$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.mft File: tDpaYNRoBqaf_vfGdiGexLqLo20.mft (raw, json) Hash identifier: ICMuLs66jx7jLmCZ4++UsGBTs09SqQ6ogH+H0igb+Vo= Subject key identifier: 18:D8:BE:F8:41:F3:7A:F2:F1:E8:33:87:61:86:B7:96:C4:76:0F:4B Authority key identifier: B4:3A:5A:60:D4:68:06:A6:9F:FE:F7:C6:76:21:9E:C4:BA:8B:A3:6D Certificate issuer: /CN=A91E2AE5/serialNumber=B43A5A60D46806A69FFEF7C676219EC4BA8BA36D Certificate serial: 2C2D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tDpaYNRoBqaf_vfGdiGexLqLo20.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.mft Manifest number: 2C07 Signing time: Tue 24 Mar 2026 15:29:08 +0000 Manifest this update: Tue 24 Mar 2026 15:29:07 +0000 Manifest next update: Tue 31 Mar 2026 15:29:07 +0000 Files and hashes: 1: tDpaYNRoBqaf_vfGdiGexLqLo20.crl (hash: FEiZFuzCjX7+DeQADhR4WLsxIVsQBxr9m52sdGiDttY=) 2: 43487B18BF1811E9A2C00E63C4F9AE02.roa (hash: 9yPl2RyPXoic4hgvWw1sNI2e0xi/PvyG32cZkvJi8ws=) 3: 2815E7D4BF4211E9A93A3957C4F9AE02.roa (hash: uipKT1Jp/DMN4bzHM/v/VQW3NmoiBvgfgpPCrWFueSQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.crl rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tDpaYNRoBqaf_vfGdiGexLqLo20.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 15:29:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11309 (0x2c2d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2AE5, serialNumber=B43A5A60D46806A69FFEF7C676219EC4BA8BA36D Validity Not Before: Mar 24 15:29:07 2026 GMT Not After : Mar 31 15:29:07 2026 GMT Subject: CN=69c2adc4-4382 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:d3:d9:62:45:4d:82:0d:f0:bc:4a:8e:fd:d3: 3e:3d:1e:46:9f:f2:f7:c1:3c:46:b1:4e:e6:52:35: fa:a7:a2:13:b2:8f:89:83:a0:96:b7:5e:76:6b:5d: e8:54:cf:cf:e7:16:41:f0:64:a0:b5:c4:5f:d6:89: 17:b6:dd:6b:e5:ea:fe:43:7c:bf:fd:8d:d1:58:34: 86:ad:93:90:c8:f9:0b:b8:dc:46:68:a2:0c:11:67: 80:83:e0:10:70:a6:11:e2:91:3a:07:a3:fb:49:d8: 7f:9e:da:2e:da:c1:61:35:af:3d:44:9f:7c:59:d1: a2:a4:36:ae:b3:3f:ee:d7:16:6f:9d:71:80:4c:33: 13:41:c1:d1:44:31:55:99:4b:99:33:15:7a:bb:0b: 9d:db:9e:1a:fb:c0:f7:ec:0d:41:81:de:48:58:c7: 8c:c7:94:d5:d6:0a:57:2b:98:a7:8c:b1:27:4f:d4: 67:41:48:06:da:53:05:2e:84:82:73:d8:dd:2b:bb: 2e:92:0f:39:cb:d2:f5:b7:65:2a:36:78:26:cb:c7: ba:e4:33:eb:13:83:a0:8b:54:c5:81:a6:9a:e3:7d: 7e:40:67:45:c0:a6:51:db:3e:2a:95:80:b2:76:c5: e6:82:37:3b:26:b9:db:6c:33:15:3b:53:7a:b3:a2: 5c:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:D8:BE:F8:41:F3:7A:F2:F1:E8:33:87:61:86:B7:96:C4:76:0F:4B X509v3 Authority Key Identifier: keyid:B4:3A:5A:60:D4:68:06:A6:9F:FE:F7:C6:76:21:9E:C4:BA:8B:A3:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tDpaYNRoBqaf_vfGdiGexLqLo20.