$ rpki-client -vvf rpki.apnic.net/member_repository/A91F104D/21C2A08C585F11EA8A1B8753C4F9AE02/TrnMSjh3s_-dQLwbs-YMkK36zVM.mft File: TrnMSjh3s_-dQLwbs-YMkK36zVM.mft (raw, json) Hash identifier: icDwjJQOjmcbOzFDrXXf3u6cGZMq/FcDwv3lVYJn7ks= Subject key identifier: 60:9B:F0:4A:64:54:6F:8A:99:FE:E0:67:2B:78:C1:41:4F:3A:2B:83 Authority key identifier: 4E:B9:CC:4A:38:77:B3:FF:9D:40:BC:1B:B3:E6:0C:90:AD:FA:CD:53 Certificate issuer: /CN=A91F104D/serialNumber=4EB9CC4A3877B3FF9D40BC1BB3E60C90ADFACD53 Certificate serial: 0B3F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TrnMSjh3s_-dQLwbs-YMkK36zVM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F104D/21C2A08C585F11EA8A1B8753C4F9AE02/TrnMSjh3s_-dQLwbs-YMkK36zVM.mft Manifest number: 0B35 Signing time: Tue 24 Mar 2026 19:04:40 +0000 Manifest this update: Tue 24 Mar 2026 19:04:40 +0000 Manifest next update: Tue 31 Mar 2026 19:04:40 +0000 Files and hashes: 1: TrnMSjh3s_-dQLwbs-YMkK36zVM.crl (hash: CJMOyK79ypN5ompGM5pv+B5wL3dH3DdKXrC20ApPXQQ=) 2: 1979A7C0586111EA9FC98555C4F9AE02.roa (hash: DHpveC2DBL4gVq9gAp9i6p0IPtXQ+xG1GbXA8h9vNTc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F104D/21C2A08C585F11EA8A1B8753C4F9AE02/TrnMSjh3s_-dQLwbs-YMkK36zVM.crl rsync://rpki.apnic.net/member_repository/A91F104D/21C2A08C585F11EA8A1B8753C4F9AE02/TrnMSjh3s_-dQLwbs-YMkK36zVM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TrnMSjh3s_-dQLwbs-YMkK36zVM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 19:04:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2879 (0xb3f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F104D, serialNumber=4EB9CC4A3877B3FF9D40BC1BB3E60C90ADFACD53 Validity Not Before: Mar 24 19:04:40 2026 GMT Not After : Mar 31 19:04:40 2026 GMT Subject: CN=69c2e048-fa9f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:83:6f:63:d8:e9:b6:2c:e7:f6:54:cf:a3:cf: 79:fe:49:9b:37:94:e3:4c:89:c5:d8:67:0d:08:98: dc:ab:4d:6f:b6:79:34:0d:13:b6:be:c3:19:40:6f: 49:95:dc:8c:34:4d:55:52:de:c7:05:ab:45:5c:cf: 6b:2d:5c:73:36:ce:d7:b3:5c:50:d6:60:9c:0a:2b: 6b:2d:44:5c:4a:25:7f:fc:8f:fd:4e:4f:2f:17:ce: 18:7d:61:9c:4e:97:0f:bd:19:e6:0c:1c:3e:30:80: 9b:01:54:06:6b:e2:fd:b2:07:85:2d:b2:c8:40:16: 1b:50:56:4d:bc:83:b8:c4:9d:44:cf:64:59:be:f9: eb:fb:26:b8:1f:c9:9c:8b:e1:37:cd:45:e6:97:2b: 8f:e0:9c:b0:04:85:54:ea:65:50:e5:6a:17:02:16: 18:89:14:82:7d:c4:36:cb:8e:5b:1f:16:4b:28:6d: e4:c6:d8:84:96:cb:55:20:63:ec:06:35:0b:a0:af: 54:1d:e7:ee:fc:bd:a5:c5:a7:6b:6a:cc:56:b6:2a: ab:95:9a:d7:ee:e6:6c:6f:ee:fb:55:b0:f8:35:3d: 93:66:1e:49:bb:ff:b2:a0:93:6a:b8:0a:e0:41:b3: 1f:68:0f:24:66:1c:62:00:b5:74:ea:b5:5f:9e:03: 2e:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:9B:F0:4A:64:54:6F:8A:99:FE:E0:67:2B:78:C1:41:4F:3A:2B:83 X509v3 Authority Key Identifier: keyid:4E:B9:CC:4A:38:77:B3:FF:9D:40:BC:1B:B3:E6:0C:90:AD:FA:CD:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F104D/21C2A08C585F11EA8A1B8753C4F9AE02/TrnMSjh3s_-dQLwbs-YMkK36zVM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TrnMSjh3s_-dQLwbs-YMkK36zVM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F104D/21C2A08C585F11EA8A1B8753C4F9AE02/TrnMSjh3s_-dQLwbs-YMkK36zVM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:25:e5:81:b6:86:a4:ff:53:d7:2f:68:91:da:84:22:43:8c: 51:48:44:24:a7:71:de:e0:09:da:d5:56:f3:0f:4b:6b:ba:9a: 92:9e:73:c1:f4:13:98:b6:42:db:9d:17:f1:70:49:b5:d7:76: 7c:3f:ed:e3:71:24:f9:d3:c5:38:7f:11:df:f0:79:d0:98:68: 55:aa:39:9d:8e:40:fb:22:e7:83:ce:5d:a5:60:6e:61:1e:14: bb:e8:2f:37:22:53:d1:dd:ab:14:44:d8:37:37:73:78:80:59: 13:9f:2e:0d:03:c3:05:d1:e7:8f:0e:95:43:d7:56:3c:0b:8b: 91:50:80:34:05:c8:2c:86:2b:da:3b:05:c6:ef:37:14:db:53: 95:10:35:ec:e1:29:90:d1:25:58:4c:98:a7:04:c5:40:1e:f6: ff:b2:5f:d8:56:c9:01:1b:02:3d:da:ea:7a:cd:a7:43:d9:42: df:84:02:58:cd:65:b1:aa:f1:ba:a4:07:f4:9b:de:b0:8a:c9: 1c:95:b6:a9:57:1d:75:17:85:13:be:35:5b:7e:7c:f1:fc:e3: 93:c8:70:3c:80:14:40:8c:81:bb:3a:08:8d:a9:f9:aa:88:71: 83:44:64:d9:79:e9:50:d2:ed:af:08:7e:6e:85:2e:0a:1d:96: e8:2d:f2:3f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCz8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjEwNEQxMTAvBgNVBAUTKDRFQjlDQzRBMzg3N0IzRkY5RDQwQkMxQkIzRTYwQzkw QURGQUNENTMwHhcNMjYwMzI0MTkwNDQwWhcNMjYwMzMxMTkwNDQwWjAYMRYwFAYD VQQDEw02OWMyZTA0OC1mYTlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAroNvY9jptizn9lTPo895/kmbN5TjTInF2GcNCJjcq01vtnk0DRO2vsMZQG9J ldyMNE1VUt7HBatFXM9rLVxzNs7Xs1xQ1mCcCitrLURcSiV//I/9Tk8vF84YfWGc TpcPvRnmDBw+MICbAVQGa+L9sgeFLbLIQBYbUFZNvIO4xJ1Ez2RZvvnr+ya4H8mc i+E3zUXmlyuP4JywBIVU6mVQ5WoXAhYYiRSCfcQ2y45bHxZLKG3kxtiElstVIGPs BjULoK9UHefu/L2lxadrasxWtiqrlZrX7uZsb+77VbD4NT2TZh5Ju/+yoJNquArg QbMfaA8kZhxiALV06rVfngMu0wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGCb8Epk VG+Kmf7gZyt4wUFPOiuDMB8GA1UdIwQYMBaAFE65zEo4d7P/nUC8G7PmDJCt+s1T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMTA0RC8yMUMyQTA4QzU4 NUYxMUVBOEExQjg3NTNDNEY5QUUwMi9Ucm5NU2poM3NfLWRRTHdicy1ZTWtLMzZ6 Vk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Rybk1Tamgzc18tZFFMd2JzLVlNa0szNnpWTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MTA0RC8yMUMyQTA4QzU4NUYxMUVBOEExQjg3NTNDNEY5QUUwMi9Ucm5NU2poM3Nf LWRRTHdicy1ZTWtLMzZ6Vk0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAECXlgbaGpP9T1y9okdqEIkOMUUhEJKdx3uAJ2tVW8w9La7qakp5zwfQTmLZC 250X8XBJtdd2fD/t43Ek+dPFOH8R3/B50JhoVao5nY5A+yLng85dpWBuYR4Uu+gv NyJT0d2rFETYNzdzeIBZE58uDQPDBdHnjw6VQ9dWPAuLkVCANAXILIYr2jsFxu83 FNtTlRA17OEpkNElWEyYpwTFQB72/7Jf2FbJARsCPdrqes2nQ9lC34QCWM1lsarx uqQH9JvesIrJHJW2qVcddReFE741W3588fzjk8hwPIAUQIyBuzoIjan5qohxg0Rk 2XnpUNLtrwh+boUuCh2W6C3yPw== -----END CERTIFICATE-----Generated at Thu Mar 26 05:09:57 2026 by rpki-client