$ rpki-client -vvf rpki.apnic.net/member_repository/A912465F/702C34C6064711F1B4BAFBC52D3D8C67/TonyDOHR4q7I1gVlBTEwvWB9W_0.mft File: TonyDOHR4q7I1gVlBTEwvWB9W_0.mft (raw, json) Hash identifier: T6pSZxin788bTGWRYbjIJYOSrfNbTThRqoz2ZSc71+0= Subject key identifier: 02:4D:67:8B:50:27:7A:26:2E:59:06:8D:CE:DE:83:1E:71:0D:71:2D Authority key identifier: 4E:89:F2:0C:E1:D1:E2:AE:C8:D6:05:65:05:31:30:BD:60:7D:5B:FD Certificate issuer: /CN=A912465F/serialNumber=4E89F20CE1D1E2AEC8D60565053130BD607D5BFD Certificate serial: 2F Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/TonyDOHR4q7I1gVlBTEwvWB9W_0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912465F/702C34C6064711F1B4BAFBC52D3D8C67/TonyDOHR4q7I1gVlBTEwvWB9W_0.mft Manifest number: 29 Signing time: Fri 17 Apr 2026 08:31:34 +0000 Manifest this update: Fri 17 Apr 2026 08:31:33 +0000 Manifest next update: Fri 24 Apr 2026 08:31:33 +0000 Files and hashes: 1: TonyDOHR4q7I1gVlBTEwvWB9W_0.crl (hash: NG50zPEJBUw7YlXDPkT6vUFOf3quN++TGsFYHwAB2wU=) 2: A885DC48100411F1A3563A300F3D8C67.roa (hash: tF3ywN7eYQwZg7AMUnYYT38GsrrKw6HcmRM3Hqi+nbg=) 3: 78CCC796100411F190DA552F0F3D8C67.roa (hash: 9ijSIQLwt2Gy2XEyUcUffnJwapZcaQTrQntZZWP4Uss=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912465F/702C34C6064711F1B4BAFBC52D3D8C67/TonyDOHR4q7I1gVlBTEwvWB9W_0.crl rsync://rpki.apnic.net/member_repository/A912465F/702C34C6064711F1B4BAFBC52D3D8C67/TonyDOHR4q7I1gVlBTEwvWB9W_0.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/TonyDOHR4q7I1gVlBTEwvWB9W_0.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 08:31:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47 (0x2f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912465F, serialNumber=4E89F20CE1D1E2AEC8D60565053130BD607D5BFD Validity Not Before: Apr 17 08:31:33 2026 GMT Not After : Apr 24 08:31:33 2026 GMT Subject: CN=69e1efe6-54a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:27:61:14:a5:97:2d:fa:a0:56:f6:c6:e7:39: 5a:a4:2a:c7:9d:50:69:78:8d:d9:ed:17:e9:17:39: 7f:8e:78:b5:7e:48:6b:17:37:76:1d:8e:22:f6:71: c4:40:1f:77:f1:c1:2e:70:55:ac:80:58:2f:2e:03: 57:53:d9:73:b0:8e:16:cb:0d:df:3e:a0:9b:6f:c6: eb:55:4e:63:b0:e7:f8:e2:ed:98:c3:1e:1e:6f:e1: e6:51:2d:97:4a:eb:cc:b5:9e:b6:ec:66:d8:1b:21: b3:83:f7:34:bc:58:cc:c0:b3:2e:4f:db:1f:6b:44: 4e:95:d6:bd:1b:be:4f:31:4a:93:bc:fa:68:fb:e3: 36:ef:7f:c7:a8:bf:23:f2:2e:96:9a:8f:b7:03:66: 7c:22:a1:c6:75:b5:45:9d:f3:51:60:b8:36:05:2d: a1:9e:23:aa:5a:b6:bd:01:a7:38:5f:2d:f0:d1:1b: 26:1a:e2:f0:1d:5b:48:ed:ff:56:6d:e7:0b:03:10: d1:b0:a6:fe:69:ce:2a:4a:31:46:d2:c4:9e:bf:aa: 81:1b:a0:ae:77:d9:ba:00:0d:84:2a:8b:5d:20:59: 36:58:b6:b4:79:40:78:4b:95:bf:55:6a:3f:65:3a: 0e:ec:aa:4d:80:a1:fc:57:0e:eb:a9:16:fd:ae:51: f0:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:4D:67:8B:50:27:7A:26:2E:59:06:8D:CE:DE:83:1E:71:0D:71:2D X509v3 Authority Key Identifier: keyid:4E:89:F2:0C:E1:D1:E2:AE:C8:D6:05:65:05:31:30:BD:60:7D:5B:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912465F/702C34C6064711F1B4BAFBC52D3D8C67/TonyDOHR4q7I1gVlBTEwvWB9W_0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/TonyDOHR4q7I1gVlBTEwvWB9W_0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912465F/702C34C6064711F1B4BAFBC52D3D8C67/TonyDOHR4q7I1gVlBTEwvWB9W_0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:41:39:ef:ea:98:f2:32:86:51:78:9f:04:c9:58:f6:28:b6: 9c:3d:05:07:da:8e:9a:09:13:80:f5:84:f0:1b:d2:34:8d:27: ff:16:f9:3a:2e:7e:f6:cf:58:61:4b:18:c7:3d:02:05:9a:2c: 30:a1:e9:31:0e:b4:26:63:cc:f7:65:86:9a:79:62:3a:af:f6: 8b:78:e1:30:d4:18:48:4b:4b:e3:c0:1a:58:72:7a:39:63:40: 15:ed:b7:8a:33:72:9d:bd:a4:37:da:15:fb:dc:1d:ea:e7:41: 98:8e:8d:5b:21:ca:ce:de:f0:aa:17:0c:c6:12:31:2c:50:fa: 4b:6c:f7:df:63:ae:bd:7b:5a:67:5d:fd:61:02:62:1c:77:65: 96:c3:28:cb:d6:39:71:e0:92:3c:9a:92:6f:77:3a:c7:0d:35: 26:10:b1:68:5a:34:4e:c8:cf:8d:db:f6:fc:f2:70:bf:4d:c5: fb:2c:59:86:9a:98:2b:6a:4a:e3:b0:37:cb:7f:e7:10:76:bd: 6d:db:9e:2c:0c:59:3c:91:3f:50:55:52:f5:6a:cb:1e:35:b4: 35:5c:3c:71:03:36:49:e2:73:28:74:ed:dd:04:64:65:9b:73: b2:cb:03:52:32:0f:36:62:1b:b0:4e:7a:8c:66:d7:7e:71:a5: 8e:38:f9:a8 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBLzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy NDY1RjExMC8GA1UEBRMoNEU4OUYyMENFMUQxRTJBRUM4RDYwNTY1MDUzMTMwQkQ2 MDdENUJGRDAeFw0yNjA0MTcwODMxMzNaFw0yNjA0MjQwODMxMzNaMBgxFjAUBgNV BAMTDTY5ZTFlZmU2LTU0YTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCMJ2EUpZct+qBW9sbnOVqkKsedUGl4jdntF+kXOX+OeLV+SGsXN3YdjiL2ccRA H3fxwS5wVayAWC8uA1dT2XOwjhbLDd8+oJtvxutVTmOw5/ji7ZjDHh5v4eZRLZdK 68y1nrbsZtgbIbOD9zS8WMzAsy5P2x9rRE6V1r0bvk8xSpO8+mj74zbvf8eovyPy Lpaaj7cDZnwiocZ1tUWd81FguDYFLaGeI6patr0BpzhfLfDRGyYa4vAdW0jt/1Zt 5wsDENGwpv5pzipKMUbSxJ6/qoEboK532boADYQqi10gWTZYtrR5QHhLlb9Vaj9l Og7sqk2AofxXDuupFv2uUfD5AgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUAk1ni1An eiYuWQaNzt6DHnENcS0wHwYDVR0jBBgwFoAUTonyDOHR4q7I1gVlBTEwvWB9W/0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI0NjVGLzcwMkMzNEM2MDY0 NzExRjFCNEJBRkJDNTJEM0Q4QzY3L1RvbnlET0hSNHE3STFnVmxCVEV3dldCOVdf MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIvVG9ueURPSFI0cTdJMWdWbEJURXd2V0I5V18wLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI0 NjVGLzcwMkMzNEM2MDY0NzExRjFCNEJBRkJDNTJEM0Q4QzY3L1RvbnlET0hSNHE3 STFnVmxCVEV3dldCOVdfMC5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQBjQTnv6pjyMoZReJ8EyVj2KLacPQUH2o6aCROA9YTwG9I0jSf/Fvk6Ln72z1hh SxjHPQIFmiwwoekxDrQmY8z3ZYaaeWI6r/aLeOEw1BhIS0vjwBpYcno5Y0AV7beK M3KdvaQ32hX73B3q50GYjo1bIcrO3vCqFwzGEjEsUPpLbPffY669e1pnXf1hAmIc d2WWwyjL1jlx4JI8mpJvdzrHDTUmELFoWjROyM+N2/b88nC/TcX7LFmGmpgrakrj sDfLf+cQdr1t254sDFk8kT9QVVL1asseNbQ1XDxxAzZJ4nModO3dBGRlm3OyywNS Mg82YhuwTnqMZtd+caWOOPmo -----END CERTIFICATE-----Generated at Fri Apr 17 19:46:16 2026 by rpki-client