$ rpki-client -vvf rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.mft File: tg1afDY_D02TL-MXuQzmz4DSg8k.mft (raw, json) Hash identifier: O0pku4gg+5UOAHvBfAEniB5ExmGQqzEtsh1CyEhSdbw= Subject key identifier: 8D:36:24:01:20:BD:EB:CA:6F:94:D8:C3:8C:B4:7A:2E:19:72:DA:66 Authority key identifier: B6:0D:5A:7C:36:3F:0F:4D:93:2F:E3:17:B9:0C:E6:CF:80:D2:83:C9 Certificate issuer: /CN=A9118309/serialNumber=B60D5A7C363F0F4D932FE317B90CE6CF80D283C9 Certificate serial: 0ACB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tg1afDY_D02TL-MXuQzmz4DSg8k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.mft Manifest number: 0AC0 Signing time: Tue 24 Mar 2026 19:16:19 +0000 Manifest this update: Tue 24 Mar 2026 19:16:18 +0000 Manifest next update: Tue 31 Mar 2026 19:16:18 +0000 Files and hashes: 1: tg1afDY_D02TL-MXuQzmz4DSg8k.crl (hash: bX/PBSBZfJ937ukaF4WlpXburLwGoGLgFzF46wR3Q04=) 2: 59AA22D06FFD11EA9160902DC4F9AE02.roa (hash: 4ySgU+Qbw483DuuzbhZ9kLRgi9y2rOI0pD1mNDl5sN4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.crl rsync://rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tg1afDY_D02TL-MXuQzmz4DSg8k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 19:16:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2763 (0xacb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118309, serialNumber=B60D5A7C363F0F4D932FE317B90CE6CF80D283C9 Validity Not Before: Mar 24 19:16:18 2026 GMT Not After : Mar 31 19:16:18 2026 GMT Subject: CN=69c2e302-be01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:db:b3:ba:9a:4d:4f:e5:0d:52:d1:d7:a7:31: 09:c9:4c:4b:41:ed:10:38:db:39:cf:1e:b4:04:50: 09:82:d1:82:8a:01:0c:2f:a0:ef:6a:bb:e0:88:9a: 8a:86:d9:5a:85:8c:61:5d:67:2f:9b:9d:76:79:05: be:93:a3:68:47:7f:79:98:dd:79:c7:af:46:f7:93: 27:02:8a:b5:01:3e:ad:ac:b4:0c:c5:53:c1:5e:f3: c4:55:30:61:32:d5:c5:cc:be:16:a6:86:fb:5c:00: 64:6b:68:5c:b2:8c:98:0f:ad:cb:4d:d3:9e:2e:86: 01:1a:54:2e:fc:19:c3:dd:2d:a1:2a:f3:59:3a:fe: 5a:88:f6:41:e1:1d:41:f4:f5:26:7a:71:ae:1e:07: be:4c:4c:97:00:83:16:dd:03:4f:46:4a:d5:23:ab: e4:86:94:ce:a0:87:37:a7:57:a7:87:d5:f3:35:2c: c1:f1:fc:4e:12:53:6e:d2:2f:45:17:3f:9a:f9:7d: 61:f9:03:68:71:4c:fd:b6:c0:00:f4:14:88:63:4e: 3d:b7:65:c6:d0:82:fb:62:d8:31:9a:4d:f7:6b:10: e5:c0:81:d2:b6:f3:e8:15:44:0f:c3:f2:27:61:21: f7:b2:d9:dd:ea:60:89:0b:e1:e4:82:36:cc:bf:76: 3c:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:36:24:01:20:BD:EB:CA:6F:94:D8:C3:8C:B4:7A:2E:19:72:DA:66 X509v3 Authority Key Identifier: