$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4B3F/1CDF87E4516011EEB0A5826AC4F9AE02/TnVPewjIAAZ84HEJetOUaJDao2U.mft File: TnVPewjIAAZ84HEJetOUaJDao2U.mft (raw, json) Hash identifier: N5EkukuGpO3Gp4NUc10VdTuysVniHk8TGRkwsr8v9GQ= Subject key identifier: FA:BF:A5:1F:43:DF:82:03:3E:8C:CF:A2:12:19:8D:C0:5A:34:93:5B Authority key identifier: 4E:75:4F:7B:08:C8:00:06:7C:E0:71:09:7A:D3:94:68:90:DA:A3:65 Certificate issuer: /CN=A91F4B3F/serialNumber=4E754F7B08C800067CE071097AD3946890DAA365 Certificate serial: 01E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TnVPewjIAAZ84HEJetOUaJDao2U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4B3F/1CDF87E4516011EEB0A5826AC4F9AE02/TnVPewjIAAZ84HEJetOUaJDao2U.mft Manifest number: 01DD Signing time: Wed 25 Mar 2026 02:48:42 +0000 Manifest this update: Wed 25 Mar 2026 02:48:42 +0000 Manifest next update: Wed 01 Apr 2026 02:48:42 +0000 Files and hashes: 1: TnVPewjIAAZ84HEJetOUaJDao2U.crl (hash: szjxyXCA1dUgfsqoW9VQK2RSwxDgXmoAMTT9lwSMUYE=) 2: D875D57EF30611EEAFFC0C66C4F9AE02.roa (hash: dLUeKe6QaZ4GPKIE3nlD7SGlABym7P6qS+9RNwN3OQ8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4B3F/1CDF87E4516011EEB0A5826AC4F9AE02/TnVPewjIAAZ84HEJetOUaJDao2U.crl rsync://rpki.apnic.net/member_repository/A91F4B3F/1CDF87E4516011EEB0A5826AC4F9AE02/TnVPewjIAAZ84HEJetOUaJDao2U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TnVPewjIAAZ84HEJetOUaJDao2U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 02:48:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 483 (0x1e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4B3F, serialNumber=4E754F7B08C800067CE071097AD3946890DAA365 Validity Not Before: Mar 25 02:48:42 2026 GMT Not After : Apr 1 02:48:42 2026 GMT Subject: CN=69c34d0a-440a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:fa:97:27:0a:6a:7e:48:03:da:0e:29:e8:f0: f9:c3:53:14:d8:3b:5c:eb:16:26:8e:06:dc:75:3c: b3:f4:24:d4:2c:bf:48:9c:15:2c:f9:7f:a6:2c:f1: 63:e2:e0:c2:55:00:f3:0b:c2:97:8d:eb:45:b1:25: cc:7c:60:3a:bd:2b:56:ae:0d:46:dc:4e:d6:ad:f0: 29:ef:0d:eb:c7:8c:37:50:35:af:39:c3:c1:c4:9f: 0a:16:9e:f8:da:7e:fe:40:f6:a3:5e:f5:ff:5f:72: 39:f1:58:6d:52:f4:35:fc:c0:e5:db:fa:f4:54:89: cc:83:c7:3f:c3:25:90:24:a0:6f:87:44:81:73:6c: 74:0b:54:7e:90:04:1a:bf:d9:ef:4e:d3:5d:70:d9: 88:59:2f:3c:ae:4e:f2:9a:23:82:ec:13:67:ac:fe: 03:9c:85:f5:98:8c:b7:55:c8:7c:fb:e4:4c:eb:09: 62:53:97:0b:35:86:29:fc:83:a2:4e:be:5c:f8:ac: 2f:a0:5a:24:1b:46:70:f2:0b:97:8c:7a:bd:10:a7: 91:fc:8d:40:19:3a:e4:ee:6a:df:78:2c:79:e5:b9: 15:d2:e8:8d:f0:c5:21:72:c9:94:06:e7:6c:78:b8: a7:6e:05:17:28:37:45:69:a2:a3:84:4c:54:d8:e5: 71:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:BF:A5:1F:43:DF:82:03:3E:8C:CF:A2:12:19:8D:C0:5A:34:93:5B X509v3 Authority Key Identifier: keyid:4E:75:4F:7B:08:C8:00:06:7C:E0:71:09:7A:D3:94:68:90:DA:A3:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4B3F/1CDF87E4516011EEB0A5826AC4F9AE02/TnVPewjIAAZ84HEJetOUaJDao2U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TnVPewjIAAZ84HEJetOUaJDao2U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4B3F/1CDF87E4516011EEB0A5826AC4F9AE02/TnVPewjIAAZ84HEJetOUaJDao2U.