$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF233/08F05260B37811EF88322B0FC4F9AE02/TnWast4kVGn4MRuSc7VVOH51CpA.mft File: TnWast4kVGn4MRuSc7VVOH51CpA.mft (raw, json) Hash identifier: gOPOdDz7QMTqvc9EWSFMWu+gfTriioDNbAwjaO2uw3s= Subject key identifier: 62:0B:FA:D4:4B:59:F7:23:52:2F:02:91:69:46:86:87:29:B7:64:72 Authority key identifier: 4E:75:9A:B2:DE:24:54:69:F8:31:1B:92:73:B5:55:38:7E:75:0A:90 Certificate issuer: /CN=A91DF233/serialNumber=4E759AB2DE245469F8311B9273B555387E750A90 Certificate serial: FB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TnWast4kVGn4MRuSc7VVOH51CpA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF233/08F05260B37811EF88322B0FC4F9AE02/TnWast4kVGn4MRuSc7VVOH51CpA.mft Manifest number: F7 Signing time: Wed 25 Mar 2026 05:30:37 +0000 Manifest this update: Wed 25 Mar 2026 05:30:37 +0000 Manifest next update: Wed 01 Apr 2026 05:30:37 +0000 Files and hashes: 1: TnWast4kVGn4MRuSc7VVOH51CpA.crl (hash: xzr5Wzwhjs1wyhR6a6KQ0JOFLtCYU+chwBnaBXIs9Rg=) 2: 1FE0E016B37D11EFBDE18263C4F9AE02.roa (hash: dVowzphy2uXgtzt1PiwbcwH9pWDhfnknLc0RqbSLyzs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF233/08F05260B37811EF88322B0FC4F9AE02/TnWast4kVGn4MRuSc7VVOH51CpA.crl rsync://rpki.apnic.net/member_repository/A91DF233/08F05260B37811EF88322B0FC4F9AE02/TnWast4kVGn4MRuSc7VVOH51CpA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TnWast4kVGn4MRuSc7VVOH51CpA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 05:30:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 251 (0xfb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF233, serialNumber=4E759AB2DE245469F8311B9273B555387E750A90 Validity Not Before: Mar 25 05:30:37 2026 GMT Not After : Apr 1 05:30:37 2026 GMT Subject: CN=69c372fd-679c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:57:a0:e3:8b:a5:9e:1b:fe:40:d7:18:2f:99: 0b:ed:9e:fc:b9:64:10:d4:91:bd:97:1d:e8:f3:e9: a5:cf:84:82:3d:68:2d:f6:5a:61:72:5c:09:df:de: 35:6b:03:23:ef:a7:af:73:9f:02:76:f1:c2:b9:ce: 8c:fc:bd:fe:fc:94:fa:c4:6a:52:e9:22:ab:4f:c2: 33:2f:31:1f:b9:6d:f7:56:eb:b0:8c:f2:3e:b8:85: 45:ac:44:4f:61:b1:d1:a7:80:b9:cd:b6:b5:29:8c: ff:86:8c:94:fb:64:70:82:21:2c:c3:75:69:98:48: 94:42:ed:85:09:34:0e:3a:16:76:dc:38:01:72:52: a0:34:4b:f9:b9:39:3f:54:90:4e:2f:8e:40:06:5d: 87:b7:5c:a8:20:20:62:3e:64:85:fb:e6:f5:8a:3d: 21:75:04:e3:18:e4:98:5c:d7:3d:de:e8:61:1d:f6: e7:ce:1f:db:e1:18:da:9d:38:a0:0c:77:f4:8e:ab: 82:af:1d:a2:fa:cb:4b:e0:f9:b1:fb:bc:39:fd:d8: 98:b3:86:f2:60:e4:3c:82:53:bb:1c:00:7a:39:ce: eb:67:a1:f2:77:f7:ae:a6:8d:ad:00:41:4c:99:c0: 1b:57:dc:36:ab:a5:2c:da:7f:71:cb:86:51:bd:53: 01:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:0B:FA:D4:4B:59:F7:23:52:2F:02:91:69:46:86:87:29:B7:64:72 X509v3 Authority Key Identifier: keyid:4E:75:9A:B2:DE:24:54:69:F8:31:1B:92:73:B5:55:38:7E:75:0A:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF233/08F05260B37811EF88322B0FC4F9AE02/TnWast4kVGn4MRuSc7VVOH51CpA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TnWast4kVGn4MRuSc7VVOH51CpA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF233/08F05260B37811EF88322B0FC4F9AE02/TnWast4kVGn4MRuSc7VVOH51CpA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:a5:6d:4b:e1:2b:c3:a7:8d:ad:61:08:cc:12:c2:00:c2:e8: 73:b1:4d:b4:84:90:fe:b7:0a:fb:0b:b9:ac:79:e5:61:cd:69: 2f:6b:42:e8:0a:0a:42:f8:07:2e:f6:7c:37:bc:65:25:a4:8f: fa:88:fe:32:45:7b:97:48:a7:5f:8f:3c:5d:5f:a3:65:58:2a: 24:dc:76:eb:2b:24:88:5d:56:22:4f:ed:f0:c8:1f:3f:a4:83: 91:98:1a:ab:9b:48:b3:a1:a0:d8:ca:bc:99:a2:f6:af:e8:db: 06:8e:30:58:7a:4e:7e:95:a0:b8:fe:db:0a:d6:40:28:26:a8: f1:62:f8:8b:3a:c7:76:88:fd:d1:4d:5a:80:27:70:4e:2c:27: 82:33:38:db:28:60:09:7e:ab:66:5a:69:df:a5:64:c4:50:4e: b8:c7:9c:bb:26:ef:52:95:f0:43:3d:0a:f1:4d:20:43:6e:bf: 60:16:46:19:52:3c:a1:93:69:72:c6:c0:92:93:fd:25:bc:74: 09:50:7e:be:5c:b0:fe:8c:13:a9:7d:d0:15:f8:66:ee:ee:6e: 41:64:0f:4c:a3:6d:8b:f7:f9:fe:5a:2c:f0:cb:e4:4f:1d:82: 48:38:61:b8:ff:7a:ec:bf:61:7e:59:a8:b7:cb:cb:b8:37:2a: 61:ac:67:5f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAPswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REYyMzMxMTAvBgNVBAUTKDRFNzU5QUIyREUyNDU0NjlGODMxMUI5MjczQjU1NTM4 N0U3NTBBOTAwHhcNMjYwMzI1MDUzMDM3WhcNMjYwNDAxMDUzMDM3WjAYMRYwFAYD VQQDEw02OWMzNzJmZC02NzljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuVeg44ulnhv+QNcYL5kL7Z78uWQQ1JG9lx3o8+mlz4SCPWgt9lphclwJ3941 awMj76evc58CdvHCuc6M/L3+/JT6xGpS6SKrT8IzLzEfuW33VuuwjPI+uIVFrERP YbHRp4C5zba1KYz/hoyU+2RwgiEsw3VpmEiUQu2FCTQOOhZ23DgBclKgNEv5uTk/ VJBOL45ABl2Ht1yoICBiPmSF++b1ij0hdQTjGOSYXNc93uhhHfbnzh/b4RjanTig DHf0jquCrx2i+stL4Pmx+7w5/diYs4byYOQ8glO7HAB6Oc7rZ6Hyd/eupo2tAEFM mcAbV9w2q6Us2n9xy4ZRvVMBYQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGIL+tRL WfcjUi8CkWlGhocpt2RyMB8GA1UdIwQYMBaAFE51mrLeJFRp+DEbknO1VTh+dQqQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjIzMy8wOEYwNTI2MEIz NzgxMUVGODgzMjJCMEZDNEY5QUUwMi9Ubldhc3Q0a1ZHbjRNUnVTYzdWVk9INTFD cEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1RuV2FzdDRrVkduNE1SdVNjN1ZWT0g1MUNwQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RjIzMy8wOEYwNTI2MEIzNzgxMUVGODgzMjJCMEZDNEY5QUUwMi9Ubldhc3Q0a1ZH bjRNUnVTYzdWVk9INTFDcEEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAgaVtS+Erw6eNrWEIzBLCAMLoc7FNtISQ/rcK+wu5rHnlYc1pL2tC6AoKQvgH LvZ8N7xlJaSP+oj+MkV7l0inX488XV+jZVgqJNx26yskiF1WIk/t8MgfP6SDkZga q5tIs6Gg2Mq8maL2r+jbBo4wWHpOfpWguP7bCtZAKCao8WL4izrHdoj90U1agCdw TiwngjM42yhgCX6rZlpp36VkxFBOuMecuybvUpXwQz0K8U0gQ26/YBZGGVI8oZNp csbAkpP9Jbx0CVB+vlyw/owTqX3QFfhm7u5uQWQPTKNti/f5/los8MvkTx2CSDhh uP967L9hflmot8vLuDcqYaxnXw== -----END CERTIFICATE-----Generated at Thu Mar 26 13:37:21 2026 by rpki-client