$ rpki-client -vvf rpki.apnic.net/member_repository/A91716DE/8F340DD0752D11EC9C748D54C4F9AE02/TMkE6Uxcm5OkSk9l77IKgA1t1-c.mft File: TMkE6Uxcm5OkSk9l77IKgA1t1-c.mft (raw, json) Hash identifier: DfNpJGimJHSruQsIASNZnmwQAFhIj1Cfuy9+kPWP3ms= Subject key identifier: DF:BD:F6:D9:B4:E9:61:A9:1C:0F:A4:A5:14:22:6A:0C:B6:A5:79:5E Authority key identifier: 4C:C9:04:E9:4C:5C:9B:93:A4:4A:4F:65:EF:B2:0A:80:0D:6D:D7:E7 Certificate issuer: /CN=A91716DE/serialNumber=4CC904E94C5C9B93A44A4F65EFB20A800D6DD7E7 Certificate serial: 04AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TMkE6Uxcm5OkSk9l77IKgA1t1-c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91716DE/8F340DD0752D11EC9C748D54C4F9AE02/TMkE6Uxcm5OkSk9l77IKgA1t1-c.mft Manifest number: 049C Signing time: Tue 24 Mar 2026 23:39:27 +0000 Manifest this update: Tue 24 Mar 2026 23:39:27 +0000 Manifest next update: Tue 31 Mar 2026 23:39:27 +0000 Files and hashes: 1: TMkE6Uxcm5OkSk9l77IKgA1t1-c.crl (hash: enJtYZGH5/cIYfeneCN9fbC+wOtHMEq6MXswZUJMrQA=) 2: E2348176D54D11EF8A899250C4F9AE02.roa (hash: 9llJReApVBmo5bvUcRrTyqYgxX0J7Rw+SzZuoT8YjSw=) 3: 75FC6CC2753711EC9091CB62C4F9AE02.roa (hash: UZnHMueWtrpb+JywnXsopY8oC5x4rGsb8m2Kk1OPC6Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91716DE/8F340DD0752D11EC9C748D54C4F9AE02/TMkE6Uxcm5OkSk9l77IKgA1t1-c.crl rsync://rpki.apnic.net/member_repository/A91716DE/8F340DD0752D11EC9C748D54C4F9AE02/TMkE6Uxcm5OkSk9l77IKgA1t1-c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TMkE6Uxcm5OkSk9l77IKgA1t1-c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 23:39:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1194 (0x4aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91716DE, serialNumber=4CC904E94C5C9B93A44A4F65EFB20A800D6DD7E7 Validity Not Before: Mar 24 23:39:27 2026 GMT Not After : Mar 31 23:39:27 2026 GMT Subject: CN=69c320af-a3b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:2c:b7:32:81:bc:02:9c:62:81:66:ac:0d:fe: 58:55:71:c2:a0:ce:e7:c7:04:f0:d8:87:b8:56:16: 10:45:71:f8:c6:ba:c3:43:10:2f:8b:a2:ff:b8:9e: 6b:5b:a8:f0:37:e0:bc:02:33:16:69:4f:b2:00:97: d7:41:eb:87:4b:8d:b3:f2:8e:44:1d:7c:8d:bd:ee: 21:c8:84:93:f7:e5:46:20:1a:54:6e:1b:9e:86:ce: e2:a3:df:98:14:6e:f2:b5:8d:44:a1:94:ad:f3:bc: 70:36:2e:9f:97:97:1f:b3:9f:2d:e7:a8:1d:d3:9f: ae:fe:e7:fe:4b:bd:6b:e5:9e:b0:d4:31:b7:31:20: fa:e3:5b:a2:1d:53:a7:db:5d:fd:e2:8d:11:b7:c0: 48:c5:36:75:6c:c6:c3:ea:04:3f:b6:20:4c:86:c4: a7:7b:cb:fa:b3:84:03:0b:49:93:e7:65:66:49:fe: 72:80:00:a0:b9:c0:15:ab:e8:73:35:cd:39:a2:86: 3d:88:0a:40:05:d9:ab:5e:c7:55:e2:eb:dd:99:b8: 56:98:7b:d2:d2:71:bb:ee:56:8b:1d:c2:3b:a9:c7: 38:f5:dd:c5:70:23:3f:83:69:ef:36:95:09:4a:d6: 6e:bb:9a:76:48:33:31:cc:7a:44:88:cc:46:d3:08: 16:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:BD:F6:D9:B4:E9:61:A9:1C:0F:A4:A5:14:22:6A:0C:B6:A5:79:5E X509v3 Authority Key Identifier: keyid:4C:C9:04:E9:4C:5C:9B:93:A4:4A:4F:65:EF:B2:0A:80:0D:6D:D7:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91716DE/8F340DD0752D11EC9C748D54C4F9AE02/TMkE6Uxcm5OkSk9l77IKgA1t1-c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TMkE6Uxcm5OkSk9l77IKgA1t1-c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91716DE/8F340DD0752D11EC9C748D54C4F9AE02/TMkE6Uxcm5OkSk9l77IKgA1t1-c.