$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.mft File: TK4677Gsir3bmbzO5PpakW0VezQ.mft (raw, json) Hash identifier: jlLzZ35XZnhuy4E9DxIJg810gF3G0cKSZLxBrj2s9gs= Subject key identifier: 0E:FB:CE:61:75:3B:2D:22:0D:2A:BC:79:32:74:63:66:43:C4:76:B2 Authority key identifier: 4C:AE:3A:EF:B1:AC:8A:BD:DB:99:BC:CE:E4:FA:5A:91:6D:15:7B:34 Certificate issuer: /CN=A91B5D7E/serialNumber=4CAE3AEFB1AC8ABDDB99BCCEE4FA5A916D157B34 Certificate serial: 3706 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.mft Manifest number: 35F5 Signing time: Tue 24 Mar 2026 14:29:08 +0000 Manifest this update: Tue 24 Mar 2026 14:29:07 +0000 Manifest next update: Tue 31 Mar 2026 14:29:07 +0000 Files and hashes: 1: TK4677Gsir3bmbzO5PpakW0VezQ.crl (hash: Ekp3iZYu7iucDTXeV3YNrT8MyHuBijTs/ng/CXY+NAs=) 2: D630A6B206D511EFB6CFDF2DC4F9AE02.roa (hash: j7NSyaGCsiCQNnmyTpDrtH8dk6MerGuTvymGLl12qTI=) 3: 77D96D4A4F3411EFBA0A2659C4F9AE02.roa (hash: yyOi/VAw5sRVCQX5TpgvFtNkRFTz06wlp/omi2nfwPw=) 4: 24D7D74C978011EE87BB7D53C4F9AE02.roa (hash: E8tgGZnAJ0DYVToULPFkfN33B2nidUXrmWqnz+uCtOk=) 5: 4DFF14DE71F211F08D45AC42C4F9AE02.roa (hash: RV3R+8uCKWnB9ll+ltJkxV+x3kpjR9QPpPUyngdFPaM=) 6: 2EA5CD40F87911F0BB9C431B4E6F56BC.roa (hash: +d4B26Na8POcAIMEDHE80hyVEMg/1Er/8leTiDirXLU=) 7: 8FF00754732F11EE90078C13C4F9AE02.roa (hash: YKihQA85OZGMIoxiktXscM0JZAAS7N+DfWFx0LMvOUU=) 8: 8FD552C071F111F0AE49323FC4F9AE02.roa (hash: 9irr6mRRCa6Oo6K8I9PdRq3pgeAMalaJw+pxtHcISBU=) 9: E83E047071F111F0BBD1B63FC4F9AE02.roa (hash: IQ74hXKfS9sBj5pIuOgIRXKGZQu6lWL3dFvrJ3NA2Fw=) 10: 0FCEE1C4F76411F08B4529B5436F56BC.roa (hash: ARWDJzOSFseHYrmvd3v84W+z4laPOxW/BizgI/8vmQQ=) 11: D166652A072211EF9AC24D5BC4F9AE02.roa (hash: zxbZTAwiDX/b2GO6W1+ev4fZzno5bblpI3qcle69OTA=) 12: 945922AECEBA11EDBBFD9E28C4F9AE02.roa (hash: mwJTu9ubLJ5CecmwYFCQ6y7GrlQ3uGcRqvbvaSw7Luw=) 13: 31D56A8E06C711EF9A0E1D0AC4F9AE02.roa (hash: 2Lzx/G2fSpGrGjExrZZ3r9OFOxUEm3cHovV2rhteE/0=) 14: 4DC27210558111EF880A8679C4F9AE02.roa (hash: CxrN5BIIQrkUc76Mjxuam5mtgMFBui6ZyXEwqKxcF3s=) 15: 0C51883C12E711F183ACC54E0D3D8C67.roa (hash: 3LThCkSD3CixkviqNHz0V+phveOJEdStCjidpGP40/s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.crl rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 14:29:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14086 (0x3706) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5D7E, serialNumber=4CAE3AEFB1AC8ABDDB99BCCEE4FA5A916D157B34 Validity Not Before: Mar 24 14:29:07 2026 GMT Not After : Mar 31 14:29:07 2026 GMT Subject: CN=69c29fb4-9d32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:5e:9a:c8:fb:0a:1f:e1:0b:b7:90:95:9a:2b: 50:5c:c7:36:5a:54:53:a3:c0:85:66:b5:08:3e:12: 3f:81:04:08:a2:13:7f:f8:56:d0:b2:c1:cf:e8:2d: 32:f4:95:5e:16:00:d4:5a:77:0a:6a:d6:28:8e:c4: 77:e2:45:c6:54:22:a7:3d:1b:85:a7:94:09:f0:fd: bc:ce:c2:1a:18:05:23:39:bf:c6:09:84:b9:6a:32: ed:64:ba:3c:e4:97:5b:12:ee:95:da:1c:6f:74:88: c3:a7:31:14:c6:c9:79:b4:ff:0a:c6:ae:48:5b:a5: ea:94:4f:ac:7e:c6:0c:54:ad:4b:ab:18:1c:71:85: ba:b9:76:43:0d:50:9a:4a:b7:99:7d:f7:38:56:90: 