$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE43E/CC03FBB82AFB11EA8DF37D55C4F9AE02/tpVKYo70-TShCnBay8uQbtYQSAw.mft File: tpVKYo70-TShCnBay8uQbtYQSAw.mft (raw, json) Hash identifier: 5VTQJE5mxQz4NRF8bOCrI3e6vO06FAN+EkLYzlvEHKY= Subject key identifier: F6:60:33:6D:6A:7C:D8:6D:E8:46:10:C0:AB:92:D8:D0:74:DC:38:A2 Authority key identifier: B6:95:4A:62:8E:F4:F9:34:A1:0A:70:5A:CB:CB:90:6E:D6:10:48:0C Certificate issuer: /CN=A91DE43E/serialNumber=B6954A628EF4F934A10A705ACBCB906ED610480C Certificate serial: 0C2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tpVKYo70-TShCnBay8uQbtYQSAw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE43E/CC03FBB82AFB11EA8DF37D55C4F9AE02/tpVKYo70-TShCnBay8uQbtYQSAw.mft Manifest number: 0C1D Signing time: Tue 24 Mar 2026 18:37:35 +0000 Manifest this update: Tue 24 Mar 2026 18:37:35 +0000 Manifest next update: Tue 31 Mar 2026 18:37:35 +0000 Files and hashes: 1: tpVKYo70-TShCnBay8uQbtYQSAw.crl (hash: LvJxpSO80+KYhchoy+yXnxdPMPsuP0ooQH1Ka7wzXus=) 2: 5E117DC82AFC11EAB5FEC955C4F9AE02.roa (hash: EyRtY8sGXhVLDI0pwCgdo02VTIkeCLp4JlBiXWPGscw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE43E/CC03FBB82AFB11EA8DF37D55C4F9AE02/tpVKYo70-TShCnBay8uQbtYQSAw.crl rsync://rpki.apnic.net/member_repository/A91DE43E/CC03FBB82AFB11EA8DF37D55C4F9AE02/tpVKYo70-TShCnBay8uQbtYQSAw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tpVKYo70-TShCnBay8uQbtYQSAw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 18:37:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3114 (0xc2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE43E, serialNumber=B6954A628EF4F934A10A705ACBCB906ED610480C Validity Not Before: Mar 24 18:37:35 2026 GMT Not After : Mar 31 18:37:35 2026 GMT Subject: CN=69c2d9ef-b979 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:89:cf:64:d0:3a:f9:e4:9e:ff:c7:a3:f0:9a: 98:8e:a3:01:fa:fb:cb:2d:79:eb:9e:44:d6:3f:14: 86:66:78:db:bc:c1:8e:a0:65:4c:1d:9b:77:cf:02: d8:7d:34:2a:ad:28:1c:e0:51:f4:01:f9:56:d0:62: 8e:13:0e:78:d6:5d:df:89:4f:f8:9b:bc:33:8c:9e: 99:1d:a9:6e:90:05:d9:09:a8:f4:c1:e8:85:79:59: 91:9b:51:8c:5e:89:97:59:4f:b6:1c:cd:aa:fc:56: d7:9d:8d:4d:a2:de:48:c5:b8:f6:45:bb:fb:d4:bb: 13:3d:b3:47:ed:38:2d:67:2f:a6:cf:2c:f2:2f:82: 82:07:79:1f:a3:62:fd:5d:78:1f:91:52:22:b6:a5: 06:6a:e9:db:70:4c:d2:4b:db:d2:7c:e5:85:05:45: f2:d6:89:4e:c3:dc:b2:62:7e:9d:fe:2f:e9:c5:e9: a6:fe:f6:2e:6f:55:df:9b:c5:38:3c:7d:ef:d1:7d: a7:2b:0b:ab:6c:31:84:59:ea:d8:3e:ce:67:7e:b0: 29:29:7f:ce:84:90:dc:72:65:db:91:ab:62:dd:7f: 44:3e:d6:84:94:97:b6:39:70:e7:69:ff:c2:ff:fe: 9d:4a:ba:44:11:ff:91:7a:67:69:79:ed:bd:8e:3e: 92:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:60:33:6D:6A:7C:D8:6D:E8:46:10:C0:AB:92:D8:D0:74:DC:38:A2 X509v3 Authority Key Identifier: keyid:B6:95:4A:62:8E:F4:F9:34:A1:0A:70:5A:CB:CB:90:6E:D6:10:48:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE43E/CC03FBB82AFB11EA8DF37D55C4F9AE02/tpVKYo70-TShCnBay8uQbtYQSAw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tpVKYo70-TShCnBay8uQbtYQSAw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE43E/CC03FBB82AFB11EA8DF37D55C4F9AE02/tpVKYo70-TShCnBay8uQbtYQSAw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:cb:02:15:8d:58:81:69:f5:c2:d2:ef:06:7c:9f:85:38:d3: e3:53:6d:a5:53:e0:7f:02:20:99:0e:33:79:5d:97:7f:41:0e: 8a:c5:bc:95:30:cf:a8:18:7a:2c:1a:17:46:f6:ad:91:e5:20: 26:f0:aa:3d:06:6f:7e:15:87:7c:5d:41:eb:38:ee:cd:e2:21: 2c:99:45:d7:7d:3f:a4:82:a9:0a:df:ea:3d:8d:09:c3:37:2c: 3c:84:62:c3:83:31:ef:96:b6:5e:64:99:3f:99:db:32:ba:18: dc:47:0b:10:3d:d1:f6:06:92:e7:ae:62:a7:69:98:97:ed:5c: b1:f2:57:8e:31:62:6a:21:fa:4b:07:9b:f2:c0:83:ab:47:65: 6c:4f:97:45:ec:1d:0a:2d:88:eb:bd:78:86:e7:90:a3:b9:35: 9d:f5:4e:d7:25:4c:d1:d0:0d:3d:e4:a1:fb:97:fb:1e:32:76: ab:62:25:c2:2c:94:93:c0:4f:30:bd:8a:5b:15:62:cc:d9:81: 7c:97:46:f0:79:ab:8a:8c:f3:82:9c:d3:b3:6e:9a:8e:63:dc: de:dd:91:6d:99:af:25:b4:ca:3e:46:ea:db:b6:00:8b:55:ef: 20:81:d7:9b:9c:cd:19:3d:35:a7:81:12:94:9b:c5:70:a7:07: 5f:7b:9c:46 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDCowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REU0M0UxMTAvBgNVBAUTKEI2OTU0QTYyOEVGNEY5MzRBMTBBNzA1QUNCQ0I5MDZF RDYxMDQ4MEMwHhcNMjYwMzI0MTgzNzM1WhcNMjYwMzMxMTgzNzM1WjAYMRYwFAYD VQQDEw02OWMyZDllZi1iOTc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwonPZNA6+eSe/8ej8JqYjqMB+vvLLXnrnkTWPxSGZnjbvMGOoGVMHZt3zwLY fTQqrSgc4FH0AflW0GKOEw541l3fiU/4m7wzjJ6ZHalukAXZCaj0weiFeVmRm1GM XomXWU+2HM2q/FbXnY1Not5Ixbj2Rbv71LsTPbNH7TgtZy+mzyzyL4KCB3kfo2L9 XXgfkVIitqUGaunbcEzSS9vSfOWFBUXy1olOw9yyYn6d/i/pxemm/vYub1Xfm8U4 PH3v0X2nKwurbDGEWerYPs5nfrApKX/OhJDccmXbkati3X9EPtaElJe2OXDnaf/C //6dSrpEEf+Remdpee29jj6S7wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPZgM21q fNht6EYQwKuS2NB03DiiMB8GA1UdIwQYMBaAFLaVSmKO9Pk0oQpwWsvLkG7WEEgM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTQzRS9DQzAzRkJCODJB RkIxMUVBOERGMzdENTVDNEY5QUUwMi90cFZLWW83MC1UU2hDbkJheTh1UWJ0WVFT QXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RwVktZbzcwLVRTaENuQmF5OHVRYnRZUVNBdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RTQzRS9DQzAzRkJCODJBRkIxMUVBOERGMzdENTVDNEY5QUUwMi90cFZLWW83MC1U U2hDbkJheTh1UWJ0WVFTQXcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAL8sCFY1YgWn1wtLvBnyfhTjT41NtpVPgfwIgmQ4zeV2Xf0EOisW8lTDPqBh6 LBoXRvatkeUgJvCqPQZvfhWHfF1B6zjuzeIhLJlF130/pIKpCt/qPY0JwzcsPIRi w4Mx75a2XmSZP5nbMroY3EcLED3R9gaS565ip2mYl+1csfJXjjFiaiH6Sweb8sCD q0dlbE+XRewdCi2I6714hueQo7k1nfVO1yVM0dANPeSh+5f7HjJ2q2IlwiyUk8BP ML2KWxVizNmBfJdG8HmriozzgpzTs26ajmPc3t2RbZmvJbTKPkbq27YAi1XvIIHX m5zNGT01p4ESlJvFcKcHX3ucRg== -----END CERTIFICATE-----Generated at Thu Mar 26 06:04:08 2026 by rpki-client