$ rpki-client -vvf rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/tADiGrPTJXQtuHeDDrxEB233CUg.mft File: tADiGrPTJXQtuHeDDrxEB233CUg.mft (raw, json) Hash identifier: gjUjnjA7Ju7hCd4s3AtdgTxa0JgycOmtQ9GYEqAN+v0= Subject key identifier: 87:D6:2A:DC:7F:6F:72:6F:7D:78:5B:39:D4:D5:46:0E:1D:4F:C7:0D Authority key identifier: B4:00:E2:1A:B3:D3:25:74:2D:B8:77:83:0E:BC:44:07:6D:F7:09:48 Certificate issuer: /CN=A91658EF/serialNumber=B400E21AB3D325742DB877830EBC44076DF70948 Certificate serial: 0F9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tADiGrPTJXQtuHeDDrxEB233CUg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/tADiGrPTJXQtuHeDDrxEB233CUg.mft Manifest number: 2D5E Signing time: Tue 24 Mar 2026 16:39:23 +0000 Manifest this update: Tue 24 Mar 2026 16:39:23 +0000 Manifest next update: Tue 31 Mar 2026 16:39:23 +0000 Files and hashes: 1: tADiGrPTJXQtuHeDDrxEB233CUg.crl (hash: EpSbkWvYMZBebOCB7b5Xp6wZT8ZKceRgimpoowFc6rU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/tADiGrPTJXQtuHeDDrxEB233CUg.crl rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/tADiGrPTJXQtuHeDDrxEB233CUg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tADiGrPTJXQtuHeDDrxEB233CUg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 16:39:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3997 (0xf9d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91658EF, serialNumber=B400E21AB3D325742DB877830EBC44076DF70948 Validity Not Before: Mar 24 16:39:23 2026 GMT Not After : Mar 31 16:39:23 2026 GMT Subject: CN=69c2be3b-b581 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:43:8a:25:bb:b6:8c:92:19:25:15:e2:6c:e5: 03:ed:3f:24:be:f2:82:52:8f:5f:b6:a3:a2:2f:bb: 96:d5:1b:56:4d:88:8b:37:fe:ec:b9:86:aa:dd:31: 98:52:7f:fb:f3:c3:b4:42:7e:fe:df:30:d2:1d:cc: c3:92:10:5f:b6:b8:ba:ef:62:a8:e0:2a:ab:7f:cc: 52:2f:53:7e:9a:3a:aa:8d:77:0a:5a:6d:b9:74:a8: 22:23:c8:37:71:7c:eb:83:f0:c0:c9:15:65:8d:1d: 14:f2:72:21:c9:03:af:3e:2a:74:e7:4e:00:1a:a2: f1:b9:29:d6:f4:db:d0:d1:8b:a5:c9:05:8d:6c:c7: c6:a0:24:57:7e:fe:27:35:08:05:9b:2b:2f:6b:87: f2:98:2e:0c:96:f2:ea:76:92:72:32:29:70:c2:fc: f2:c9:67:2e:71:26:26:a4:c8:dd:06:45:2e:af:86: 23:a7:dd:73:ce:7b:d7:28:11:d8:62:b0:ff:14:02: 8c:bd:fa:ec:6d:7f:4b:02:c2:ad:f0:24:b2:d2:95: 74:41:a8:c2:40:00:86:11:b5:b0:6f:f5:18:da:67: 1e:42:31:dc:2e:d2:bd:df:f3:74:63:a3:51:ec:a6: 64:a2:23:14:e0:32:85:18:f3:a2:51:7c:91:55:6e: b1:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:D6:2A:DC:7F:6F:72:6F:7D:78:5B:39:D4:D5:46:0E:1D:4F:C7:0D X509v3 Authority Key Identifier: