$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.mft File: tBFqjm2pkf3PcWJue-oR_2nLqEY.mft (raw, json) Hash identifier: cMgT8YmwK+GmL4vX6DFlSyV6MsWHx0+HybP48tKE02w= Subject key identifier: A8:68:37:34:B9:38:7B:F8:0C:E8:92:DA:58:95:38:03:4B:3D:D2:03 Authority key identifier: B4:11:6A:8E:6D:A9:91:FD:CF:71:62:6E:7B:EA:11:FF:69:CB:A8:46 Certificate issuer: /CN=A91A4402/serialNumber=B4116A8E6DA991FDCF71626E7BEA11FF69CBA846 Certificate serial: 0D49 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.mft Manifest number: 0C7A Signing time: Tue 24 Mar 2026 18:46:20 +0000 Manifest this update: Tue 24 Mar 2026 18:46:19 +0000 Manifest next update: Tue 31 Mar 2026 18:46:19 +0000 Files and hashes: 1: tBFqjm2pkf3PcWJue-oR_2nLqEY.crl (hash: WiHUW3uyQD8xnhgb/nEA4mWuSijTDcRLz39DI3YDz+E=) 2: 5164F13EDBD811F0A0A88CE756641951.roa (hash: eLZKuHsW1ycAr9Iq4696bBhI1gKyx3N1WwU1Y5PnRJ8=) 3: F894F5B0E09411F0B3B2B389426F56BC.roa (hash: +/pxD27jpqZK7mwifKDRc9ojOesyrvjQYciaMbfaLvk=) 4: 234D0D6C500611F08771CE55C4F9AE02.roa (hash: tLlrYfQgXxnaToikebv9ZSOJv+09BIPvjOuMTXnI+m0=) 5: 0E43AECA3B5D11F0A26BC064C4F9AE02.roa (hash: rx1Mf7ylLJlz5TrZQMaxu72qnNGJnnaZIoeFSJobN+E=) 6: 1DB49770BDD511F0BF83ED5AC4F9AE02.roa (hash: 6JLMteJnja7+tiZnKdI5bf0UkqKb/Uh5AX2ANHa//84=) 7: E3903588DA3311F082FD85DA8AD3641D.roa (hash: MfOj3lbGuO/G5TuCaMkDAViR5jscnY+4WI5jIiqpGsA=) 8: E58488D0BB7A11F09DC5801DC4F9AE02.roa (hash: lZKpR1VVIPheOf685hGoxyJuXh0TJ+bcZ5UNcYowwXY=) 9: 1D231FDEBDD511F0BAEEED5AC4F9AE02.roa (hash: bq9TzRhG0YcuxnkwLOhAfWs5GL/Qvk3+Q63cN6+9Ro4=) 10: F3B9AEC4740A11F09DAF2A29C4F9AE02.roa (hash: X5kHDpuuQNfIGRpaueB+R7zUfzuivixJGb6q6/nzsAU=) 11: 76BF01E88EF511F0BA815369C4F9AE02.roa (hash: xx9TeHOBj2OiOI8r7wwibUAIIL4Fl8ddiQuAnrOI7w8=) 12: 6ACD5ACC227711F1A91DCF18A4833773.roa (hash: TJMnHoqNrDu0s7s8nY8tdFhEqoWxtnw6hx5yIb/HoEo=) 13: 8B5ED70E821611F0B778F47DC4F9AE02.roa (hash: aEhA9+ssD2dfx+1WtFOaw2FrI9zywwb1i6+vFoIN8fo=) 14: 43DCAEE0BBE811F092C97714C4F9AE02.roa (hash: s+8+Ay/MDWEzNmYQjEi8P9yXENJTqx4r4dR7RY92skY=) 15: 622E19EEDA1811F0A393A6F584D3641D.roa (hash: RcYolDaRAN1Hi//EmOTv5sFW3I9hLGGajXq2gFlI3o8=) 16: 8BEC7D66E54911F091014A6A756F56BC.roa (hash: gHvNsWly8Kw30Typ48MzQXoDCYERYi0RW34Z6gmffVg=) 17: C3CFE8A06B7B11F0B6D16E2AC4F9AE02.roa (hash: A4zYqw73DHHyadBQLcyhIlD6IDAEqxDy3foGsjv4EZ8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.crl rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 18:46:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3401 (0xd49) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4402, serialNumber=B4116A8E6DA991FDCF71626E7BEA11FF69CBA846 Validity Not Before: Mar 24 18:46:19 2026 GMT Not After : Mar 31 18:46:19 2026 GMT Subject: CN=69c2dbfb-842c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:61:9e:66:43:3b:5b:65:10:ee:7c:7f:84:7a: 9c:69:bc:e7:bc:9d:4a:88:5b:9f:76:73:42:ee:ba: 06:8c:6e:28:de:25:60:67:38:d0:d0:46:93:25:1e: 36:ec:ec:1e:8b:56:97:7b:1b:f7:dd:5c:40:4c:39: 8b:ef:20:cf:15:7b:46:e1:a8:c2:04:29:b3:29:70: 6a:d8:0c:30:62:23:54:f1:fe:c9:d9:01:3d:f6:c7: e4:0a:55:91:5a:b3:d6:d7:01:29:5b:68:2d:38:ab: c0:17:9f:d8:71:28:b6:81:7e:4f:6b:5c:49:f2:29: d2:94:a4:bb:2d:34:f6:68:ed:6a:55:66:98:cb:e3: df:2a:33:fe:65:1f:8f:d8:e5:50:25:fb:3e:91:23: 08:f6:6a:f1:d0:9f:90:31:90:61:e2:a7:0f:bf:e4: ba:e9:5d:f0:62:18:2c:2a:bf:5d:48:c9:17:c3:69: 10:0b:6a:72:6b:42:cf:2d:c6:56:fe:df:13:01:a7: 97:cd:af:13:dd:20:18:b0:cc:8b:45:2b:eb:8f:04: 95:fc:a4:61:92:c3:dd:7f:5a:b9:e2:75:0a:8d:79: b5:25:6a:4d:8c:0e:4b:b2:d5:83:9d:fc:fd:30:83: b9:c2:64:71:e8:64:f7:ad:de:38:23:d7:76:85:b4: 7e:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:68:37:34:B9:38:7B:F8:0C:E8:92:DA:58:95:38:03:4B:3D:D2:03 X509v3 Authority Key Identifier: keyid:B4:11:6A:8E:6D:A9:91:FD:CF:71:62:6E:7B:EA:11:FF:69:CB:A8:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:20:35:33:56:7d:13:b7:cc:79:63:9c:f0:44:83:22:d9:83: f8:c6:d2:a8:a6:fa:9d:be:c1:ae:59:79:56:da:55:af:1d:87: 3e:d9:b5:4e:4b:d4:1d:d9:b2:e4:7d:bb:0b:32:9f:3c:77:30: 6a:b4:63:0b:f6:ef:ab:1d:5a:06:ab:bf:49:a0:25:58:41:4e: be:bc:da:cc:e1:b6:b3:84:6e:a1:36:ae:53:6b:0d:76:6b:6b: 2a:e4:27:13:95:fb:86:88:da:22:68:98:82:a2:27:f2:e4:76: 5b:30:cb:9f:84:f1:8f:8d:2f:8d:f3:92:b7:98:55:e0:04:76: 36:3b:c0:fc:c1:4e:03:7b:3a:8b:1b:d4:35:d5:cc:56:c9:0f: 45:50:73:ee:3c:98:8c:4f:51:f6:41:66:4a:d1:9f:15:3b:e2: b7:20:7e:dd:d5:9a:00:b6:55:ed:42:19:f3:60:40:35:3f:a3: be:80:c5:48:b7:04:4e:10:60:97:a1:fe:ea:d8:23:20:be:05: f7:b6:ec:ff:8c:e7:c2:98:e8:4e:35:94:a3:7a:42:cc:ca:e9: c1:04:3c:75:e3:97:34:eb:ea:17:3f:d9:f3:fb:ab:e2:aa:f7: c8:40:af:56:cf:16:74:ad:8c:c8:11:fb:5e:86:36:32:5e:65: 1b:5a:4e:af -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDUkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ0MDIxMTAvBgNVBAUTKEI0MTE2QThFNkRBOTkxRkRDRjcxNjI2RTdCRUExMUZG NjlDQkE4NDYwHhcNMjYwMzI0MTg0NjE5WhcNMjYwMzMxMTg0NjE5WjAYMRYwFAYD VQQDEw02OWMyZGJmYi04NDJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxGGeZkM7W2UQ7nx/hHqcabznvJ1KiFufdnNC7roGjG4o3iVgZzjQ0EaTJR42 7Owei1aXexv33VxATDmL7yDPFXtG4ajCBCmzKXBq2AwwYiNU8f7J2QE99sfkClWR WrPW1wEpW2gtOKvAF5/YcSi2gX5Pa1xJ8inSlKS7LTT2aO1qVWaYy+PfKjP+ZR+P 2OVQJfs+kSMI9mrx0J+QMZBh4qcPv+S66V3wYhgsKr9dSMkXw2kQC2pya0LPLcZW /t8TAaeXza8T3SAYsMyLRSvrjwSV/KRhksPdf1q54nUKjXm1JWpNjA5LstWDnfz9 MIO5wmRx6GT3rd44I9d2hbR+iQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKhoNzS5 OHv4DOiS2liVOANLPdIDMB8GA1UdIwQYMBaAFLQRao5tqZH9z3FibnvqEf9py6hG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDQwMi9GREJGRDAyMDNE OTYxMUVBOEVBMDcwMkZDNEY5QUUwMi90QkZxam0ycGtmM1BjV0p1ZS1vUl8ybkxx RVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RCRnFqbTJwa2YzUGNXSnVlLW9SXzJuTHFFWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDQwMi9GREJGRDAyMDNEOTYxMUVBOEVBMDcwMkZDNEY5QUUwMi90QkZxam0ycGtm M1BjV0p1ZS1vUl8ybkxxRVkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAoSA1M1Z9E7fMeWOc8ESDItmD+MbSqKb6nb7Brll5VtpVrx2HPtm1TkvUHdmy 5H27CzKfPHcwarRjC/bvqx1aBqu/SaAlWEFOvrzazOG2s4RuoTauU2sNdmtrKuQn E5X7hojaImiYgqIn8uR2WzDLn4Txj40vjfOSt5hV4AR2NjvA/MFOA3s6ixvUNdXM VskPRVBz7jyYjE9R9kFmStGfFTvityB+3dWaALZV7UIZ82BANT+jvoDFSLcEThBg l6H+6tgjIL4F97bs/4znwpjoTjWUo3pCzMrpwQQ8deOXNOvqFz/Z8/ur4qr3yECv Vs8WdK2MyBH7XoY2Ml5lG1pOrw== -----END CERTIFICATE-----Generated at Thu Mar 26 04:39:24 2026 by rpki-client