$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9928/57DFBEBC984F11F085402975C4F9AE02/tbNfkk61wy-7QYZ9OhZuSpa77KI.mft File: tbNfkk61wy-7QYZ9OhZuSpa77KI.mft (raw, json) Hash identifier: lUnCVtl/iMzkvrSXmo3eBZv6QRstQ0WIPcDVYWTyLvU= Subject key identifier: 1B:07:A9:0C:A2:9C:C8:1D:71:40:FB:9D:34:03:16:80:BF:24:67:29 Authority key identifier: B5:B3:5F:92:4E:B5:C3:2F:BB:41:86:7D:3A:16:6E:4A:96:BB:EC:A2 Certificate issuer: /CN=A91D9928/serialNumber=B5B35F924EB5C32FBB41867D3A166E4A96BBECA2 Certificate serial: 61 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tbNfkk61wy-7QYZ9OhZuSpa77KI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9928/57DFBEBC984F11F085402975C4F9AE02/tbNfkk61wy-7QYZ9OhZuSpa77KI.mft Manifest number: 5F Signing time: Wed 25 Mar 2026 07:14:15 +0000 Manifest this update: Wed 25 Mar 2026 07:14:14 +0000 Manifest next update: Wed 01 Apr 2026 07:14:14 +0000 Files and hashes: 1: tbNfkk61wy-7QYZ9OhZuSpa77KI.crl (hash: hdMnfUu1pwHTprg5neAPyWJKjexg7ofqS6ciKyQAoBw=) 2: A71814CA984F11F0B7A01E76C4F9AE02.roa (hash: Wqlgag3JASt9EH/u+Cc5ukalg78nje36S+xtNjVr+A4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9928/57DFBEBC984F11F085402975C4F9AE02/tbNfkk61wy-7QYZ9OhZuSpa77KI.crl rsync://rpki.apnic.net/member_repository/A91D9928/57DFBEBC984F11F085402975C4F9AE02/tbNfkk61wy-7QYZ9OhZuSpa77KI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tbNfkk61wy-7QYZ9OhZuSpa77KI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 07:14:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 97 (0x61) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9928, serialNumber=B5B35F924EB5C32FBB41867D3A166E4A96BBECA2 Validity Not Before: Mar 25 07:14:14 2026 GMT Not After : Apr 1 07:14:14 2026 GMT Subject: CN=69c38b47-b51c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:bb:0b:6b:da:e3:28:b3:2e:0f:a6:3c:52:2a: 2d:0d:12:d9:cb:8a:ca:97:73:2e:52:5b:85:72:98: b1:4e:81:25:fb:30:ed:c3:07:1d:ce:57:ef:82:55: d0:ab:ca:a7:58:17:df:b8:b6:de:01:4f:da:f7:05: 23:11:f4:9a:ce:ea:0d:ce:7c:36:dd:71:9a:6e:d1: 7b:e3:17:2b:ac:f7:cb:9b:35:9d:59:4a:6d:34:ea: c8:82:a4:70:b9:31:9b:45:a6:c2:4b:ed:d9:1f:bb: 95:31:eb:bf:05:63:e7:7e:45:f4:d1:e7:ad:84:a6: ed:a0:a9:f8:a6:a4:5a:1b:64:ba:00:42:4e:81:aa: f2:5d:12:07:2b:9b:9e:bf:37:d4:22:b2:1e:ab:0a: 34:cb:f2:16:af:a9:6a:35:0a:e6:4e:d3:e0:f4:5f: e1:aa:da:05:3b:f9:ad:65:5b:e9:de:d2:bb:81:96: 9b:1e:72:56:ad:79:39:66:fd:5e:3a:7c:0c:bc:70: bd:6b:fa:bb:41:22:d8:00:fd:4e:9d:4f:de:bc:0b: 6d:08:e1:39:c6:9e:90:15:52:c8:d2:62:9c:e8:da: 33:b7:93:35:2e:3f:46:6f:05:84:08:08:98:c1:af: aa:49:84:6d:45:41:6d:e5:85:6b:31:52:78:53:35: 1e:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:07:A9:0C:A2:9C:C8:1D:71:40:FB:9D:34:03:16:80:BF:24:67:29 X509v3 Authority Key Identifier: keyid:B5:B3:5F:92:4E:B5:C3:2F:BB:41:86:7D:3A:16:6E:4A:96:BB:EC:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9928/57DFBEBC984F11F085402975C4F9AE02/tbNfkk61wy-7QYZ9OhZuSpa77KI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tbNfkk61wy-7QYZ9OhZuSpa77KI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9928/57DFBEBC984F11F085402975C4F9AE02/tbNfkk61wy-7QYZ9OhZuSpa77KI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:39:16:1c:16:8e:62:63:c8:46:99:ec:a0:95:d3:06:d9:72: 56:ea:50:35:b1:5d:71:61:74:7b:c4:05:5a:f4:5a:db:4b:fd: 98:a0:66:1c:65:af:a2:e0:7c:8e:77:f3:07:00:01:a6:63:c5: 88:6a:99:2d:86:d1:8d:48:87:07:37:69:d8:ce:cd:a3:e3:05: 83:c0:e8:25:da:50:5d:70:1c:7b:07:74:27:00:5c:0d:97:57: 83:e8:70:55:47:df:41:3b:14:ed:d9:b0:e2:3a:c4:94:83:e2: 79:6e:a0:b2:42:4a:ff:72:fb:1d:3c:90:b3:12:f5:79:56:58: fd:1d:68:6b:fb:f6:79:1f:f1:49:71:a5:92:e6:e3:e1:c1:7e: 29:55:4e:26:1d:b0:0b:f8:1b:66:96:3b:f0:25:02:a2:ec:9a: f3:d6:24:bd:e0:f6:da:f5:db:04:4b:7e:5c:ae:dd:83:55:95: cf:70:b3:0b:5e:31:59:2c:3a:50:22:ac:87:8d:ee:5e:c6:13: d3:93:13:f3:2c:d6:dc:e9:cc:1e:9d:5d:5e:81:71:25:2f:5a: fc:c9:ff:7d:a5:bb:63:ed:af:2f:55:34:f0:89:eb:9f:2c:33: 95:67:ff:1b:af:cf:ab:d0:25:7c:35:eb:5f:24:71:f4:1a:94: 60:70:94:fd -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBYTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE OTkyODExMC8GA1UEBRMoQjVCMzVGOTI0RUI1QzMyRkJCNDE4NjdEM0ExNjZFNEE5 NkJCRUNBMjAeFw0yNjAzMjUwNzE0MTRaFw0yNjA0MDEwNzE0MTRaMBgxFjAUBgNV BAMTDTY5YzM4YjQ3LWI1MWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCiuwtr2uMosy4PpjxSKi0NEtnLisqXcy5SW4VymLFOgSX7MO3DBx3OV++CVdCr yqdYF9+4tt4BT9r3BSMR9JrO6g3OfDbdcZpu0XvjFyus98ubNZ1ZSm006siCpHC5 MZtFpsJL7dkfu5Ux678FY+d+RfTR562Epu2gqfimpFobZLoAQk6BqvJdEgcrm56/ N9Qish6rCjTL8havqWo1CuZO0+D0X+Gq2gU7+a1lW+ne0ruBlpseclateTlm/V46 fAy8cL1r+rtBItgA/U6dT968C20I4TnGnpAVUsjSYpzo2jO3kzUuP0ZvBYQICJjB r6pJhG1FQW3lhWsxUnhTNR6dAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUGwepDKKc yB1xQPudNAMWgL8kZykwHwYDVR0jBBgwFoAUtbNfkk61wy+7QYZ9OhZuSpa77KIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ5OTI4LzU3REZCRUJDOTg0 RjExRjA4NTQwMjk3NUM0RjlBRTAyL3RiTmZrazYxd3ktN1FZWjlPaFp1U3BhNzdL SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdGJOZmtrNjF3eS03UVlaOU9oWnVTcGE3N0tJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ5 OTI4LzU3REZCRUJDOTg0RjExRjA4NTQwMjk3NUM0RjlBRTAyL3RiTmZrazYxd3kt N1FZWjlPaFp1U3BhNzdLSS5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQBXORYcFo5iY8hGmeygldMG2XJW6lA1sV1xYXR7xAVa9FrbS/2YoGYcZa+i4HyO d/MHAAGmY8WIapkthtGNSIcHN2nYzs2j4wWDwOgl2lBdcBx7B3QnAFwNl1eD6HBV R99BOxTt2bDiOsSUg+J5bqCyQkr/cvsdPJCzEvV5Vlj9HWhr+/Z5H/FJcaWS5uPh wX4pVU4mHbAL+BtmljvwJQKi7Jrz1iS94Pba9dsES35crt2DVZXPcLMLXjFZLDpQ IqyHje5exhPTkxPzLNbc6cwenV1egXElL1r8yf99pbtj7a8vVTTwieufLDOVZ/8b r8+r0CV8NetfJHH0GpRgcJT9 -----END CERTIFICATE-----Generated at Thu Mar 26 06:17:05 2026 by rpki-client