$ rpki-client -vvf rpki.apnic.net/member_repository/A91C32D9/64DF132C001111F1AB27ED80406F56BC/T0h-_rfHeWiBVy2X1iVPot21qHw.mft File: T0h-_rfHeWiBVy2X1iVPot21qHw.mft (raw, json) Hash identifier: B5scyDXD0zRP9gUcqsu4NU/2CI05KtA9vTLHtBUsmx4= Subject key identifier: F3:48:B4:87:2E:78:6B:DB:7B:5B:60:32:76:29:2E:B4:74:B4:23:9D Authority key identifier: 4F:48:7E:FE:B7:C7:79:68:81:57:2D:97:D6:25:4F:A2:DD:B5:A8:7C Certificate issuer: /CN=A91C32D9/serialNumber=4F487EFEB7C7796881572D97D6254FA2DDB5A87C Certificate serial: 20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T0h-_rfHeWiBVy2X1iVPot21qHw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C32D9/64DF132C001111F1AB27ED80406F56BC/T0h-_rfHeWiBVy2X1iVPot21qHw.mft Manifest number: 1E Signing time: Wed 25 Mar 2026 08:05:25 +0000 Manifest this update: Wed 25 Mar 2026 08:05:25 +0000 Manifest next update: Wed 01 Apr 2026 08:05:25 +0000 Files and hashes: 1: T0h-_rfHeWiBVy2X1iVPot21qHw.crl (hash: Wgy1w2+RqssZiccNsBVeEmtng5sdF1wSKdpXVlb0/Ng=) 2: 9DD3FFC6001111F18C67D2A9406F56BC.roa (hash: l4S9gMbXi+gUDu4apCdlLMULJuB61B4wV3lZ30Od2K0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C32D9/64DF132C001111F1AB27ED80406F56BC/T0h-_rfHeWiBVy2X1iVPot21qHw.crl rsync://rpki.apnic.net/member_repository/A91C32D9/64DF132C001111F1AB27ED80406F56BC/T0h-_rfHeWiBVy2X1iVPot21qHw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T0h-_rfHeWiBVy2X1iVPot21qHw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 08:05:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32 (0x20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C32D9, serialNumber=4F487EFEB7C7796881572D97D6254FA2DDB5A87C Validity Not Before: Mar 25 08:05:25 2026 GMT Not After : Apr 1 08:05:25 2026 GMT Subject: CN=69c39745-1da6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:35:51:77:10:c0:6c:85:da:3f:60:b7:09:ad: ae:f5:bc:5c:23:8c:ef:d6:89:ed:50:8b:69:b6:51: 1a:e1:be:c0:e9:8c:a2:2c:07:57:ce:0d:98:71:ab: b1:94:5e:d0:cd:4b:e2:6f:80:4a:a2:7f:ff:e6:e9: 02:4e:a5:b4:49:6a:94:11:3f:43:58:84:c6:6c:3d: f0:cd:b9:a6:ba:16:89:8b:ca:64:75:e8:17:2c:f3: a7:79:de:c0:c9:13:76:4a:8b:15:9b:1d:ac:c1:31: ba:00:a1:d9:54:8c:b2:d7:0d:f8:76:2b:38:3f:16: c2:f1:b2:8f:76:36:b7:ce:14:da:69:1b:b5:83:0f: cf:19:96:4c:96:76:af:0b:47:44:dc:3c:bd:3f:be: 27:75:fc:2f:2a:48:8d:22:54:37:90:37:72:9a:e5: 85:a1:b0:86:b0:61:51:10:24:0c:a1:5d:17:89:7e: c3:92:ef:dd:92:be:da:d7:a9:b0:0c:39:d8:9d:9c: 5b:a9:20:0e:94:0e:37:4c:8e:a9:f5:e0:dc:9a:17: 8a:2b:a5:d4:f9:f2:3b:84:9e:b2:6c:5b:89:04:1a: 76:75:0f:af:c5:ee:8a:a0:e8:f6:80:2c:4f:44:d2: 05:f9:63:59:66:22:2c:73:39:36:84:4d:e5:51:4b: 58:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:48:B4:87:2E:78:6B:DB:7B:5B:60:32:76:29:2E:B4:74:B4:23:9D X509v3 Authority Key Identifier: keyid:4F:48:7E:FE:B7:C7:79:68:81:57:2D:97:D6:25:4F:A2:DD:B5:A8:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C32D9/64DF132C001111F1AB27ED80406F56BC/T0h-_rfHeWiBVy2X1iVPot21qHw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T0h-_rfHeWiBVy2X1iVPot21qHw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C32D9/64DF132C001111F1AB27ED80406F56BC/T0h-_rfHeWiBVy2X1iVPot21qHw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:cc:5f:44:94:43:0d:1d:f0:16:8d:1b:18:96:89:b6:4f:6c: 76:9a:54:20:20:05:6b:61:b4:d6:cb:27:0d:6b:68:53:12:b9: df:37:ff:c8:fa:a9:d1:46:db:f4:bf:ed:aa:85:43:31:6f:6e: 62:e2:53:e4:74:33:f9:3e:6a:5c:e5:e8:b1:9a:35:96:75:d3: 24:8c:0a:ff:61:bd:db:ee:ad:35:97:b7:0c:13:f7:f6:07:03: 87:df:52:10:11:86:20:b9:08:0f:1b:1b:e6:d4:54:b2:98:7b: 1f:e0:18:06:19:c1:11:52:38:c7:f8:75:67:32:e2:73:77:25: 0f:1c:84:c1:4a:2d:cb:55:f2:85:c5:ca:5f:b8:08:fe:59:68: 2a:91:16:32:94:e7:1a:d7:9c:e6:0c:5a:39:0b:14:6c:7b:4d: 69:30:72:0c:4b:47:d6:36:1c:48:15:4d:21:65:58:96:5f:fa: 0f:52:21:3e:73:d0:62:23:ef:0d:d0:9a:c3:9d:03:43:5a:e0: 7c:0d:31:40:41:42:ff:dc:82:5d:a6:6d:02:b9:4d:67:bd:d7: b5:19:72:01:c5:26:02:9e:43:84:57:0f:d2:9d:33:56:59:87: 04:83:9d:69:d5:08:33:da:3f:b2:e2:25:eb:c6:f6:48:4b:a6: 1f:34:2f:41 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBIDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD MzJEOTExMC8GA1UEBRMoNEY0ODdFRkVCN0M3Nzk2ODgxNTcyRDk3RDYyNTRGQTJE REI1QTg3QzAeFw0yNjAzMjUwODA1MjVaFw0yNjA0MDEwODA1MjVaMBgxFjAUBgNV BAMTDTY5YzM5NzQ1LTFkYTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQD6NVF3EMBshdo/YLcJra71vFwjjO/Wie1Qi2m2URrhvsDpjKIsB1fODZhxq7GU XtDNS+JvgEqif//m6QJOpbRJapQRP0NYhMZsPfDNuaa6FomLymR16Bcs86d53sDJ E3ZKixWbHazBMboAodlUjLLXDfh2Kzg/FsLxso92NrfOFNppG7WDD88ZlkyWdq8L R0TcPL0/vid1/C8qSI0iVDeQN3Ka5YWhsIawYVEQJAyhXReJfsOS792SvtrXqbAM OdidnFupIA6UDjdMjqn14NyaF4orpdT58juEnrJsW4kEGnZ1D6/F7oqg6PaALE9E 0gX5Y1lmIixzOTaETeVRS1hjAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQU80i0hy54 a9t7W2AydikutHS0I50wHwYDVR0jBBgwFoAUT0h+/rfHeWiBVy2X1iVPot21qHww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMzMkQ5LzY0REYxMzJDMDAx MTExRjFBQjI3RUQ4MDQwNkY1NkJDL1QwaC1fcmZIZVdpQlZ5MlgxaVZQb3QyMXFI dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVDBoLV9yZkhlV2lCVnkyWDFpVlBvdDIxcUh3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMz MkQ5LzY0REYxMzJDMDAxMTExRjFBQjI3RUQ4MDQwNkY1NkJDL1QwaC1fcmZIZVdp QlZ5MlgxaVZQb3QyMXFIdy5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQCHzF9ElEMNHfAWjRsYlom2T2x2mlQgIAVrYbTWyycNa2hTErnfN//I+qnRRtv0 v+2qhUMxb25i4lPkdDP5Pmpc5eixmjWWddMkjAr/Yb3b7q01l7cME/f2BwOH31IQ EYYguQgPGxvm1FSymHsf4BgGGcERUjjH+HVnMuJzdyUPHITBSi3LVfKFxcpfuAj+ WWgqkRYylOca15zmDFo5CxRse01pMHIMS0fWNhxIFU0hZViWX/oPUiE+c9BiI+8N 0JrDnQNDWuB8DTFAQUL/3IJdpm0CuU1nvde1GXIBxSYCnkOEVw/SnTNWWYcEg51p 1Qgz2j+y4iXrxvZIS6YfNC9B -----END CERTIFICATE-----Generated at Thu Mar 26 00:28:05 2026 by rpki-client