$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.mft File: tU-K0c7KwTb8r0eS6_0A5o6h02g.mft (raw, json) Hash identifier: sKPmcbMSdOOC6ku1SeB7sMoFT8euYZrq//ArAOVAGO4= Subject key identifier: 15:E7:9C:64:6F:D8:B7:35:6D:B7:C7:11:B2:ED:62:6C:C1:3F:B7:2A Authority key identifier: B5:4F:8A:D1:CE:CA:C1:36:FC:AF:47:92:EB:FD:00:E6:8E:A1:D3:68 Certificate issuer: /CN=A91B7DCB/serialNumber=B54F8AD1CECAC136FCAF4792EBFD00E68EA1D368 Certificate serial: AE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tU-K0c7KwTb8r0eS6_0A5o6h02g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.mft Manifest number: AA Signing time: Wed 25 Mar 2026 06:25:54 +0000 Manifest this update: Wed 25 Mar 2026 06:25:53 +0000 Manifest next update: Wed 01 Apr 2026 06:25:53 +0000 Files and hashes: 1: tU-K0c7KwTb8r0eS6_0A5o6h02g.crl (hash: vo4aZKWmPETWYYD8YLMfwWQtNAhtO9rKpbXs6cqlmBk=) 2: D470A60E294511F0B1412377C4F9AE02.roa (hash: GSkbxwT7s713aepzAHb1asdunZV2hHHIcFkvDpvvdJw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.crl rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tU-K0c7KwTb8r0eS6_0A5o6h02g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 06:25:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 174 (0xae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7DCB, serialNumber=B54F8AD1CECAC136FCAF4792EBFD00E68EA1D368 Validity Not Before: Mar 25 06:25:53 2026 GMT Not After : Apr 1 06:25:53 2026 GMT Subject: CN=69c37ff1-24d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:83:aa:5b:09:b2:c0:22:f1:88:d4:af:50:09: 71:c5:03:27:ab:ef:8d:75:06:f2:91:65:f1:44:a5: fc:93:ff:18:d3:19:96:9b:a0:ea:c8:06:05:b0:b2: 22:bf:77:21:eb:02:d0:a0:1c:ba:cf:4b:99:6c:a9: 85:5d:e4:15:c7:68:f5:ee:6e:3b:f2:79:02:a9:86: 94:8a:d8:9f:03:41:de:ca:a8:46:05:50:bb:8c:22: 54:bd:c6:c3:79:ae:2b:74:0b:f6:b0:f2:58:2f:fb: 0e:7d:ac:4f:7f:0b:55:e0:f8:71:ea:22:6f:6e:c3: e7:f0:d5:e2:85:e9:79:d0:75:ee:3a:7b:3a:97:8e: be:39:f3:b2:34:95:78:4e:b2:78:d3:39:ae:75:3e: 06:5c:85:18:31:ab:2e:c3:ff:a1:c6:fb:33:06:4e: aa:9a:59:24:d0:24:b5:22:64:21:cf:42:a0:52:90: d6:62:61:37:f5:36:2d:65:39:70:2d:66:02:d7:c5: 2f:41:ce:22:e5:ac:25:80:ac:a9:91:3c:8c:2b:a0: de:ab:ac:7d:c9:28:cc:62:75:ad:7e:db:04:c7:f6: 05:65:1c:45:63:f1:e7:29:60:30:76:de:ac:0e:fe: db:3e:ff:47:15:ef:b3:50:3d:b5:43:32:93:48:ea: d1:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:E7:9C:64:6F:D8:B7:35:6D:B7:C7:11:B2:ED:62:6C:C1:3F:B7:2A X509v3 Authority Key Identifier: keyid:B5:4F:8A:D1:CE:CA:C1:36:FC:AF:47:92:EB:FD:00:E6:8E:A1:D3:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tU-K0c7KwTb8r0eS6_0A5o6h02g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:c6:52:b3:10:d7:f5:1e:46:f7:3a:57:48:57:94:d9:9b:81: 2d:df:ff:56:48:e8:46:8b:24:1d:ae:fe:fe:bd:fd:81:0e:d6: 77:03:5b:04:a4:17:f9:99:22:c3:19:95:ff:63:37:6e:77:7a: 42:a7:14:d8:ac:c5:fb:66:13:95:c3:a6:8e:2a:6a:68:cb:7a: 96:3e:32:77:d3:1f:e0:7e:b6:bc:ab:28:be:ff:fb:35:08:58: 97:fe:60:f6:e3:54:89:55:65:f3:0c:5f:87:40:fc:c7:09:e7: de:9b:64:8d:64:46:b7:19:75:39:7c:0d:89:a9:20:dd:b9:02: ef:82:ea:20:eb:b4:8e:3c:b4:34:df:57:4e:43:20:3d:ad:a8: 5b:d1:ca:05:19:89:e0:ff:46:ba:92:fd:cc:98:df:8a:6a:ab: 31:ae:ca:26:46:61:67:a8:ea:05:75:e8:62:08:8f:0e:c4:d6: f7:49:ac:4a:43:d8:dc:17:e3:3c:e4:7f:e7:ac:b9:eb:e8:b3: c0:39:4c:e9:9b:b7:79:32:1c:1e:cf:1e:6f:09:91:4a:46:d9: dc:15:e7:9f:a5:35:40:3b:97:3a:e3:21:e2:a2:7c:d5:67:58: ca:9f:b1:66:a3:c5:a2:3d:bb:9c:55:92:04:9e:0f:eb:72:54: c4:19:8a:0a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAK4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjdEQ0IxMTAvBgNVBAUTKEI1NEY4QUQxQ0VDQUMxMzZGQ0FGNDc5MkVCRkQwMEU2 OEVBMUQzNjgwHhcNMjYwMzI1MDYyNTUzWhcNMjYwNDAxMDYyNTUzWjAYMRYwFAYD VQQDEw02OWMzN2ZmMS0yNGQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjYOqWwmywCLxiNSvUAlxxQMnq++NdQbykWXxRKX8k/8Y0xmWm6DqyAYFsLIi v3ch6wLQoBy6z0uZbKmFXeQVx2j17m478nkCqYaUitifA0HeyqhGBVC7jCJUvcbD ea4rdAv2sPJYL/sOfaxPfwtV4Phx6iJvbsPn8NXihel50HXuOns6l46+OfOyNJV4 TrJ40zmudT4GXIUYMasuw/+hxvszBk6qmlkk0CS1ImQhz0KgUpDWYmE39TYtZTlw LWYC18UvQc4i5awlgKypkTyMK6Deq6x9ySjMYnWtftsEx/YFZRxFY/HnKWAwdt6s Dv7bPv9HFe+zUD21QzKTSOrRxQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBXnnGRv 2Lc1bbfHEbLtYmzBP7cqMB8GA1UdIwQYMBaAFLVPitHOysE2/K9Hkuv9AOaOodNo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCN0RDQi9GODNBQzQ5NDI5 NDQxMUYwQUUxQUJDNzRDNEY5QUUwMi90VS1LMGM3S3dUYjhyMGVTNl8wQTVvNmgw MmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3RVLUswYzdLd1RiOHIwZVM2XzBBNW82aDAyZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC N0RDQi9GODNBQzQ5NDI5NDQxMUYwQUUxQUJDNzRDNEY5QUUwMi90VS1LMGM3S3dU YjhyMGVTNl8wQTVvNmgwMmcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAT8ZSsxDX9R5G9zpXSFeU2ZuBLd//VkjoRoskHa7+/r39gQ7WdwNbBKQX+Zki wxmV/2M3bnd6QqcU2KzF+2YTlcOmjipqaMt6lj4yd9Mf4H62vKsovv/7NQhYl/5g 9uNUiVVl8wxfh0D8xwnn3ptkjWRGtxl1OXwNiakg3bkC74LqIOu0jjy0NN9XTkMg Pa2oW9HKBRmJ4P9GupL9zJjfimqrMa7KJkZhZ6jqBXXoYgiPDsTW90msSkPY3Bfj POR/56y56+izwDlM6Zu3eTIcHs8ebwmRSkbZ3BXnn6U1QDuXOuMh4qJ81WdYyp+x ZqPFoj27nFWSBJ4P63JUxBmKCg== -----END CERTIFICATE-----Generated at Thu Mar 26 13:05:16 2026 by rpki-client