$ rpki-client -vvf rpki.apnic.net/member_repository/A91F104D/21C2A08C585F11EA8A1B8753C4F9AE02/TrnMSjh3s_-dQLwbs-YMkK36zVM.mft File: TrnMSjh3s_-dQLwbs-YMkK36zVM.mft (raw, json) Hash identifier: QikOsrUVc5G5YTCClm/8frAS8KJ55U4f5GO8F1GsKV4= Subject key identifier: 28:8F:5B:C7:8D:A4:33:9A:01:D7:28:2A:AF:49:10:2F:8B:A6:51:0D Authority key identifier: 4E:B9:CC:4A:38:77:B3:FF:9D:40:BC:1B:B3:E6:0C:90:AD:FA:CD:53 Certificate issuer: /CN=A91F104D/serialNumber=4EB9CC4A3877B3FF9D40BC1BB3E60C90ADFACD53 Certificate serial: 0B45 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TrnMSjh3s_-dQLwbs-YMkK36zVM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F104D/21C2A08C585F11EA8A1B8753C4F9AE02/TrnMSjh3s_-dQLwbs-YMkK36zVM.mft Manifest number: 0B3B Signing time: Sat 04 Apr 2026 19:04:46 +0000 Manifest this update: Sat 04 Apr 2026 19:04:46 +0000 Manifest next update: Sat 11 Apr 2026 19:04:46 +0000 Files and hashes: 1: TrnMSjh3s_-dQLwbs-YMkK36zVM.crl (hash: 1TzQlmrxeFg90AEGw+hCVrZr1lOCD9TVjSA05EspC3M=) 2: 1979A7C0586111EA9FC98555C4F9AE02.roa (hash: DHpveC2DBL4gVq9gAp9i6p0IPtXQ+xG1GbXA8h9vNTc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F104D/21C2A08C585F11EA8A1B8753C4F9AE02/TrnMSjh3s_-dQLwbs-YMkK36zVM.crl rsync://rpki.apnic.net/member_repository/A91F104D/21C2A08C585F11EA8A1B8753C4F9AE02/TrnMSjh3s_-dQLwbs-YMkK36zVM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TrnMSjh3s_-dQLwbs-YMkK36zVM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 19:04:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2885 (0xb45) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F104D, serialNumber=4EB9CC4A3877B3FF9D40BC1BB3E60C90ADFACD53 Validity Not Before: Apr 4 19:04:46 2026 GMT Not After : Apr 11 19:04:46 2026 GMT Subject: CN=69d160ce-eea3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:57:3a:cf:f2:e8:02:b1:c0:dd:51:05:84:1f: e7:75:d6:a0:53:6d:f9:67:6a:f9:a7:b5:61:4a:85: 1e:07:77:25:3f:90:4a:f6:2c:2a:2c:94:06:8a:f9: d9:57:1a:66:6a:57:a1:4a:2d:b2:66:d8:c7:89:df: f3:c9:fb:77:61:4c:5b:49:ad:31:6c:79:7f:10:e3: 55:58:3d:b0:a8:f1:db:46:64:a2:5d:40:c0:18:23: be:1f:9d:59:c2:74:f8:fb:1c:6d:84:a5:1d:0f:63: ca:a4:2c:7d:20:e7:b9:f2:9d:2f:2c:23:98:fa:bd: 9d:96:a4:e9:45:49:2b:27:f0:e5:f9:49:51:34:d2: 3f:fb:c0:64:93:1e:45:c2:96:30:3b:4e:fb:95:c0: 6f:fe:cb:04:65:0b:f1:bc:06:7f:37:94:15:f9:70: 9e:23:06:b6:73:06:fe:81:5b:2f:b8:5b:d8:43:50: 0f:90:6a:31:89:29:22:96:77:ce:7e:c2:59:a7:01: 04:9d:5d:32:6c:90:4d:fb:e2:da:cb:7f:04:c4:53: 8a:a1:a6:c4:34:19:bc:b8:9b:70:7c:48:fb:43:50: d4:48:62:fa:fc:9e:86:5c:9b:5b:1c:4d:4e:6c:7e: b4:d1:99:75:d8:68:dc:13:b6:fd:fd:3d:b4:4c:1f: e3:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:8F:5B:C7:8D:A4:33:9A:01:D7:28:2A:AF:49:10:2F:8B:A6:51:0D X509v3 Authority Key Identifier: keyid:4E:B9:CC:4A:38:77:B3:FF:9D:40:BC:1B:B3:E6:0C:90:AD:FA:CD:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F104D/21C2A08C585F11EA8A1B8753C4F9AE02/TrnMSjh3s_-dQLwbs-YMkK36zVM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TrnMSjh3s_-dQLwbs-YMkK36zVM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F104D/21C2A08C585F11EA8A1B8753C4F9AE02/TrnMSjh3s_-dQLwbs-YMkK36zVM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:eb:ed:f6:5d:81:00:40:75:40:e1:0a:f5:db:ea:a2:aa:ea: 36:32:27:b2:20:b2:36:8f:11:9a:e8:35:d3:bb:2c:67:a8:ec: 86:e5:b0:7e:63:52:6b:55:97:0e:38:2c:e2:5d:fa:bc:ca:30: ab:cf:13:0f:cd:72:1a:73:aa:cd:e2:a7:41:93:51:2c:4b:49: c6:63:95:91:a2:ac:cb:96:bf:b2:fe:8e:74:4e:25:46:c7:3c: dd:08:d1:9a:2e:bc:4a:57:01:59:12:83:25:f4:6a:99:ea:0d: 8d:6e:f6:36:8e:66:75:eb:ac:ab:e0:38:33:10:cc:9e:31:46: 52:22:71:d5:e1:96:8c:07:48:d5:86:63:52:26:46:bc:08:01: 0a:fe:29:b7:10:d9:5d:6a:77:d6:9d:df:e6:c5:6a:8d:4e:fb: 97:e0:de:13:e0:38:46:6c:b5:42:cf:5f:39:c5:f2:d4:bf:4a: d9:72:29:aa:8e:a4:69:c6:f9:da:f2:b3:64:df:0c:b1:fe:9d: 52:c7:34:32:34:3a:c6:57:be:28:af:2f:f8:fd:d1:73:1a:d3: 5c:b1:ac:5b:c5:15:5c:32:2d:ab:ec:a7:f0:d7:20:31:3c:89: 97:50:61:1c:c0:c1:2a:77:63:98:7e:49:97:73:fd:a4:7c:ef: 29:a0:19:5d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICC0UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjEwNEQxMTAvBgNVBAUTKDRFQjlDQzRBMzg3N0IzRkY5RDQwQkMxQkIzRTYwQzkw QURGQUNENTMwHhcNMjYwNDA0MTkwNDQ2WhcNMjYwNDExMTkwNDQ2WjAYMRYwFAYD VQQDEw02OWQxNjBjZS1lZWEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqVc6z/LoArHA3VEFhB/nddagU235Z2r5p7VhSoUeB3clP5BK9iwqLJQGivnZ VxpmalehSi2yZtjHid/zyft3YUxbSa0xbHl/EONVWD2wqPHbRmSiXUDAGCO+H51Z wnT4+xxthKUdD2PKpCx9IOe58p0vLCOY+r2dlqTpRUkrJ/Dl+UlRNNI/+8Bkkx5F wpYwO077lcBv/ssEZQvxvAZ/N5QV+XCeIwa2cwb+gVsvuFvYQ1APkGoxiSkilnfO fsJZpwEEnV0ybJBN++Lay38ExFOKoabENBm8uJtwfEj7Q1DUSGL6/J6GXJtbHE1O bH600Zl12GjcE7b9/T20TB/jbwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCiPW8eN pDOaAdcoKq9JEC+LplENMB8GA1UdIwQYMBaAFE65zEo4d7P/nUC8G7PmDJCt+s1T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMTA0RC8yMUMyQTA4QzU4 NUYxMUVBOEExQjg3NTNDNEY5QUUwMi9Ucm5NU2poM3NfLWRRTHdicy1ZTWtLMzZ6 Vk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Rybk1Tamgzc18tZFFMd2JzLVlNa0szNnpWTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MTA0RC8yMUMyQTA4QzU4NUYxMUVBOEExQjg3NTNDNEY5QUUwMi9Ucm5NU2poM3Nf LWRRTHdicy1ZTWtLMzZ6Vk0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAFuvt9l2BAEB1QOEK9dvqoqrqNjInsiCyNo8Rmug107ssZ6jshuWwfmNSa1WX Djgs4l36vMowq88TD81yGnOqzeKnQZNRLEtJxmOVkaKsy5a/sv6OdE4lRsc83QjR mi68SlcBWRKDJfRqmeoNjW72No5mdeusq+A4MxDMnjFGUiJx1eGWjAdI1YZjUiZG vAgBCv4ptxDZXWp31p3f5sVqjU77l+DeE+A4Rmy1Qs9fOcXy1L9K2XIpqo6kacb5 2vKzZN8Msf6dUsc0MjQ6xle+KK8v+P3RcxrTXLGsW8UVXDItq+yn8NcgMTyJl1Bh HMDBKndjmH5Jl3P9pHzvKaAZXQ== -----END CERTIFICATE-----Generated at Sun Apr 5 20:58:46 2026 by rpki-client