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:f5:2b:b4:95:70:8a:8a:5d:d3:e6:a1:73:a3:ce:7b:80:74: eb:d0:8d:6c:3f:29:78:bd:ee:ab:a0:18:d7:51:7e:da:8c:01: c8:bd:e1:1f:3f:47:b6:59:32:28:d8:32:ef:93:11:4c:c3:73: 77:94:de:dc:7b:9a:3f:43:66:d6:c1:5d:9b:b6:0c:f1:21:2e: ba:e0:89:8f:4c:c6:2f:be:b8:a1:86:ba:6f:e1:da:72:2d:b0: 77:39:2f:a7:13:89:1f:cb:20:d8:99:54:7c:4a:7e:a9:f2:18: 80:88:9e:83:c7:ea:ce:09:df:4e:4f:a8:6a:d2:bc:b2:57:90: d0:fd:f7:1e:59:69:4e:0b:9c:13:b1:e6:f4:d6:b3:60:09:0f: 0e:8a:68:13:01:53:53:ab:ec:2b:e5:aa:6a:30:a0:75:15:4c: f1:47:9c:36:b0:88:e8:94:aa:7e:8e:35:0c:8a:3f:22:07:6d: 66:40:ac:83:29:ab:7d:9d:06:da:8f:13:10:8a:f1:92:c0:83: fe:7a:88:da:10:47:6d:6f:e2:83:df:90:90:04:f2:b1:99:ca: f6:1e:a5:a9:ee:ce:0d:9f:7d:49:d1:9a:5e:06:15:f7:07:7b: 72:5c:61:dc:44:2f:7c:29:f6:90:c5:f2:01:29:b3:aa:c3:59: 2e:b5:31:14 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICLC0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTJBRTUxMTAvBgNVBAUTKEI0M0E1QTYwRDQ2ODA2QTY5RkZFRjdDNjc2MjE5RUM0 QkE4QkEzNkQwHhcNMjYwMzI0MTUyOTA3WhcNMjYwMzMxMTUyOTA3WjAYMRYwFAYD VQQDEw02OWMyYWRjNC00MzgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv9PZYkVNgg3wvEqO/dM+PR5Gn/L3wTxGsU7mUjX6p6ITso+Jg6CWt152a13o VM/P5xZB8GSgtcRf1okXtt1r5er+Q3y//Y3RWDSGrZOQyPkLuNxGaKIMEWeAg+AQ cKYR4pE6B6P7Sdh/ntou2sFhNa89RJ98WdGipDausz/u1xZvnXGATDMTQcHRRDFV mUuZMxV6uwud254a+8D37A1Bgd5IWMeMx5TV1gpXK5injLEnT9RnQUgG2lMFLoSC c9jdK7sukg85y9L1t2UqNngmy8e65DPrE4Ogi1TFgaaa431+QGdFwKZR2z4qlYCy dsXmgjc7JrnbbDMVO1N6s6JcVQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBjYvvhB 83ry8egzh2GGt5bEdg9LMB8GA1UdIwQYMBaAFLQ6WmDUaAamn/73xnYhnsS6i6Nt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMkFFNS84RDNFNTRFQUVE NTkxMUUzQjA5MDExOTI1OTExRUEzMi90RHBhWU5Sb0JxYWZfdmZHZGlHZXhMcUxv MjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3REcGFZTlJvQnFhZl92ZkdkaUdleExxTG8yMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MkFFNS84RDNFNTRFQUVENTkxMUUzQjA5MDExOTI1OTExRUEzMi90RHBhWU5Sb0Jx YWZfdmZHZGlHZXhMcUxvMjAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAOfUrtJVwiopd0+ahc6POe4B069CNbD8peL3uq6AY11F+2owByL3hHz9Htlky KNgy75MRTMNzd5Te3HuaP0Nm1sFdm7YM8SEuuuCJj0zGL764oYa6b+Haci2wdzkv pxOJH8sg2JlUfEp+qfIYgIieg8fqzgnfTk+oatK8sleQ0P33HllpTgucE7Hm9Naz YAkPDopoEwFTU6vsK+WqajCgdRVM8UecNrCI6JSqfo41DIo/IgdtZkCsgymrfZ0G 2o8TEIrxksCD/nqI2hBHbW/ig9+QkATysZnK9h6lqe7ODZ99SdGaXgYV9wd7clxh 3EQvfCn2kMXyASmzqsNZLrUxFA== -----END CERTIFICATE-----Generated at Thu Mar 26 02:44:55 2026 by rpki-client