$ rpki-client -vvf rpki.apnic.net/member_repository/A91342C5/16637C2EA4E911ECAF3FB152C4F9AE02/TSeJUeK9itKFuUCo6p5X43lxHms.mft File: TSeJUeK9itKFuUCo6p5X43lxHms.mft (raw, json) Hash identifier: SAb6mg++iHcKuV2geeB+DVlzNl2HhOdTzyesTvAVtCI= Subject key identifier: A3:5E:C3:91:DB:B9:3A:94:FA:74:E5:92:88:B9:3F:53:2E:CC:BA:0A Authority key identifier: 4D:27:89:51:E2:BD:8A:D2:85:B9:40:A8:EA:9E:57:E3:79:71:1E:6B Certificate issuer: /CN=A91342C5/serialNumber=4D278951E2BD8AD285B940A8EA9E57E379711E6B Certificate serial: 042B Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/TSeJUeK9itKFuUCo6p5X43lxHms.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91342C5/16637C2EA4E911ECAF3FB152C4F9AE02/TSeJUeK9itKFuUCo6p5X43lxHms.mft Manifest number: 0423 Signing time: Wed 25 Mar 2026 00:02:57 +0000 Manifest this update: Wed 25 Mar 2026 00:02:57 +0000 Manifest next update: Wed 01 Apr 2026 00:02:57 +0000 Files and hashes: 1: TSeJUeK9itKFuUCo6p5X43lxHms.crl (hash: hhUn2U2yCkuqptXmz0Blj0uBQNWxD+cK9POEphKQnT8=) 2: E8E194B8A5CC11EC85A86A1FC4F9AE02.roa (hash: fOVVIFjJvtGXdWvi8prpmgPz6YpqGlf3motP4AlsEzU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91342C5/16637C2EA4E911ECAF3FB152C4F9AE02/TSeJUeK9itKFuUCo6p5X43lxHms.crl rsync://rpki.apnic.net/member_repository/A91342C5/16637C2EA4E911ECAF3FB152C4F9AE02/TSeJUeK9itKFuUCo6p5X43lxHms.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/TSeJUeK9itKFuUCo6p5X43lxHms.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 00:02:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1067 (0x42b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91342C5, serialNumber=4D278951E2BD8AD285B940A8EA9E57E379711E6B Validity Not Before: Mar 25 00:02:57 2026 GMT Not After : Apr 1 00:02:57 2026 GMT Subject: CN=69c32631-bc93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:32:14:d8:1f:ba:e8:2e:ae:34:73:d2:85:9a: 8a:9b:03:ac:be:19:d2:6b:3b:8e:e3:8c:7e:82:23: 37:f9:d0:52:0e:ee:7c:b7:91:51:af:05:cf:ea:a2: 54:dd:b0:46:2c:d1:55:05:3f:7a:e6:cf:98:e1:5f: 3d:48:3e:a1:86:2c:6a:5f:cc:2f:05:0c:d4:08:55: 69:63:d9:d7:2b:3a:23:60:ca:f7:08:08:78:fd:59: aa:af:bc:fe:e4:d7:1f:f0:1f:6d:46:c9:40:38:ef: 38:61:74:82:a5:40:d3:47:8e:43:a4:b6:d5:7f:f9: b2:41:90:13:07:d6:2f:f8:ee:c0:fc:9a:b9:c6:12: 92:14:99:a1:35:bb:a9:45:4a:81:98:3a:71:eb:d8: 29:25:fd:ee:c1:24:d2:6c:e3:26:5c:12:4c:40:39: a4:8d:b5:aa:a7:5c:6e:a8:39:a8:5e:fa:98:ef:f6: 9d:ca:a5:be:a1:c0:d1:bc:b7:23:3e:e3:9c:de:a6: 15:51:66:4e:4a:24:61:a7:4a:9c:41:9f:cb:16:35: b2:ff:fe:06:0d:60:41:2a:4b:41:62:0f:8b:1a:f9: 40:16:13:d7:6a:26:f1:2d:91:cb:54:0c:72:66:03: 14:00:7f:4d:78:0f:80:8d:5f:21:df:1d:07:c6:57: da:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:5E:C3:91:DB:B9:3A:94:FA:74:E5:92:88:B9:3F:53:2E:CC:BA:0A X509v3 Authority Key Identifier: keyid:4D:27:89:51:E2:BD:8A:D2:85:B9:40:A8:EA:9E:57:E3:79:71:1E:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91342C5/16637C2EA4E911ECAF3FB152C4F9AE02/TSeJUeK9itKFuUCo6p5X43lxHms.