$ rpki-client -vvf rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.mft File: tLGKJT-2KTQ3EWY13d0ZlCi2jVs.mft (raw, json) Hash identifier: aojOM8OcEecN6a2W9XkAj+TZ05ONBHnGmydE7+c7KPE= Subject key identifier: BE:76:57:9D:8C:41:7F:84:78:D8:02:DF:AE:9E:D1:83:11:37:92:0D Authority key identifier: B4:B1:8A:25:3F:B6:29:34:37:11:66:35:DD:DD:19:94:28:B6:8D:5B Certificate issuer: /CN=A91FD64D/serialNumber=B4B18A253FB6293437116635DDDD199428B68D5B Certificate serial: 0266 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.mft Manifest number: 025B Signing time: Fri 27 Mar 2026 01:49:56 +0000 Manifest this update: Fri 27 Mar 2026 01:49:55 +0000 Manifest next update: Fri 03 Apr 2026 01:49:55 +0000 Files and hashes: 1: tLGKJT-2KTQ3EWY13d0ZlCi2jVs.crl (hash: vpbYouS58MXXuA2rqK9A2X4x90PWSee8eYk0N3jP1o0=) 2: 66D00EB2449C11EE86105C41C4F9AE02.roa (hash: GxVSXWzE6du6WMtXT3WxN39pt4kQtD831phFtQ55DeU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.crl rsync://rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 01:49:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 614 (0x266) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD64D, serialNumber=B4B18A253FB6293437116635DDDD199428B68D5B Validity Not Before: Mar 27 01:49:55 2026 GMT Not After : Apr 3 01:49:55 2026 GMT Subject: CN=69c5e244-4540 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:3c:39:bd:e7:06:29:15:23:bb:bf:c6:17:e9: 6d:b5:79:f2:37:42:62:b3:92:8c:25:55:20:09:3a: e4:29:54:13:df:20:99:b9:7e:30:8e:ef:2a:43:0e: 28:69:66:79:1c:65:fd:b1:6a:f9:d7:ac:3a:6f:27: 4a:ce:58:ea:5d:5e:7b:3c:29:37:ef:58:b6:4e:c6: 4f:76:23:39:b3:46:fd:42:e9:3a:ab:c4:66:12:22: 29:11:7c:c0:29:88:7f:b9:8c:f6:f0:34:68:9c:99: f0:16:8f:6f:05:8e:4e:a5:7d:f4:a4:3a:44:cd:aa: a9:b1:53:7a:7b:a5:6c:fb:aa:82:8b:89:4c:5b:b8: 43:65:b0:f0:04:60:9b:24:5d:41:61:f5:17:2e:eb: 2f:ce:dc:c7:41:10:af:69:ce:a9:25:84:e4:ef:d6: 35:56:b0:6c:a9:1f:a0:db:9e:dc:58:e6:a1:d0:5c: b8:bf:77:7c:f9:b9:4e:78:67:72:8d:a9:ae:1d:bd: 1c:5e:7c:e4:5b:3b:7a:b8:7a:9c:ff:a7:97:74:d1: 6d:09:cb:8c:59:5c:0f:dc:c0:4f:91:08:5e:88:1a: 4a:c6:42:bb:64:34:6f:5e:f8:c8:a7:8f:8a:ad:0b: 35:f5:a0:f9:1f:07:4c:de:c2:b6:dc:bf:18:67:03: 7a:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:76:57:9D:8C:41:7F:84:78:D8:02:DF:AE:9E:D1:83:11:37:92:0D X509v3 Authority Key Identifier: keyid:B4:B1:8A:25:3F:B6:29:34:37:11:66:35:DD:DD:19:94:28:B6:8D:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:af:da:af:26:02:2e:68:d0:54:14:cb:19:25:6d:ed:fc:e0: 