$ rpki-client -vvf rpki.apnic.net/member_repository/A915203C/46C88C82747711EA83654F4DC4F9AE02/TkRgz2OyS3w1ue2uyX5jpyxL3iM.mft File: TkRgz2OyS3w1ue2uyX5jpyxL3iM.mft (raw, json) Hash identifier: uCcThq+QwlwFfPRB4+NinQSHL1tllG5LUTCbFad+tBQ= Subject key identifier: 7C:0A:5E:BC:FA:25:22:DE:C0:1F:31:47:26:E9:9A:09:5E:A0:87:BE Authority key identifier: 4E:44:60:CF:63:B2:4B:7C:35:B9:ED:AE:C9:7E:63:A7:2C:4B:DE:23 Certificate issuer: /CN=A915203C/serialNumber=4E4460CF63B24B7C35B9EDAEC97E63A72C4BDE23 Certificate serial: 0AB2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TkRgz2OyS3w1ue2uyX5jpyxL3iM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915203C/46C88C82747711EA83654F4DC4F9AE02/TkRgz2OyS3w1ue2uyX5jpyxL3iM.mft Manifest number: 0AA5 Signing time: Tue 24 Mar 2026 19:18:45 +0000 Manifest this update: Tue 24 Mar 2026 19:18:45 +0000 Manifest next update: Tue 31 Mar 2026 19:18:45 +0000 Files and hashes: 1: TkRgz2OyS3w1ue2uyX5jpyxL3iM.crl (hash: nGHnZcBUs6qkv71/pCQcmUiDAxv+oYrpn1kgkAFWLp8=) 2: 4A7F0102747811EAB3C2634EC4F9AE02.roa (hash: wN/p9bhtqtpFWg4aKbj5Ar4CaOQGWg/xpy0UF+hPVkM=) 3: 039A4408614511F0B95C3C38C4F9AE02.roa (hash: ui+G6/PG/zN3KIP4zZsPKAuoPMyNoDO6ihyKtKXhFfo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915203C/46C88C82747711EA83654F4DC4F9AE02/TkRgz2OyS3w1ue2uyX5jpyxL3iM.crl rsync://rpki.apnic.net/member_repository/A915203C/46C88C82747711EA83654F4DC4F9AE02/TkRgz2OyS3w1ue2uyX5jpyxL3iM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TkRgz2OyS3w1ue2uyX5jpyxL3iM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 19:18:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2738 (0xab2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915203C, serialNumber=4E4460CF63B24B7C35B9EDAEC97E63A72C4BDE23 Validity Not Before: Mar 24 19:18:45 2026 GMT Not After : Mar 31 19:18:45 2026 GMT Subject: CN=69c2e395-cea3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:60:76:28:2a:ff:b2:f6:3b:af:27:af:cb:e6: 50:b1:4d:61:ae:7c:34:41:da:b4:d9:99:39:2c:b0: 49:b2:9a:9a:f1:bd:38:0e:63:d4:f8:7a:8f:cf:ce: f7:3d:03:dc:1d:f4:c0:3d:df:35:cf:7f:5f:ff:dd: 8a:42:ea:95:b5:30:4a:56:fd:95:1b:77:fc:33:87: a9:38:d3:f3:d2:93:49:1e:b9:ff:28:02:b1:fa:d2: 49:a5:58:56:e9:28:24:07:ac:6b:e3:b5:36:21:5e: f0:89:71:79:73:d6:29:44:e4:7a:97:23:4a:89:50: 8b:23:ab:27:ed:c8:7d:1c:e6:f6:5f:88:2c:ca:7a: f3:91:0a:85:11:e7:fa:b4:b3:2b:31:9b:14:33:11: 95:ab:cd:84:7c:f3:7b:ce:01:64:f3:2a:c5:c0:f9: 48:00:da:6a:58:d5:fd:0a:b6:2a:44:1e:84:71:24: 40:78:4d:be:3f:00:9a:99:c2:5d:65:b5:d9:97:d5: c9:98:35:28:e9:b1:7f:b7:b3:d2:45:ac:03:a8:b0: a0:60:f9:01:cf:c2:f9:44:8d:0f:18:85:80:ba:d3: 78:1e:62:de:cd:ee:71:58:b0:4f:a1:42:e8:55:32: 2f:2d:c6:23:36:dc:e7:8a:46:ec:56:4e:31:d3:ff: 78:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:0A:5E:BC:FA:25:22:DE:C0:1F:31:47:26:E9:9A:09:5E:A0:87:BE X509v3 Authority Key Identifier: keyid:4E:44:60:CF:63:B2:4B:7C:35:B9:ED:AE:C9:7E:63:A7:2C:4B:DE:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915203C/46C88C82747711EA83654F4DC4F9AE02/TkRgz2OyS3w1ue2uyX5jpyxL3iM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TkRgz2OyS3w1ue2uyX5jpyxL3iM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915203C/46C88C82747711EA83654F4DC4F9AE02/TkRgz2OyS3w1ue2uyX5jpyxL3iM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:98:09:49:23:b8:c5:b7:26:ff:7d:ae:d2:10:10:45:60:e7: a2:2a:f5:0c:ad:08:ac:11:e4:61:74:06:eb:1a:ed:a2:89:62: 93:80:a7:7e:ee:f8:60:a8:c9:17:18:0e:16:4f:45:3c:8a:85: 23:89:79:c9:52:76:7b:b7:93:b1:09:22:3d:bf:bf:be:01:c1: af:fe:ad:33:bf:47:0d:eb:d0:8e:0d:de:8c:1b:cc:66:aa:e7: c9:0a:25:97:2a:35:a8:fa:34:28:a4:a0:37:7c:bf:29:51:a2: e1:c3:6c:46:29:e4:83:39:8f:25:6c:4a:90:67:c9:87:55:de: 8b:f7:8d:74:55:f6:bf:6c:53:91:b5:2e:50:36:2d:91:b3:97: 8c:63:3e:b7:4b:c9:c4:0a:cd:14:ab:03:14:23:42:71:5a:48: cc:d5:78:ee:66:61:57:40:4e:d6:3d:a4:47:7b:d2:26:58:1a: 6a:ed:54:6d:9b:09:d5:00:5b:7b:0e:5a:79:c9:6d:58:e2:85: 48:3f:98:77:7a:7f:56:9f:bf:e6:27:85:0b:17:16:62:1e:a2: 33:7e:97:39:75:3f:50:ba:5d:f4:0b:17:02:f5:b0:1d:51:31: b7:7c:8b:1b:01:1c:f5:57:fb:0e:08:32:67:ea:7d:05:9d:f5: cb:eb:bf:77 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCrIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTIwM0MxMTAvBgNVBAUTKDRFNDQ2MENGNjNCMjRCN0MzNUI5RURBRUM5N0U2M0E3 MkM0QkRFMjMwHhcNMjYwMzI0MTkxODQ1WhcNMjYwMzMxMTkxODQ1WjAYMRYwFAYD VQQDEw02OWMyZTM5NS1jZWEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm2B2KCr/svY7ryevy+ZQsU1hrnw0Qdq02Zk5LLBJspqa8b04DmPU+HqPz873 PQPcHfTAPd81z39f/92KQuqVtTBKVv2VG3f8M4epONPz0pNJHrn/KAKx+tJJpVhW 6SgkB6xr47U2IV7wiXF5c9YpROR6lyNKiVCLI6sn7ch9HOb2X4gsynrzkQqFEef6 tLMrMZsUMxGVq82EfPN7zgFk8yrFwPlIANpqWNX9CrYqRB6EcSRAeE2+PwCamcJd ZbXZl9XJmDUo6bF/t7PSRawDqLCgYPkBz8L5RI0PGIWAutN4HmLeze5xWLBPoULo VTIvLcYjNtznikbsVk4x0/94BQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHwKXrz6 JSLewB8xRybpmgleoIe+MB8GA1UdIwQYMBaAFE5EYM9jskt8Nbntrsl+Y6csS94j MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MjAzQy80NkM4OEM4Mjc0 NzcxMUVBODM2NTRGNERDNEY5QUUwMi9Ua1JnejJPeVMzdzF1ZTJ1eVg1anB5eEwz aU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RrUmd6Mk95UzN3MXVlMnV5WDVqcHl4TDNpTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MjAzQy80NkM4OEM4Mjc0NzcxMUVBODM2NTRGNERDNEY5QUUwMi9Ua1JnejJPeVMz dzF1ZTJ1eVg1anB5eEwzaU0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAUJgJSSO4xbcm/32u0hAQRWDnoir1DK0IrBHkYXQG6xrtoolik4Cnfu74YKjJ FxgOFk9FPIqFI4l5yVJ2e7eTsQkiPb+/vgHBr/6tM79HDevQjg3ejBvMZqrnyQol lyo1qPo0KKSgN3y/KVGi4cNsRinkgzmPJWxKkGfJh1Xei/eNdFX2v2xTkbUuUDYt kbOXjGM+t0vJxArNFKsDFCNCcVpIzNV47mZhV0BO1j2kR3vSJlgaau1UbZsJ1QBb ew5aecltWOKFSD+Yd3p/Vp+/5ieFCxcWYh6iM36XOXU/ULpd9AsXAvWwHVExt3yL GwEc9Vf7DggyZ+p9BZ31y+u/dw== -----END CERTIFICATE-----Generated at Thu Mar 26 17:39:48 2026 by rpki-client