$ rpki-client -vvf rpki.apnic.net/member_repository/A911BDA9/36A530F644BD11EFB73DB77BC4F9AE02/tOfjRK3ONthPHzq8zRSyTBUSu6o.mft File: tOfjRK3ONthPHzq8zRSyTBUSu6o.mft (raw, json) Hash identifier: ugd7RcxevS4rCYl4gB/13TBEFz5qOrCbvaFrecTu2RM= Subject key identifier: 39:0C:C3:71:05:7C:5B:8D:37:7C:11:E4:E9:5D:45:33:80:16:7B:14 Authority key identifier: B4:E7:E3:44:AD:CE:36:D8:4F:1F:3A:BC:CD:14:B2:4C:15:12:BB:AA Certificate issuer: /CN=A911BDA9/serialNumber=B4E7E344ADCE36D84F1F3ABCCD14B24C1512BBAA Certificate serial: 0146 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tOfjRK3ONthPHzq8zRSyTBUSu6o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911BDA9/36A530F644BD11EFB73DB77BC4F9AE02/tOfjRK3ONthPHzq8zRSyTBUSu6o.mft Manifest number: 0140 Signing time: Wed 25 Mar 2026 04:34:16 +0000 Manifest this update: Wed 25 Mar 2026 04:34:16 +0000 Manifest next update: Wed 01 Apr 2026 04:34:16 +0000 Files and hashes: 1: tOfjRK3ONthPHzq8zRSyTBUSu6o.crl (hash: ATiDbdhw8fiz2cRNLBzh/65Hhr3VQ16qLUXhYxfeoDM=) 2: 723720464ABE11EFA87EE85BC4F9AE02.roa (hash: /neZtyP8CB+i0xa/1UQQQx4y8u+LD3tIdTWWjj7eFPE=) 3: 6A5F29CED8A511F0B3F453F094D3641D.roa (hash: x8Gadu5mzZc6qu26lRbm5uUV5MWN8eTQq1KShULlErA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911BDA9/36A530F644BD11EFB73DB77BC4F9AE02/tOfjRK3ONthPHzq8zRSyTBUSu6o.crl rsync://rpki.apnic.net/member_repository/A911BDA9/36A530F644BD11EFB73DB77BC4F9AE02/tOfjRK3ONthPHzq8zRSyTBUSu6o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tOfjRK3ONthPHzq8zRSyTBUSu6o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:34:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 326 (0x146) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911BDA9, serialNumber=B4E7E344ADCE36D84F1F3ABCCD14B24C1512BBAA Validity Not Before: Mar 25 04:34:16 2026 GMT Not After : Apr 1 04:34:16 2026 GMT Subject: CN=69c365c8-4bea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:51:d5:dc:d3:6b:9d:0e:f2:2d:a3:7a:0a:67: 16:62:57:ab:b3:dc:53:ec:6a:ee:6c:89:bb:dd:9c: 8b:4f:18:d4:14:84:86:9c:f7:c1:b5:41:3b:b2:a1: a7:9c:27:88:7f:ef:2a:36:87:19:f0:49:38:18:0b: 93:67:1d:cf:6f:ea:a8:86:7d:80:ff:62:4e:bd:f2: 5d:30:c0:6a:2f:6b:f3:74:84:9b:ae:d6:00:db:6c: 87:c9:6d:35:51:3c:61:d5:e6:76:4b:28:84:e6:b6: 3d:13:5a:19:e5:67:2e:72:27:40:31:59:a4:85:7e: d5:fb:70:30:1a:ae:19:88:14:ed:d4:7b:ff:f2:37: 81:d9:09:90:eb:7a:4d:35:0e:de:5f:16:06:93:38: 7f:4b:8a:23:5f:4d:ca:bc:d0:21:b5:14:d6:e4:e2: b0:ee:2c:b8:07:56:95:40:f7:5c:b8:56:bc:40:77: b6:83:7b:82:00:2f:16:d6:c3:a2:72:2f:4f:80:17: a1:f4:72:7e:91:55:c1:fd:a0:ea:95:93:cb:31:59: ba:b6:d2:43:27:65:40:85:ab:93:70:61:02:38:16: a2:be:3e:58:c6:b4:5c:1e:05:9f:7d:a5:c9:02:6d: 53:91:c2:51:2f:3f:ed:a8:af:3a:4d:43:f5:36:b9: 47:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:0C:C3:71:05:7C:5B:8D:37:7C:11:E4:E9:5D:45:33:80:16:7B:14 X509v3 Authority Key Identifier: keyid:B4:E7:E3:44:AD:CE:36:D8:4F:1F:3A:BC:CD:14:B2:4C:15:12:BB:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911BDA9/36A530F644BD11EFB73DB77BC4F9AE02/tOfjRK3ONthPHzq8zRSyTBUSu6o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tOfjRK3ONthPHzq8zRSyTBUSu6o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BDA9/36A530F644BD11EFB73DB77BC4F9AE02/tOfjRK3ONthPHzq8zRSyTBUSu6o.