$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3B25/7E892CC2F61511E7B830096DC4F9AE02/tlTdX1sVILMlvAnEv0yt88r7NCk.mft File: tlTdX1sVILMlvAnEv0yt88r7NCk.mft (raw, json) Hash identifier: I3tCikNamP2c81kcGBK2/3hxOxvVdEDXe/b2SvXtAFQ= Subject key identifier: AF:A1:A3:7A:BB:4E:01:8C:EC:F1:AE:A8:E3:96:FC:19:B2:5E:E7:DE Authority key identifier: B6:54:DD:5F:5B:15:20:B3:25:BC:09:C4:BF:4C:AD:F3:CA:FB:34:29 Certificate issuer: /CN=A91E3B25/serialNumber=B654DD5F5B1520B325BC09C4BF4CADF3CAFB3429 Certificate serial: 09C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tlTdX1sVILMlvAnEv0yt88r7NCk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3B25/7E892CC2F61511E7B830096DC4F9AE02/tlTdX1sVILMlvAnEv0yt88r7NCk.mft Manifest number: 210F Signing time: Sat 04 Apr 2026 16:30:10 +0000 Manifest this update: Sat 04 Apr 2026 16:30:09 +0000 Manifest next update: Sat 11 Apr 2026 16:30:09 +0000 Files and hashes: 1: tlTdX1sVILMlvAnEv0yt88r7NCk.crl (hash: sEFv9/msJEvwhv9jAxjPKWfmdCbP0VywItWnrEwLqM4=) 2: 7E9E9F262C6C11F19E06CE5BB3833773.roa (hash: 0Hr9oEFYav7n/w9IP/6+wcuoZ8BrrrslsyZvt820uPM=) 3: 5FBC810E2C6C11F1AFD97E4FB3833773.roa (hash: g2RLVtOivjuUFJpHbhY01dBDwhC9Sd+LiRmcxISqRKU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3B25/7E892CC2F61511E7B830096DC4F9AE02/tlTdX1sVILMlvAnEv0yt88r7NCk.crl rsync://rpki.apnic.net/member_repository/A91E3B25/7E892CC2F61511E7B830096DC4F9AE02/tlTdX1sVILMlvAnEv0yt88r7NCk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tlTdX1sVILMlvAnEv0yt88r7NCk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 16:30:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2496 (0x9c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3B25, serialNumber=B654DD5F5B1520B325BC09C4BF4CADF3CAFB3429 Validity Not Before: Apr 4 16:30:09 2026 GMT Not After : Apr 11 16:30:09 2026 GMT Subject: CN=69d13c92-f88a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:24:98:1a:53:86:68:b7:75:30:17:42:28:b2: 31:a7:37:94:b0:25:df:98:74:f2:f3:bd:e5:a6:d1: 1f:1e:3b:71:10:69:e4:cc:b7:1d:6b:de:82:28:7b: bc:ad:20:10:3a:d5:25:49:d1:9a:b1:ae:e6:75:9c: 66:02:ba:b5:e1:40:46:4a:0d:2a:19:0c:8d:a5:88: e9:f2:e2:c5:4f:ee:f8:7b:4a:89:20:b0:ca:58:71: 2c:05:e9:18:d2:07:07:37:0c:44:3a:b2:c9:43:92: de:ad:77:60:12:dc:77:a9:1e:08:e6:2c:79:28:3d: fa:3c:ac:53:81:7f:5f:8a:d6:e0:85:23:ac:85:bc: 41:b6:ee:72:33:02:9c:53:45:99:5f:1d:dc:37:2e: 47:6f:75:5a:85:27:99:79:7d:1d:b1:c3:74:0e:98: b1:8f:a8:b9:2a:3d:0e:92:76:19:a5:30:29:ed:47: c0:fa:fa:f7:19:e6:0c:39:e2:25:a4:4c:35:b7:a9: 81:21:7e:4a:4c:07:49:d5:e2:76:3a:76:3d:75:cc: 8a:36:40:0e:f0:b8:7c:15:7d:b1:ec:23:e8:0f:a2: e9:98:a0:20:42:54:29:54:16:f6:2e:3b:94:f1:ad: 00:34:f5:37:00:b6:ba:a2:bf:a4:af:78:c4:a7:fa: 9c:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:A1:A3:7A:BB:4E:01:8C:EC:F1:AE:A8:E3:96:FC:19:B2:5E:E7:DE X509v3 Authority Key Identifier: keyid:B6:54:DD:5F:5B:15:20:B3:25:BC:09:C4:BF:4C:AD:F3:CA:FB:34:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3B25/7E892CC2F61511E7B830096DC4F9AE02/tlTdX1sVILMlvAnEv0yt88r7NCk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tlTdX1sVILMlvAnEv0yt88r7NCk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3B25/7E892CC2F61511E7B830096DC4F9AE02/tlTdX1sVILMlvAnEv0yt88r7NCk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:ea:a5:9f:ac:99:ff:01:5a:16:ce:36:ef:52:25:48:04:10: 6e:b0:ce:9f:34:d8:75:f8:6a:92:c7:6c:05:39:2c:61:38:42: 5c:a7:06:d8:9c:eb:2d:5e:4c:2c:8d:ea:bc:a7:10:96:c5:d0: b4:15:81:d5:ee:a5:33:b1:a7:a5:67:84:07:4a:f0:15:77:7f: ed:95:04:00:36:3d:54:67:ed:cd:0c:f5:19:14:f2:24:33:66: 75:3e:fa:b2:b5:ab:09:d8:39:dc:5d:67:3f:e4:06:59:ee:25: cf:ac:ca:86:d9:28:28:ed:07:d5:cc:9f:63:54:50:f9:37:ff: 19:c6:b5:3b:38:84:f0:1f:f9:69:f7:67:09:af:c8:00:ab:11: 62:90:67:ba:3a:56:99:b4:8e:f1:46:f4:b0:fa:75:6a:ff:69: 23:f5:48:10:14:37:71:df:72:0e:34:e0:ad:f0:03:42:75:67: 88:9f:3f:1e:d0:90:c6:1b:39:39:17:e1:13:05:d6:5f:bb:68: b8:89:3f:c8:f5:90:64:12:03:ba:59:ea:39:d6:fa:4d:9a:e6: 4b:74:51:7c:58:1a:ab:57:3a:b7:1b:fd:f4:34:2e:36:e0:55: eb:e2:2a:4d:ca:8c:6f:ee:a6:d7:9a:85:96:6b:d5:d1:c4:d4: b9:1b:e0:f0 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCcAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNCMjUxMTAvBgNVBAUTKEI2NTRERDVGNUIxNTIwQjMyNUJDMDlDNEJGNENBREYz Q0FGQjM0MjkwHhcNMjYwNDA0MTYzMDA5WhcNMjYwNDExMTYzMDA5WjAYMRYwFAYD VQQDEw02OWQxM2M5Mi1mODhhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtSSYGlOGaLd1MBdCKLIxpzeUsCXfmHTy873lptEfHjtxEGnkzLcda96CKHu8 rSAQOtUlSdGasa7mdZxmArq14UBGSg0qGQyNpYjp8uLFT+74e0qJILDKWHEsBekY 0gcHNwxEOrLJQ5LerXdgEtx3qR4I5ix5KD36PKxTgX9fitbghSOshbxBtu5yMwKc U0WZXx3cNy5Hb3VahSeZeX0dscN0Dpixj6i5Kj0OknYZpTAp7UfA+vr3GeYMOeIl pEw1t6mBIX5KTAdJ1eJ2OnY9dcyKNkAO8Lh8FX2x7CPoD6LpmKAgQlQpVBb2LjuU 8a0ANPU3ALa6or+kr3jEp/qcZQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFK+ho3q7 TgGM7PGuqOOW/BmyXufeMB8GA1UdIwQYMBaAFLZU3V9bFSCzJbwJxL9MrfPK+zQp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0IyNS83RTg5MkNDMkY2 MTUxMUU3QjgzMDA5NkRDNEY5QUUwMi90bFRkWDFzVklMTWx2QW5FdjB5dDg4cjdO Q2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RsVGRYMXNWSUxNbHZBbkV2MHl0ODhyN05Day5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0IyNS83RTg5MkNDMkY2MTUxMUU3QjgzMDA5NkRDNEY5QUUwMi90bFRkWDFzVklM TWx2QW5FdjB5dDg4cjdOQ2subWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAo+qln6yZ/wFaFs4271IlSAQQbrDOnzTYdfhqksdsBTksYThCXKcG2JzrLV5M LI3qvKcQlsXQtBWB1e6lM7GnpWeEB0rwFXd/7ZUEADY9VGftzQz1GRTyJDNmdT76 srWrCdg53F1nP+QGWe4lz6zKhtkoKO0H1cyfY1RQ+Tf/Gca1OziE8B/5afdnCa/I AKsRYpBnujpWmbSO8Ub0sPp1av9pI/VIEBQ3cd9yDjTgrfADQnVniJ8/HtCQxhs5 ORfhEwXWX7touIk/yPWQZBIDulnqOdb6TZrmS3RRfFgaq1c6txv99DQuNuBV6+Iq TcqMb+6m15qFlmvV0cTUuRvg8A== -----END CERTIFICATE-----Generated at Sun Apr 5 19:51:48 2026 by rpki-client