$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1FA7/2D991CD0599F11EDB967AE39C4F9AE02/_10TK8Zqqiu89lw-X-iaDDcdizo.mft File: _10TK8Zqqiu89lw-X-iaDDcdizo.mft (raw, json) Hash identifier: DrrB9ruOeRwot3sLFt4udJVMjIQx8iaFP4dHbgML9/Y= Subject key identifier: D0:C5:AC:8B:8F:37:C2:72:B6:B1:07:FE:2D:85:31:00:09:F0:B3:BF Authority key identifier: FF:5D:13:2B:C6:6A:AA:2B:BC:F6:5C:3E:5F:E8:9A:0C:37:1D:8B:3A Certificate issuer: /CN=A91C1FA7/serialNumber=FF5D132BC66AAA2BBCF65C3E5FE89A0C371D8B3A Certificate serial: 0287 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_10TK8Zqqiu89lw-X-iaDDcdizo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1FA7/2D991CD0599F11EDB967AE39C4F9AE02/_10TK8Zqqiu89lw-X-iaDDcdizo.mft Manifest number: 027F Signing time: Fri 27 Mar 2026 01:24:33 +0000 Manifest this update: Fri 27 Mar 2026 01:24:33 +0000 Manifest next update: Fri 03 Apr 2026 01:24:33 +0000 Files and hashes: 1: _10TK8Zqqiu89lw-X-iaDDcdizo.crl (hash: ccMr6CxJjUKqYElJGfl4ViO1npyThLUO/rMg4otN4Sc=) 2: 064042F259F511EDB22E3F2BC4F9AE02.roa (hash: 0SaUic0cFmBX4GJg5caQlZtmFukZYlTwm6y1EfuxlnQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1FA7/2D991CD0599F11EDB967AE39C4F9AE02/_10TK8Zqqiu89lw-X-iaDDcdizo.crl rsync://rpki.apnic.net/member_repository/A91C1FA7/2D991CD0599F11EDB967AE39C4F9AE02/_10TK8Zqqiu89lw-X-iaDDcdizo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_10TK8Zqqiu89lw-X-iaDDcdizo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 01:24:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 647 (0x287) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1FA7, serialNumber=FF5D132BC66AAA2BBCF65C3E5FE89A0C371D8B3A Validity Not Before: Mar 27 01:24:33 2026 GMT Not After : Apr 3 01:24:33 2026 GMT Subject: CN=69c5dc51-2580 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:24:fe:bc:4b:51:18:09:9c:57:03:96:54:88: c7:3a:26:45:bc:39:ae:16:28:30:59:81:2a:a9:51: 9c:4d:31:f7:e6:e5:32:81:33:fe:0e:54:d0:a7:71: 2e:94:22:89:8a:10:d1:3b:00:1c:d1:bc:31:7d:9e: 86:45:12:f1:54:5f:47:08:a6:9d:3a:73:02:a2:e5: 0e:5d:5f:89:2a:f2:7e:ec:fe:48:93:2a:ca:07:30: 8e:9a:d1:b7:5c:30:5f:24:4d:96:3c:22:6e:f7:72: ed:e7:29:c5:96:89:68:c5:cf:ac:cb:73:dc:e0:3b: b2:b4:51:8d:38:2a:07:42:3b:0f:b4:a3:4c:36:a3: 3d:50:28:a4:a2:cc:0d:1b:f8:27:69:79:0f:cf:af: 89:08:6d:f0:91:9b:d2:fd:8b:64:46:45:a4:59:d1: 44:1b:7f:17:ff:88:bd:1a:b1:3b:0c:61:2b:02:56: 2a:a0:cb:7f:98:11:b5:bc:2d:05:e8:52:45:da:dd: 55:7d:e8:68:de:f6:d1:a7:59:86:70:25:07:6f:10: 36:44:ed:54:ff:6d:98:53:fe:38:61:f7:f4:48:42: 5d:51:08:64:0d:b5:b5:6c:cc:9b:e6:59:44:fa:02: 03:c2:7f:f8:d6:8a:48:98:93:d1:f2:cf:22:50:0a: 62:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:C5:AC:8B:8F:37:C2:72:B6:B1:07:FE:2D:85:31:00:09:F0:B3:BF X509v3 Authority Key Identifier: keyid:FF:5D:13:2B:C6:6A:AA:2B:BC:F6:5C:3E:5F:E8:9A:0C:37:1D:8B:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1FA7/2D991CD0599F11EDB967AE39C4F9AE02/_10TK8Zqqiu89lw-X-iaDDcdizo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_10TK8Zqqiu89lw-X-iaDDcdizo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1FA7/2D991CD0599F11EDB967AE39C4F9AE02/_10TK8Zqqiu89lw-X-iaDDcdizo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:b1:06:f1:9d:13:b0:dc:86:af:28:cf:6f:8a:d9:57:64:6e: 1e:6a:e5:bd:01:67:e3:58:45:d9:a4:84:bc:82:2b:b7:33:70: 8d:1b:c6:ef:bb:62:0d:cd:36:7c:9c:4c:39:b9:e4:bc:93:be: b8:56:35:c2:47:fd:b2:4a:bf:2a:ab:dc:5c:42:0a:6a:7a:8f: 58:85:41:0e:52:c8:9c:69:69:2d:12:e0:04:31:4f:51:2d:4c: 37:54:38:89:6d:67:b1:09:5e:26:53:7e:88:13:1c:53:b1:f8: 2f:63:e7:2e:3d:15:2a:ed:86:2f:3a:c1:a0:ae:a8:2b:c1:32: 1d:10:38:9e:7d:0b:11:a8:ff:3a:4e:bc:cc:94:96:37:18:a4: aa:a6:a6:34:bc:9c:22:b1:e8:43:b2:3c:ae:2c:b4:1a:0b:cb: 0a:8c:ef:0d:29:9a:7c:9e:63:1d:c8:7c:fa:53:1e:c7:70:83: 05:74:a4:1d:e1:e8:63:af:b3:a0:da:b1:a7:35:1c:1e:68:bf: 75:b5:58:d5:fa:50:c3:e1:a1:e0:4c:1c:a6:ae:af:09:4a:31: 0c:4e:54:7c:ad:21:21:81:54:b3:db:c7:be:7f:67:3c:cd:1a: 91:b0:ad:54:42:62:0a:e7:f9:c2:10:47:28:66:a3:34:86:df: 50:66:8b:76 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAocwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzFGQTcxMTAvBgNVBAUTKEZGNUQxMzJCQzY2QUFBMkJCQ0Y2NUMzRTVGRTg5QTBD MzcxRDhCM0EwHhcNMjYwMzI3MDEyNDMzWhcNMjYwNDAzMDEyNDMzWjAYMRYwFAYD VQQDEw02OWM1ZGM1MS0yNTgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzyT+vEtRGAmcVwOWVIjHOiZFvDmuFigwWYEqqVGcTTH35uUygTP+DlTQp3Eu lCKJihDROwAc0bwxfZ6GRRLxVF9HCKadOnMCouUOXV+JKvJ+7P5IkyrKBzCOmtG3 XDBfJE2WPCJu93Lt5ynFloloxc+sy3Pc4DuytFGNOCoHQjsPtKNMNqM9UCikoswN G/gnaXkPz6+JCG3wkZvS/YtkRkWkWdFEG38X/4i9GrE7DGErAlYqoMt/mBG1vC0F 6FJF2t1Vfeho3vbRp1mGcCUHbxA2RO1U/22YU/44Yff0SEJdUQhkDbW1bMyb5llE +gIDwn/41opImJPR8s8iUApioQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNDFrIuP N8JytrEH/i2FMQAJ8LO/MB8GA1UdIwQYMBaAFP9dEyvGaqorvPZcPl/omgw3HYs6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMUZBNy8yRDk5MUNEMDU5 OUYxMUVEQjk2N0FFMzlDNEY5QUUwMi9fMTBUSzhacXFpdTg5bHctWC1pYUREY2Rp em8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL18xMFRLOFpxcWl1ODlsdy1YLWlhRERjZGl6by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MUZBNy8yRDk5MUNEMDU5OUYxMUVEQjk2N0FFMzlDNEY5QUUwMi9fMTBUSzhacXFp dTg5bHctWC1pYUREY2Rpem8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAqrEG8Z0TsNyGryjPb4rZV2RuHmrlvQFn41hF2aSEvIIrtzNwjRvG77tiDc02 fJxMObnkvJO+uFY1wkf9skq/KqvcXEIKanqPWIVBDlLInGlpLRLgBDFPUS1MN1Q4 iW1nsQleJlN+iBMcU7H4L2PnLj0VKu2GLzrBoK6oK8EyHRA4nn0LEaj/Ok68zJSW NxikqqamNLycIrHoQ7I8riy0GgvLCozvDSmafJ5jHch8+lMex3CDBXSkHeHoY6+z oNqxpzUcHmi/dbVY1fpQw+Gh4Ewcpq6vCUoxDE5UfK0hIYFUs9vHvn9nPM0akbCt VEJiCuf5whBHKGajNIbfUGaLdg== -----END CERTIFICATE-----Generated at Sat Mar 28 12:13:18 2026 by rpki-client