1e:af:b0:96:1b:92:4f:a3:d5:4b:3a:20:06:60:bc:59:db:ef: 8c:42:34:4f:5d:f1:43:0b:92:1d:ab:94:b1:6b:16:7a:22:40: 6f:81:5c:18:32:43:4b:23:5f:1a:76:67:d0:d3:86:27:d2:63: 64:75:e5:87:d6:87:6a:18:bd:8d:e6:f2:e0:94:ec:a7:fc:2c: 19:ee:79:28:6e:aa:1e:e7:16:91:e3:74:77:40:13:17:87:85: 0b:5a:3d:37:33:5c:7f:b2:34:ee:f6:e3:1b:77:20:8a:26:0c: 3b:62:1f:ec:8e:47:b8:b6:99:0e:90:fb:72:92:a4:61:4d:a9: ba:60:ee:1a:4b:5c:fd:9a:61:10:9f:51:1c:36:04:55:c6:0b: 14:21:17:6b:e2:19:70:7b:57:cf:47:2d:1b:e8:34:7a:c4:9a: 8a:c1:00:3a:3f:77:96:c4:91:c4:b6:2d:38:9f:57:ff:1e:b6: b6:b0:ff:ea:84:0c:6a:42:77:9f:8a:b2:4a:d8:ea:34:80:b5: 41:48:f0:ab:c2:cd:1c:22:46:e2:21:9e:ae:62:95:c2:a1:83: 3d:8b:2e:b6:67:bf:2d:d2:42:a6:5c:74:3c:2e:88:c9:c8:57: 15:f7:d5:43 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAmYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkQ2NEQxMTAvBgNVBAUTKEI0QjE4QTI1M0ZCNjI5MzQzNzExNjYzNUREREQxOTk0 MjhCNjhENUIwHhcNMjYwMzI3MDE0OTU1WhcNMjYwNDAzMDE0OTU1WjAYMRYwFAYD VQQDEw02OWM1ZTI0NC00NTQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2zw5vecGKRUju7/GF+lttXnyN0Jis5KMJVUgCTrkKVQT3yCZuX4wju8qQw4o aWZ5HGX9sWr516w6bydKzljqXV57PCk371i2TsZPdiM5s0b9Quk6q8RmEiIpEXzA KYh/uYz28DRonJnwFo9vBY5OpX30pDpEzaqpsVN6e6Vs+6qCi4lMW7hDZbDwBGCb JF1BYfUXLusvztzHQRCvac6pJYTk79Y1VrBsqR+g257cWOah0Fy4v3d8+blOeGdy jamuHb0cXnzkWzt6uHqc/6eXdNFtCcuMWVwP3MBPkQheiBpKxkK7ZDRvXvjIp4+K rQs19aD5HwdM3sK23L8YZwN6CQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFL52V52M QX+EeNgC366e0YMRN5INMB8GA1UdIwQYMBaAFLSxiiU/tik0NxFmNd3dGZQoto1b MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRDY0RC8zNzA3ODZDODk5 OTQxMUVEODU2NzMxMUZDNEY5QUUwMi90TEdLSlQtMktUUTNFV1kxM2QwWmxDaTJq VnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RMR0tKVC0yS1RRM0VXWTEzZDBabENpMmpWcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RDY0RC8zNzA3ODZDODk5OTQxMUVEODU2NzMxMUZDNEY5QUUwMi90TEdLSlQtMktU UTNFV1kxM2QwWmxDaTJqVnMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAeK/aryYCLmjQVBTLGSVt7fzgHq+wlhuST6PVSzogBmC8WdvvjEI0T13xQwuS HauUsWsWeiJAb4FcGDJDSyNfGnZn0NOGJ9JjZHXlh9aHahi9jeby4JTsp/wsGe55 KG6qHucWkeN0d0ATF4eFC1o9NzNcf7I07vbjG3cgiiYMO2If7I5HuLaZDpD7cpKk YU2pumDuGktc/ZphEJ9RHDYEVcYLFCEXa+IZcHtXz0ctG+g0esSaisEAOj93lsSR xLYtOJ9X/x62trD/6oQMakJ3n4qyStjqNIC1QUjwq8LNHCJG4iGermKVwqGDPYsu tme/LdJCplx0PC6IychXFffVQw== -----END CERTIFICATE-----Generated at Sat Mar 28 12:14:27 2026 by rpki-client