$ rpki-client -vvf rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/tIZeO-nFadK5Pyw1HKsk0VBqrA0.mft File: tIZeO-nFadK5Pyw1HKsk0VBqrA0.mft (raw, json) Hash identifier: MzNvwViCwhZH8JF5V4bvkEynDG8R2/Oy5d/GAGYPwyA= Subject key identifier: 6F:2F:35:F0:E6:E8:D3:0C:60:C6:20:89:9D:D6:28:17:8B:DF:19:31 Authority key identifier: B4:86:5E:3B:E9:C5:69:D2:B9:3F:2C:35:1C:AB:24:D1:50:6A:AC:0D Certificate issuer: /CN=A9197CBD/serialNumber=B4865E3BE9C569D2B93F2C351CAB24D1506AAC0D Certificate serial: 01AB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tIZeO-nFadK5Pyw1HKsk0VBqrA0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/tIZeO-nFadK5Pyw1HKsk0VBqrA0.mft Manifest number: 01A3 Signing time: Wed 25 Mar 2026 03:30:16 +0000 Manifest this update: Wed 25 Mar 2026 03:30:16 +0000 Manifest next update: Wed 01 Apr 2026 03:30:16 +0000 Files and hashes: 1: tIZeO-nFadK5Pyw1HKsk0VBqrA0.crl (hash: tabBSUS8vPhYeqlP5JgsgX1DdwGkqRunOnTkc2H2n8I=) 2: DDFD7F92A36311F0BCF40B3CC4F9AE02.roa (hash: +itwix5tg1TL0xARCgIhfb+QDUeml9Ar+ujsgMhe8AM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/tIZeO-nFadK5Pyw1HKsk0VBqrA0.crl rsync://rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/tIZeO-nFadK5Pyw1HKsk0VBqrA0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tIZeO-nFadK5Pyw1HKsk0VBqrA0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 03:30:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 427 (0x1ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197CBD, serialNumber=B4865E3BE9C569D2B93F2C351CAB24D1506AAC0D Validity Not Before: Mar 25 03:30:16 2026 GMT Not After : Apr 1 03:30:16 2026 GMT Subject: CN=69c356c8-9cec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:4e:d6:2f:b5:12:b3:6c:68:35:20:2e:d1:47: 50:e4:34:0c:2e:1a:02:71:ca:19:89:bc:f8:87:8e: d8:e3:11:76:e0:7c:eb:9f:c1:f4:b7:4e:c7:05:bb: a8:b7:71:d3:de:50:22:48:f9:42:5b:e4:e5:25:3a: 4a:c9:5f:e8:63:2d:ac:0e:96:e2:e8:e0:e1:3e:b4: e4:c1:fa:36:22:b3:ac:6a:a8:eb:54:54:58:37:98: fb:09:e4:8e:c1:ab:bd:e1:a5:2f:a8:b3:05:70:29: 61:d4:ae:3a:0f:2b:0a:d4:f6:47:9c:da:b4:14:a8: 42:04:99:fc:d7:50:92:c5:ba:04:1a:b1:e8:5b:81: 68:5a:22:4b:49:96:c3:d9:e7:90:f0:50:8e:ee:ed: 47:1e:f3:5e:a6:37:e0:ca:1f:90:f4:f1:b4:f3:de: 06:00:a0:44:1c:fa:c6:5e:4b:82:96:db:30:3f:3e: 6f:bd:ab:4c:90:d7:40:b5:bc:54:d5:c0:5b:92:d2: ed:a7:7f:37:9b:69:d7:a7:c0:26:31:b1:00:0d:9b: 5c:a6:b1:5b:ba:57:e7:b0:af:df:ea:ae:27:09:33: 22:7b:f6:29:21:e2:f7:92:7a:9c:8e:ab:14:38:10: 12:00:5c:b4:07:10:29:69:65:01:8f:1b:e7:9f:02: f7:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:2F:35:F0:E6:E8:D3:0C:60:C6:20:89:9D:D6:28:17:8B:DF:19:31 X509v3 Authority Key Identifier: keyid:B4:86:5E:3B:E9:C5:69:D2:B9:3F:2C:35:1C:AB:24:D1:50:6A:AC:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/tIZeO-nFadK5Pyw1HKsk0VBqrA0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tIZeO-nFadK5Pyw1HKsk0VBqrA0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/tIZeO-nFadK5Pyw1HKsk0VBqrA0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:f9:03:65:60:67:c5:2a:cc:e0:d0:7e:c9:18:cd:eb:d5:3d: 30:0d:c6:30:17:eb:7d:e0:a1:d0:94:a5:bb:2f:c0:da:41:5f: d2:38:3f:d2:d0:e9:ea:a7:1a:3d:00:93:f8:24:07:7f:be:df: 62:a8:d8:bc:39:af:ef:df:fd:3d:a9:ed:25:c0:d1:73:c2:60: cb:0d:47:de:13:fe:d5:ef:24:08:a5:03:9c:2e:84:61:71:86: ab:df:84:2c:dc:a4:25:7a:73:10:2f:53:f1:e0:e5:59:62:8c: 66:f0:6e:0e:25:c6:c1:ff:79:23:9e:48:86:da:52:d7:b3:bd: ab:ab:ec:a2:93:f4:97:ee:9c:e3:1c:0e:d0:29:e7:f4:14:c9: 71:26:85:93:d9:7c:e5:da:78:09:40:16:b0:64:74:b5:13:78: e9:1c:c7:b0:2a:28:1a:43:31:59:5f:7c:15:e6:7f:92:69:38: 69:5b:77:4a:c8:9d:5e:73:34:50:6d:6b:78:01:b8:bd:4c:d4: dd:85:c0:f5:1e:56:88:ec:ee:c3:a1:4b:df:c7:a2:c0:42:82: af:43:d2:8c:83:19:88:94:a5:18:f5:b9:f4:0d:df:b6:d0:79: 49:0a:7d:7b:71:e0:95:e4:7d:58:86:46:c7:83:8e:04:ae:a9: 4e:47:7e:92 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAaswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTdDQkQxMTAvBgNVBAUTKEI0ODY1RTNCRTlDNTY5RDJCOTNGMkMzNTFDQUIyNEQx NTA2QUFDMEQwHhcNMjYwMzI1MDMzMDE2WhcNMjYwNDAxMDMzMDE2WjAYMRYwFAYD VQQDEw02OWMzNTZjOC05Y2VjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsE7WL7USs2xoNSAu0UdQ5DQMLhoCccoZibz4h47Y4xF24Hzrn8H0t07HBbuo t3HT3lAiSPlCW+TlJTpKyV/oYy2sDpbi6ODhPrTkwfo2IrOsaqjrVFRYN5j7CeSO wau94aUvqLMFcClh1K46DysK1PZHnNq0FKhCBJn811CSxboEGrHoW4FoWiJLSZbD 2eeQ8FCO7u1HHvNepjfgyh+Q9PG0894GAKBEHPrGXkuCltswPz5vvatMkNdAtbxU 1cBbktLtp383m2nXp8AmMbEADZtcprFbulfnsK/f6q4nCTMie/YpIeL3knqcjqsU OBASAFy0BxApaWUBjxvnnwL3ZQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFG8vNfDm 6NMMYMYgiZ3WKBeL3xkxMB8GA1UdIwQYMBaAFLSGXjvpxWnSuT8sNRyrJNFQaqwN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5N0NCRC8zNTcwREYyRUIx MTQxMUVFOTVFNzQzNjVDNEY5QUUwMi90SVplTy1uRmFkSzVQeXcxSEtzazBWQnFy QTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3RJWmVPLW5GYWRLNVB5dzFIS3NrMFZCcXJBMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 N0NCRC8zNTcwREYyRUIxMTQxMUVFOTVFNzQzNjVDNEY5QUUwMi90SVplTy1uRmFk SzVQeXcxSEtzazBWQnFyQTAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAd/kDZWBnxSrM4NB+yRjN69U9MA3GMBfrfeCh0JSluy/A2kFf0jg/0tDp6qca PQCT+CQHf77fYqjYvDmv79/9PantJcDRc8Jgyw1H3hP+1e8kCKUDnC6EYXGGq9+E LNykJXpzEC9T8eDlWWKMZvBuDiXGwf95I55IhtpS17O9q6vsopP0l+6c4xwO0Cnn 9BTJcSaFk9l85dp4CUAWsGR0tRN46RzHsCooGkMxWV98FeZ/kmk4aVt3SsidXnM0 UG1reAG4vUzU3YXA9R5WiOzuw6FL38eiwEKCr0PSjIMZiJSlGPW59A3fttB5SQp9 e3HgleR9WIZGx4OOBK6pTkd+kg== -----END CERTIFICATE-----Generated at Fri Mar 27 00:34:58 2026 by rpki-client