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:f4:00:d5:7e:c3:b9:d5:1f:2b:25:26:05:65:84:6b:a9:ad: f6:a2:7b:2f:7a:a6:e8:64:44:bb:ba:ab:f1:12:b4:81:70:3c: 38:23:e0:11:35:bd:51:79:43:c6:ee:f2:83:67:21:73:57:7e: b5:35:17:18:13:2c:ad:f4:b1:c4:37:4d:44:2f:2a:36:18:3f: 90:64:1f:89:dc:e4:3b:e8:d4:98:cd:46:3d:39:74:5a:93:c8: 02:3e:2b:cf:b9:63:bc:c1:07:85:8c:81:b1:aa:0c:c5:8f:3f: 00:39:33:97:29:c6:b6:03:ab:c0:db:28:45:41:48:62:97:f9: a1:c0:d9:87:00:5a:33:29:1b:e1:32:dd:c7:51:90:72:c6:06: cd:c6:44:b7:d1:96:b1:f5:12:46:f8:7d:b6:73:4f:56:ad:2b: dd:dc:67:16:2a:90:76:76:98:15:59:98:8e:23:19:9e:ac:d4: 46:93:ab:76:82:34:a2:47:82:e3:c2:69:7b:52:89:33:3e:a7: 37:02:04:d2:9e:ad:6d:f1:c4:26:4e:c8:15:1f:53:c4:a3:6f: cc:e6:72:63:60:21:81:0d:d0:16:1d:39:a2:ea:3d:94:60:10: d1:53:07:54:6e:05:2b:bb:9f:59:06:e3:14:16:88:4c:91:f8: ee:a8:52:f5 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBKowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE2REUxMTAvBgNVBAUTKDRDQzkwNEU5NEM1QzlCOTNBNDRBNEY2NUVGQjIwQTgw MEQ2REQ3RTcwHhcNMjYwMzI0MjMzOTI3WhcNMjYwMzMxMjMzOTI3WjAYMRYwFAYD VQQDEw02OWMzMjBhZi1hM2I0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyyy3MoG8ApxigWasDf5YVXHCoM7nxwTw2Ie4VhYQRXH4xrrDQxAvi6L/uJ5r W6jwN+C8AjMWaU+yAJfXQeuHS42z8o5EHXyNve4hyIST9+VGIBpUbhuehs7io9+Y FG7ytY1EoZSt87xwNi6fl5cfs58t56gd05+u/uf+S71r5Z6w1DG3MSD641uiHVOn 21394o0Rt8BIxTZ1bMbD6gQ/tiBMhsSne8v6s4QDC0mT52VmSf5ygACgucAVq+hz Nc05ooY9iApABdmrXsdV4uvdmbhWmHvS0nG77laLHcI7qcc49d3FcCM/g2nvNpUJ StZuu5p2SDMxzHpEiMxG0wgW0wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFN+99tm0 6WGpHA+kpRQiagy2pXleMB8GA1UdIwQYMBaAFEzJBOlMXJuTpEpPZe+yCoANbdfn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTZERS84RjM0MEREMDc1 MkQxMUVDOUM3NDhENTRDNEY5QUUwMi9UTWtFNlV4Y201T2tTazlsNzdJS2dBMXQx LWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RNa0U2VXhjbTVPa1NrOWw3N0lLZ0ExdDEtYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTZERS84RjM0MEREMDc1MkQxMUVDOUM3NDhENTRDNEY5QUUwMi9UTWtFNlV4Y201 T2tTazlsNzdJS2dBMXQxLWMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAV/QA1X7DudUfKyUmBWWEa6mt9qJ7L3qm6GREu7qr8RK0gXA8OCPgETW9UXlD xu7yg2chc1d+tTUXGBMsrfSxxDdNRC8qNhg/kGQfidzkO+jUmM1GPTl0WpPIAj4r z7ljvMEHhYyBsaoMxY8/ADkzlynGtgOrwNsoRUFIYpf5ocDZhwBaMykb4TLdx1GQ csYGzcZEt9GWsfUSRvh9tnNPVq0r3dxnFiqQdnaYFVmYjiMZnqzURpOrdoI0okeC 48Jpe1KJMz6nNwIE0p6tbfHEJk7IFR9TxKNvzOZyY2AhgQ3QFh05ouo9lGAQ0VMH VG4FK7ufWQbjFBaITJH47qhS9Q== -----END CERTIFICATE-----Generated at Thu Mar 26 23:09:29 2026 by rpki-client