$ rpki-client -vvf rpki.apnic.net/member_repository/A916C4BC/A970B2EC51AC11EC9ED9041BC4F9AE02/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.mft File: Tf7DQ3yQv0FNBRiLSCx4SObzFhs.mft (raw, json) Hash identifier: NCR0T4Q9K5RyjVWBJXIf/fmq5cSbfzQqYQTfkxsL0Ls= Subject key identifier: 68:EB:84:48:5F:04:84:C7:0E:DD:90:2A:3C:4C:67:29:B4:E3:ED:08 Authority key identifier: 4D:FE:C3:43:7C:90:BF:41:4D:05:18:8B:48:2C:78:48:E6:F3:16:1B Certificate issuer: /CN=A916C4BC/serialNumber=4DFEC3437C90BF414D05188B482C7848E6F3161B Certificate serial: 04FC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C4BC/A970B2EC51AC11EC9ED9041BC4F9AE02/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.mft Manifest number: 04F5 Signing time: Tue 24 Mar 2026 23:23:36 +0000 Manifest this update: Tue 24 Mar 2026 23:23:36 +0000 Manifest next update: Tue 31 Mar 2026 23:23:36 +0000 Files and hashes: 1: Tf7DQ3yQv0FNBRiLSCx4SObzFhs.crl (hash: jlBpMNDWZrCGLGoLUKzgO7kGSylboQQ53WqP7bED17g=) 2: F593443851B011ECB5188E24C4F9AE02.roa (hash: 0WVnAY5EHkV8sUZiTU2edZq8VGQc3j9oVtptJkhHgCM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C4BC/A970B2EC51AC11EC9ED9041BC4F9AE02/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.crl rsync://rpki.apnic.net/member_repository/A916C4BC/A970B2EC51AC11EC9ED9041BC4F9AE02/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 23:23:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1276 (0x4fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C4BC, serialNumber=4DFEC3437C90BF414D05188B482C7848E6F3161B Validity Not Before: Mar 24 23:23:36 2026 GMT Not After : Mar 31 23:23:36 2026 GMT Subject: CN=69c31cf8-dbe6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:ec:38:cd:d8:00:aa:c3:56:e9:3d:c1:60:42: c5:b3:2d:ed:e3:aa:22:b7:bd:3e:29:da:fc:56:ef: 6a:e5:c3:95:5c:91:cf:f2:12:3b:87:f2:6c:48:72: 83:27:ab:4a:db:e5:f6:41:fd:51:e4:b4:d1:04:49: 5d:fd:9a:66:e1:e9:a4:b6:5d:47:d2:3b:6f:8b:38: 74:35:5c:ef:57:5d:f5:ac:f5:cb:00:dd:d3:39:54: 9f:71:f2:85:9c:bd:c4:ca:58:38:c9:85:a9:6f:58: 1d:3e:6e:d5:98:37:ca:1c:02:c1:87:2c:69:bf:bf: 57:97:b8:df:16:27:6e:4c:6e:be:76:bf:65:f3:bd: 4b:33:f8:8d:de:b7:89:7a:06:08:66:90:bd:b4:63: d9:a4:5a:05:bb:5e:b0:0e:2d:86:91:fd:a7:0b:64: 3e:8b:b4:59:e7:29:e5:bc:75:53:28:f1:7f:a3:71: 97:68:2b:a6:a2:3f:95:70:51:e0:9e:76:6e:61:c4: f6:b9:57:ac:f2:55:70:6f:ab:23:75:90:90:19:12: 27:3f:86:43:ef:b3:87:38:7d:c6:3f:c1:74:50:76: 5c:8b:8b:c2:8b:65:01:e3:4a:62:ab:22:b2:04:84: 28:11:ee:49:76:94:18:6c:5f:d7:93:31:c9:89:1b: 3c:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:EB:84:48:5F:04:84:C7:0E:DD:90:2A:3C:4C:67:29:B4:E3:ED:08 X509v3 Authority Key Identifier: keyid:4D:FE:C3:43:7C:90:BF:41:4D:05:18:8B:48:2C:78:48:E6:F3:16:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C4BC/A970B2EC51AC11EC9ED9041BC4F9AE02/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C4BC/A970B2EC51AC11EC9ED9041BC4F9AE02/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c4:35:7b:5a:dd:6a:b9:95:f0:92:88:8e:9b:f3:1e:d5:05:a9: 8d:91:bf:b2:23:07:ff:3f:61:1c:b1:c0:67:be:49:c1:e9:ec: 3f:42:8c:0c:ec:db:9d:28:70:d4:99:6a:7b:a1:2f:d8:11:b5: 66:a6:e8:69:fa:a8:a5:f2:bc:48:08:1b:11:4a:5c:11:4f:d9: 32:f7:9d:8f:d0:83:ad:79:0a:53:f8:72:7e:cc:42:bf:ce:e5: 5d:e5:ea:e0:d9:d6:85:e2:46:9e:71:a7:34:43:fd:d3:0e:c8: b0:03:e9:f7:f7:80:5c:c7:5f:a8:b4:f1:06:eb:5c:b5:94:c0: 85:98:59:88:b9:ab:35:7e:98:02:94:c1:4d:94:a3:c1:89:8c: 4b:48:e3:72:af:6a:a1:f2:df:67:2d:bf:34:a9:4c:2d:75:59: a0:b3:8e:80:1e:f0:2e:80:47:2e:9a:80:ce:8e:7b:b1:e8:e6: ef:cd:ad:68:53:a5:a8:cf:35:09:38:23:f3:93:ea:1f:a1:e4: 39:ff:5c:9b:77:ac:df:12:1f:0c:3c:71:aa:da:20:36:35:7f: 94:c6:2a:f7:97:59:69:c9:18:b1:cf:91:0b:c1:42:91:99:7d: 09:16:21:da:1e:b5:d9:8b:99:da:d6:0a:4b:e1:f2:1b:e8:50: 89:bc:95:f3 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBPwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkM0QkMxMTAvBgNVBAUTKDRERkVDMzQzN0M5MEJGNDE0RDA1MTg4QjQ4MkM3ODQ4 RTZGMzE2MUIwHhcNMjYwMzI0MjMyMzM2WhcNMjYwMzMxMjMyMzM2WjAYMRYwFAYD VQQDEw02OWMzMWNmOC1kYmU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4uw4zdgAqsNW6T3BYELFsy3t46oit70+Kdr8Vu9q5cOVXJHP8hI7h/JsSHKD J6tK2+X2Qf1R5LTRBEld/Zpm4emktl1H0jtvizh0NVzvV131rPXLAN3TOVSfcfKF nL3Eylg4yYWpb1gdPm7VmDfKHALBhyxpv79Xl7jfFiduTG6+dr9l871LM/iN3reJ egYIZpC9tGPZpFoFu16wDi2Gkf2nC2Q+i7RZ5ynlvHVTKPF/o3GXaCumoj+VcFHg nnZuYcT2uVes8lVwb6sjdZCQGRInP4ZD77OHOH3GP8F0UHZci4vCi2UB40piqyKy BIQoEe5JdpQYbF/XkzHJiRs8ewIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGjrhEhf BITHDt2QKjxMZym04+0IMB8GA1UdIwQYMBaAFE3+w0N8kL9BTQUYi0gseEjm8xYb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzRCQy9BOTcwQjJFQzUx QUMxMUVDOUVEOTA0MUJDNEY5QUUwMi9UZjdEUTN5UXYwRk5CUmlMU0N4NFNPYnpG aHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RmN0RRM3lRdjBGTkJSaUxTQ3g0U09iekZocy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QzRCQy9BOTcwQjJFQzUxQUMxMUVDOUVEOTA0MUJDNEY5QUUwMi9UZjdEUTN5UXYw Rk5CUmlMU0N4NFNPYnpGaHMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAxDV7Wt1quZXwkoiOm/Me1QWpjZG/siMH/z9hHLHAZ75JwensP0KMDOzbnShw 1Jlqe6Ev2BG1ZqboafqopfK8SAgbEUpcEU/ZMvedj9CDrXkKU/hyfsxCv87lXeXq 4NnWheJGnnGnNEP90w7IsAPp9/eAXMdfqLTxButctZTAhZhZiLmrNX6YApTBTZSj wYmMS0jjcq9qofLfZy2/NKlMLXVZoLOOgB7wLoBHLpqAzo57sejm782taFOlqM81 CTgj85PqH6HkOf9cm3es3xIfDDxxqtogNjV/lMYq95dZackYsc+RC8FCkZl9CRYh 2h612YuZ2tYKS+HyG+hQibyV8w== -----END CERTIFICATE-----Generated at Thu Mar 26 14:51:42 2026 by rpki-client