$ rpki-client -vvf rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.mft File: tWQnMiZdQL91ypSp7IEZIRwbmzI.mft (raw, json) Hash identifier: jETUmiEDYqlrsX4TmtXQ+ZYtu67x/A0ntaPztlnnnZM= Subject key identifier: 60:92:04:B9:69:DD:24:D1:18:F4:B1:88:D7:68:D4:1C:00:90:F6:E1 Authority key identifier: B5:64:27:32:26:5D:40:BF:75:CA:94:A9:EC:81:19:21:1C:1B:9B:32 Certificate issuer: /CN=A916C128/serialNumber=B5642732265D40BF75CA94A9EC8119211C1B9B32 Certificate serial: 2CCE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tWQnMiZdQL91ypSp7IEZIRwbmzI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.mft Manifest number: 2C21 Signing time: Tue 24 Mar 2026 15:29:17 +0000 Manifest this update: Tue 24 Mar 2026 15:29:17 +0000 Manifest next update: Tue 31 Mar 2026 15:29:17 +0000 Files and hashes: 1: tWQnMiZdQL91ypSp7IEZIRwbmzI.crl (hash: NnW5uuWRA+lNR9tX0NAypSFyEcvAiLQ3r47oIH1sHQs=) 2: DF821D20ABDE11ED954F5C84C4F9AE02.roa (hash: 7xfAOvY/afimILYTR9MKcTXThQYmTzbgBUbOIw10xYo=) 3: 4462F034F0EC11EB9D0B176AC4F9AE02.roa (hash: te6K7h74NKd0mHdVkf229ZoBYjiL4niibZWuwJlhYHM=) 4: 13461F60ABDC11EDAE837666C4F9AE02.roa (hash: p1Xz4NfMi7vba2dX5mep6XS38eseQmptesScKzYLsfY=) 5: E0CC928CABDE11ED954F5C84C4F9AE02.roa (hash: vy8OizIusjo0DOpKES3kAjShvdwNIST8mDHt7RP2/Rw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.crl rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tWQnMiZdQL91ypSp7IEZIRwbmzI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 15:29:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11470 (0x2cce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C128, serialNumber=B5642732265D40BF75CA94A9EC8119211C1B9B32 Validity Not Before: Mar 24 15:29:17 2026 GMT Not After : Mar 31 15:29:17 2026 GMT Subject: CN=69c2adcd-68d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:38:e9:f3:58:4f:ac:74:f7:21:2b:42:20:67: a9:9e:e2:26:be:f9:fc:0a:18:a6:43:88:d3:67:66: e6:3e:81:7d:41:cf:87:bd:a9:81:b5:c1:55:7c:6e: 8d:af:e3:19:45:83:76:c3:db:c2:a1:e7:4e:79:fe: fa:b1:43:3e:de:09:2a:65:ca:92:de:2e:e4:32:66: 38:9a:5b:06:c3:61:16:02:9c:f6:f5:7c:68:83:09: 31:f4:fc:38:62:1b:3e:f2:57:12:2b:0e:e8:1e:c4: 4d:ce:48:2f:e1:3d:c1:92:de:8c:e9:ef:e1:63:9e: 61:5c:a8:ac:cc:1b:9f:9a:5e:83:c0:68:be:80:04: 7a:06:c1:51:d0:a5:f0:a3:c5:40:e8:7f:d8:e0:85: 51:f3:06:1c:7c:3b:f4:41:d3:33:91:b0:94:f0:07: ca:3a:71:c8:de:95:8d:18:97:c5:47:cc:91:28:3d: 62:3f:33:d6:95:cf:6a:8e:86:51:ac:0e:78:43:d6: 08:e7:91:19:8d:20:04:b6:38:ef:a5:e2:9c:9f:27: c1:1b:b8:d0:bb:81:12:66:77:b3:ad:2b:ee:c2:12: e7:8b:f3:a6:c0:e4:39:78:f9:60:82:18:a8:67:ea: c5:84:8a:71:07:1a:ec:63:02:56:f7:32:cb:02:bf: b5:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:92:04:B9:69:DD:24:D1:18:F4:B1:88:D7:68:D4:1C:00:90:F6:E1 