$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.mft File: tLEObLONU2XQVOjb6Q808sOIsQw.mft (raw, json) Hash identifier: Oo66CztnpvzEe7L0bVmItovzYdyEyRrIt3CFxhXpO0A= Subject key identifier: D0:D8:C6:19:C4:5E:4C:B0:9D:F0:81:72:E9:37:61:9B:4A:BC:CA:D7 Authority key identifier: B4:B1:0E:6C:B3:8D:53:65:D0:54:E8:DB:E9:0F:34:F2:C3:88:B1:0C Certificate issuer: /CN=A91CE3A3/serialNumber=B4B10E6CB38D5365D054E8DBE90F34F2C388B10C Certificate serial: 0D34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLEObLONU2XQVOjb6Q808sOIsQw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.mft Manifest number: 0D01 Signing time: Tue 24 Mar 2026 18:05:35 +0000 Manifest this update: Tue 24 Mar 2026 18:05:34 +0000 Manifest next update: Tue 31 Mar 2026 18:05:34 +0000 Files and hashes: 1: tLEObLONU2XQVOjb6Q808sOIsQw.crl (hash: TI7P+dioqEhW0XJxMf/rs/30zrsKCEJaM3uSMC3LfSA=) 2: 610856EC638A11F08BC2A840C4F9AE02.roa (hash: hFVkKE+Qi5ASFcR8wJP4hxF2ONROpTw8ANjmt7CoeCQ=) 3: 618AD7B6638A11F08BC2A840C4F9AE02.roa (hash: l1iCGSn/PX7oFU8pYAYmto407lNna+dcfVIeQPwpey4=) 4: 30256B5CF7B911EEAB0C6C36C4F9AE02.roa (hash: 98uYds8I1pxO4Y6dKdHlz74HRamQ9x93aGa9N7uQZao=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.crl rsync://rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLEObLONU2XQVOjb6Q808sOIsQw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 18:05:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3380 (0xd34) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE3A3, serialNumber=B4B10E6CB38D5365D054E8DBE90F34F2C388B10C Validity Not Before: Mar 24 18:05:34 2026 GMT Not After : Mar 31 18:05:34 2026 GMT Subject: CN=69c2d26f-10d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:f9:57:d7:2b:f0:6d:8c:81:ab:3b:a7:a0:e7: 8c:96:9c:9b:02:22:3e:b2:1b:fd:91:f4:cc:5c:14: 80:fd:8c:c0:8e:22:d7:7b:d9:90:d5:5e:95:a5:69: 4b:1c:9c:32:59:5c:7e:0c:9b:f7:5f:61:75:e6:15: 27:4c:d5:5f:25:6a:46:f4:8a:f3:e3:b5:6b:9b:9a: 06:49:3d:11:e7:bc:c3:ed:6d:26:49:70:44:a8:dc: 4c:a2:a0:24:28:0e:bd:29:12:14:fd:eb:4d:6a:2b: aa:1b:68:29:39:1d:3e:c3:44:4b:ee:e1:2d:fe:55: 5d:88:25:47:a0:0a:61:6e:b7:96:8e:a1:e5:33:98: d0:eb:ed:2e:c1:8c:75:5a:0b:b6:66:0d:33:15:2e: 5c:7a:be:e0:0f:b5:75:17:58:ca:24:88:36:bd:b7: 75:e5:23:b0:4b:16:a1:7d:a3:d2:7f:98:a2:06:15: 6e:e9:f0:22:23:8e:09:55:ee:a9:2d:3f:90:11:d1: 3b:42:9a:54:38:1a:29:06:ef:f7:ed:f8:d7:30:41: 5a:21:6d:c1:bb:a0:16:8c:82:33:98:4d:ba:2d:fc: ca:4a:4e:88:9d:04:1a:85:b1:41:08:4a:4e:f6:00: 62:72:e9:0b:bd:0a:8f:3c:55:7f:c3:95:2a:9c:86: a9:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:D8:C6:19:C4:5E:4C:B0:9D:F0:81:72:E9:37:61:9B:4A:BC:CA:D7 X509v3 Authority Key Identifier: keyid:B4:B1:0E:6C:B3:8D:53:65:D0:54:E8:DB:E9:0F:34:F2:C3:88:B1:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLEObLONU2XQVOjb6Q808sOIsQw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:07:d5:3c:7d:94:f3:61:fc:ee:ad:c7:3b:d5:f9:45:bf:52: 7e:f1:a6:b2:04:1b:62:28:ea:e6:53:cb:c1:23:bb:80:f2:e7: 5e:72:a8:20:64:44:4f:a7:94:aa:29:f8:5e:e1:b4:6c:1c:ea: 5e:b9:3f:8a:3e:78:87:61:89:d5:fc:8d:00:8f:a7:58:11:7e: f9:08:45:32:6a:57:ff:3e:98:8b:a2:d9:ad:5f:17:04:21:c4: 60:69:54:bd:ab:51:84:a6:a7:9d:db:24:a5:d9:3d:ca:f0:5f: ce:06:b8:e2:08:06:ba:fd:f7:e0:f1:cb:49:37:e7:c4:b6:b4: 38:b4:a5:5a:d4:ab:57:31:59:81:78:b1:b1:7d:c0:36:b8:61: 06:a2:3a:9a:05:95:71:e1:03:23:48:ee:93:41:07:94:5a:1a: 88:eb:73:e5:6a:4a:ad:01:fc:cf:46:61:81:3c:e5:39:14:40: 1e:54:ee:e2:e4:57:cb:c7:1d:29:ff:ba:96:cf:6c:a1:d3:89: bf:b8:7f:26:d2:8d:14:72:67:bd:f0:e7:82:b9:b6:b0:68:f2: 00:ab:8b:f7:99:9d:9d:c0:07:35:5e:ef:5f:73:f8:b8:49:65: 6a:d0:f7:03:24:cf:55:88:1e:31:ba:7e:ce:98:99:62:41:ac: 6f:a6:ea:dd -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDTQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UzQTMxMTAvBgNVBAUTKEI0QjEwRTZDQjM4RDUzNjVEMDU0RThEQkU5MEYzNEYy QzM4OEIxMEMwHhcNMjYwMzI0MTgwNTM0WhcNMjYwMzMxMTgwNTM0WjAYMRYwFAYD VQQDEw02OWMyZDI2Zi0xMGQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArvlX1yvwbYyBqzunoOeMlpybAiI+shv9kfTMXBSA/YzAjiLXe9mQ1V6VpWlL HJwyWVx+DJv3X2F15hUnTNVfJWpG9Irz47Vrm5oGST0R57zD7W0mSXBEqNxMoqAk KA69KRIU/etNaiuqG2gpOR0+w0RL7uEt/lVdiCVHoAphbreWjqHlM5jQ6+0uwYx1 Wgu2Zg0zFS5cer7gD7V1F1jKJIg2vbd15SOwSxahfaPSf5iiBhVu6fAiI44JVe6p LT+QEdE7QppUOBopBu/37fjXMEFaIW3Bu6AWjIIzmE26LfzKSk6InQQahbFBCEpO 9gBicukLvQqPPFV/w5UqnIapqQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNDYxhnE XkywnfCBcuk3YZtKvMrXMB8GA1UdIwQYMBaAFLSxDmyzjVNl0FTo2+kPNPLDiLEM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTNBMy8yMDkxREM4RTA1 MDExMUVBQkQ5QjIwMkNDNEY5QUUwMi90TEVPYkxPTlUyWFFWT2piNlE4MDhzT0lz UXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RMRU9iTE9OVTJYUVZPamI2UTgwOHNPSXNRdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTNBMy8yMDkxREM4RTA1MDExMUVBQkQ5QjIwMkNDNEY5QUUwMi90TEVPYkxPTlUy WFFWT2piNlE4MDhzT0lzUXcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAegfVPH2U82H87q3HO9X5Rb9SfvGmsgQbYijq5lPLwSO7gPLnXnKoIGRET6eU qin4XuG0bBzqXrk/ij54h2GJ1fyNAI+nWBF++QhFMmpX/z6Yi6LZrV8XBCHEYGlU vatRhKanndskpdk9yvBfzga44ggGuv334PHLSTfnxLa0OLSlWtSrVzFZgXixsX3A NrhhBqI6mgWVceEDI0juk0EHlFoaiOtz5WpKrQH8z0ZhgTzlORRAHlTu4uRXy8cd Kf+6ls9sodOJv7h/JtKNFHJnvfDngrm2sGjyAKuL95mdncAHNV7vX3P4uEllatD3 AyTPVYgeMbp+zpiZYkGsb6bq3Q== -----END CERTIFICATE-----Generated at Thu Mar 26 13:51:51 2026 by rpki-client