$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/TZAcNCU7ylsnTusQaZPe9yCiUqw.mft File: TZAcNCU7ylsnTusQaZPe9yCiUqw.mft (raw, json) Hash identifier: CR+oE1ycdxvlKyiUl8OTy/dkPmZKxkoQJPITATbtCVw= Subject key identifier: BE:01:83:CB:6F:6B:0E:77:FF:CD:7B:CF:2E:BC:BD:1E:73:B9:B7:66 Authority key identifier: 4D:90:1C:34:25:3B:CA:5B:27:4E:EB:10:69:93:DE:F7:20:A2:52:AC Certificate issuer: /CN=A91D6AB2/serialNumber=4D901C34253BCA5B274EEB106993DEF720A252AC Certificate serial: 04BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TZAcNCU7ylsnTusQaZPe9yCiUqw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/TZAcNCU7ylsnTusQaZPe9yCiUqw.mft Manifest number: 0D79 Signing time: Tue 24 Mar 2026 20:10:11 +0000 Manifest this update: Tue 24 Mar 2026 20:10:11 +0000 Manifest next update: Tue 31 Mar 2026 20:10:11 +0000 Files and hashes: 1: TZAcNCU7ylsnTusQaZPe9yCiUqw.crl (hash: Nu2g/dvsUkDpQKZn8dMMy+RIs7sD9LCEf06KqnkE1B4=) 2: 8E4BBF50F5C511EF89110646C4F9AE02.roa (hash: 1qbYu5KRZI3rxH4kzvhF/miC5oW7IXAqReX/2/VUDaU=) 3: A1B8D10EF5C511EF83B21246C4F9AE02.roa (hash: V07yp4azfzM5YFQd3DFJvRMzAViuDBC6g0jJfgu6wvI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/TZAcNCU7ylsnTusQaZPe9yCiUqw.crl rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/TZAcNCU7ylsnTusQaZPe9yCiUqw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TZAcNCU7ylsnTusQaZPe9yCiUqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 20:10:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1212 (0x4bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D6AB2, serialNumber=4D901C34253BCA5B274EEB106993DEF720A252AC Validity Not Before: Mar 24 20:10:11 2026 GMT Not After : Mar 31 20:10:11 2026 GMT Subject: CN=69c2efa3-ed49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:fd:e6:d8:c4:0c:78:88:38:28:15:dd:a5:50: 90:11:89:28:43:ef:0d:59:83:0c:0c:ac:aa:b1:8d: 7c:e9:52:6c:ea:a1:8b:ef:3e:c9:54:72:1b:79:9b: 41:4f:c6:df:29:b4:99:c3:9b:ef:a8:6e:63:66:77: 2b:80:22:20:23:db:e4:a6:fa:e7:67:6e:b8:71:3a: de:b9:28:40:a8:fd:5d:14:0a:eb:7e:02:6b:c9:b8: 1c:96:79:99:40:7b:59:09:a1:0f:d5:62:f0:00:b9: 01:a9:37:af:6e:51:b4:7b:f5:4f:68:39:12:f5:87: 7b:ee:eb:29:07:f4:56:09:5e:f4:ae:68:a5:e9:ee: be:2e:b7:9f:16:85:73:e9:4a:e9:af:8b:73:72:62: 1c:9b:02:e9:3d:22:04:95:df:01:d6:33:0b:d9:25: 6e:3a:f0:97:be:73:4d:1b:67:91:5e:ef:d8:83:52: f8:06:e5:3a:bc:25:6f:87:f5:ff:8d:ad:0d:3e:3f: 70:d0:59:63:ee:00:d1:7c:2a:8b:08:ce:5e:7e:b9: 4c:ef:d4:72:29:ee:2b:f6:20:ee:fd:c6:2e:69:8a: 36:b4:f6:52:6d:f8:42:d7:f7:b8:9c:5f:a8:31:1f: b4:6b:94:34:5f:89:16:92:1d:2c:e7:03:26:59:4d: 62:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:01:83:CB:6F:6B:0E:77:FF:CD:7B:CF:2E:BC:BD:1E:73:B9:B7:66 X509v3 Authority Key Identifier: