$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.mft File: tY0p97gQfxWFtf_nDFAsbI9dMwI.mft (raw, json) Hash identifier: +2o6kMwjtK2c/3ePpALPizZcrsM8fZZA0y1h4MVrF7k= Subject key identifier: CE:4B:37:7B:81:50:53:5C:EA:D6:3B:DC:6C:C2:7C:C4:F5:3E:9C:4C Authority key identifier: B5:8D:29:F7:B8:10:7F:15:85:B5:FF:E7:0C:50:2C:6C:8F:5D:33:02 Certificate issuer: /CN=A91B3CA4/serialNumber=B58D29F7B8107F1585B5FFE70C502C6C8F5D3302 Certificate serial: 08FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tY0p97gQfxWFtf_nDFAsbI9dMwI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.mft Manifest number: 08E2 Signing time: Mon 30 Mar 2026 20:21:10 +0000 Manifest this update: Mon 30 Mar 2026 20:21:10 +0000 Manifest next update: Mon 06 Apr 2026 20:21:10 +0000 Files and hashes: 1: tY0p97gQfxWFtf_nDFAsbI9dMwI.crl (hash: XqrzMityatFkxdeaw0EX3Q06xSAmcqZE9jALTknUJCs=) 2: F6F5BCCE53E711F084348F87C4F9AE02.roa (hash: NOtSPMoyjGNe3WLN4TReN45PMOlOKgXov/A6z0RFISo=) 3: 3C3F21BAD6F011EE9B38B67DC4F9AE02.roa (hash: dSogrThDaTv5OfuEsTdAc58TXHTFJalbVz+Qm6Tm1wU=) 4: C33EB0EC7C4211EB933D233EC4F9AE02.roa (hash: WROApDsBqYFj1tmEilpH4EMP+4m9uNYaD0No6ZndRwQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.crl rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tY0p97gQfxWFtf_nDFAsbI9dMwI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 Apr 2026 23:18:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2303 (0x8ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3CA4, serialNumber=B58D29F7B8107F1585B5FFE70C502C6C8F5D3302 Validity Not Before: Mar 30 20:21:10 2026 GMT Not After : Apr 6 20:21:10 2026 GMT Subject: CN=69cadb36-a69a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:f0:04:b0:08:1a:17:8b:83:fc:ba:ea:1b:44: c7:93:9e:a8:58:e2:74:e6:2f:d7:02:ad:0d:e5:22: 10:aa:6b:3f:46:5f:3b:7c:9c:42:4d:65:5b:1c:f4: 64:a2:35:ab:4e:55:b6:c6:90:65:a8:f9:a7:c2:73: 6f:fd:ff:1b:fc:fc:0c:cd:f2:26:a0:8f:eb:51:df: 26:c2:82:ad:08:f2:da:4e:a1:7a:19:9d:9f:78:f5: 06:ed:48:03:e2:2d:e6:95:18:bb:03:47:88:e4:f1: b3:9b:b4:fc:ee:98:13:0c:2e:53:f7:77:3d:f1:92: 3d:fa:1b:f1:2c:ca:0b:23:28:a7:2b:a2:e8:57:43: be:a1:2e:4b:48:17:0e:03:c2:1f:83:36:db:92:27: 3b:cf:45:0e:ba:b1:f5:6c:ad:37:0f:a5:69:e9:b9: 95:ab:c8:83:44:80:99:ef:10:3e:cd:79:cc:b5:bd: 6c:93:2c:8d:e9:fc:02:9f:7c:30:87:19:db:c1:72: 8f:de:f1:1c:1c:cb:4a:70:52:b1:14:15:47:e9:23: fb:96:fa:4a:a9:fc:1c:29:9a:13:02:04:fe:1c:f8: d5:7c:71:59:bf:5d:57:dc:5c:92:3c:52:fc:eb:31: d1:a1:3a:94:74:2a:e9:32:d5:dc:06:2e:cb:fb:79: de:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:4B:37:7B:81:50:53:5C:EA:D6:3B:DC:6C:C2:7C:C4:F5:3E:9C:4C X509v3 Authority Key Identifier: keyid:B5:8D:29:F7:B8:10:7F:15:85:B5:FF:E7:0C:50:2C:6C:8F:5D:33:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tY0p97gQfxWFtf_nDFAsbI9dMwI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:cc:0f:93:86:a8:c4:04:39:57:d6:35:58:f6:bc:2c:ae:8d: d3:34:d5:1a:4f:ce:56:b3:47:82:ec:6b:32:0e:55:7e:ff:49: 2e:e6:25:27:4d:25:3d:3a:03:06:7f:4a:0e:27:a9:6b:e3:69: 20:46:ef:52:04:5e:a6:fc:03:a4:70:fe:24:a0:f1:1d:e6:b7: 2e:5e:8c:52:f1:18:41:04:29:59:db:67:7e:f4:98:65:14:0e: ff:b7:f3:0f:ca:f3:ac:2f:32:74:09:19:66:07:44:84:32:e3: 40:18:bc:c4:0a:99:dd:7a:1f:f0:dd:1d:3c:c1:62:80:ba:69: 21:ea:5a:dd:e1:8d:d7:1d:54:b9:32:47:f3:30:8f:66:78:c8: 96:4d:f4:bd:03:85:38:b0:cf:f8:fd:67:ca:66:40:f4:d1:02: ba:77:80:56:35:a0:a1:b0:e6:4c:5f:a4:3b:fb:84:58:4c:79: 37:bf:4e:e9:df:0b:55:cf:39:be:39:db:62:45:fb:cd:b7:fe: b7:fa:03:45:73:e5:49:64:0d:b9:c1:64:e1:79:69:aa:4f:1e: 15:86:a2:a8:be:6f:5f:2f:97:32:78:31:69:70:5d:28:1e:87: de:1e:01:d9:ee:dc:49:a9:77:63:e8:26:3f:8d:77:79:2f:3f: 74:b6:08:ec -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCP8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjNDQTQxMTAvBgNVBAUTKEI1OEQyOUY3QjgxMDdGMTU4NUI1RkZFNzBDNTAyQzZD OEY1RDMzMDIwHhcNMjYwMzMwMjAyMTEwWhcNMjYwNDA2MjAyMTEwWjAYMRYwFAYD VQQDEw02OWNhZGIzNi1hNjlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvfAEsAgaF4uD/LrqG0THk56oWOJ05i/XAq0N5SIQqms/Rl87fJxCTWVbHPRk ojWrTlW2xpBlqPmnwnNv/f8b/PwMzfImoI/rUd8mwoKtCPLaTqF6GZ2fePUG7UgD 4i3mlRi7A0eI5PGzm7T87pgTDC5T93c98ZI9+hvxLMoLIyinK6LoV0O+oS5LSBcO A8Ifgzbbkic7z0UOurH1bK03D6Vp6bmVq8iDRICZ7xA+zXnMtb1skyyN6fwCn3ww hxnbwXKP3vEcHMtKcFKxFBVH6SP7lvpKqfwcKZoTAgT+HPjVfHFZv11X3FySPFL8 6zHRoTqUdCrpMtXcBi7L+3newwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFM5LN3uB UFNc6tY73GzCfMT1PpxMMB8GA1UdIwQYMBaAFLWNKfe4EH8VhbX/5wxQLGyPXTMC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCM0NBNC8xNUY2OEI1Q0NG MTkxMUVBQUVGNjBCMUVDNEY5QUUwMi90WTBwOTdnUWZ4V0Z0Zl9uREZBc2JJOWRN d0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RZMHA5N2dRZnhXRnRmX25ERkFzYkk5ZE13SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC M0NBNC8xNUY2OEI1Q0NGMTkxMUVBQUVGNjBCMUVDNEY5QUUwMi90WTBwOTdnUWZ4 V0Z0Zl9uREZBc2JJOWRNd0kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAJ8wPk4aoxAQ5V9Y1WPa8LK6N0zTVGk/OVrNHguxrMg5Vfv9JLuYlJ00lPToD Bn9KDiepa+NpIEbvUgRepvwDpHD+JKDxHea3Ll6MUvEYQQQpWdtnfvSYZRQO/7fz D8rzrC8ydAkZZgdEhDLjQBi8xAqZ3Xof8N0dPMFigLppIepa3eGN1x1UuTJH8zCP ZnjIlk30vQOFOLDP+P1nymZA9NECuneAVjWgobDmTF+kO/uEWEx5N79O6d8LVc85 vjnbYkX7zbf+t/oDRXPlSWQNucFk4Xlpqk8eFYaiqL5vXy+XMngxaXBdKB6H3h4B 2e7cSal3Y+gmP413eS8/dLYI7A== -----END CERTIFICATE-----Generated at Tue Mar 31 00:00:36 2026 by rpki-client