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:ca:90:c2:15:41:57:08:0b:9b:aa:62:d6:a2:21:26:76:36: 5d:f9:43:ba:20:49:12:4b:a8:7c:8c:59:04:ce:3d:c8:4e:98: 20:26:74:9d:ef:c7:df:c9:fe:e1:2b:b3:bf:7d:3c:60:f6:c4: 98:b5:fb:b1:26:02:10:57:dc:ce:fe:13:db:24:47:51:29:fc: 33:64:7d:dd:6d:fb:97:a8:0a:c2:10:42:cf:f2:08:8e:2d:55: 54:15:0a:70:37:b4:3e:7e:25:60:22:ab:65:ce:25:76:25:84: ae:93:c4:de:95:3b:d8:72:78:7a:fb:18:59:59:61:de:55:dc: 85:34:1d:09:80:01:0c:c7:bc:65:24:ff:60:41:25:02:e4:6c: 34:f8:95:85:ce:3e:62:39:e8:21:15:e2:86:bd:dc:14:9b:07: 12:08:63:d6:be:f6:f1:e5:dc:f7:f9:9c:28:94:d8:27:b4:28: 04:cd:76:65:e4:76:f3:eb:c4:54:b2:38:47:88:08:f4:c0:53: 83:0f:bb:20:61:74:c1:eb:ee:3d:67:aa:f0:78:69:dc:10:e1: 53:8d:d2:80:28:df:d6:2f:ff:65:7b:5e:55:6b:27:ed:b0:37: 9b:81:ad:f6:3a:78:29:b5:9e:00:4f:ee:27:89:6b:64:a8:dc: 2f:7b:58:3c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAeMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjRCM0YxMTAvBgNVBAUTKDRFNzU0RjdCMDhDODAwMDY3Q0UwNzEwOTdBRDM5NDY4 OTBEQUEzNjUwHhcNMjYwMzI1MDI0ODQyWhcNMjYwNDAxMDI0ODQyWjAYMRYwFAYD VQQDEw02OWMzNGQwYS00NDBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqfqXJwpqfkgD2g4p6PD5w1MU2Dtc6xYmjgbcdTyz9CTULL9InBUs+X+mLPFj 4uDCVQDzC8KXjetFsSXMfGA6vStWrg1G3E7WrfAp7w3rx4w3UDWvOcPBxJ8KFp74 2n7+QPajXvX/X3I58VhtUvQ1/MDl2/r0VInMg8c/wyWQJKBvh0SBc2x0C1R+kAQa v9nvTtNdcNmIWS88rk7ymiOC7BNnrP4DnIX1mIy3Vch8++RM6wliU5cLNYYp/IOi Tr5c+KwvoFokG0Zw8guXjHq9EKeR/I1AGTrk7mrfeCx55bkV0uiN8MUhcsmUBuds eLinbgUXKDdFaaKjhExU2OVxZQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPq/pR9D 34IDPozPohIZjcBaNJNbMB8GA1UdIwQYMBaAFE51T3sIyAAGfOBxCXrTlGiQ2qNl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNEIzRi8xQ0RGODdFNDUx NjAxMUVFQjBBNTgyNkFDNEY5QUUwMi9UblZQZXdqSUFBWjg0SEVKZXRPVWFKRGFv MlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RuVlBld2pJQUFaODRIRUpldE9VYUpEYW8yVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NEIzRi8xQ0RGODdFNDUxNjAxMUVFQjBBNTgyNkFDNEY5QUUwMi9UblZQZXdqSUFB Wjg0SEVKZXRPVWFKRGFvMlUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAUsqQwhVBVwgLm6pi1qIhJnY2XflDuiBJEkuofIxZBM49yE6YICZ0ne/H38n+ 4Suzv308YPbEmLX7sSYCEFfczv4T2yRHUSn8M2R93W37l6gKwhBCz/IIji1VVBUK cDe0Pn4lYCKrZc4ldiWErpPE3pU72HJ4evsYWVlh3lXchTQdCYABDMe8ZST/YEEl AuRsNPiVhc4+YjnoIRXihr3cFJsHEghj1r728eXc9/mcKJTYJ7QoBM12ZeR28+vE VLI4R4gI9MBTgw+7IGF0wevuPWeq8Hhp3BDhU43SgCjf1i//ZXteVWsn7bA3m4Gt 9jp4KbWeAE/uJ4lrZKjcL3tYPA== -----END CERTIFICATE-----Generated at Thu Mar 26 09:48:23 2026 by rpki-client