$ rpki-client -vvf rpki.apnic.net/member_repository/A912465F/702C34C6064711F1B4BAFBC52D3D8C67/TonyDOHR4q7I1gVlBTEwvWB9W_0.mft File: TonyDOHR4q7I1gVlBTEwvWB9W_0.mft (raw, json) Hash identifier: I5/6qOFsNLpvo0iF9M1NQW5Koxlj4aGkQ+881+AEHF8= Subject key identifier: A5:AB:52:EB:D3:C0:BC:29:15:B3:81:BF:5F:46:3E:C9:6E:D0:52:C5 Authority key identifier: 4E:89:F2:0C:E1:D1:E2:AE:C8:D6:05:65:05:31:30:BD:60:7D:5B:FD Certificate issuer: /CN=A912465F/serialNumber=4E89F20CE1D1E2AEC8D60565053130BD607D5BFD Certificate serial: 17 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/TonyDOHR4q7I1gVlBTEwvWB9W_0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912465F/702C34C6064711F1B4BAFBC52D3D8C67/TonyDOHR4q7I1gVlBTEwvWB9W_0.mft Manifest number: 11 Signing time: Sun 01 Mar 2026 10:37:27 +0000 Manifest this update: Sun 01 Mar 2026 10:37:27 +0000 Manifest next update: Sun 08 Mar 2026 10:37:27 +0000 Files and hashes: 1: TonyDOHR4q7I1gVlBTEwvWB9W_0.crl (hash: SW9Ec0KPrdxYhXuqyN/wl3pyrwWoYe9g/Co37a9v2aE=) 2: A885DC48100411F1A3563A300F3D8C67.roa (hash: tF3ywN7eYQwZg7AMUnYYT38GsrrKw6HcmRM3Hqi+nbg=) 3: 78CCC796100411F190DA552F0F3D8C67.roa (hash: 9ijSIQLwt2Gy2XEyUcUffnJwapZcaQTrQntZZWP4Uss=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912465F/702C34C6064711F1B4BAFBC52D3D8C67/TonyDOHR4q7I1gVlBTEwvWB9W_0.crl rsync://rpki.apnic.net/member_repository/A912465F/702C34C6064711F1B4BAFBC52D3D8C67/TonyDOHR4q7I1gVlBTEwvWB9W_0.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/TonyDOHR4q7I1gVlBTEwvWB9W_0.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 10:37:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23 (0x17) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912465F, serialNumber=4E89F20CE1D1E2AEC8D60565053130BD607D5BFD Validity Not Before: Mar 1 10:37:27 2026 GMT Not After : Mar 8 10:37:27 2026 GMT Subject: CN=69a416e7-7d5f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:8c:d6:15:48:74:a1:2f:d6:e7:cd:fc:dd:ea: 29:f7:e0:30:b3:46:5a:d7:b0:1b:6c:83:f5:56:aa: 63:08:fe:f2:a2:3b:ba:9e:0f:6b:39:80:ae:a6:12: 7e:7b:48:20:ac:59:8f:9c:84:8b:a9:de:4e:b1:51: 25:86:94:41:11:30:e2:51:3f:d6:57:c6:2c:6e:1e: fa:23:b9:1e:0d:6e:d8:14:fc:26:84:25:65:35:c4: 88:ae:75:0a:a0:b6:73:97:b0:19:52:aa:1b:b4:c6: 3a:74:04:89:fe:8f:2a:7c:a2:4c:45:d8:6f:67:d3: 41:1c:61:3d:d7:bc:03:c6:d1:e5:6b:6a:e2:b4:ff: e5:ba:cc:a2:60:20:96:87:5d:bd:0f:a8:b9:97:74: 3d:14:cc:5e:5b:5e:01:17:ce:c3:a9:6b:c2:ef:68: 24:5e:f4:da:00:8f:70:f7:16:c3:e4:ae:a1:49:2f: 52:b2:7f:05:95:b7:c7:78:75:31:ef:71:6e:7f:7a: 3e:6c:97:40:37:d4:3a:c3:27:52:59:cc:5a:e4:a5: b4:b9:9c:86:2e:71:25:d1:4f:65:40:46:7d:3e:ec: 5a:d8:a8:61:a3:da:ae:b4:94:2c:77:d5:60:54:31: 9d:a5:5f:e7:0e:d5:ea:f5:aa:95:b0:42:64:e3:3e: 51:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:AB:52:EB:D3:C0:BC:29:15:B3:81:BF:5F:46:3E:C9:6E:D0:52:C5 X509v3 Authority Key Identifier: keyid:4E:89:F2:0C:E1:D1:E2:AE:C8:D6:05:65:05:31:30:BD:60:7D:5B:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912465F/702C34C6064711F1B4BAFBC52D3D8C67/TonyDOHR4q7I1gVlBTEwvWB9W_0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/TonyDOHR4q7I1gVlBTEwvWB9W_0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912465F/702C34C6064711F1B4BAFBC52D3D8C67/TonyDOHR4q7I1gVlBTEwvWB9W_0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:48:08:00:98:ae:f1:c9:e8:67:c3:65:12:4f:cc:b6:dd:37: 61:9f:37:e6:f0:77:37:1a:d9:4d:45:84:d9:ab:e2:61:f9:fa: 51:a4:b1:93:12:23:2c:ff:a2:4b:56:7c:5f:c3:da:b6:18:bc: a2:39:c8:8f:35:21:e4:fd:a2:1d:33:18:6c:36:cb:1e:81:a8: f0:20:f1:2e:8f:30:4c:7b:81:04:8c:c6:5c:f1:61:59:51:61: 9c:e6:9d:fb:ae:db:97:fe:09:ac:cf:92:bf:10:22:03:45:11: 90:c4:21:f7:dc:83:c9:68:76:0b:c8:bb:78:6c:16:a5:3e:54: 6a:e7:a9:5b:ab:a0:86:f5:84:44:e0:c4:3b:ba:e9:69:9e:eb: b1:be:26:06:d5:e3:d7:14:5c:c8:85:30:f5:c5:71:3b:2d:83: 36:2d:04:2f:8f:1e:e2:d2:65:d4:bb:42:25:99:48:0f:7a:40: 6f:44:bd:26:c7:72:81:61:d6:43:24:d3:b2:63:77:59:bb:f0: 96:f5:27:d9:db:76:ae:56:d5:3b:79:6c:07:2e:80:94:9f:32: 8a:78:92:69:ab:0c:bb:a4:08:2b:cd:02:42:78:e9:b2:a2:ae: 3e:78:4a:49:7a:86:c9:11:a1:4f:76:df:bd:7b:d4:00:e3:bf: 61:cf:f7:0c -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBFzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy NDY1RjExMC8GA1UEBRMoNEU4OUYyMENFMUQxRTJBRUM4RDYwNTY1MDUzMTMwQkQ2 MDdENUJGRDAeFw0yNjAzMDExMDM3MjdaFw0yNjAzMDgxMDM3MjdaMBgxFjAUBgNV BAMTDTY5YTQxNmU3LTdkNWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC0jNYVSHShL9bnzfzd6in34DCzRlrXsBtsg/VWqmMI/vKiO7qeD2s5gK6mEn57 SCCsWY+chIup3k6xUSWGlEERMOJRP9ZXxixuHvojuR4NbtgU/CaEJWU1xIiudQqg tnOXsBlSqhu0xjp0BIn+jyp8okxF2G9n00EcYT3XvAPG0eVrauK0/+W6zKJgIJaH Xb0PqLmXdD0UzF5bXgEXzsOpa8LvaCRe9NoAj3D3FsPkrqFJL1KyfwWVt8d4dTHv cW5/ej5sl0A31DrDJ1JZzFrkpbS5nIYucSXRT2VARn0+7FrYqGGj2q60lCx31WBU MZ2lX+cO1er1qpWwQmTjPlH3AgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUpatS69PA vCkVs4G/X0Y+yW7QUsUwHwYDVR0jBBgwFoAUTonyDOHR4q7I1gVlBTEwvWB9W/0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI0NjVGLzcwMkMzNEM2MDY0 NzExRjFCNEJBRkJDNTJEM0Q4QzY3L1RvbnlET0hSNHE3STFnVmxCVEV3dldCOVdf MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIvVG9ueURPSFI0cTdJMWdWbEJURXd2V0I5V18wLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI0 NjVGLzcwMkMzNEM2MDY0NzExRjFCNEJBRkJDNTJEM0Q4QzY3L1RvbnlET0hSNHE3 STFnVmxCVEV3dldCOVdfMC5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQAWSAgAmK7xyehnw2UST8y23Tdhnzfm8Hc3GtlNRYTZq+Jh+fpRpLGTEiMs/6JL Vnxfw9q2GLyiOciPNSHk/aIdMxhsNssegajwIPEujzBMe4EEjMZc8WFZUWGc5p37 rtuX/gmsz5K/ECIDRRGQxCH33IPJaHYLyLt4bBalPlRq56lbq6CG9YRE4MQ7uulp nuuxviYG1ePXFFzIhTD1xXE7LYM2LQQvjx7i0mXUu0IlmUgPekBvRL0mx3KBYdZD JNOyY3dZu/CW9SfZ23auVtU7eWwHLoCUnzKKeJJpqwy7pAgrzQJCeOmyoq4+eEpJ eobJEaFPdt+9e9QA479hz/cM -----END CERTIFICATE-----Generated at Mon Mar 2 23:05:46 2026 by rpki-client