$ rpki-client -vvf rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.mft File: 7f0U22_TsCp5NdqtR_wCnzpwTEA.mft (raw, json) Hash identifier: +k6EPIIQKubjeTuf27uRbk6hU3xSMqJv/2JT+CD3oyY= Subject key identifier: 2E:07:1E:BC:A2:52:91:1E:D7:CF:4A:B6:8A:B5:2B:83:0C:F8:B2:11 Authority key identifier: ED:FD:14:DB:6F:D3:B0:2A:79:35:DA:AD:47:FC:02:9F:3A:70:4C:40 Certificate issuer: /CN=A91A93B6/serialNumber=EDFD14DB6FD3B02A7935DAAD47FC029F3A704C40 Certificate serial: 0279 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7f0U22_TsCp5NdqtR_wCnzpwTEA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.mft Manifest number: 0270 Signing time: Sun 29 Mar 2026 01:49:04 +0000 Manifest this update: Sun 29 Mar 2026 01:49:04 +0000 Manifest next update: Sun 05 Apr 2026 01:49:04 +0000 Files and hashes: 1: 7f0U22_TsCp5NdqtR_wCnzpwTEA.crl (hash: GECIBl5sO7TWIUClPrCmpUtCmXJAdqOxD6zcw/sCS7g=) 2: 780A3032CB3211EE953DEF37C4F9AE02.roa (hash: +r2WtPGJv8MiPhxLT7XXflRVbJqr2/eUE2D9wDQRaQQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.crl rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7f0U22_TsCp5NdqtR_wCnzpwTEA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 Apr 2026 01:49:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 633 (0x279) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A93B6, serialNumber=EDFD14DB6FD3B02A7935DAAD47FC029F3A704C40 Validity Not Before: Mar 29 01:49:04 2026 GMT Not After : Apr 5 01:49:04 2026 GMT Subject: CN=69c88510-2d89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:8c:9f:ab:7f:9a:e4:c7:58:38:88:d8:c1:b8: 3a:dc:64:b9:5e:fb:95:65:0c:df:fe:6d:69:53:03: 75:cc:6d:3f:76:77:15:65:ff:50:dd:89:5e:87:4e: a0:24:2f:0e:ec:ba:80:e0:e6:13:09:9f:f0:eb:4a: a6:55:16:0f:4a:c6:86:af:6a:09:d1:a4:f8:cd:ef: 53:b4:cc:62:b7:14:75:a5:3d:8c:fd:00:c6:2f:e2: 06:d0:7e:9c:8b:52:5e:86:61:80:0c:61:4b:6e:1c: b7:8d:fb:f4:0e:b9:66:07:38:be:4e:8a:87:d9:23: 5c:d4:b5:ca:64:f4:1e:c6:e1:be:10:e2:b5:74:66: d2:fb:06:8b:3b:aa:01:7b:17:99:bc:e9:97:48:47: 83:83:c5:3d:a2:f9:1d:8e:3c:eb:56:69:b5:db:27: 82:5f:eb:6b:e6:e1:57:fd:a5:99:1e:18:fc:6d:eb: 41:4d:2a:72:be:1b:98:4c:3c:ab:21:13:8c:db:ba: bb:ee:ab:93:25:f1:4a:41:a1:5e:aa:fe:48:45:ad: b7:29:c9:c5:80:44:d4:f3:2c:1d:57:83:62:2e:10: 34:b4:89:56:65:6d:36:f3:ad:a6:53:7a:72:b0:6c: ca:45:f8:eb:d1:19:da:f4:03:8b:44:30:db:61:cb: b1:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:07:1E:BC:A2:52:91:1E:D7:CF:4A:B6:8A:B5:2B:83:0C:F8:B2:11 X509v3 Authority Key Identifier: keyid:ED:FD:14:DB:6F:D3:B0:2A:79:35:DA:AD:47:FC:02:9F:3A:70:4C:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7f0U22_TsCp5NdqtR_wCnzpwTEA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:28:5f:ff:79:74:a3:bd:67:5d:79:2b:81:a7:bd:6e:e6:d4: 5f:a4:86:1c:f7:b8:13:d5:9c:38:7c:73:f5:cb:9e:04:22:0c: 66:37:19:36:4c:e2:2d:51:b2:78:7b:73:39:41:d1:74:bc:f1: 64:9e:37:73:27:61:34:db:f1:8d:72:31:6b:98:08:ff:7b:c5: 8a:6b:64:02:6b:6d:ff:69:5d:cf:ca:f2:a2:e5:27:b7:76:bb: 3c:4f:0d:6d:27:29:7b:fb:78:c7:7c:5d:d0:91:c8:86:9e:73: d7:5c:94:db:a6:b9:fb:a4:11:d7:94:b7:95:dc:43:41:20:e4: c0:d1:b1:74:0d:84:30:1a:0c:2d:40:4f:71:1a:c3:83:e4:ec: 87:12:76:5a:96:ee:ac:16:90:09:53:7a:1a:d3:7d:ff:32:c8: 5b:2f:34:d4:68:0f:39:c0:ff:d7:36:ee:52:5f:90:b7:af:09: 00:49:19:90:bc:55:60:f6:c4:98:71:d5:3a:8d:5a:dc:b9:ea: 99:f5:c7:15:c1:50:8c:1d:f8:02:f8:a6:59:9c:6a:3c:6f:f5: 4f:99:88:c5:3d:70:6e:0d:f7:1e:9b:44:08:2a:09:b7:f6:27: 73:de:b2:f3:df:4b:b7:d4:dc:51:67:55:c3:49:89:3b:b4:62: 2e:1e:08:b4 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAnkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTkzQjYxMTAvBgNVBAUTKEVERkQxNERCNkZEM0IwMkE3OTM1REFBRDQ3RkMwMjlG M0E3MDRDNDAwHhcNMjYwMzI5MDE0OTA0WhcNMjYwNDA1MDE0OTA0WjAYMRYwFAYD VQQDEw02OWM4ODUxMC0yZDg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApYyfq3+a5MdYOIjYwbg63GS5XvuVZQzf/m1pUwN1zG0/dncVZf9Q3Yleh06g JC8O7LqA4OYTCZ/w60qmVRYPSsaGr2oJ0aT4ze9TtMxitxR1pT2M/QDGL+IG0H6c i1JehmGADGFLbhy3jfv0DrlmBzi+ToqH2SNc1LXKZPQexuG+EOK1dGbS+waLO6oB exeZvOmXSEeDg8U9ovkdjjzrVmm12yeCX+tr5uFX/aWZHhj8betBTSpyvhuYTDyr IROM27q77quTJfFKQaFeqv5IRa23KcnFgETU8ywdV4NiLhA0tIlWZW02862mU3py sGzKRfjr0Rna9AOLRDDbYcuxHQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFC4HHryi UpEe189Ktoq1K4MM+LIRMB8GA1UdIwQYMBaAFO39FNtv07AqeTXarUf8Ap86cExA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOTNCNi83MEJDRkNFMDdD NTcxMUVEQTgxMDc4NjZDNEY5QUUwMi83ZjBVMjJfVHNDcDVOZHF0Ul93Q256cHdU RUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdmMFUyMl9Uc0NwNU5kcXRSX3dDbnpwd1RFQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OTNCNi83MEJDRkNFMDdDNTcxMUVEQTgxMDc4NjZDNEY5QUUwMi83ZjBVMjJfVHND cDVOZHF0Ul93Q256cHdURUEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEACyhf/3l0o71nXXkrgae9bubUX6SGHPe4E9WcOHxz9cueBCIMZjcZNkziLVGy eHtzOUHRdLzxZJ43cydhNNvxjXIxa5gI/3vFimtkAmtt/2ldz8ryouUnt3a7PE8N bScpe/t4x3xd0JHIhp5z11yU26a5+6QR15S3ldxDQSDkwNGxdA2EMBoMLUBPcRrD g+TshxJ2WpburBaQCVN6GtN9/zLIWy801GgPOcD/1zbuUl+Qt68JAEkZkLxVYPbE mHHVOo1a3LnqmfXHFcFQjB34AvimWZxqPG/1T5mIxT1wbg33HptECCoJt/Ync96y 899Lt9TcUWdVw0mJO7RiLh4ItA== -----END CERTIFICATE-----Generated at Sun Mar 29 06:17:00 2026 by rpki-client