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/TSeJUeK9itKFuUCo6p5X43lxHms.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91342C5/16637C2EA4E911ECAF3FB152C4F9AE02/TSeJUeK9itKFuUCo6p5X43lxHms.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:9f:f3:a2:ed:a4:53:3b:d9:61:31:0b:c1:e9:d3:66:f1:c1: cd:0a:68:d7:f0:0a:68:b2:37:bf:66:6d:36:48:f7:83:e4:70: bb:2b:12:b2:da:34:fe:32:33:77:a3:15:35:8c:c0:b5:94:32: b1:a1:79:d4:ce:1b:cc:7c:b1:a1:94:41:33:f1:89:9b:e1:83: da:1f:3d:e2:21:97:28:ed:50:30:1b:bc:40:1b:59:32:d4:f8: 63:ae:7a:9b:68:97:4c:07:9a:3a:07:72:0b:f9:d4:db:a4:3c: b9:e5:08:5a:9f:5a:0a:86:ff:28:bd:8e:a3:10:3d:6c:1b:35: 3e:c2:aa:68:e9:3b:49:4a:00:70:0c:ae:e9:6c:81:a4:d5:fd: b5:4d:e4:9d:40:49:71:47:5b:81:92:bb:e9:e0:f5:8a:1d:e5: f0:0f:9a:9a:88:92:9c:24:86:5d:9b:3e:cd:45:ac:a6:5e:1e: 7a:31:3c:8e:96:f8:83:bb:86:9f:58:e4:ea:58:29:6a:07:80: 65:81:18:4c:90:97:9c:17:6e:29:7f:6c:08:0a:72:5d:eb:2e: fd:a0:46:e7:a6:6f:7c:b9:c5:ef:ce:4c:1d:16:8b:87:88:25: 75:ad:41:90:b2:1b:e8:4c:42:b9:51:1d:6b:f2:e4:e7:7f:3e: 45:dd:e3:85 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBCswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQyQzUxMTAvBgNVBAUTKDREMjc4OTUxRTJCRDhBRDI4NUI5NDBBOEVBOUU1N0Uz Nzk3MTFFNkIwHhcNMjYwMzI1MDAwMjU3WhcNMjYwNDAxMDAwMjU3WjAYMRYwFAYD VQQDEw02OWMzMjYzMS1iYzkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxDIU2B+66C6uNHPShZqKmwOsvhnSazuO44x+giM3+dBSDu58t5FRrwXP6qJU 3bBGLNFVBT965s+Y4V89SD6hhixqX8wvBQzUCFVpY9nXKzojYMr3CAh4/Vmqr7z+ 5Ncf8B9tRslAOO84YXSCpUDTR45DpLbVf/myQZATB9Yv+O7A/Jq5xhKSFJmhNbup RUqBmDpx69gpJf3uwSTSbOMmXBJMQDmkjbWqp1xuqDmoXvqY7/adyqW+ocDRvLcj PuOc3qYVUWZOSiRhp0qcQZ/LFjWy//4GDWBBKktBYg+LGvlAFhPXaibxLZHLVAxy ZgMUAH9NeA+AjV8h3x0Hxlfa/wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKNew5Hb uTqU+nTlkoi5P1MuzLoKMB8GA1UdIwQYMBaAFE0niVHivYrShblAqOqeV+N5cR5r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDJDNS8xNjYzN0MyRUE0 RTkxMUVDQUYzRkIxNTJDNEY5QUUwMi9UU2VKVWVLOWl0S0Z1VUNvNnA1WDQzbHhI bXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL1RTZUpVZUs5aXRLRnVVQ282cDVYNDNseEhtcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NDJDNS8xNjYzN0MyRUE0RTkxMUVDQUYzRkIxNTJDNEY5QUUwMi9UU2VKVWVLOWl0 S0Z1VUNvNnA1WDQzbHhIbXMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAS5/zou2kUzvZYTELwenTZvHBzQpo1/AKaLI3v2ZtNkj3g+RwuysSsto0/jIz d6MVNYzAtZQysaF51M4bzHyxoZRBM/GJm+GD2h894iGXKO1QMBu8QBtZMtT4Y656 m2iXTAeaOgdyC/nU26Q8ueUIWp9aCob/KL2OoxA9bBs1PsKqaOk7SUoAcAyu6WyB pNX9tU3knUBJcUdbgZK76eD1ih3l8A+amoiSnCSGXZs+zUWspl4eejE8jpb4g7uG n1jk6lgpageAZYEYTJCXnBduKX9sCApyXesu/aBG56ZvfLnF785MHRaLh4glda1B kLIb6ExCuVEda/Lk538+Rd3jhQ== -----END CERTIFICATE-----Generated at Thu Mar 26 15:46:49 2026 by rpki-client