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:ca:d9:20:3a:78:5d:e9:2c:86:b3:45:61:e4:e5:9b:21:db: aa:4e:48:af:46:ef:1d:59:c0:40:32:19:88:17:98:b3:1d:0d: af:a4:7a:06:3d:df:80:10:68:22:a7:e0:a6:4d:2f:24:1b:f2: 7a:07:79:b5:77:07:b0:3f:a8:fa:5a:8b:c0:dc:26:bc:71:73: 2e:24:c4:1b:77:d4:f1:95:1e:2e:74:19:5e:30:95:cd:e3:b7: 3d:90:7a:64:34:52:7d:39:77:9c:ea:83:af:11:5d:28:4c:e1: a7:6d:fb:3f:0f:8e:4f:83:fa:cd:4a:15:f0:cc:ba:f5:a5:d1: 50:41:27:b0:4a:7a:31:7d:7f:04:9b:57:b3:63:cc:da:d6:b3: be:f0:94:4d:a1:7a:8c:a9:a8:22:71:85:a8:f8:cc:32:a3:97: 39:db:10:ca:55:fa:79:1b:93:49:ce:77:5c:23:b0:4f:25:8b: 69:00:d8:d7:aa:29:29:33:9b:a1:0c:54:a8:a3:e5:a9:a2:74: 6e:15:8d:81:62:14:5b:f2:63:b4:c3:dd:b0:f6:58:14:78:40: 44:85:c5:26:8f:42:a0:40:6f:fd:e6:57:32:bf:d9:52:42:e5: 06:de:5d:b2:8b:ac:e3:95:83:48:a1:69:ef:99:c0:b6:d0:ae: 46:33:8f:af -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAUYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUJEQTkxMTAvBgNVBAUTKEI0RTdFMzQ0QURDRTM2RDg0RjFGM0FCQ0NEMTRCMjRD MTUxMkJCQUEwHhcNMjYwMzI1MDQzNDE2WhcNMjYwNDAxMDQzNDE2WjAYMRYwFAYD VQQDEw02OWMzNjVjOC00YmVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAplHV3NNrnQ7yLaN6CmcWYlers9xT7GrubIm73ZyLTxjUFISGnPfBtUE7sqGn nCeIf+8qNocZ8Ek4GAuTZx3Pb+qohn2A/2JOvfJdMMBqL2vzdISbrtYA22yHyW01 UTxh1eZ2SyiE5rY9E1oZ5WcucidAMVmkhX7V+3AwGq4ZiBTt1Hv/8jeB2QmQ63pN NQ7eXxYGkzh/S4ojX03KvNAhtRTW5OKw7iy4B1aVQPdcuFa8QHe2g3uCAC8W1sOi ci9PgBeh9HJ+kVXB/aDqlZPLMVm6ttJDJ2VAhauTcGECOBaivj5YxrRcHgWffaXJ Am1TkcJRLz/tqK86TUP1NrlHLQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDkMw3EF fFuNN3wR5OldRTOAFnsUMB8GA1UdIwQYMBaAFLTn40StzjbYTx86vM0UskwVEruq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQkRBOS8zNkE1MzBGNjQ0 QkQxMUVGQjczREI3N0JDNEY5QUUwMi90T2ZqUkszT050aFBIenE4elJTeVRCVVN1 Nm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RPZmpSSzNPTnRoUEh6cTh6UlN5VEJVU3U2by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QkRBOS8zNkE1MzBGNjQ0QkQxMUVGQjczREI3N0JDNEY5QUUwMi90T2ZqUkszT050 aFBIenE4elJTeVRCVVN1Nm8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEApsrZIDp4XekshrNFYeTlmyHbqk5Ir0bvHVnAQDIZiBeYsx0Nr6R6Bj3fgBBo Iqfgpk0vJBvyegd5tXcHsD+o+lqLwNwmvHFzLiTEG3fU8ZUeLnQZXjCVzeO3PZB6 ZDRSfTl3nOqDrxFdKEzhp237Pw+OT4P6zUoV8My69aXRUEEnsEp6MX1/BJtXs2PM 2tazvvCUTaF6jKmoInGFqPjMMqOXOdsQylX6eRuTSc53XCOwTyWLaQDY16opKTOb oQxUqKPlqaJ0bhWNgWIUW/JjtMPdsPZYFHhARIXFJo9CoEBv/eZXMr/ZUkLlBt5d sous45WDSKFp75nAttCuRjOPrw== -----END CERTIFICATE-----Generated at Thu Mar 26 18:49:56 2026 by rpki-client