$ rpki-client -vvf rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.mft File: tIGYczHh7UCLUcuf2O9KZQrIZpo.mft (raw, json) Hash identifier: bxbuNO544VIx8LC3f9DdoMEzSKLTTQYC9e7UuO5U6uI= Subject key identifier: 5C:D5:2D:F6:6B:36:30:01:17:CA:D6:A7:01:21:6D:80:92:75:CA:98 Authority key identifier: B4:81:98:73:31:E1:ED:40:8B:51:CB:9F:D8:EF:4A:65:0A:C8:66:9A Certificate issuer: /CN=A91E28E2/serialNumber=B481987331E1ED408B51CB9FD8EF4A650AC8669A Certificate serial: 025E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tIGYczHh7UCLUcuf2O9KZQrIZpo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.mft Manifest number: 0244 Signing time: Wed 25 Mar 2026 02:02:40 +0000 Manifest this update: Wed 25 Mar 2026 02:02:40 +0000 Manifest next update: Wed 01 Apr 2026 02:02:40 +0000 Files and hashes: 1: tIGYczHh7UCLUcuf2O9KZQrIZpo.crl (hash: SCiGTz5fh4iE7AqV9ZsQETAR6dAl5z+UUjpGH+24Ofw=) 2: 9C6F02C6249D11EF9532356DC4F9AE02.roa (hash: rqdiCtjrx/nRHSFBDJET2Hy4bfU3/bkdX125W59d+co=) 3: B4B581DEDFDB11F0B149F2E3536F56BC.roa (hash: xl+ZGGMMsQzXdRoVvAevwVbibKiAjAP36zHm8LVE2Zw=) 4: 42D4386CDFDB11F0A18E0FE3536F56BC.roa (hash: eUh3+0eNlTLz/GijzP1F9VFF/VuE/2wjuZ3Eqz98/Ac=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.crl rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tIGYczHh7UCLUcuf2O9KZQrIZpo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 02:02:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 606 (0x25e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E28E2, serialNumber=B481987331E1ED408B51CB9FD8EF4A650AC8669A Validity Not Before: Mar 25 02:02:40 2026 GMT Not After : Apr 1 02:02:40 2026 GMT Subject: CN=69c34240-4c16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:f1:32:93:18:c0:d2:36:15:c0:8d:d9:26:ad: f3:63:5d:eb:ee:9b:39:64:a0:b9:31:e9:99:f1:51: 0d:16:78:2f:7a:05:fe:e0:d2:f3:b7:94:36:68:46: 69:bb:cf:76:6f:44:1b:ac:c5:40:fd:b8:c1:d4:26: b2:b4:bc:a0:f5:53:c1:2d:f4:dc:41:fa:4c:04:41: 19:d6:5d:41:91:d6:38:81:a0:d9:37:e2:43:fc:6c: a5:18:33:c0:b4:6b:0b:c1:1f:42:10:a0:01:c5:54: 48:8e:4a:2f:4b:e2:77:38:84:12:87:2a:ab:d9:7f: b6:f1:00:cd:cd:80:34:b4:9a:95:a8:8e:ce:69:27: 3f:f8:89:46:e9:57:5c:e0:5d:87:aa:9b:f3:71:6c: 4e:b7:6a:0a:1a:e8:8d:81:b6:bf:14:97:6d:06:88: e7:66:da:19:80:ee:5d:21:34:1e:0d:68:dc:76:4a: 1f:1e:f6:4e:27:04:a5:9f:22:41:e5:f2:0a:dc:ef: 98:da:ac:87:2a:32:4f:14:f6:34:44:f4:d7:68:c3: a7:e1:10:fa:1a:58:59:b0:b6:17:1d:d9:0f:ca:af: eb:a7:8d:78:c1:e9:cf:c3:07:be:fa:9b:f3:54:b4: e6:4a:ea:03:9b:9e:86:8f:a8:2c:f8:a4:c8:6f:a6: d8:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:D5:2D:F6:6B:36:30:01:17:CA:D6:A7:01:21:6D:80:92:75:CA:98 X509v3 Authority Key