$ rpki-client -vvf rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.mft File: tWQnMiZdQL91ypSp7IEZIRwbmzI.mft (raw, json) Hash identifier: on5iEfc0vc9/6orqNk8hXumtmVWJHKlZ1NY2MdqhDyI= Subject key identifier: 2C:95:ED:2F:3C:8E:62:6A:DE:38:BA:E1:31:B0:FA:8C:D5:18:EC:56 Authority key identifier: B5:64:27:32:26:5D:40:BF:75:CA:94:A9:EC:81:19:21:1C:1B:9B:32 Certificate issuer: /CN=A916C128/serialNumber=B5642732265D40BF75CA94A9EC8119211C1B9B32 Certificate serial: 2CCF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tWQnMiZdQL91ypSp7IEZIRwbmzI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.mft Manifest number: 2C22 Signing time: Thu 26 Mar 2026 15:33:04 +0000 Manifest this update: Thu 26 Mar 2026 15:33:03 +0000 Manifest next update: Thu 02 Apr 2026 15:33:03 +0000 Files and hashes: 1: tWQnMiZdQL91ypSp7IEZIRwbmzI.crl (hash: J3BB2E1C4D36M1c5eH5/jnj98H3yOX7ZSpcBbq17OWc=) 2: 13461F60ABDC11EDAE837666C4F9AE02.roa (hash: p1Xz4NfMi7vba2dX5mep6XS38eseQmptesScKzYLsfY=) 3: E0CC928CABDE11ED954F5C84C4F9AE02.roa (hash: vy8OizIusjo0DOpKES3kAjShvdwNIST8mDHt7RP2/Rw=) 4: DF821D20ABDE11ED954F5C84C4F9AE02.roa (hash: 7xfAOvY/afimILYTR9MKcTXThQYmTzbgBUbOIw10xYo=) 5: 4462F034F0EC11EB9D0B176AC4F9AE02.roa (hash: te6K7h74NKd0mHdVkf229ZoBYjiL4niibZWuwJlhYHM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.crl rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tWQnMiZdQL91ypSp7IEZIRwbmzI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 14:54:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11471 (0x2ccf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C128, serialNumber=B5642732265D40BF75CA94A9EC8119211C1B9B32 Validity Not Before: Mar 26 15:33:03 2026 GMT Not After : Apr 2 15:33:03 2026 GMT Subject: CN=69c551b0-8886 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:c2:cc:ee:dc:51:af:54:d6:44:b5:23:91:91: 99:96:f8:1b:f5:aa:05:d8:80:66:79:5e:be:d3:ad: c3:9b:bc:e0:bf:0e:09:60:26:65:1c:c9:f4:7f:b8: 8f:7b:40:b8:ae:54:03:ab:52:57:27:e3:29:d4:37: 5e:93:c3:19:cc:8c:d6:27:1d:b6:5e:21:7c:06:de: 8e:46:38:e2:e8:da:41:8d:9b:9c:aa:2a:9b:df:03: ab:46:fd:fc:ec:aa:70:dd:93:a1:ee:21:22:e7:49: dc:51:e1:b3:d4:90:52:56:45:eb:28:28:e9:6a:5f: b6:d6:42:05:85:12:68:96:86:16:07:26:1a:32:cf: 48:30:52:c9:a8:f8:1a:22:ad:2d:e7:63:9f:f7:44: b4:f1:8f:3e:05:fc:5d:ae:a1:f6:7e:56:23:5c:55: bd:c3:98:66:1e:bd:13:0a:94:90:45:85:f9:62:56: 8b:ab:df:0d:1f:88:4f:38:69:ea:0c:6f:43:67:9b: e7:26:e1:3e:2d:39:48:20:95:60:4c:4d:49:ce:48: cd:ed:14:ef:70:9e:9d:45:6c:15:0c:ff:1d:58:47: 75:ad:d0:7b:06:ca:fc:4b:22:06:c9:2d:ac:34:bd: 89:f1:41:9d:69:36:c1:52:b4:1f:11:35:f0:d0:79: f9:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:95:ED:2F:3C:8E:62:6A:DE:38:BA:E1:31:B0:FA:8C:D5:18:EC:56 