$ rpki-client -vvf rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.mft File: dNRNlor0Y--xfAgNX60BDErAl6o.mft (raw, json) Hash identifier: jjtzw+Byq0YeyW+52EE6Rw0128TP/CDTw8oGRvYyuvE= Subject key identifier: 48:D9:72:2E:7A:FD:DD:34:90:CE:C8:EE:12:4C:86:C9:56:38:F2:A8 Authority key identifier: 74:D4:4D:96:8A:F4:63:EF:B1:7C:08:0D:5F:AD:01:0C:4A:C0:97:AA Certificate issuer: /CN=A917E0A8/serialNumber=74D44D968AF463EFB17C080D5FAD010C4AC097AA Certificate serial: 06E0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dNRNlor0Y--xfAgNX60BDErAl6o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.mft Manifest number: 06D1 Signing time: Mon 02 Mar 2026 00:20:12 +0000 Manifest this update: Mon 02 Mar 2026 00:20:11 +0000 Manifest next update: Mon 09 Mar 2026 00:20:11 +0000 Files and hashes: 1: dNRNlor0Y--xfAgNX60BDErAl6o.crl (hash: 58JYU+s33Dz7VYXcIuagTwbQzwRCfbNeBhadmAMqbr8=) 2: F9C23E2A3ACB11EC9FEBB367C4F9AE02.roa (hash: 2RPaofcBmVRp+rnkKNh5LcywLDf5c7LR9zPp5ibVZFk=) 3: 11C0D5DA9B4011EB9C1BFC4EC4F9AE02.roa (hash: UhjZCQXMTH4EcImSo4POBU6QddKCD4qTUt+kDu3goss=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.crl rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dNRNlor0Y--xfAgNX60BDErAl6o.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:20:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1760 (0x6e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E0A8, serialNumber=74D44D968AF463EFB17C080D5FAD010C4AC097AA Validity Not Before: Mar 2 00:20:11 2026 GMT Not After : Mar 9 00:20:11 2026 GMT Subject: CN=69a4d7bc-81f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:d7:3c:1f:8d:b9:46:ba:33:3b:9b:9b:68:77: be:1e:0c:22:00:4d:49:c4:e5:5f:3a:8f:8d:41:6d: 7c:b9:51:27:80:6e:e7:18:63:ef:0b:86:a7:44:3e: 16:b9:db:d9:59:23:f4:7e:fa:2a:61:76:29:b0:2d: 73:fa:75:00:7c:5b:34:98:65:b2:01:13:09:4f:01: 44:4e:e6:b5:08:05:25:d1:d4:c1:40:cd:60:17:bb: 3f:20:2c:e0:be:81:a9:47:38:27:2e:68:24:1f:7a: f6:2a:1a:3c:4b:31:0e:a6:92:fa:ca:5a:be:36:b7: 0c:20:1b:d3:2c:7e:c8:49:0b:95:c0:71:d5:67:ca: 54:65:18:c5:8f:93:23:7b:89:49:0c:7f:f8:d0:81: 4b:18:64:24:dc:88:75:41:73:9a:ae:3c:db:ea:ff: ad:d1:ba:87:4c:03:48:e4:d8:fe:c6:4d:21:53:18: 19:f0:a7:3b:77:55:3f:82:e6:f5:3b:8d:19:6d:ad: dc:66:b4:09:6b:51:c7:49:28:c0:dd:82:27:af:99: 39:1d:7b:4e:be:0a:98:13:ad:5e:05:e1:57:be:0f: 60:da:59:cf:c9:94:68:81:1b:32:b2:a6:8a:66:47: aa:d9:9f:68:83:ed:e6:b4:74:27:fe:e0:ba:8c:6c: 92:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:D9:72:2E:7A:FD:DD:34:90:CE:C8:EE:12:4C:86:C9:56:38:F2:A8 X509v3 Authority Key Identifier: keyid:74:D4:4D:96:8A:F4:63:EF:B1:7C:08:0D:5F:AD:01:0C:4A:C0:97:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dNRNlor0Y--xfAgNX60BDErAl6o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:b9:05:d2:34:19:8e:89:c5:39:23:de:8f:fb:eb:e1:e1:03: 66:d7:af:85:bb:3f:47:aa:08:09:f1:5c:91:a0:e1:fd:c6:5a: 66:f2:f6:f7:5b:c5:b9:d3:bb:f4:d8:1b:2a:16:9a:32:09:c2: ff:e1:ae:27:1c:c8:cf:07:f7:94:c5:7f:e7:fd:65:eb:32:15: a6:b5:59:d1:73:d6:a3:fd:aa:2a:91:b6:4d:21:c0:fd:fa:0f: 58:96:ad:1e:1a:4a:dc:72:f2:81:b4:ac:15:46:3c:cb:bc:26: e6:fd:b0:ef:d2:9e:f7:ba:80:66:b8:06:6d:28:b1:79:42:1d: 4e:ef:bd:9f:11:6c:f2:c2:22:9f:fb:66:6c:c7:99:90:fa:fa: d3:25:bd:d1:04:f6:58:33:2b:48:be:5a:e5:9c:b3:45:60:f4: 96:9e:0e:ed:18:56:3f:fd:f5:4f:18:01:12:6d:ed:0d:98:ff: d6:aa:ba:d2:3e:e0:03:c4:e0:7f:50:b0:64:78:42:bf:73:39: d6:98:18:42:50:5e:15:55:08:af:79:d3:fc:9c:da:0c:c1:1a: c3:27:df:af:49:8d:fb:17:56:f1:0e:86:57:db:06:58:d4:50: 94:dc:50:fa:4c:70:45:ce:ef:fa:6b:27:a4:18:8d:76:97:b2: 17:c5:8f:8c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBuAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UwQTgxMTAvBgNVBAUTKDc0RDQ0RDk2OEFGNDYzRUZCMTdDMDgwRDVGQUQwMTBD NEFDMDk3QUEwHhcNMjYwMzAyMDAyMDExWhcNMjYwMzA5MDAyMDExWjAYMRYwFAYD VQQDEw02OWE0ZDdiYy04MWYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAndc8H425RrozO5ubaHe+HgwiAE1JxOVfOo+NQW18uVEngG7nGGPvC4anRD4W udvZWSP0fvoqYXYpsC1z+nUAfFs0mGWyARMJTwFETua1CAUl0dTBQM1gF7s/ICzg voGpRzgnLmgkH3r2Kho8SzEOppL6ylq+NrcMIBvTLH7ISQuVwHHVZ8pUZRjFj5Mj e4lJDH/40IFLGGQk3Ih1QXOarjzb6v+t0bqHTANI5Nj+xk0hUxgZ8Kc7d1U/gub1 O40Zba3cZrQJa1HHSSjA3YInr5k5HXtOvgqYE61eBeFXvg9g2lnPyZRogRsysqaK Zkeq2Z9og+3mtHQn/uC6jGyS8QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEjZci56 /d00kM7I7hJMhslWOPKoMB8GA1UdIwQYMBaAFHTUTZaK9GPvsXwIDV+tAQxKwJeq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTBBOC82RUZDMEJFRTk4 NEMxMUVCOEE0MUZBMjBDNEY5QUUwMi9kTlJObG9yMFktLXhmQWdOWDYwQkRFckFs Nm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2ROUk5sb3IwWS0teGZBZ05YNjBCREVyQWw2by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTBBOC82RUZDMEJFRTk4NEMxMUVCOEE0MUZBMjBDNEY5QUUwMi9kTlJObG9yMFkt LXhmQWdOWDYwQkRFckFsNm8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAL7kF0jQZjonFOSPej/vr4eEDZtevhbs/R6oICfFckaDh/cZaZvL291vFudO7 9NgbKhaaMgnC/+GuJxzIzwf3lMV/5/1l6zIVprVZ0XPWo/2qKpG2TSHA/foPWJat HhpK3HLygbSsFUY8y7wm5v2w79Ke97qAZrgGbSixeUIdTu+9nxFs8sIin/tmbMeZ kPr60yW90QT2WDMrSL5a5ZyzRWD0lp4O7RhWP/31TxgBEm3tDZj/1qq60j7gA8Tg f1CwZHhCv3M51pgYQlBeFVUIr3nT/JzaDMEawyffr0mN+xdW8Q6GV9sGWNRQlNxQ +kxwRc7v+msnpBiNdpeyF8WPjA== -----END CERTIFICATE-----Generated at Mon Mar 2 10:44:08 2026 by rpki-client