$ rpki-client -vvf rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.mft File: drnTOfrNYrR-k-iITehQOW2877Q.mft (raw, json) Hash identifier: OAwXLBPYXONWjorfMiTleC7ADSrYpiSjOF16PWawQ1k= Subject key identifier: FF:71:8F:9A:69:06:3E:43:DE:86:12:C3:10:D4:4A:3A:DD:2E:47:F6 Authority key identifier: 76:B9:D3:39:FA:CD:62:B4:7E:93:E8:88:4D:E8:50:39:6D:BC:EF:B4 Certificate issuer: /CN=A911E6CA/serialNumber=76B9D339FACD62B47E93E8884DE850396DBCEFB4 Certificate serial: 0B7C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/drnTOfrNYrR-k-iITehQOW2877Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.mft Manifest number: 0B61 Signing time: Mon 02 Mar 2026 02:54:14 +0000 Manifest this update: Mon 02 Mar 2026 02:54:12 +0000 Manifest next update: Mon 09 Mar 2026 02:54:12 +0000 Files and hashes: 1: drnTOfrNYrR-k-iITehQOW2877Q.crl (hash: 04PdpJzEpNt1b9VS7BBA08Tl/SLliwF3YFhOx4qVMsg=) 2: AA1ABF0AB20011EA9C0DFB2FC4F9AE02.roa (hash: LOxwXXl/1ogY6Z8WRaqQT9gSdmIV2VI2MhmnG9CX5Ao=) 3: 83882F7AF83B11ECB4154E31C4F9AE02.roa (hash: pfU114Y2kehr6zOU+odnnmxj4ocLDXqTejqW27FA8Uo=) 4: 4FFC83964CA311EE815AF017C4F9AE02.roa (hash: i0QX1oh2vY0+yTeJS1CX+dvBMVRGvSk4uN3puOoN580=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.crl rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/drnTOfrNYrR-k-iITehQOW2877Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:54:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2940 (0xb7c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E6CA, serialNumber=76B9D339FACD62B47E93E8884DE850396DBCEFB4 Validity Not Before: Mar 2 02:54:12 2026 GMT Not After : Mar 9 02:54:12 2026 GMT Subject: CN=69a4fbd5-1ddd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:4c:e1:a7:9b:e0:dc:58:2a:21:21:5e:5d:1c: 45:c3:27:68:b2:f9:02:67:3a:6d:53:2f:0e:cf:fb: f8:68:4b:1e:42:60:44:8f:cb:cf:4f:2a:41:de:5a: b4:b9:39:90:83:28:f1:c2:6e:7d:2f:3a:fe:fe:b6: 87:de:ee:d9:a3:06:b0:19:0d:01:a9:47:b1:0d:ed: d4:71:c4:c6:f1:63:7d:50:76:a9:bd:5d:85:eb:5d: 91:91:4f:57:9e:c2:55:21:f8:2e:08:0f:89:88:09: c7:98:74:f2:c1:c7:2c:04:84:04:ad:bb:e2:0d:46: 2d:36:99:d1:3f:b8:08:88:0c:1a:ac:52:d1:42:0b: a1:19:d1:17:74:d4:76:8f:80:a8:e3:0b:b1:23:41: 6d:63:dc:c2:60:fa:9c:32:1f:f7:fa:03:d2:fb:0b: 5e:c8:22:a7:99:e1:ee:af:48:fe:9f:9f:d0:21:ce: 83:73:6f:8b:03:83:50:27:ec:11:34:58:b4:5d:d1: 04:98:3b:89:2b:5f:1b:b9:9e:04:e0:df:28:7f:cc: d0:18:96:d0:3e:91:5a:72:67:48:da:bc:89:a2:45: c3:79:46:a8:f5:c4:98:15:55:13:e1:f6:a0:99:85: d0:42:08:f8:59:33:7a:ca:dd:26:4d:c2:86:91:18: bb:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:71:8F:9A:69:06:3E:43:DE:86:12:C3:10:D4:4A:3A:DD:2E:47:F6 X509v3 Authority Key Identifier: keyid:76:B9:D3:39:FA:CD:62:B4:7E:93:E8:88:4D:E8:50:39:6D:BC:EF:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/drnTOfrNYrR-k-iITehQOW2877Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:02:d0:c7:53:db:1c:fd:3b:8d:4c:84:2e:39:f3:05:c0:7c: e7:52:50:db:2e:b6:d0:9d:06:cc:5e:d1:1c:b2:e0:b2:80:e4: 1b:4c:92:7f:fb:2a:ba:6f:d5:bf:49:cd:5f:68:d5:fa:a7:3f: 46:90:56:97:c1:27:a3:9e:b1:7c:5e:85:0d:07:09:bc:a2:da: 70:6a:95:b5:04:bf:0c:ae:06:19:e8:03:4f:9a:f9:cc:bc:cf: 63:a3:a1:f0:01:75:5f:e3:c7:99:73:21:18:43:a7:98:e0:41: b2:66:5b:d4:da:83:63:66:ad:70:b1:de:d3:be:15:58:f0:05: e3:77:e2:f2:67:f7:9d:ef:b1:eb:6e:23:af:76:fc:32:cf:cb: cd:a5:06:ee:92:1c:cc:ae:ed:2e:8c:84:1a:1d:41:83:75:25: bf:80:91:af:01:ff:c3:e0:36:27:8a:d1:52:12:b9:e4:bb:3e: f2:de:f8:98:a2:c9:5f:a9:14:d5:72:2d:08:d1:10:0b:c9:4d: c2:b4:1c:ee:ae:7a:9a:6a:ec:22:2a:41:d0:1d:93:20:0a:93: 2d:89:1d:6a:15:f3:eb:0d:90:92:c6:09:6a:42:7b:c0:f1:d1: 38:1d:85:04:76:75:66:ff:bf:7d:9c:a9:58:21:b2:9f:b5:c7: 7e:f0:ae:be -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICC3wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUU2Q0ExMTAvBgNVBAUTKDc2QjlEMzM5RkFDRDYyQjQ3RTkzRTg4ODRERTg1MDM5 NkRCQ0VGQjQwHhcNMjYwMzAyMDI1NDEyWhcNMjYwMzA5MDI1NDEyWjAYMRYwFAYD VQQDEw02OWE0ZmJkNS0xZGRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAiUzhp5vg3FgqISFeXRxFwydosvkCZzptUy8Oz/v4aEseQmBEj8vPTypB3lq0 uTmQgyjxwm59Lzr+/raH3u7ZowawGQ0BqUexDe3UccTG8WN9UHapvV2F612RkU9X nsJVIfguCA+JiAnHmHTywccsBIQErbviDUYtNpnRP7gIiAwarFLRQguhGdEXdNR2 j4Co4wuxI0FtY9zCYPqcMh/3+gPS+wteyCKnmeHur0j+n5/QIc6Dc2+LA4NQJ+wR NFi0XdEEmDuJK18buZ4E4N8of8zQGJbQPpFacmdI2ryJokXDeUao9cSYFVUT4fag mYXQQgj4WTN6yt0mTcKGkRi7JQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFP9xj5pp Bj5D3oYSwxDUSjrdLkf2MB8GA1UdIwQYMBaAFHa50zn6zWK0fpPoiE3oUDltvO+0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRTZDQS83NDA5QjQ3QTRG QzcxMUVBOEU0NkQ0MTVDNEY5QUUwMi9kcm5UT2ZyTllyUi1rLWlJVGVoUU9XMjg3 N1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RyblRPZnJOWXJSLWstaUlUZWhRT1cyODc3US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RTZDQS83NDA5QjQ3QTRGQzcxMUVBOEU0NkQ0MTVDNEY5QUUwMi9kcm5UT2ZyTlly Ui1rLWlJVGVoUU9XMjg3N1EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAMALQx1PbHP07jUyELjnzBcB851JQ2y620J0GzF7RHLLgsoDkG0ySf/squm/V v0nNX2jV+qc/RpBWl8Eno56xfF6FDQcJvKLacGqVtQS/DK4GGegDT5r5zLzPY6Oh 8AF1X+PHmXMhGEOnmOBBsmZb1NqDY2atcLHe074VWPAF43fi8mf3ne+x624jr3b8 Ms/LzaUG7pIczK7tLoyEGh1Bg3Ulv4CRrwH/w+A2J4rRUhK55Ls+8t74mKLJX6kU 1XItCNEQC8lNwrQc7q56mmrsIipB0B2TIAqTLYkdahXz6w2QksYJakJ7wPHROB2F BHZ1Zv+/fZypWCGyn7XHfvCuvg== -----END CERTIFICATE-----Generated at Mon Mar 2 14:10:39 2026 by rpki-client