$ rpki-client -vvf rpki.apnic.net/member_repository/A91423C1/D0320EF8BF4F11EFBCF68944C4F9AE02/Tcfii1RvKgtTjozfgy2aofN8yOQ.mft File: Tcfii1RvKgtTjozfgy2aofN8yOQ.mft (raw, json) Hash identifier: N8sQl7vs8j42UwMjV9jkD0dKK9DGMpb4bee0YRdcF2I= Subject key identifier: 27:E9:54:6C:87:F2:28:96:46:7B:A1:C1:A0:3B:6F:95:AC:FF:56:8A Authority key identifier: 4D:C7:E2:8B:54:6F:2A:0B:53:8E:8C:DF:83:2D:9A:A1:F3:7C:C8:E4 Certificate issuer: /CN=A91423C1/serialNumber=4DC7E28B546F2A0B538E8CDF832D9AA1F37CC8E4 Certificate serial: 0123 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Tcfii1RvKgtTjozfgy2aofN8yOQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91423C1/D0320EF8BF4F11EFBCF68944C4F9AE02/Tcfii1RvKgtTjozfgy2aofN8yOQ.mft Manifest number: 010B Signing time: Tue 03 Mar 2026 03:43:45 +0000 Manifest this update: Tue 03 Mar 2026 03:43:45 +0000 Manifest next update: Tue 10 Mar 2026 03:43:45 +0000 Files and hashes: 1: Tcfii1RvKgtTjozfgy2aofN8yOQ.crl (hash: oiwqZz8kQjXEkaX9R90ZdxqqqeO8ehIERqYelxieHDI=) 2: 1C6D5ED2C51F11F08993E41BC4F9AE02.roa (hash: h9DoWAti9FtevIgArDst4H6dPePV+rhbEHLYlKOnyqw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91423C1/D0320EF8BF4F11EFBCF68944C4F9AE02/Tcfii1RvKgtTjozfgy2aofN8yOQ.crl rsync://rpki.apnic.net/member_repository/A91423C1/D0320EF8BF4F11EFBCF68944C4F9AE02/Tcfii1RvKgtTjozfgy2aofN8yOQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Tcfii1RvKgtTjozfgy2aofN8yOQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 03:43:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 291 (0x123) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91423C1, serialNumber=4DC7E28B546F2A0B538E8CDF832D9AA1F37CC8E4 Validity Not Before: Mar 3 03:43:45 2026 GMT Not After : Mar 10 03:43:45 2026 GMT Subject: CN=69a658f1-ad56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:66:30:ca:29:e5:a3:d7:2c:b8:29:82:07:3e: 24:cd:81:20:57:34:8b:09:e1:60:7c:83:6c:ad:a4: 0e:84:f7:72:5c:d0:de:4a:89:2a:58:18:04:bc:fe: 7c:c0:1a:d4:f4:a3:c9:5c:2a:83:33:52:b1:10:08: 7f:31:c4:82:ad:f2:7e:b0:26:43:65:c7:ff:9a:96: b6:32:6d:f2:4f:9b:77:a3:a4:f3:d2:d8:aa:ad:f7: dc:d3:eb:22:8a:a3:be:84:89:27:c9:f2:89:fa:0b: 5d:c9:77:b0:6f:a3:38:0a:6f:81:9a:7b:a3:63:fe: c0:a6:8a:e4:6c:24:8d:aa:a0:68:f8:9e:0a:85:f7: fd:be:12:f8:32:f9:08:a9:1b:01:ee:ff:2c:6a:cd: 20:d2:16:38:a2:97:65:46:e7:4d:3f:49:96:18:4d: 2d:41:d9:18:f2:36:42:a5:2e:bd:8f:02:15:fc:ae: a8:99:35:3a:56:a0:b2:13:27:85:d8:ee:f4:e7:c0: 7b:0c:5b:1b:e0:4c:03:63:e4:13:75:44:70:83:5e: 79:70:05:60:bf:1f:85:f7:4d:06:a2:3d:9c:43:20: 84:ca:6a:fe:c6:70:f8:34:95:1a:98:93:3b:68:09: a3:eb:38:91:70:f9:c4:15:fa:8f:99:ba:6c:22:7d: 56:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:E9:54:6C:87:F2:28:96:46:7B:A1:C1:A0:3B:6F:95:AC:FF:56:8A X509v3 Authority Key Identifier: keyid:4D:C7:E2:8B:54:6F:2A:0B:53:8E:8C:DF:83:2D:9A:A1:F3:7C:C8:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91423C1/D0320EF8BF4F11EFBCF68944C4F9AE02/Tcfii1RvKgtTjozfgy2aofN8yOQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Tcfii1RvKgtTjozfgy2aofN8yOQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91423C1/D0320EF8BF4F11EFBCF68944C4F9AE02/Tcfii1RvKgtTjozfgy2aofN8yOQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:23:bb:ec:6e:1d:9f:04:03:44:13:fe:9a:ce:29:f2:a4:76: 7d:99:f6:a5:d2:74:f8:a0:71:93:ec:05:53:9e:76:e3:c4:95: ac:a0:d4:2c:c4:c5:11:fb:10:2f:bb:a1:d6:3e:66:62:36:88: 6f:28:bf:5b:ef:76:46:4d:d8:2c:e3:25:31:ca:80:d2:f2:1b: 3d:34:c0:fb:b0:67:64:89:e6:4c:1f:da:3f:97:71:5e:9a:b3: c4:91:76:63:9c:91:27:3a:73:79:c9:9d:fe:04:26:96:cd:99: c7:f8:51:e3:8a:a0:92:68:78:a5:d0:76:2e:a9:03:87:9e:17: 2e:a1:a2:1a:d1:36:a2:c6:e4:78:90:1e:ac:06:26:d2:5b:14: f7:97:60:aa:46:46:31:cc:d7:48:5c:7e:6a:01:44:1d:2d:69: c6:9d:2e:a5:be:50:6b:a7:b7:1c:f1:96:34:38:78:60:a1:80: 7f:3f:2e:17:ae:98:24:f5:f4:42:3a:5f:30:0c:78:51:e8:d1: f4:f3:df:28:c4:95:d9:68:bd:63:58:78:7e:d9:77:ec:86:70: d1:9a:b7:94:58:e5:9f:5f:f4:06:23:7f:81:b3:35:ba:b6:79: e6:1b:b9:3f:54:2d:3e:a3:17:09:c5:9f:fb:e2:c8:d9:9b:45: a8:a3:2c:44 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICASMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDIzQzExMTAvBgNVBAUTKDREQzdFMjhCNTQ2RjJBMEI1MzhFOENERjgzMkQ5QUEx RjM3Q0M4RTQwHhcNMjYwMzAzMDM0MzQ1WhcNMjYwMzEwMDM0MzQ1WjAYMRYwFAYD VQQDEw02OWE2NThmMS1hZDU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwGYwyinlo9csuCmCBz4kzYEgVzSLCeFgfINsraQOhPdyXNDeSokqWBgEvP58 wBrU9KPJXCqDM1KxEAh/McSCrfJ+sCZDZcf/mpa2Mm3yT5t3o6Tz0tiqrffc0+si iqO+hIknyfKJ+gtdyXewb6M4Cm+BmnujY/7AporkbCSNqqBo+J4Khff9vhL4MvkI qRsB7v8sas0g0hY4opdlRudNP0mWGE0tQdkY8jZCpS69jwIV/K6omTU6VqCyEyeF 2O7058B7DFsb4EwDY+QTdURwg155cAVgvx+F900Goj2cQyCEymr+xnD4NJUamJM7 aAmj6ziRcPnEFfqPmbpsIn1WwwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCfpVGyH 8iiWRnuhwaA7b5Ws/1aKMB8GA1UdIwQYMBaAFE3H4otUbyoLU46M34MtmqHzfMjk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjNDMS9EMDMyMEVGOEJG NEYxMUVGQkNGNjg5NDRDNEY5QUUwMi9UY2ZpaTFSdktndFRqb3pmZ3kyYW9mTjh5 T1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1RjZmlpMVJ2S2d0VGpvemZneTJhb2ZOOHlPUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MjNDMS9EMDMyMEVGOEJGNEYxMUVGQkNGNjg5NDRDNEY5QUUwMi9UY2ZpaTFSdktn dFRqb3pmZ3kyYW9mTjh5T1EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAqCO77G4dnwQDRBP+ms4p8qR2fZn2pdJ0+KBxk+wFU55248SVrKDULMTFEfsQ L7uh1j5mYjaIbyi/W+92Rk3YLOMlMcqA0vIbPTTA+7BnZInmTB/aP5dxXpqzxJF2 Y5yRJzpzecmd/gQmls2Zx/hR44qgkmh4pdB2LqkDh54XLqGiGtE2osbkeJAerAYm 0lsU95dgqkZGMczXSFx+agFEHS1pxp0upb5Qa6e3HPGWNDh4YKGAfz8uF66YJPX0 QjpfMAx4UejR9PPfKMSV2Wi9Y1h4ftl37IZw0Zq3lFjln1/0BiN/gbM1urZ55hu5 P1QtPqMXCcWf++LI2ZtFqKMsRA== -----END CERTIFICATE-----Generated at Wed Mar 4 08:39:58 2026 by rpki-client