keyid:4D:90:1C:34:25:3B:CA:5B:27:4E:EB:10:69:93:DE:F7:20:A2:52:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/TZAcNCU7ylsnTusQaZPe9yCiUqw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TZAcNCU7ylsnTusQaZPe9yCiUqw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/TZAcNCU7ylsnTusQaZPe9yCiUqw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:39:ed:f2:32:83:68:83:e6:d9:4c:01:fd:d7:65:21:8e:cc: e1:d8:dd:8b:68:cc:b9:53:f2:dc:ed:3e:f3:e4:e8:8b:c3:42: 9f:66:c0:98:d9:5b:57:a9:20:84:1a:9b:0f:78:c0:51:38:b6: f3:c5:fb:1f:7e:7f:5f:41:5a:70:0c:f3:ef:c3:fe:fe:f9:5b: 28:15:f4:98:c9:72:53:d6:76:f1:39:c1:d3:82:ca:67:75:4e: d4:1b:97:7b:d2:0e:c2:7f:84:44:7a:4f:24:e1:dd:6a:39:e8: 8e:03:17:37:81:81:23:52:03:49:ab:36:0e:29:aa:5c:fe:16: a6:62:6f:a5:c9:6b:11:52:93:a2:16:0d:ce:c4:ee:25:36:d8: ae:fd:3a:ea:73:4b:46:34:f4:9d:05:32:45:b9:70:25:fe:0a: 1c:ec:82:a0:f9:ae:8f:56:b7:f8:44:c7:48:d0:28:33:41:38: c0:e8:93:1d:bb:60:9c:d4:83:88:58:8c:f8:a2:26:11:d0:0a: b0:73:0d:d1:87:8d:ff:b6:11:3f:b2:ea:5d:07:20:5e:d6:4c: 53:63:25:ec:af:65:18:e7:df:08:6d:4d:23:66:73:69:5b:27: d6:a8:bc:3f:e7:6a:f1:49:db:45:9f:7a:6b:39:d5:c0:4d:29: a1:bf:31:32 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBLwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDZBQjIxMTAvBgNVBAUTKDREOTAxQzM0MjUzQkNBNUIyNzRFRUIxMDY5OTNERUY3 MjBBMjUyQUMwHhcNMjYwMzI0MjAxMDExWhcNMjYwMzMxMjAxMDExWjAYMRYwFAYD VQQDEw02OWMyZWZhMy1lZDQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1/3m2MQMeIg4KBXdpVCQEYkoQ+8NWYMMDKyqsY186VJs6qGL7z7JVHIbeZtB T8bfKbSZw5vvqG5jZncrgCIgI9vkpvrnZ264cTreuShAqP1dFArrfgJrybgclnmZ QHtZCaEP1WLwALkBqTevblG0e/VPaDkS9Yd77uspB/RWCV70rmil6e6+LrefFoVz 6Urpr4tzcmIcmwLpPSIEld8B1jML2SVuOvCXvnNNG2eRXu/Yg1L4BuU6vCVvh/X/ ja0NPj9w0Flj7gDRfCqLCM5efrlM79RyKe4r9iDu/cYuaYo2tPZSbfhC1/e4nF+o MR+0a5Q0X4kWkh0s5wMmWU1iTwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFL4Bg8tv aw53/817zy68vR5zubdmMB8GA1UdIwQYMBaAFE2QHDQlO8pbJ07rEGmT3vcgolKs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENkFCMi8wQUYyRUFBQUNG NzAxMUVBOEFFNTVENDhDNEY5QUUwMi9UWkFjTkNVN3lsc25UdXNRYVpQZTl5Q2lV cXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RaQWNOQ1U3eWxzblR1c1FhWlBlOXlDaVVxdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NkFCMi8wQUYyRUFBQUNGNzAxMUVBOEFFNTVENDhDNEY5QUUwMi9UWkFjTkNVN3ls c25UdXNRYVpQZTl5Q2lVcXcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEALznt8jKDaIPm2UwB/ddlIY7M4djdi2jMuVPy3O0+8+Toi8NCn2bAmNlbV6kg hBqbD3jAUTi288X7H35/X0FacAzz78P+/vlbKBX0mMlyU9Z28TnB04LKZ3VO1BuX e9IOwn+ERHpPJOHdajnojgMXN4GBI1IDSas2DimqXP4WpmJvpclrEVKTohYNzsTu JTbYrv066nNLRjT0nQUyRblwJf4KHOyCoPmuj1a3+ETHSNAoM0E4wOiTHbtgnNSD iFiM+KImEdAKsHMN0YeN/7YRP7LqXQcgXtZMU2Ml7K9lGOffCG1NI2ZzaVsn1qi8 P+dq8UnbRZ96aznVwE0pob8xMg== -----END CERTIFICATE-----Generated at Thu Mar 26 04:17:53 2026 by rpki-client