58:a1:12:f2:f3:3c:97:b9:67:a0:c2:8d:81:07:07: c5:3f:0e:87:22:60:d8:d4:b1:60:c1:a9:c7:5e:08: 67:ed:9d:cd:ad:0f:ae:e5:54:d9:43:85:15:0e:e2: 37:62:d6:0a:95:93:f9:48:8e:c9:a8:fe:1d:ca:d0: b8:25:a1:f1:19:8d:3d:c5:0d:0a:7d:06:2a:48:3a: 26:71:cd:d2:66:c9:69:6a:54:9f:41:8e:3d:11:e6: 5e:bc:98:25:44:37:9b:3c:e1:7a:fb:e6:d1:55:cd: 00:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:FB:CE:61:75:3B:2D:22:0D:2A:BC:79:32:74:63:66:43:C4:76:B2 X509v3 Authority Key Identifier: keyid:4C:AE:3A:EF:B1:AC:8A:BD:DB:99:BC:CE:E4:FA:5A:91:6D:15:7B:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:69:93:82:bb:1f:a5:94:6d:f2:e8:34:11:93:10:b8:ca:52: 8d:b5:bb:cf:a3:0c:d3:67:f7:d1:3f:24:53:70:bc:74:da:1e: e8:b5:cb:7c:3f:00:79:95:13:95:52:08:46:07:27:2d:1f:36: da:52:a4:e1:67:09:ad:89:f3:09:22:60:7d:d4:ed:da:87:e3: 4d:8b:1e:37:1f:24:5d:41:ea:24:bf:c3:c0:fc:5a:cb:2d:00: d8:19:7d:76:7e:38:be:85:ca:0c:ae:db:af:16:5d:8c:8f:95: b2:de:82:f9:fa:e6:80:78:13:9c:74:1b:66:07:27:79:e5:ee: 1c:0f:a7:8f:9a:05:c7:0c:ee:77:b8:da:d9:89:19:2e:19:ae: 70:6a:d5:47:97:7b:1c:75:b8:8c:81:fb:40:ae:cd:77:84:b8: bf:19:e0:60:a8:c3:05:5a:d6:88:b5:56:c3:8a:35:3b:1f:a9: 7f:11:7c:ce:5c:41:0e:c6:4d:2a:b7:14:8d:41:1c:e7:ec:8d: 10:8a:e6:ae:7b:5e:2e:6c:47:13:35:63:54:67:e8:f6:7d:fa: 59:45:10:0a:5c:71:54:ea:ad:eb:2c:5c:64:8b:3e:b8:9a:d9: 46:d8:0e:74:8d:8c:a5:03:75:01:6e:97:cc:05:57:5a:ad:7b: d8:c5:a4:0f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNwYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVEN0UxMTAvBgNVBAUTKDRDQUUzQUVGQjFBQzhBQkREQjk5QkNDRUU0RkE1QTkx NkQxNTdCMzQwHhcNMjYwMzI0MTQyOTA3WhcNMjYwMzMxMTQyOTA3WjAYMRYwFAYD VQQDEw02OWMyOWZiNC05ZDMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr16ayPsKH+ELt5CVmitQXMc2WlRTo8CFZrUIPhI/gQQIohN/+FbQssHP6C0y 9JVeFgDUWncKatYojsR34kXGVCKnPRuFp5QJ8P28zsIaGAUjOb/GCYS5ajLtZLo8 5JdbEu6V2hxvdIjDpzEUxsl5tP8Kxq5IW6XqlE+sfsYMVK1LqxgccYW6uXZDDVCa SreZffc4VpBYoRLy8zyXuWegwo2BBwfFPw6HImDY1LFgwanHXghn7Z3NrQ+u5VTZ Q4UVDuI3YtYKlZP5SI7JqP4dytC4JaHxGY09xQ0KfQYqSDomcc3SZslpalSfQY49 EeZevJglRDebPOF6++bRVc0AJwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFA77zmF1 Oy0iDSq8eTJ0Y2ZDxHayMB8GA1UdIwQYMBaAFEyuOu+xrIq925m8zuT6WpFtFXs0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUQ3RS9FQ0E2ODIzNDFE ODcxMUUyOTgzMjJERTAwOEIwMkNEMi9USzQ2NzdHc2lyM2JtYnpPNVBwYWtXMFZl elEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RLNDY3N0dzaXIzYm1iek81UHBha1cwVmV6US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NUQ3RS9FQ0E2ODIzNDFEODcxMUUyOTgzMjJERTAwOEIwMkNEMi9USzQ2NzdHc2ly M2JtYnpPNVBwYWtXMFZlelEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAEmmTgrsfpZRt8ug0EZMQuMpSjbW7z6MM02f30T8kU3C8dNoe6LXLfD8AeZUT lVIIRgcnLR822lKk4WcJrYnzCSJgfdTt2ofjTYseNx8kXUHqJL/DwPxayy0A2Bl9 dn44voXKDK7brxZdjI+Vst6C+frmgHgTnHQbZgcneeXuHA+nj5oFxwzud7ja2YkZ LhmucGrVR5d7HHW4jIH7QK7Nd4S4vxngYKjDBVrWiLVWw4o1Ox+pfxF8zlxBDsZN KrcUjUEc5+yNEIrmrnteLmxHEzVjVGfo9n36WUUQClxxVOqt6yxcZIs+uJrZRtgO dI2MpQN1AW6XzAVXWq172MWkDw== -----END CERTIFICATE-----Generated at Thu Mar 26 10:56:56 2026 by rpki-client