keyid:B6:0D:5A:7C:36:3F:0F:4D:93:2F:E3:17:B9:0C:E6:CF:80:D2:83:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tg1afDY_D02TL-MXuQzmz4DSg8k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:13:de:50:c3:74:3b:39:34:02:ab:21:50:28:42:1d:49:5c: 32:8b:3b:28:79:5b:50:eb:3b:67:1d:02:79:c9:95:42:1e:4c: 87:f0:54:e6:9c:ce:ed:c6:e7:e0:c4:5f:f1:ff:34:af:c8:2b: 22:83:9d:94:58:7b:e3:c4:cc:37:78:4d:55:5f:b9:b3:73:16: 31:48:ad:8b:5c:09:85:fa:1a:89:44:dc:22:35:b3:2a:ea:f9: 8e:35:f2:4b:17:ac:46:7f:99:16:a6:61:d4:9b:c7:b3:04:3f: f7:e8:0c:57:36:d8:2d:56:b1:c9:df:20:a7:46:85:e0:c7:e0: a9:e9:74:10:9a:79:33:9a:a9:51:d7:fa:46:c5:72:43:cc:08: db:23:33:01:f3:8d:e3:0f:5a:0e:04:f5:58:8a:ab:0f:0a:03: e4:48:f2:d3:62:e6:fb:41:df:32:61:cf:9d:d2:62:dd:20:11: f4:af:c4:f7:95:f9:f5:be:a5:d4:b4:71:21:09:f0:e3:7c:64: 39:d5:76:19:b6:92:cd:5e:99:14:85:4b:74:93:c9:48:f2:16: 19:73:81:c5:9b:0d:a7:6b:9f:b0:1e:25:b4:55:35:ae:e1:81: b8:47:b0:a9:46:c7:53:ba:77:1b:5f:02:09:67:13:c9:7e:51: a0:40:ac:8a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCsswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTgzMDkxMTAvBgNVBAUTKEI2MEQ1QTdDMzYzRjBGNEQ5MzJGRTMxN0I5MENFNkNG ODBEMjgzQzkwHhcNMjYwMzI0MTkxNjE4WhcNMjYwMzMxMTkxNjE4WjAYMRYwFAYD VQQDEw02OWMyZTMwMi1iZTAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0tuzuppNT+UNUtHXpzEJyUxLQe0QONs5zx60BFAJgtGCigEML6DvarvgiJqK htlahYxhXWcvm512eQW+k6NoR395mN15x69G95MnAoq1AT6trLQMxVPBXvPEVTBh MtXFzL4Wpob7XABka2hcsoyYD63LTdOeLoYBGlQu/BnD3S2hKvNZOv5aiPZB4R1B 9PUmenGuHge+TEyXAIMW3QNPRkrVI6vkhpTOoIc3p1enh9XzNSzB8fxOElNu0i9F Fz+a+X1h+QNocUz9tsAA9BSIY049t2XG0IL7Ytgxmk33axDlwIHStvPoFUQPw/In YSH3stnd6mCJC+HkgjbMv3Y8iwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFI02JAEg vevKb5TYw4y0ei4ZctpmMB8GA1UdIwQYMBaAFLYNWnw2Pw9Nky/jF7kM5s+A0oPJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODMwOS8xQTQ4REM4NjZG RkMxMUVBODhGM0QyMkJDNEY5QUUwMi90ZzFhZkRZX0QwMlRMLU1YdVF6bXo0RFNn OGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RnMWFmRFlfRDAyVEwtTVh1UXptejREU2c4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx ODMwOS8xQTQ4REM4NjZGRkMxMUVBODhGM0QyMkJDNEY5QUUwMi90ZzFhZkRZX0Qw MlRMLU1YdVF6bXo0RFNnOGsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAHhPeUMN0Ozk0AqshUChCHUlcMos7KHlbUOs7Zx0CecmVQh5Mh/BU5pzO7cbn 4MRf8f80r8grIoOdlFh748TMN3hNVV+5s3MWMUiti1wJhfoaiUTcIjWzKur5jjXy SxesRn+ZFqZh1JvHswQ/9+gMVzbYLVaxyd8gp0aF4Mfgqel0EJp5M5qpUdf6RsVy Q8wI2yMzAfON4w9aDgT1WIqrDwoD5Ejy02Lm+0HfMmHPndJi3SAR9K/E95X59b6l 1LRxIQnw43xkOdV2GbaSzV6ZFIVLdJPJSPIWGXOBxZsNp2ufsB4ltFU1ruGBuEew qUbHU7p3G18CCWcTyX5RoECsig== -----END CERTIFICATE-----Generated at Thu Mar 26 18:29:41 2026 by rpki-client