$ rpki-client -vvf rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.mft File: 7f0U22_TsCp5NdqtR_wCnzpwTEA.mft (raw, json) Hash identifier: fHEBXwt5IrP7TrdrwWKpQDiQwgNM3L53YsQjgGzvlak= Subject key identifier: FA:C9:F3:E9:0C:01:2D:AC:A6:CA:D5:9E:3C:67:2A:7C:F4:0D:C6:7E Authority key identifier: ED:FD:14:DB:6F:D3:B0:2A:79:35:DA:AD:47:FC:02:9F:3A:70:4C:40 Certificate issuer: /CN=A91A93B6/serialNumber=EDFD14DB6FD3B02A7935DAAD47FC029F3A704C40 Certificate serial: 0275 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7f0U22_TsCp5NdqtR_wCnzpwTEA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.mft Manifest number: 026C Signing time: Sat 21 Mar 2026 01:21:33 +0000 Manifest this update: Sat 21 Mar 2026 01:21:33 +0000 Manifest next update: Sat 28 Mar 2026 01:21:33 +0000 Files and hashes: 1: 7f0U22_TsCp5NdqtR_wCnzpwTEA.crl (hash: 2CIgVUyXVQfEArIMz2Z6lwx0+WVYsG+G35dSokgSFac=) 2: 780A3032CB3211EE953DEF37C4F9AE02.roa (hash: +r2WtPGJv8MiPhxLT7XXflRVbJqr2/eUE2D9wDQRaQQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.crl rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7f0U22_TsCp5NdqtR_wCnzpwTEA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 01:21:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 629 (0x275) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A93B6, serialNumber=EDFD14DB6FD3B02A7935DAAD47FC029F3A704C40 Validity Not Before: Mar 21 01:21:33 2026 GMT Not After : Mar 28 01:21:33 2026 GMT Subject: CN=69bdf29d-6f0d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:af:3e:a6:2e:62:a2:3a:54:75:cd:b3:bf:57: 9c:cf:09:be:4b:45:7a:48:d3:a9:45:e0:9d:d5:1f: 47:29:e0:74:4e:8f:be:09:de:5c:6a:a6:cb:21:9a: 51:3b:2a:d9:5b:92:e2:c9:48:32:e3:3a:d5:93:ed: 8b:65:64:aa:7d:ed:89:67:98:71:20:54:19:8c:0d: cc:81:4d:f2:2f:54:5b:73:e0:4b:81:86:f4:e5:85: 84:99:05:b5:0b:4f:b2:8c:cd:91:ce:a0:b4:8f:09: 21:d1:cd:94:8e:33:8c:c7:74:29:58:9a:c5:bc:f3: fe:49:03:d5:2f:2d:77:2c:e6:3f:69:06:4c:85:e9: 5b:32:96:10:fe:86:e2:39:3b:56:43:3a:4e:26:55: ef:61:7e:6b:de:b5:81:24:af:24:92:d0:d0:37:7e: d8:10:b1:58:53:f9:35:0f:e1:c7:d3:2c:51:0a:69: 16:c8:67:9c:1f:5e:f3:ed:c1:20:8d:e3:90:49:20: 96:46:23:64:82:d4:54:ce:f4:3c:0d:03:44:48:e8: 0a:d7:e6:a1:37:48:4b:6d:e4:c1:dc:cf:b8:1b:05: 90:5d:f4:09:c2:e6:1c:e2:63:f8:6a:e3:2c:a5:7e: a5:69:07:2a:7e:fa:80:c0:65:ef:30:3e:3e:d4:21: 1f:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:C9:F3:E9:0C:01:2D:AC:A6:CA:D5:9E:3C:67:2A:7C:F4:0D:C6:7E X509v3 Authority Key Identifier: keyid:ED:FD:14:DB:6F:D3:B0:2A:79:35:DA:AD:47:FC:02:9F:3A:70:4C:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7f0U22_TsCp5NdqtR_wCnzpwTEA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:49:1b:43:f2:91:e9:9f:c9:08:70:7d:ba:31:98:f1:48:2b: b8:3c:89:1b:06:fc:f2:cd:fa:af:2c:25:e6:71:70:bc:63:b0: a0:f2:a3:aa:11:95:57:42:d1:66:e1:b0:c1:62:11:83:e1:80: e0:ed:8a:2b:60:c1:dd:8f:51:2d:d7:cf:32:67:93:34:95:09: 99:15:9e:63:cc:84:2a:09:4b:13:5f:f6:b4:95:9d:06:46:54: cc:e3:d6:99:b8:3a:62:de:51:b3:37:47:b3:18:9b:78:4f:4d: 06:ca:f1:24:4e:cc:92:0f:43:75:e9:42:2b:05:70:4b:d4:10: 91:65:e0:d3:4c:66:76:2f:1f:2e:e8:41:d9:5d:02:42:62:36: 7b:a3:c0:68:65:7f:74:83:c2:b9:8a:02:2b:cd:b1:ad:7d:5a: 89:28:ad:56:d6:1a:75:4c:be:e6:be:8b:1a:06:11:af:c9:c2: 3b:b5:d8:3e:ea:c1:b9:f2:af:06:3d:8f:56:28:8e:16:17:26: 08:f2:08:07:ba:64:23:95:97:26:79:4e:08:9c:63:62:70:7b: 3c:ca:21:56:64:dc:61:60:37:c9:98:8f:3b:6b:3d:16:e9:27: e6:02:62:98:da:c8:09:87:a4:9c:75:c9:2e:48:63:da:34:38: 98:be:4c:56 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAnUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTkzQjYxMTAvBgNVBAUTKEVERkQxNERCNkZEM0IwMkE3OTM1REFBRDQ3RkMwMjlG M0E3MDRDNDAwHhcNMjYwMzIxMDEyMTMzWhcNMjYwMzI4MDEyMTMzWjAYMRYwFAYD VQQDEw02OWJkZjI5ZC02ZjBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoK8+pi5iojpUdc2zv1eczwm+S0V6SNOpReCd1R9HKeB0To++Cd5caqbLIZpR OyrZW5LiyUgy4zrVk+2LZWSqfe2JZ5hxIFQZjA3MgU3yL1Rbc+BLgYb05YWEmQW1 C0+yjM2RzqC0jwkh0c2UjjOMx3QpWJrFvPP+SQPVLy13LOY/aQZMhelbMpYQ/obi OTtWQzpOJlXvYX5r3rWBJK8kktDQN37YELFYU/k1D+HH0yxRCmkWyGecH17z7cEg jeOQSSCWRiNkgtRUzvQ8DQNESOgK1+ahN0hLbeTB3M+4GwWQXfQJwuYc4mP4auMs pX6laQcqfvqAwGXvMD4+1CEfFQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPrJ8+kM AS2spsrVnjxnKnz0DcZ+MB8GA1UdIwQYMBaAFO39FNtv07AqeTXarUf8Ap86cExA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOTNCNi83MEJDRkNFMDdD NTcxMUVEQTgxMDc4NjZDNEY5QUUwMi83ZjBVMjJfVHNDcDVOZHF0Ul93Q256cHdU RUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdmMFUyMl9Uc0NwNU5kcXRSX3dDbnpwd1RFQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OTNCNi83MEJDRkNFMDdDNTcxMUVEQTgxMDc4NjZDNEY5QUUwMi83ZjBVMjJfVHND cDVOZHF0Ul93Q256cHdURUEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAQUkbQ/KR6Z/JCHB9ujGY8UgruDyJGwb88s36rywl5nFwvGOwoPKjqhGVV0LR ZuGwwWIRg+GA4O2KK2DB3Y9RLdfPMmeTNJUJmRWeY8yEKglLE1/2tJWdBkZUzOPW mbg6Yt5RszdHsxibeE9NBsrxJE7Mkg9DdelCKwVwS9QQkWXg00xmdi8fLuhB2V0C QmI2e6PAaGV/dIPCuYoCK82xrX1aiSitVtYadUy+5r6LGgYRr8nCO7XYPurBufKv Bj2PViiOFhcmCPIIB7pkI5WXJnlOCJxjYnB7PMohVmTcYWA3yZiPO2s9Fukn5gJi mNrICYeknHXJLkhj2jQ4mL5MVg== -----END CERTIFICATE-----Generated at Sun Mar 22 04:46:16 2026 by rpki-client