X509v3 Authority Key Identifier: keyid:B5:64:27:32:26:5D:40:BF:75:CA:94:A9:EC:81:19:21:1C:1B:9B:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tWQnMiZdQL91ypSp7IEZIRwbmzI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:56:50:8e:1a:95:d6:98:18:df:39:fa:f1:67:d8:b6:7b:0d: 87:4c:80:51:14:4b:1e:8f:a8:d0:b6:c8:79:4e:f8:92:6d:39: 69:bf:b5:2a:25:b9:6f:0d:64:7f:75:e1:93:cf:52:6e:37:f2: 9a:e8:1c:55:3e:e7:0d:d0:a8:43:b9:e6:de:f5:74:a1:ed:fe: 46:7c:02:2a:2d:e9:97:49:5d:ec:16:d2:34:6c:b6:b9:77:27: 73:d4:40:0f:c6:80:1c:e8:a8:49:db:93:f9:47:7d:a6:e9:13: 82:1a:34:4b:1f:2c:91:3e:77:c7:ae:da:bd:b4:d6:79:e3:c8: d6:4f:5d:8a:e5:ea:1e:a1:fd:3f:22:1a:8d:c1:03:ec:5e:dc: 84:8d:f7:67:a4:24:b0:a8:ff:54:15:d8:09:47:9a:e6:59:0f: 89:0a:09:6d:bc:6e:1e:50:66:ce:67:6f:8f:39:e7:cd:b9:c6: e0:d9:a3:7d:00:27:19:f6:8e:5d:9a:0d:12:ac:8f:83:2b:16: 86:ef:fb:e4:6c:07:b9:95:da:05:1d:13:ca:7e:c5:d2:76:49: d1:75:ee:91:d4:b1:0a:ca:dd:4c:d4:b5:9c:e6:46:a9:7b:7a: c5:43:8a:c0:2a:d1:4a:94:fb:7b:a7:f8:bc:88:29:54:da:f1: c8:44:4e:c2 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICLM8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkMxMjgxMTAvBgNVBAUTKEI1NjQyNzMyMjY1RDQwQkY3NUNBOTRBOUVDODExOTIx MUMxQjlCMzIwHhcNMjYwMzI2MTUzMzAzWhcNMjYwNDAyMTUzMzAzWjAYMRYwFAYD VQQDEw02OWM1NTFiMC04ODg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqcLM7txRr1TWRLUjkZGZlvgb9aoF2IBmeV6+063Dm7zgvw4JYCZlHMn0f7iP e0C4rlQDq1JXJ+Mp1Ddek8MZzIzWJx22XiF8Bt6ORjji6NpBjZucqiqb3wOrRv38 7Kpw3ZOh7iEi50ncUeGz1JBSVkXrKCjpal+21kIFhRJoloYWByYaMs9IMFLJqPga Iq0t52Of90S08Y8+BfxdrqH2flYjXFW9w5hmHr0TCpSQRYX5YlaLq98NH4hPOGnq DG9DZ5vnJuE+LTlIIJVgTE1JzkjN7RTvcJ6dRWwVDP8dWEd1rdB7Bsr8SyIGyS2s NL2J8UGdaTbBUrQfETXw0Hn5GwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCyV7S88 jmJq3ji64TGw+ozVGOxWMB8GA1UdIwQYMBaAFLVkJzImXUC/dcqUqeyBGSEcG5sy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzEyOC82NjRBOUJDQUZB NkQxMUUzQjZBQzIzNTA1OTExRUEzMi90V1FuTWlaZFFMOTF5cFNwN0lFWklSd2Jt ekkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RXUW5NaVpkUUw5MXlwU3A3SUVaSVJ3Ym16SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QzEyOC82NjRBOUJDQUZBNkQxMUUzQjZBQzIzNTA1OTExRUEzMi90V1FuTWlaZFFM OTF5cFNwN0lFWklSd2JtekkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEACFZQjhqV1pgY3zn68WfYtnsNh0yAURRLHo+o0LbIeU74km05ab+1KiW5bw1k f3Xhk89SbjfymugcVT7nDdCoQ7nm3vV0oe3+RnwCKi3pl0ld7BbSNGy2uXcnc9RA D8aAHOioSduT+Ud9pukTgho0Sx8skT53x67avbTWeePI1k9diuXqHqH9PyIajcED 7F7chI33Z6QksKj/VBXYCUea5lkPiQoJbbxuHlBmzmdvjznnzbnG4NmjfQAnGfaO XZoNEqyPgysWhu/75GwHuZXaBR0Tyn7F0nZJ0XXukdSxCsrdTNS1nOZGqXt6xUOK wCrRSpT7e6f4vIgpVNrxyEROwg== -----END CERTIFICATE-----Generated at Thu Mar 26 18:21:47 2026 by rpki-client