$ rpki-client -vvf rpki.apnic.net/member_repository/A91EDBB0/E653E51207ED11F0B0A68764C4F9AE02/_thOn-AVmpk3ohk6C326I7bCZbg.mft File: _thOn-AVmpk3ohk6C326I7bCZbg.mft (raw, json) Hash identifier: n2rtFYljbyoDGiLtdnl5w9rbdfG8fmUIf0X/TkP7+Zs= Subject key identifier: 52:B3:1E:1E:A6:57:B9:75:12:3E:D7:F3:BC:0A:15:DF:7E:47:63:09 Authority key identifier: FE:D8:4E:9F:E0:15:9A:99:37:A2:19:3A:0B:7D:BA:23:B6:C2:65:B8 Certificate issuer: /CN=A91EDBB0/serialNumber=FED84E9FE0159A9937A2193A0B7DBA23B6C265B8 Certificate serial: C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_thOn-AVmpk3ohk6C326I7bCZbg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EDBB0/E653E51207ED11F0B0A68764C4F9AE02/_thOn-AVmpk3ohk6C326I7bCZbg.mft Manifest number: BE Signing time: Wed 25 Mar 2026 06:11:34 +0000 Manifest this update: Wed 25 Mar 2026 06:11:33 +0000 Manifest next update: Wed 01 Apr 2026 06:11:33 +0000 Files and hashes: 1: _thOn-AVmpk3ohk6C326I7bCZbg.crl (hash: rmh3Qcg5dL3Xwg6C+5MMr/Og3yNQ9lp6AL4tTHiK6Eg=) 2: 18317928083911F0A2909A72C4F9AE02.roa (hash: mmIU8UeudAKZrTx8s6Nxy2r+SAdWHS9FcLl5he11RrQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EDBB0/E653E51207ED11F0B0A68764C4F9AE02/_thOn-AVmpk3ohk6C326I7bCZbg.crl rsync://rpki.apnic.net/member_repository/A91EDBB0/E653E51207ED11F0B0A68764C4F9AE02/_thOn-AVmpk3ohk6C326I7bCZbg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_thOn-AVmpk3ohk6C326I7bCZbg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 06:11:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 192 (0xc0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EDBB0, serialNumber=FED84E9FE0159A9937A2193A0B7DBA23B6C265B8 Validity Not Before: Mar 25 06:11:33 2026 GMT Not After : Apr 1 06:11:33 2026 GMT Subject: CN=69c37c96-f24e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:fc:78:5a:59:dd:5a:85:91:4b:61:86:dc:3f: 4f:99:52:c6:59:cc:85:16:e6:31:4f:6d:bd:4d:a9: 01:30:c5:11:a3:eb:21:f7:4b:7f:f5:51:1d:63:65: dc:87:10:e3:a2:57:de:c3:72:0a:24:dc:9b:73:8d: 25:ef:0d:90:6c:fb:6f:d2:2f:fe:5c:4b:56:ba:87: b6:3b:bc:18:02:98:9b:5f:39:5c:08:09:13:1f:e1: 1e:5f:81:d8:86:42:be:2e:0c:d4:39:54:9d:ee:db: 78:be:76:a4:7a:28:a8:13:d7:61:b2:14:78:db:cc: 58:e1:73:d5:ad:c1:0b:0c:21:ce:35:5e:b2:d3:6d: 71:b1:65:a5:98:8f:b7:6f:72:57:ca:3e:5c:ad:0b: b4:b5:a9:2b:1f:d8:52:12:55:22:7e:fd:cb:c0:f9: b8:a7:46:34:57:43:2e:34:40:46:f3:88:20:26:39: 4a:fd:8c:f8:b5:5e:db:82:27:a8:9d:c9:07:d3:fe: 6c:87:be:76:bf:c8:e8:28:36:09:00:59:06:a1:8d: a5:1b:bf:16:66:96:09:1a:14:6f:c7:ab:a8:18:3c: 6c:66:3a:99:2b:d7:dd:d7:d7:96:93:4f:c5:44:89: b2:08:d6:ad:55:97:bb:84:a7:2c:2f:c6:c6:06:ac: 16:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:B3:1E:1E:A6:57:B9:75:12:3E:D7:F3:BC:0A:15:DF:7E:47:63:09 X509v3 Authority Key Identifier: keyid:FE:D8:4E:9F:E0:15:9A:99:37:A2:19:3A:0B:7D:BA:23:B6:C2:65:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EDBB0/E653E51207ED11F0B0A68764C4F9AE02/_thOn-AVmpk3ohk6C326I7bCZbg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_thOn-AVmpk3ohk6C326I7bCZbg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EDBB0/E653E51207ED11F0B0A68764C4F9AE02/_thOn-AVmpk3ohk6C326I7bCZbg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:d1:83:09:71:2b:ac:e3:76:b8:5a:32:5b:c1:9b:73:66:fc: 36:77:22:0d:12:1e:d0:b9:b3:d8:5f:fd:4d:61:74:2e:3e:fc: 88:67:6b:e5:a4:4a:36:6f:3c:7c:7f:b0:d1:ae:a5:bd:e7:f4: 2f:1d:84:96:3c:0e:8c:a1:ac:51:34:57:78:3e:9a:e1:12:8f: 7d:a1:a3:8c:56:bd:2d:8f:40:b2:4f:ba:c5:c2:08:3c:79:3a: 94:c5:0f:43:2e:b2:00:ee:36:89:c9:e6:35:4e:a1:81:60:ba: 70:e0:90:d7:e3:e7:c6:70:a2:be:a3:51:cd:15:34:6a:d3:1a: f4:de:fa:48:e3:2d:9f:1b:8e:1b:08:3f:2b:9f:10:e9:a6:ea: a2:db:03:40:96:4a:bf:72:2d:fe:96:c5:59:54:08:90:2e:ec: a0:0c:5f:89:81:13:fd:f6:74:ab:87:a1:97:12:9f:8d:d3:ee: 98:1a:f8:b6:0e:c5:89:e9:c1:73:0a:1e:13:b3:6b:af:18:e1: ce:32:74:dd:40:3f:4f:c9:fa:81:b7:ba:f9:d4:00:8f:1e:19: 61:6d:ae:e2:1f:70:92:0f:35:e2:ab:4f:00:e1:90:05:ed:21: a8:1f:4e:cd:d5:23:aa:da:19:b0:09:72:0e:d8:f5:55:3b:e8: fb:e5:00:99 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAMAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RURCQjAxMTAvBgNVBAUTKEZFRDg0RTlGRTAxNTlBOTkzN0EyMTkzQTBCN0RCQTIz QjZDMjY1QjgwHhcNMjYwMzI1MDYxMTMzWhcNMjYwNDAxMDYxMTMzWjAYMRYwFAYD VQQDEw02OWMzN2M5Ni1mMjRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnfx4WlndWoWRS2GG3D9PmVLGWcyFFuYxT229TakBMMURo+sh90t/9VEdY2Xc hxDjolfew3IKJNybc40l7w2QbPtv0i/+XEtWuoe2O7wYApibXzlcCAkTH+EeX4HY hkK+LgzUOVSd7tt4vnakeiioE9dhshR428xY4XPVrcELDCHONV6y021xsWWlmI+3 b3JXyj5crQu0takrH9hSElUifv3LwPm4p0Y0V0MuNEBG84ggJjlK/Yz4tV7bgieo nckH0/5sh752v8joKDYJAFkGoY2lG78WZpYJGhRvx6uoGDxsZjqZK9fd19eWk0/F RImyCNatVZe7hKcsL8bGBqwWcQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFKzHh6m V7l1Ej7X87wKFd9+R2MJMB8GA1UdIwQYMBaAFP7YTp/gFZqZN6IZOgt9uiO2wmW4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFREJCMC9FNjUzRTUxMjA3 RUQxMUYwQjBBNjg3NjRDNEY5QUUwMi9fdGhPbi1BVm1wazNvaGs2QzMyNkk3YkNa YmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL190aE9uLUFWbXBrM29oazZDMzI2STdiQ1piZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF REJCMC9FNjUzRTUxMjA3RUQxMUYwQjBBNjg3NjRDNEY5QUUwMi9fdGhPbi1BVm1w azNvaGs2QzMyNkk3YkNaYmcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAZNGDCXErrON2uFoyW8Gbc2b8NnciDRIe0Lmz2F/9TWF0Lj78iGdr5aRKNm88 fH+w0a6lvef0Lx2EljwOjKGsUTRXeD6a4RKPfaGjjFa9LY9Ask+6xcIIPHk6lMUP Qy6yAO42icnmNU6hgWC6cOCQ1+PnxnCivqNRzRU0atMa9N76SOMtnxuOGwg/K58Q 6abqotsDQJZKv3It/pbFWVQIkC7soAxfiYET/fZ0q4ehlxKfjdPumBr4tg7FienB cwoeE7NrrxjhzjJ03UA/T8n6gbe6+dQAjx4ZYW2u4h9wkg814qtPAOGQBe0hqB9O zdUjqtoZsAlyDtj1VTvo++UAmQ== -----END CERTIFICATE-----Generated at Thu Mar 26 09:52:55 2026 by rpki-client