$ rpki-client -vvf rpki.apnic.net/member_repository/A918ABAC/649BC3B250C911F0B4730246C4F9AE02/tAOKtkA58xRWIqIP9w7Xvh1Of5E.mft File: tAOKtkA58xRWIqIP9w7Xvh1Of5E.mft (raw, json) Hash identifier: mR/2BAYtwdromxJkmWNUvmnS8eDX5BhVXG0muTu2CYI= Subject key identifier: 3C:33:1F:C4:AB:82:97:E1:B1:9F:3B:05:B6:C6:37:4B:B9:A4:01:AB Authority key identifier: B4:03:8A:B6:40:39:F3:14:56:22:A2:0F:F7:0E:D7:BE:1D:4E:7F:91 Certificate issuer: /CN=A918ABAC/serialNumber=B4038AB64039F3145622A20FF70ED7BE1D4E7F91 Certificate serial: 9D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tAOKtkA58xRWIqIP9w7Xvh1Of5E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918ABAC/649BC3B250C911F0B4730246C4F9AE02/tAOKtkA58xRWIqIP9w7Xvh1Of5E.mft Manifest number: 90 Signing time: Tue 03 Mar 2026 07:14:28 +0000 Manifest this update: Tue 03 Mar 2026 07:14:27 +0000 Manifest next update: Tue 10 Mar 2026 07:14:27 +0000 Files and hashes: 1: tAOKtkA58xRWIqIP9w7Xvh1Of5E.crl (hash: P7/CTeNPMcEWjLiWir/L+Jka+oOkIaB+Y3i1epv6JwM=) 2: ACE7F9985DF711F084BC8A50C4F9AE02.roa (hash: uMO+2JAcztORNSv06a9gx7VlI/CanLXKpbYCi8Zh4kI=) 3: E641780E535211F0A795A950C4F9AE02.roa (hash: ed5G9bTTE4ta+9ZR/j/PVZoByMJafJHwh2lR+lbY92s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918ABAC/649BC3B250C911F0B4730246C4F9AE02/tAOKtkA58xRWIqIP9w7Xvh1Of5E.crl rsync://rpki.apnic.net/member_repository/A918ABAC/649BC3B250C911F0B4730246C4F9AE02/tAOKtkA58xRWIqIP9w7Xvh1Of5E.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tAOKtkA58xRWIqIP9w7Xvh1Of5E.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 07:14:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 157 (0x9d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918ABAC, serialNumber=B4038AB64039F3145622A20FF70ED7BE1D4E7F91 Validity Not Before: Mar 3 07:14:27 2026 GMT Not After : Mar 10 07:14:27 2026 GMT Subject: CN=69a68a54-a2f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:a3:6c:29:63:c1:b7:30:9d:39:52:5a:36:61: 4c:9e:e8:ba:85:ca:f2:9d:c9:d0:4f:9d:82:14:06: 53:9d:c8:cd:ee:07:82:a7:c5:d3:ad:81:30:21:08: ff:0b:3a:cc:18:10:d2:53:cd:da:a1:0d:41:a6:39: 72:99:5a:bf:b7:e6:eb:fa:59:63:35:3f:87:fe:45: c1:a9:a3:b7:06:d9:c3:63:57:38:b9:2d:c3:7b:0f: f9:72:0c:57:8a:e1:b1:fe:f1:4e:88:d3:91:d3:fb: 06:24:42:5a:64:a9:aa:9f:f7:e9:47:a7:5d:b3:af: 0d:a5:c8:08:76:ab:4b:23:b1:45:2c:fd:08:30:cc: b7:5a:95:01:1c:c8:c8:bf:86:99:d7:09:5f:48:5a: ee:8f:f1:aa:80:0a:2e:f1:17:5e:52:fd:b2:80:fd: d7:c0:9b:af:52:e5:8e:66:ee:47:13:a5:d3:a1:53: 0c:73:39:f1:2c:b2:f5:03:00:23:81:0d:95:61:96: 80:07:eb:5d:73:66:32:9c:6e:51:8b:ff:03:f9:e7: 2a:9f:59:b3:ca:c2:d4:6e:6e:78:0a:ee:d4:88:f6: 85:98:4d:db:d9:28:2f:16:83:e2:5f:f6:a6:a8:9f: 48:ca:81:63:7a:c4:ab:16:03:a4:79:ea:65:1e:2a: 6b:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:33:1F:C4:AB:82:97:E1:B1:9F:3B:05:B6:C6:37:4B:B9:A4:01:AB X509v3 Authority Key Identifier: keyid:B4:03:8A:B6:40:39:F3:14:56:22:A2:0F:F7:0E:D7:BE:1D:4E:7F:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918ABAC/649BC3B250C911F0B4730246C4F9AE02/tAOKtkA58xRWIqIP9w7Xvh1Of5E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tAOKtkA58xRWIqIP9w7Xvh1Of5E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918ABAC/649BC3B250C911F0B4730246C4F9AE02/tAOKtkA58xRWIqIP9w7Xvh1Of5E.