Identifier: keyid:B4:81:98:73:31:E1:ED:40:8B:51:CB:9F:D8:EF:4A:65:0A:C8:66:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tIGYczHh7UCLUcuf2O9KZQrIZpo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:b1:b5:b0:8b:fb:f9:a9:e3:05:92:76:bf:65:90:ba:c6:28: 99:40:32:d0:03:1a:51:87:bc:aa:64:f8:42:6c:b7:e5:86:07: f8:f2:78:c7:e0:86:3e:74:c8:52:33:10:89:d6:2b:e6:e1:b7: e5:55:ed:ca:3f:f5:1d:8c:e4:24:70:ea:73:05:3e:87:c6:2d: b5:40:26:9f:a9:19:d2:ca:2d:80:a0:c2:07:a9:8c:46:af:0b: f0:15:e5:40:39:8f:3d:76:d6:86:b5:78:12:71:cf:cb:f1:27: 10:d0:0f:2a:72:78:36:77:19:d1:64:dc:e6:2d:87:f1:71:25: 86:8e:fc:38:89:9b:ca:eb:ba:35:b2:2a:38:ea:8e:4d:bc:37: b3:ab:d8:c8:bc:87:e5:ff:c4:7d:66:8c:4f:38:f2:51:35:5a: 5d:cb:63:b7:5e:e0:ff:05:ac:44:e9:38:f8:9f:2c:da:5f:34: c4:9a:ff:80:57:5e:ed:45:44:2a:ea:9e:7f:07:61:68:39:9b: 82:e9:2b:ca:24:dc:26:3c:b5:c0:d2:80:4f:d5:46:0f:2d:02: 27:b7:68:de:49:02:61:00:a6:fc:2b:ca:8f:2f:88:e7:6f:7c: 32:02:e6:98:72:03:83:5e:f2:2d:06:f1:f0:2e:df:eb:1f:74: e0:6c:64:d3 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAl4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI4RTIxMTAvBgNVBAUTKEI0ODE5ODczMzFFMUVENDA4QjUxQ0I5RkQ4RUY0QTY1 MEFDODY2OUEwHhcNMjYwMzI1MDIwMjQwWhcNMjYwNDAxMDIwMjQwWjAYMRYwFAYD VQQDEw02OWMzNDI0MC00YzE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt/EykxjA0jYVwI3ZJq3zY13r7ps5ZKC5MemZ8VENFngvegX+4NLzt5Q2aEZp u892b0QbrMVA/bjB1CaytLyg9VPBLfTcQfpMBEEZ1l1BkdY4gaDZN+JD/GylGDPA tGsLwR9CEKABxVRIjkovS+J3OIQShyqr2X+28QDNzYA0tJqVqI7OaSc/+IlG6Vdc 4F2HqpvzcWxOt2oKGuiNgba/FJdtBojnZtoZgO5dITQeDWjcdkofHvZOJwSlnyJB 5fIK3O+Y2qyHKjJPFPY0RPTXaMOn4RD6GlhZsLYXHdkPyq/rp414wenPwwe++pvz VLTmSuoDm56Gj6gs+KTIb6bYvwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFzVLfZr NjABF8rWpwEhbYCSdcqYMB8GA1UdIwQYMBaAFLSBmHMx4e1Ai1HLn9jvSmUKyGaa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjhFMi85NTJGQTYzMkQy RTYxMUVEOUE1MkQ1NUFDNEY5QUUwMi90SUdZY3pIaDdVQ0xVY3VmMk85S1pRckla cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RJR1ljekhoN1VDTFVjdWYyTzlLWlFySVpwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MjhFMi85NTJGQTYzMkQyRTYxMUVEOUE1MkQ1NUFDNEY5QUUwMi90SUdZY3pIaDdV Q0xVY3VmMk85S1pRcklacG8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAcLG1sIv7+anjBZJ2v2WQusYomUAy0AMaUYe8qmT4Qmy35YYH+PJ4x+CGPnTI UjMQidYr5uG35VXtyj/1HYzkJHDqcwU+h8YttUAmn6kZ0sotgKDCB6mMRq8L8BXl QDmPPXbWhrV4EnHPy/EnENAPKnJ4NncZ0WTc5i2H8XElho78OImbyuu6NbIqOOqO Tbw3s6vYyLyH5f/EfWaMTzjyUTVaXctjt17g/wWsROk4+J8s2l80xJr/gFde7UVE KuqefwdhaDmbgukryiTcJjy1wNKAT9VGDy0CJ7do3kkCYQCm/CvKjy+I5298MgLm mHIDg17yLQbx8C7f6x904Gxk0w== -----END CERTIFICATE-----Generated at Thu Mar 26 15:06:25 2026 by rpki-client