$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.mft File: tY0p97gQfxWFtf_nDFAsbI9dMwI.mft (raw, json) Hash identifier: 1FGePm+nyxjIZKUyFNc8B7h/g3gSwb6iirODN/SlBFI= Subject key identifier: BC:F8:09:40:6F:C1:6A:49:AD:E0:2D:C7:04:BF:0A:B8:5C:75:A2:DB Authority key identifier: B5:8D:29:F7:B8:10:7F:15:85:B5:FF:E7:0C:50:2C:6C:8F:5D:33:02 Certificate issuer: /CN=A91B3CA4/serialNumber=B58D29F7B8107F1585B5FFE70C502C6C8F5D3302 Certificate serial: 08FC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tY0p97gQfxWFtf_nDFAsbI9dMwI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.mft Manifest number: 08DF Signing time: Tue 24 Mar 2026 20:09:52 +0000 Manifest this update: Tue 24 Mar 2026 20:09:51 +0000 Manifest next update: Tue 31 Mar 2026 20:09:51 +0000 Files and hashes: 1: tY0p97gQfxWFtf_nDFAsbI9dMwI.crl (hash: vnpdFN7YVEty3q02hHoLS13FOM5k+o8vLk9mL9jXt6s=) 2: C33EB0EC7C4211EB933D233EC4F9AE02.roa (hash: WROApDsBqYFj1tmEilpH4EMP+4m9uNYaD0No6ZndRwQ=) 3: 3C3F21BAD6F011EE9B38B67DC4F9AE02.roa (hash: dSogrThDaTv5OfuEsTdAc58TXHTFJalbVz+Qm6Tm1wU=) 4: F6F5BCCE53E711F084348F87C4F9AE02.roa (hash: NOtSPMoyjGNe3WLN4TReN45PMOlOKgXov/A6z0RFISo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.crl rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tY0p97gQfxWFtf_nDFAsbI9dMwI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 20:09:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2300 (0x8fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3CA4, serialNumber=B58D29F7B8107F1585B5FFE70C502C6C8F5D3302 Validity Not Before: Mar 24 20:09:51 2026 GMT Not After : Mar 31 20:09:51 2026 GMT Subject: CN=69c2ef90-096d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:3e:ab:43:7e:f9:6d:15:51:20:bd:84:44:2a: 7d:fe:a9:de:58:5e:b9:3b:bd:88:45:21:6b:f7:fa: f8:8e:fc:69:c2:3b:54:56:83:11:e4:6f:54:69:7b: 68:44:4f:d3:d5:ec:ad:67:54:bf:0f:f1:44:b9:eb: 86:96:d4:40:af:bf:4e:b2:7d:01:5c:e4:65:9a:36: cc:11:9b:d3:0e:f1:8b:8b:58:0f:10:29:1c:dc:3b: 25:1b:b1:a4:19:61:6f:90:a4:0c:a6:2e:60:35:23: 8b:f2:8d:2a:d4:d7:a1:9a:75:92:91:bf:49:1c:d3: 1e:58:1a:36:46:19:09:d8:26:41:cd:6a:57:de:c0: f8:36:a9:e5:7a:1f:99:cc:0c:45:29:21:89:9d:19: d2:6d:31:8a:6f:89:b8:9b:9f:90:79:06:4f:9b:25: f4:9e:8f:14:b9:39:d4:b8:ef:79:80:df:67:8e:37: 0c:10:b5:ec:d9:6f:bf:cb:b3:88:b7:34:3b:83:e8: ed:20:51:24:05:03:35:0a:55:35:a8:05:de:db:2f: 92:87:7d:21:4a:46:9c:03:e7:3b:20:52:2b:c2:9f: 76:d7:88:eb:10:51:7c:6a:f7:c7:66:a9:0b:58:5a: 1d:a7:a5:30:d9:ce:b9:12:fa:01:b1:83:2c:e2:5e: 89:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:F8:09:40:6F:C1:6A:49:AD:E0:2D:C7:04:BF:0A:B8:5C:75:A2:DB X509v3 Authority Key Identifier: keyid:B5:8D:29:F7:B8:10:7F:15:85:B5:FF:E7:0C:50:2C:6C:8F:5D:33:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tY0p97gQfxWFtf_nDFAsbI9dMwI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:a2:74:5c:c4:d8:a4:07:1e:ff:5b:b6:53:7a:03:9f:62:62: 12:25:e0:19:40:41:52:c0:14:ab:0a:04:9d:9c:9d:2b:0e:5d: 12:60:64:ae:13:61:13:3c:12:bc:e9:16:6c:77:5b:5c:ce:71: 46:94:e9:11:b1:9a:f0:42:14:80:84:50:d1:7a:e1:5b:01:20: 6d:1d:cc:8b:84:24:d2:de:35:2e:65:32:42:fa:f6:f3:53:4e: 35:52:aa:d6:12:4b:06:57:96:58:54:b5:57:63:8e:be:94:4e: 15:a1:d3:68:76:14:5e:8c:09:69:5f:a2:24:71:b5:a5:fb:1f: e0:a7:b3:d2:db:1b:19:85:9d:fd:b0:8b:b5:fc:e6:92:d5:6e: 32:36:0e:f4:b4:41:59:b3:26:17:70:0a:63:94:bc:55:38:c8: 87:ed:1d:f2:7d:dc:50:07:44:e8:b6:2e:38:f2:53:75:0f:fb: 70:55:08:c1:a3:da:9f:9a:b2:4b:db:d1:4f:71:3c:78:e2:66: 81:ee:61:74:45:5d:20:06:cf:bc:c4:1e:44:6d:a0:d3:1c:57: 82:bc:85:c2:bc:60:c6:b2:2f:8b:40:42:b8:f8:e5:f0:18:94: ca:37:9e:2a:a5:ad:d3:df:ed:d5:f3:f3:0b:d1:c8:90:47:df: 40:02:ab:b3 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCPwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjNDQTQxMTAvBgNVBAUTKEI1OEQyOUY3QjgxMDdGMTU4NUI1RkZFNzBDNTAyQzZD OEY1RDMzMDIwHhcNMjYwMzI0MjAwOTUxWhcNMjYwMzMxMjAwOTUxWjAYMRYwFAYD VQQDEw02OWMyZWY5MC0wOTZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArj6rQ375bRVRIL2ERCp9/qneWF65O72IRSFr9/r4jvxpwjtUVoMR5G9UaXto RE/T1eytZ1S/D/FEueuGltRAr79Osn0BXORlmjbMEZvTDvGLi1gPECkc3DslG7Gk GWFvkKQMpi5gNSOL8o0q1NehmnWSkb9JHNMeWBo2RhkJ2CZBzWpX3sD4Nqnleh+Z zAxFKSGJnRnSbTGKb4m4m5+QeQZPmyX0no8UuTnUuO95gN9njjcMELXs2W+/y7OI tzQ7g+jtIFEkBQM1ClU1qAXe2y+Sh30hSkacA+c7IFIrwp9214jrEFF8avfHZqkL WFodp6Uw2c65EvoBsYMs4l6J4QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLz4CUBv wWpJreAtxwS/CrhcdaLbMB8GA1UdIwQYMBaAFLWNKfe4EH8VhbX/5wxQLGyPXTMC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCM0NBNC8xNUY2OEI1Q0NG MTkxMUVBQUVGNjBCMUVDNEY5QUUwMi90WTBwOTdnUWZ4V0Z0Zl9uREZBc2JJOWRN d0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RZMHA5N2dRZnhXRnRmX25ERkFzYkk5ZE13SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC M0NBNC8xNUY2OEI1Q0NGMTkxMUVBQUVGNjBCMUVDNEY5QUUwMi90WTBwOTdnUWZ4 V0Z0Zl9uREZBc2JJOWRNd0kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAM6J0XMTYpAce/1u2U3oDn2JiEiXgGUBBUsAUqwoEnZydKw5dEmBkrhNhEzwS vOkWbHdbXM5xRpTpEbGa8EIUgIRQ0XrhWwEgbR3Mi4Qk0t41LmUyQvr281NONVKq 1hJLBleWWFS1V2OOvpROFaHTaHYUXowJaV+iJHG1pfsf4Kez0tsbGYWd/bCLtfzm ktVuMjYO9LRBWbMmF3AKY5S8VTjIh+0d8n3cUAdE6LYuOPJTdQ/7cFUIwaPan5qy S9vRT3E8eOJmge5hdEVdIAbPvMQeRG2g0xxXgryFwrxgxrIvi0BCuPjl8BiUyjee KqWt09/t1fPzC9HIkEffQAKrsw== -----END CERTIFICATE-----Generated at Thu Mar 26 04:09:30 2026 by rpki-client