$ rpki-client -vvf rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.mft File: tg1afDY_D02TL-MXuQzmz4DSg8k.mft (raw, json) Hash identifier: l6IZm6/u4WqZbwlmpnBsWEY5LqF6zfZ6t970XWGPJBs= Subject key identifier: B4:19:4E:5D:DB:68:11:E0:E7:BD:DB:20:E3:7E:06:D6:3F:3C:88:68 Authority key identifier: B6:0D:5A:7C:36:3F:0F:4D:93:2F:E3:17:B9:0C:E6:CF:80:D2:83:C9 Certificate issuer: /CN=A9118309/serialNumber=B60D5A7C363F0F4D932FE317B90CE6CF80D283C9 Certificate serial: 0ADD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tg1afDY_D02TL-MXuQzmz4DSg8k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.mft Manifest number: 0AD1 Signing time: Mon 20 Apr 2026 19:22:32 +0000 Manifest this update: Mon 20 Apr 2026 19:22:31 +0000 Manifest next update: Mon 27 Apr 2026 19:22:31 +0000 Files and hashes: 1: tg1afDY_D02TL-MXuQzmz4DSg8k.crl (hash: dTsCU7nnPZF/Q3E29Ve7HqIJVhQ3DYkZovvMfG2vAG0=) 2: 59AA22D06FFD11EA9160902DC4F9AE02.roa (hash: 0K901l2TdlhI+E8+7765rz4h3kib3D30bO8xr+n26kw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.crl rsync://rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tg1afDY_D02TL-MXuQzmz4DSg8k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Apr 2026 19:22:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2781 (0xadd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118309, serialNumber=B60D5A7C363F0F4D932FE317B90CE6CF80D283C9 Validity Not Before: Apr 20 19:22:31 2026 GMT Not After : Apr 27 19:22:31 2026 GMT Subject: CN=69e67cf8-9783 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:af:a0:02:70:e9:06:a6:84:f6:cf:60:61:7a: 14:bc:c5:1d:d6:98:ef:b9:a3:e7:5f:9a:9b:8e:dd: 7d:97:cf:aa:4e:fa:4e:95:96:1a:0e:df:2f:c0:30: f8:88:f0:a9:39:16:36:94:38:6e:33:3a:d5:e1:22: fe:90:f1:c0:da:b1:fb:b7:37:cd:2a:39:b6:4e:25: 50:81:c5:b7:8f:5f:2a:a8:80:24:7f:4a:11:74:65: bd:bc:d0:48:c8:40:21:89:e6:b3:0b:28:4e:f3:d8: 2b:4d:81:c5:7d:33:27:55:49:ce:50:2d:fd:29:b1: 00:20:b8:80:f8:56:84:fb:11:a8:25:b8:26:92:c8: 9b:73:90:f0:60:4d:4f:17:f2:2c:09:fa:19:a3:d6: a9:b7:22:7c:19:40:a4:be:19:41:2a:35:ed:06:f7: 18:0a:13:a0:55:8f:a2:98:d4:fe:5c:08:85:4a:e8: 34:11:a6:7a:76:98:df:04:17:df:8a:50:2e:d2:ca: 8d:38:15:ec:63:3a:70:73:31:b8:2e:f9:b8:62:b4: 11:9a:36:ae:8a:bd:7d:99:8a:c8:b0:d4:cc:47:04: 36:c4:b7:b8:d8:75:4e:ab:99:d6:88:98:32:b1:38: b1:5a:c9:63:76:9e:9e:91:2e:48:03:e3:00:33:19: a6:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:19:4E:5D:DB:68:11:E0:E7:BD:DB:20:E3:7E:06:D6:3F:3C:88:68 X509v3 Authority Key Identifier: keyid:B6:0D:5A:7C:36:3F:0F:4D:93:2F:E3:17:B9:0C:E6:CF:80:D2:83:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tg1afDY_D02TL-MXuQzmz4DSg8k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:80:6a:13:f5:ec:a1:ec:4d:e4:cb:bc:97:04:2c:e2:48:a3: fb:bc:64:e0:28:04:f0:a4:4b:b6:6f:3f:6e:43:d6:5c:f5:05: 85:28:7a:da:d6:a4:a4:0e:07:f1:b0:e8:af:dd:bc:46:80:b0: 4a:10:d5:30:2c:df:47:86:4d:30:f7:5c:20:4a:bb:ff:f9:fe: a8:66:6b:7d:16:0e:75:b8:c4:3a:b1:5f:cf:30:4a:e6:0d:d2: 18:f4:d4:9c:54:dd:2b:91:b2:bc:10:e6:35:32:66:00:d6:06: 31:ee:02:7c:60:e8:db:de:99:ff:35:4a:63:5d:d6:f1:ef:51: ab:f1:cf:fb:3a:38:0e:46:22:18:35:76:5d:3e:8f:80:1d:0f: 3d:8d:2b:73:8a:41:95:13:6f:ee:71:5d:a0:d7:6c:45:6f:97: 65:58:32:74:8f:52:41:0d:d5:ba:dd:56:bc:78:fc:b3:96:a0: e6:a7:e5:d8:c7:93:f6:60:d4:ef:f8:47:2a:03:bb:bb:ad:a1: 5b:a6:a0:6a:28:68:e0:7a:19:97:d1:c7:7a:ca:66:db:d0:e4: 73:5d:0a:b1:49:4d:5b:6d:20:66:66:45:5d:ae:4a:74:7d:73: d1:c0:bf:b2:68:38:86:6d:71:00:66:9b:6a:c9:07:54:86:26: 0c:e0:6c:b2 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCt0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTgzMDkxMTAvBgNVBAUTKEI2MEQ1QTdDMzYzRjBGNEQ5MzJGRTMxN0I5MENFNkNG ODBEMjgzQzkwHhcNMjYwNDIwMTkyMjMxWhcNMjYwNDI3MTkyMjMxWjAYMRYwFAYD VQQDEw02OWU2N2NmOC05NzgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwK+gAnDpBqaE9s9gYXoUvMUd1pjvuaPnX5qbjt19l8+qTvpOlZYaDt8vwDD4 iPCpORY2lDhuMzrV4SL+kPHA2rH7tzfNKjm2TiVQgcW3j18qqIAkf0oRdGW9vNBI yEAhieazCyhO89grTYHFfTMnVUnOUC39KbEAILiA+FaE+xGoJbgmksibc5DwYE1P F/IsCfoZo9aptyJ8GUCkvhlBKjXtBvcYChOgVY+imNT+XAiFSug0EaZ6dpjfBBff ilAu0sqNOBXsYzpwczG4Lvm4YrQRmjauir19mYrIsNTMRwQ2xLe42HVOq5nWiJgy sTixWsljdp6ekS5IA+MAMxmmkQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLQZTl3b aBHg573bION+BtY/PIhoMB8GA1UdIwQYMBaAFLYNWnw2Pw9Nky/jF7kM5s+A0oPJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODMwOS8xQTQ4REM4NjZG RkMxMUVBODhGM0QyMkJDNEY5QUUwMi90ZzFhZkRZX0QwMlRMLU1YdVF6bXo0RFNn OGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RnMWFmRFlfRDAyVEwtTVh1UXptejREU2c4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx ODMwOS8xQTQ4REM4NjZGRkMxMUVBODhGM0QyMkJDNEY5QUUwMi90ZzFhZkRZX0Qw MlRMLU1YdVF6bXo0RFNnOGsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAYIBqE/XsoexN5Mu8lwQs4kij+7xk4CgE8KRLtm8/bkPWXPUFhSh62takpA4H 8bDor928RoCwShDVMCzfR4ZNMPdcIEq7//n+qGZrfRYOdbjEOrFfzzBK5g3SGPTU nFTdK5GyvBDmNTJmANYGMe4CfGDo296Z/zVKY13W8e9Rq/HP+zo4DkYiGDV2XT6P gB0PPY0rc4pBlRNv7nFdoNdsRW+XZVgydI9SQQ3Vut1WvHj8s5ag5qfl2MeT9mDU 7/hHKgO7u62hW6agaiho4HoZl9HHespm29Dkc10KsUlNW20gZmZFXa5KdH1z0cC/ smg4hm1xAGabaskHVIYmDOBssg== -----END CERTIFICATE-----Generated at Wed Apr 22 00:13:29 2026 by rpki-client