$ rpki-client -vvf rpki.apnic.net/member_repository/A91466E8/D8388D34F3FC11EF926CE630C4F9AE02/TCISGt-uP1dSgBZRUcP9MOOq_QE.mft File: TCISGt-uP1dSgBZRUcP9MOOq_QE.mft (raw, json) Hash identifier: yj3DjUltznQZdfy8lifSotpoM7Nx5+TM+YwYsr6LwEw= Subject key identifier: F4:F8:8F:6B:AB:E1:48:90:99:CD:9C:53:3C:73:19:F2:BA:F0:ED:11 Authority key identifier: 4C:22:12:1A:DF:AE:3F:57:52:80:16:51:51:C3:FD:30:E3:AA:FD:01 Certificate issuer: /CN=A91466E8/serialNumber=4C22121ADFAE3F575280165151C3FD30E3AAFD01 Certificate serial: D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TCISGt-uP1dSgBZRUcP9MOOq_QE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91466E8/D8388D34F3FC11EF926CE630C4F9AE02/TCISGt-uP1dSgBZRUcP9MOOq_QE.mft Manifest number: CD Signing time: Wed 25 Mar 2026 06:00:44 +0000 Manifest this update: Wed 25 Mar 2026 06:00:43 +0000 Manifest next update: Wed 01 Apr 2026 06:00:43 +0000 Files and hashes: 1: TCISGt-uP1dSgBZRUcP9MOOq_QE.crl (hash: LiZxnoeEjE9cJOyq7enb2yAr9gqauWRyd3V4iwhMJIg=) 2: 67CB5FC0629411F0B7FA070FC4F9AE02.roa (hash: OTM0h3x/rG6DzgQGl54EMsBYVfOYhG4EfKaVuusqLjw=) 3: 02640B0CF97911EF99F9BE80C4F9AE02.roa (hash: IDMG36g3IA5yaHGoEfdRe+YwDHRm0VJaleLLtHv9jQI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91466E8/D8388D34F3FC11EF926CE630C4F9AE02/TCISGt-uP1dSgBZRUcP9MOOq_QE.crl rsync://rpki.apnic.net/member_repository/A91466E8/D8388D34F3FC11EF926CE630C4F9AE02/TCISGt-uP1dSgBZRUcP9MOOq_QE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TCISGt-uP1dSgBZRUcP9MOOq_QE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 06:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 213 (0xd5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91466E8, serialNumber=4C22121ADFAE3F575280165151C3FD30E3AAFD01 Validity Not Before: Mar 25 06:00:43 2026 GMT Not After : Apr 1 06:00:43 2026 GMT Subject: CN=69c37a0b-08e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:2a:7e:b3:06:db:25:56:a8:2c:41:c6:d4:7b: d4:62:31:65:bc:04:0c:e4:dc:71:45:87:65:2d:83: 98:2d:d8:d4:6c:f1:f7:6f:ba:37:bb:5b:15:93:bd: 83:17:2d:e8:f2:06:67:b1:82:e4:b5:d4:0a:a6:74: a9:59:ac:04:20:4b:4c:3e:2c:46:00:7d:66:ab:a1: 9d:f6:b6:4e:f2:8f:97:e8:4b:22:b1:9c:73:74:41: 5c:fd:02:2f:24:90:fb:d4:db:db:e5:d6:2f:51:b4: 28:21:4b:27:96:8a:1d:67:1f:cf:e7:ff:28:62:51: 29:33:2d:1a:fd:cd:50:63:61:89:1e:65:6e:8d:30: 2d:17:aa:29:ae:93:14:e6:90:cc:46:73:ad:ca:75: e2:a5:20:3d:8a:87:63:c8:4f:89:a0:8f:49:e8:ce: f7:22:aa:33:c9:53:49:9e:4f:da:2e:47:43:b7:98: 47:9f:2d:0a:71:64:69:f4:21:26:d3:d4:15:1a:be: 1d:09:63:04:f4:64:67:1b:84:60:11:bb:38:1d:ab: 45:e7:e5:9b:10:e8:a4:34:67:a9:82:ea:c2:2b:a2: d0:43:0f:52:3c:38:b3:12:7c:2c:e0:3b:78:62:a0: 1b:bc:94:6b:50:ba:3f:56:e8:cf:19:fc:ef:0e:0f: 2c:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:F8:8F:6B:AB:E1:48:90:99:CD:9C:53:3C:73:19:F2:BA:F0:ED:11 X509v3 Authority Key Identifier: keyid:4C:22:12:1A:DF:AE:3F:57:52:80:16:51:51:C3:FD:30:E3:AA:FD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91466E8/D8388D34F3FC11EF926CE630C4F9AE02/TCISGt-uP1dSgBZRUcP9MOOq_QE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TCISGt-uP1dSgBZRUcP9MOOq_QE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91466E8/D8388D34F3FC11EF926CE630C4F9AE02/TCISGt-uP1dSgBZRUcP9MOOq_QE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:1b:61:9b:63:18:8b:2d:f7:e8:f4:4c:e1:6b:1b:81:a4:20: 64:df:24:bb:0b:b0:e2:70:bd:b5:7a:42:4b:da:02:d6:92:c8: 61:97:13:6b:04:4d:98:50:67:da:df:d7:91:e9:17:18:33:a6: b4:eb:14:33:42:cc:58:5d:fc:75:0e:ac:b0:23:df:25:51:ab: 5f:b3:c8:36:20:de:fd:e5:a6:e1:c1:28:3b:8d:5b:9c:c5:0d: 70:0c:47:6b:ac:3c:e3:f3:bc:fd:39:80:55:0e:3a:b5:d0:5e: fa:e5:31:a2:67:63:d1:8b:8b:7a:59:89:e8:36:66:06:ad:b0: 82:44:5b:12:b2:41:8f:ae:56:87:1e:5b:91:6a:06:c0:2b:0b: 01:05:2a:fd:06:2d:db:a7:22:ee:32:ea:f8:48:9d:d5:41:60: 19:62:e7:08:a0:98:e7:e1:0e:a9:31:0b:21:1f:f5:12:ef:b4: dc:81:57:45:f1:d9:b7:93:94:2f:12:9b:41:25:07:f2:0c:06: dd:24:fd:53:4d:14:98:43:be:de:dd:e1:2f:3d:d1:68:aa:9f: ec:36:05:0b:d7:ec:8a:36:e1:72:ba:55:7c:72:56:28:a3:86: 43:11:15:e3:88:5d:06:d8:77:c7:90:b1:cc:de:61:c9:bc:21: a6:46:0d:2d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICANUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDY2RTgxMTAvBgNVBAUTKDRDMjIxMjFBREZBRTNGNTc1MjgwMTY1MTUxQzNGRDMw RTNBQUZEMDEwHhcNMjYwMzI1MDYwMDQzWhcNMjYwNDAxMDYwMDQzWjAYMRYwFAYD VQQDEw02OWMzN2EwYi0wOGU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqCp+swbbJVaoLEHG1HvUYjFlvAQM5NxxRYdlLYOYLdjUbPH3b7o3u1sVk72D Fy3o8gZnsYLktdQKpnSpWawEIEtMPixGAH1mq6Gd9rZO8o+X6EsisZxzdEFc/QIv JJD71Nvb5dYvUbQoIUsnloodZx/P5/8oYlEpMy0a/c1QY2GJHmVujTAtF6oprpMU 5pDMRnOtynXipSA9iodjyE+JoI9J6M73IqozyVNJnk/aLkdDt5hHny0KcWRp9CEm 09QVGr4dCWME9GRnG4RgEbs4HatF5+WbEOikNGepgurCK6LQQw9SPDizEnws4Dt4 YqAbvJRrULo/VujPGfzvDg8sjQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPT4j2ur 4UiQmc2cUzxzGfK68O0RMB8GA1UdIwQYMBaAFEwiEhrfrj9XUoAWUVHD/TDjqv0B MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NjZFOC9EODM4OEQzNEYz RkMxMUVGOTI2Q0U2MzBDNEY5QUUwMi9UQ0lTR3QtdVAxZFNnQlpSVWNQOU1PT3Ff UUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RDSVNHdC11UDFkU2dCWlJVY1A5TU9PcV9RRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NjZFOC9EODM4OEQzNEYzRkMxMUVGOTI2Q0U2MzBDNEY5QUUwMi9UQ0lTR3QtdVAx ZFNnQlpSVWNQOU1PT3FfUUUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAJxthm2MYiy336PRM4WsbgaQgZN8kuwuw4nC9tXpCS9oC1pLIYZcTawRNmFBn 2t/XkekXGDOmtOsUM0LMWF38dQ6ssCPfJVGrX7PINiDe/eWm4cEoO41bnMUNcAxH a6w84/O8/TmAVQ46tdBe+uUxomdj0YuLelmJ6DZmBq2wgkRbErJBj65Whx5bkWoG wCsLAQUq/QYt26ci7jLq+Eid1UFgGWLnCKCY5+EOqTELIR/1Eu+03IFXRfHZt5OU LxKbQSUH8gwG3ST9U00UmEO+3t3hLz3RaKqf7DYFC9fsijbhcrpVfHJWKKOGQxEV 44hdBth3x5CxzN5hybwhpkYNLQ== -----END CERTIFICATE-----Generated at Thu Mar 26 06:53:10 2026 by rpki-client