keyid:B4:00:E2:1A:B3:D3:25:74:2D:B8:77:83:0E:BC:44:07:6D:F7:09:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/tADiGrPTJXQtuHeDDrxEB233CUg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tADiGrPTJXQtuHeDDrxEB233CUg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/tADiGrPTJXQtuHeDDrxEB233CUg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:39:d7:0f:ef:9f:02:5b:00:e3:92:f1:8f:df:13:e9:d1:d1: 51:47:f0:61:15:80:c7:c4:3b:97:8a:d5:a5:82:90:fc:d7:d6: 7d:29:09:2f:0a:74:9b:94:f5:5a:32:29:dc:22:a2:65:4b:b7: 2d:42:8f:c8:3f:62:49:c3:31:29:88:77:c4:95:e3:47:cb:1b: aa:ab:db:dc:6c:84:a5:28:0f:1b:c8:85:2e:29:9c:e3:e7:3a: 53:3a:e4:76:20:03:9c:ee:4e:79:b6:ca:75:8a:f9:4a:34:34: fe:9f:89:9a:35:80:a2:fc:a3:3d:e4:2b:01:e1:ec:90:cc:ad: cb:76:7a:bc:46:30:cf:9e:a5:27:bf:66:a1:a5:01:4d:53:67: 5a:ca:ab:64:68:27:50:7c:49:b7:51:ab:d7:1c:cc:33:14:1d: 60:57:1d:0f:66:e1:65:88:59:29:ad:66:d2:86:84:2e:7e:f2: aa:83:6a:82:ef:31:c7:df:d5:4a:52:a1:1a:17:f4:6a:d6:68: 07:dc:bb:ad:c1:f2:35:72:13:10:0a:a9:69:9f:d7:a7:82:63: 0c:0f:f4:09:9a:e2:c5:07:3f:88:40:bf:dc:2e:fa:bd:51:e3: f9:2c:fd:87:9a:34:d1:4f:f4:a4:5f:b8:4d:e9:5b:0e:e5:4f: fd:c9:b9:ed -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICD50wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU4RUYxMTAvBgNVBAUTKEI0MDBFMjFBQjNEMzI1NzQyREI4Nzc4MzBFQkM0NDA3 NkRGNzA5NDgwHhcNMjYwMzI0MTYzOTIzWhcNMjYwMzMxMTYzOTIzWjAYMRYwFAYD VQQDEw02OWMyYmUzYi1iNTgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAh0OKJbu2jJIZJRXibOUD7T8kvvKCUo9ftqOiL7uW1RtWTYiLN/7suYaq3TGY Un/788O0Qn7+3zDSHczDkhBftri672Ko4Cqrf8xSL1N+mjqqjXcKWm25dKgiI8g3 cXzrg/DAyRVljR0U8nIhyQOvPip0504AGqLxuSnW9NvQ0YulyQWNbMfGoCRXfv4n NQgFmysva4fymC4MlvLqdpJyMilwwvzyyWcucSYmpMjdBkUur4Yjp91zznvXKBHY YrD/FAKMvfrsbX9LAsKt8CSy0pV0QajCQACGEbWwb/UY2mceQjHcLtK93/N0Y6NR 7KZkoiMU4DKFGPOiUXyRVW6xEQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIfWKtx/ b3JvfXhbOdTVRg4dT8cNMB8GA1UdIwQYMBaAFLQA4hqz0yV0Lbh3gw68RAdt9wlI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NThFRi9EMjQzMzc5NjRB RUMxMUU4ODQxN0YzNEFDNEY5QUUwMi90QURpR3JQVEpYUXR1SGVERHJ4RUIyMzND VWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RBRGlHclBUSlhRdHVIZUREcnhFQjIzM0NVZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NThFRi9EMjQzMzc5NjRBRUMxMUU4ODQxN0YzNEFDNEY5QUUwMi90QURpR3JQVEpY UXR1SGVERHJ4RUIyMzNDVWcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAODnXD++fAlsA45Lxj98T6dHRUUfwYRWAx8Q7l4rVpYKQ/NfWfSkJLwp0m5T1 WjIp3CKiZUu3LUKPyD9iScMxKYh3xJXjR8sbqqvb3GyEpSgPG8iFLimc4+c6Uzrk diADnO5OebbKdYr5SjQ0/p+JmjWAovyjPeQrAeHskMyty3Z6vEYwz56lJ79moaUB TVNnWsqrZGgnUHxJt1Gr1xzMMxQdYFcdD2bhZYhZKa1m0oaELn7yqoNqgu8xx9/V SlKhGhf0atZoB9y7rcHyNXITEAqpaZ/Xp4JjDA/0CZrixQc/iEC/3C76vVHj+Sz9 h5o00U/0pF+4TelbDuVP/cm57Q== -----END CERTIFICATE-----Generated at Thu Mar 26 18:15:01 2026 by rpki-client