$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.mft File: tY0p97gQfxWFtf_nDFAsbI9dMwI.mft (raw, json) Hash identifier: b4+WtvxMKgfFmw2pslscgOahiQp021MB91WwRaKHAlA= Subject key identifier: B0:88:0F:E5:77:4D:45:23:6E:CA:57:48:7A:7F:D4:BB:A7:6C:38:D0 Authority key identifier: B5:8D:29:F7:B8:10:7F:15:85:B5:FF:E7:0C:50:2C:6C:8F:5D:33:02 Certificate issuer: /CN=A91B3CA4/serialNumber=B58D29F7B8107F1585B5FFE70C502C6C8F5D3302 Certificate serial: 08FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tY0p97gQfxWFtf_nDFAsbI9dMwI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.mft Manifest number: 08E1 Signing time: Sat 28 Mar 2026 20:17:04 +0000 Manifest this update: Sat 28 Mar 2026 20:17:04 +0000 Manifest next update: Sat 04 Apr 2026 20:17:04 +0000 Files and hashes: 1: tY0p97gQfxWFtf_nDFAsbI9dMwI.crl (hash: D5XnX9TjFMLwLJXJPk2a+swmdkKiLAezof3KGepx/FQ=) 2: 3C3F21BAD6F011EE9B38B67DC4F9AE02.roa (hash: dSogrThDaTv5OfuEsTdAc58TXHTFJalbVz+Qm6Tm1wU=) 3: F6F5BCCE53E711F084348F87C4F9AE02.roa (hash: NOtSPMoyjGNe3WLN4TReN45PMOlOKgXov/A6z0RFISo=) 4: C33EB0EC7C4211EB933D233EC4F9AE02.roa (hash: WROApDsBqYFj1tmEilpH4EMP+4m9uNYaD0No6ZndRwQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.crl rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tY0p97gQfxWFtf_nDFAsbI9dMwI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 Apr 2026 20:17:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2302 (0x8fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3CA4, serialNumber=B58D29F7B8107F1585B5FFE70C502C6C8F5D3302 Validity Not Before: Mar 28 20:17:04 2026 GMT Not After : Apr 4 20:17:04 2026 GMT Subject: CN=69c83740-1823 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:4a:b3:52:6c:62:d4:2a:9e:c6:03:21:8a:62: 0a:2d:60:a6:df:5c:a7:c6:9e:66:6d:8f:55:22:d5: aa:e8:c7:56:61:ba:d9:90:22:a0:e3:a8:2f:c0:de: 47:d9:61:82:b8:c0:ba:13:e6:fe:ca:bb:7a:79:1c: f3:66:37:56:14:69:08:c3:c3:50:5c:c2:64:61:07: 62:d4:e7:0a:28:8a:78:2c:10:23:00:d4:41:8f:62: b7:b5:ad:c4:26:be:1c:82:24:ea:55:2a:06:59:d6: bd:ad:59:47:99:24:c5:f1:ba:80:1a:af:61:32:2b: f7:85:a8:14:68:62:5b:8c:95:c7:3a:b7:02:27:fd: 0c:9b:85:61:87:2e:5b:99:f8:38:18:6c:ba:a6:e8: 7e:9f:80:3a:eb:e5:d3:2c:13:c9:6b:be:07:d5:5c: 27:17:ee:bf:f0:74:b7:78:37:8a:54:52:61:15:bd: 1d:ab:06:9f:14:b7:64:9a:94:2d:67:ed:1c:1d:18: 4a:54:c1:f8:fa:ac:d1:50:ef:87:98:22:ee:ac:8c: 35:1b:9b:d5:06:16:26:4a:b0:78:c8:7b:76:f8:21: bf:c4:3e:2c:28:42:e5:cb:98:19:a4:e8:32:d7:5a: 03:41:43:c4:51:a1:0d:99:a3:53:8b:33:54:11:6a: 47:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:88:0F:E5:77:4D:45:23:6E:CA:57:48:7A:7F:D4:BB:A7:6C:38:D0 X509v3 Authority Key Identifier: keyid:B5:8D:29:F7:B8:10:7F:15:85:B5:FF:E7:0C:50:2C:6C:8F:5D:33:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tY0p97gQfxWFtf_nDFAsbI9dMwI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:8e:f3:9e:73:2e:53:77:d9:a3:c5:3d:4d:cd:12:b3:b1:5c: 36:d8:97:4d:3a:1b:ed:59:ed:dd:cc:95:77:83:e5:7e:00:7f: 29:34:09:60:8a:04:94:83:30:35:6f:de:d2:8d:e7:d0:98:c1: 55:5d:65:2b:77:d4:4e:8f:79:4f:39:0d:4d:f9:8f:11:2f:1c: 27:57:b9:0d:f9:a4:11:b1:bd:7e:c4:67:c9:65:a8:f2:30:0e: 94:9b:a4:dd:fe:1d:02:95:26:e9:7e:75:90:9c:33:10:d8:01: e2:0f:7e:89:f5:78:bf:cf:22:13:ff:2a:e5:4a:5b:0b:57:52: 8e:f1:90:15:24:33:4d:93:36:3a:84:ef:72:59:46:56:53:45: 7e:87:76:98:f6:e0:7b:1d:91:c9:fb:b6:df:70:bb:bf:78:3a: d2:61:22:45:c0:54:c5:42:b1:6b:c2:05:e3:a2:05:de:2c:a8: 44:2f:82:89:73:ca:8d:81:ce:7d:67:60:ff:b8:77:3d:91:b3: d5:7d:4b:18:33:87:1a:50:cd:d6:ac:ee:83:18:1a:11:95:77: 30:ee:45:4b:4e:4d:b0:18:31:e1:fe:a5:38:e0:05:7f:dd:ea: 76:0d:28:d5:2e:50:90:b2:61:ce:ad:dd:df:a0:91:bf:96:05: cd:60:9e:99 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCP4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjNDQTQxMTAvBgNVBAUTKEI1OEQyOUY3QjgxMDdGMTU4NUI1RkZFNzBDNTAyQzZD OEY1RDMzMDIwHhcNMjYwMzI4MjAxNzA0WhcNMjYwNDA0MjAxNzA0WjAYMRYwFAYD VQQDEw02OWM4Mzc0MC0xODIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwkqzUmxi1CqexgMhimIKLWCm31ynxp5mbY9VItWq6MdWYbrZkCKg46gvwN5H 2WGCuMC6E+b+yrt6eRzzZjdWFGkIw8NQXMJkYQdi1OcKKIp4LBAjANRBj2K3ta3E Jr4cgiTqVSoGWda9rVlHmSTF8bqAGq9hMiv3hagUaGJbjJXHOrcCJ/0Mm4Vhhy5b mfg4GGy6puh+n4A66+XTLBPJa74H1VwnF+6/8HS3eDeKVFJhFb0dqwafFLdkmpQt Z+0cHRhKVMH4+qzRUO+HmCLurIw1G5vVBhYmSrB4yHt2+CG/xD4sKELly5gZpOgy 11oDQUPEUaENmaNTizNUEWpH4QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLCID+V3 TUUjbspXSHp/1LunbDjQMB8GA1UdIwQYMBaAFLWNKfe4EH8VhbX/5wxQLGyPXTMC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCM0NBNC8xNUY2OEI1Q0NG MTkxMUVBQUVGNjBCMUVDNEY5QUUwMi90WTBwOTdnUWZ4V0Z0Zl9uREZBc2JJOWRN d0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RZMHA5N2dRZnhXRnRmX25ERkFzYkk5ZE13SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC M0NBNC8xNUY2OEI1Q0NGMTkxMUVBQUVGNjBCMUVDNEY5QUUwMi90WTBwOTdnUWZ4 V0Z0Zl9uREZBc2JJOWRNd0kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAmI7znnMuU3fZo8U9Tc0Ss7FcNtiXTTob7Vnt3cyVd4PlfgB/KTQJYIoElIMw NW/e0o3n0JjBVV1lK3fUTo95TzkNTfmPES8cJ1e5DfmkEbG9fsRnyWWo8jAOlJuk 3f4dApUm6X51kJwzENgB4g9+ifV4v88iE/8q5UpbC1dSjvGQFSQzTZM2OoTvcllG VlNFfod2mPbgex2Ryfu233C7v3g60mEiRcBUxUKxa8IF46IF3iyoRC+CiXPKjYHO fWdg/7h3PZGz1X1LGDOHGlDN1qzugxgaEZV3MO5FS05NsBgx4f6lOOAFf93qdg0o 1S5QkLJhzq3d36CRv5YFzWCemQ== -----END CERTIFICATE-----Generated at Mon Mar 30 22:55:43 2026 by rpki-client