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:fa:f0:15:e9:49:17:aa:a5:2c:b0:a1:d1:c4:74:f8:0f:06: fa:32:be:f7:da:46:f9:e5:4a:8f:f0:52:b9:24:6c:15:98:4c: 45:c6:93:0e:61:8e:9b:56:c3:ef:39:e9:3b:ad:a7:77:61:8c: 16:95:75:d7:0e:f7:9f:ce:7e:d7:79:83:5a:c7:2f:fc:8c:06: 01:f6:af:05:07:e4:10:4f:5d:02:bf:fd:da:6d:0c:e1:d2:44: 12:a6:96:31:7f:b3:90:a5:13:a6:53:9e:3d:99:7e:c8:26:3e: 3e:d5:50:22:ff:1d:00:ed:ff:05:73:b4:dd:61:36:74:0d:73: b2:5f:7a:eb:9e:d6:a8:73:6d:fa:e9:ff:00:ee:d2:08:77:9b: c9:af:75:c5:26:ec:8f:b3:92:8d:26:c8:ac:62:1f:2b:ad:b3: a2:9b:1f:cd:b6:63:69:a0:33:36:c7:58:2d:e2:ef:7c:31:c5: 69:97:94:ee:81:00:1c:22:f3:31:7a:0c:36:3f:84:c3:b5:09: 15:b1:9a:f1:a0:bf:e7:2b:01:49:0a:41:90:de:75:e0:35:be: f4:e6:bc:c0:09:08:80:47:f6:64:c7:1d:05:1c:12:01:26:fb: bf:3a:69:d5:bf:54:db:7a:31:e7:3a:f2:51:cb:ac:c3:d4:35: bd:a8:e4:9b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAJ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEFCQUMxMTAvBgNVBAUTKEI0MDM4QUI2NDAzOUYzMTQ1NjIyQTIwRkY3MEVEN0JF MUQ0RTdGOTEwHhcNMjYwMzAzMDcxNDI3WhcNMjYwMzEwMDcxNDI3WjAYMRYwFAYD VQQDEw02OWE2OGE1NC1hMmY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA16NsKWPBtzCdOVJaNmFMnui6hcryncnQT52CFAZTncjN7geCp8XTrYEwIQj/ CzrMGBDSU83aoQ1BpjlymVq/t+br+lljNT+H/kXBqaO3BtnDY1c4uS3Dew/5cgxX iuGx/vFOiNOR0/sGJEJaZKmqn/fpR6dds68NpcgIdqtLI7FFLP0IMMy3WpUBHMjI v4aZ1wlfSFruj/GqgAou8RdeUv2ygP3XwJuvUuWOZu5HE6XToVMMcznxLLL1AwAj gQ2VYZaAB+tdc2YynG5Ri/8D+ecqn1mzysLUbm54Cu7UiPaFmE3b2SgvFoPiX/am qJ9IyoFjesSrFgOkeeplHiprmQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDwzH8Sr gpfhsZ87BbbGN0u5pAGrMB8GA1UdIwQYMBaAFLQDirZAOfMUViKiD/cO174dTn+R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QUJBQy82NDlCQzNCMjUw QzkxMUYwQjQ3MzAyNDZDNEY5QUUwMi90QU9LdGtBNTh4UldJcUlQOXc3WHZoMU9m NUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3RBT0t0a0E1OHhSV0lxSVA5dzdYdmgxT2Y1RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QUJBQy82NDlCQzNCMjUwQzkxMUYwQjQ3MzAyNDZDNEY5QUUwMi90QU9LdGtBNTh4 UldJcUlQOXc3WHZoMU9mNUUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAnfrwFelJF6qlLLCh0cR0+A8G+jK+99pG+eVKj/BSuSRsFZhMRcaTDmGOm1bD 7znpO62nd2GMFpV11w73n85+13mDWscv/IwGAfavBQfkEE9dAr/92m0M4dJEEqaW MX+zkKUTplOePZl+yCY+PtVQIv8dAO3/BXO03WE2dA1zsl96657WqHNt+un/AO7S CHebya91xSbsj7OSjSbIrGIfK62zopsfzbZjaaAzNsdYLeLvfDHFaZeU7oEAHCLz MXoMNj+Ew7UJFbGa8aC/5ysBSQpBkN514DW+9Oa8wAkIgEf2ZMcdBRwSASb7vzpp 1b9U23ox5zryUcusw9Q1vajkmw== -----END CERTIFICATE-----Generated at Wed Mar 4 08:20:29 2026 by rpki-client