFxvHuq+zhit26lLJ1qo83AmcTtXe9kfXYpE07TC YbPrqosOB3TfGfLrMAeex7fJ8NL+R//CQ1JuaGO/TqIWMf3vVeCrhema/mxg3KFw JeCaliEGS2Sw74CUnkMpy9Hdzv/5Dayc+ZVCaB5Uepxcg0XM6EuJ46r6JVi/7u8Y 1XeO/yuvYSIauvLGwGBHiDUfeCri53WyGWmknt4L1BqRYvNbVeAMec4foJfIiDIr JJIcc25McrShqw5FQZDtqh5dUA== -----END CERTIFICATE-----Generated at Mon Mar 2 17:57:29 2026 by rpki-client