X509v3 Authority Key Identifier: keyid:B5:64:27:32:26:5D:40:BF:75:CA:94:A9:EC:81:19:21:1C:1B:9B:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tWQnMiZdQL91ypSp7IEZIRwbmzI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:88:65:e0:4d:d6:69:c2:98:96:47:73:ef:52:a4:c0:2e:a9: 65:3c:7b:67:eb:b8:fa:91:99:f9:df:a3:91:8a:0f:d4:df:7c: c6:1e:22:3b:de:0b:d7:30:c2:c9:bb:aa:30:fb:80:9c:c5:64: 75:5d:d5:50:29:0b:2a:07:5d:a7:b5:78:ac:77:be:f3:6a:f4: be:36:f5:34:d0:7f:91:fb:5a:5f:a3:ce:31:1f:33:bb:56:28: 93:bc:9c:c7:7d:ea:6f:22:93:fa:2a:a3:83:63:41:ce:a5:e9: 51:b1:f4:28:d7:01:e8:62:2d:80:53:33:02:0d:b1:de:a6:90: 83:c6:01:c6:5f:59:2e:11:44:f4:aa:7e:93:fa:e2:31:ff:5d: 6e:30:aa:64:52:8f:07:3f:72:96:ac:72:5d:2c:4d:5b:50:08: c0:e0:7b:bc:fb:73:db:3c:85:75:f3:66:ca:31:d1:db:01:af: 76:24:cf:c2:fc:04:60:14:51:80:7b:e8:ce:2a:2f:92:be:ac: bb:b7:8e:e2:3e:74:3f:27:e4:ac:0d:95:79:36:c5:11:d6:b6: 6a:51:bf:2f:2a:4f:10:56:9b:93:c4:d4:94:ba:85:97:7c:9e: f5:83:0a:d7:89:ac:29:2f:3d:c9:8a:a9:11:cd:56:57:93:f3: 2d:c0:5f:b0 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICLM4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkMxMjgxMTAvBgNVBAUTKEI1NjQyNzMyMjY1RDQwQkY3NUNBOTRBOUVDODExOTIx MUMxQjlCMzIwHhcNMjYwMzI0MTUyOTE3WhcNMjYwMzMxMTUyOTE3WjAYMRYwFAYD VQQDEw02OWMyYWRjZC02OGQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsjjp81hPrHT3IStCIGepnuImvvn8ChimQ4jTZ2bmPoF9Qc+HvamBtcFVfG6N r+MZRYN2w9vCoedOef76sUM+3gkqZcqS3i7kMmY4mlsGw2EWApz29Xxogwkx9Pw4 Yhs+8lcSKw7oHsRNzkgv4T3Bkt6M6e/hY55hXKiszBufml6DwGi+gAR6BsFR0KXw o8VA6H/Y4IVR8wYcfDv0QdMzkbCU8AfKOnHI3pWNGJfFR8yRKD1iPzPWlc9qjoZR rA54Q9YI55EZjSAEtjjvpeKcnyfBG7jQu4ESZnezrSvuwhLni/OmwOQ5ePlgghio Z+rFhIpxBxrsYwJW9zLLAr+11wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGCSBLlp 3STRGPSxiNdo1BwAkPbhMB8GA1UdIwQYMBaAFLVkJzImXUC/dcqUqeyBGSEcG5sy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzEyOC82NjRBOUJDQUZB NkQxMUUzQjZBQzIzNTA1OTExRUEzMi90V1FuTWlaZFFMOTF5cFNwN0lFWklSd2Jt ekkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RXUW5NaVpkUUw5MXlwU3A3SUVaSVJ3Ym16SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QzEyOC82NjRBOUJDQUZBNkQxMUUzQjZBQzIzNTA1OTExRUEzMi90V1FuTWlaZFFM OTF5cFNwN0lFWklSd2JtekkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEADYhl4E3WacKYlkdz71KkwC6pZTx7Z+u4+pGZ+d+jkYoP1N98xh4iO94L1zDC ybuqMPuAnMVkdV3VUCkLKgddp7V4rHe+82r0vjb1NNB/kftaX6POMR8zu1Yok7yc x33qbyKT+iqjg2NBzqXpUbH0KNcB6GItgFMzAg2x3qaQg8YBxl9ZLhFE9Kp+k/ri Mf9dbjCqZFKPBz9ylqxyXSxNW1AIwOB7vPtz2zyFdfNmyjHR2wGvdiTPwvwEYBRR gHvoziovkr6su7eO4j50PyfkrA2VeTbFEda2alG/LypPEFabk8TUlLqFl3ye9YMK 14msKS89yYqpEc1WV5PzLcBfsA== -----END CERTIFICATE-----Generated at Thu Mar 26 15:31:30 2026 by rpki-client