$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.mft File: TK4677Gsir3bmbzO5PpakW0VezQ.mft (raw, json) Hash identifier: kwovHtIdU6N+DTRXBDiy5aSgh8DKuGOT+HmXINuMvQE= Subject key identifier: 27:E4:69:B8:F0:78:30:C5:8E:EC:61:47:6C:B7:84:08:27:3E:3B:CF Authority key identifier: 4C:AE:3A:EF:B1:AC:8A:BD:DB:99:BC:CE:E4:FA:5A:91:6D:15:7B:34 Certificate issuer: /CN=A91B5D7E/serialNumber=4CAE3AEFB1AC8ABDDB99BCCEE4FA5A916D157B34 Certificate serial: 371C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.mft Manifest number: 3609 Signing time: Sun 26 Apr 2026 14:29:22 +0000 Manifest this update: Sun 26 Apr 2026 14:29:22 +0000 Manifest next update: Sun 03 May 2026 14:29:22 +0000 Files and hashes: 1: TK4677Gsir3bmbzO5PpakW0VezQ.crl (hash: Hg3q3QsiojwPlxe+33M152T8ekVU7yviKAPotJxx+rQ=) 2: 8FF00754732F11EE90078C13C4F9AE02.roa (hash: YKihQA85OZGMIoxiktXscM0JZAAS7N+DfWFx0LMvOUU=) 3: 0C51883C12E711F183ACC54E0D3D8C67.roa (hash: 3LThCkSD3CixkviqNHz0V+phveOJEdStCjidpGP40/s=) 4: 945922AECEBA11EDBBFD9E28C4F9AE02.roa (hash: mwJTu9ubLJ5CecmwYFCQ6y7GrlQ3uGcRqvbvaSw7Luw=) 5: 0FCEE1C4F76411F08B4529B5436F56BC.roa (hash: YJpZIEy71VmJgEyYXAc8PneApk2Fcyu1z7/EBcc0Dg8=) 6: 31D56A8E06C711EF9A0E1D0AC4F9AE02.roa (hash: 2Lzx/G2fSpGrGjExrZZ3r9OFOxUEm3cHovV2rhteE/0=) 7: E83E047071F111F0BBD1B63FC4F9AE02.roa (hash: IQ74hXKfS9sBj5pIuOgIRXKGZQu6lWL3dFvrJ3NA2Fw=) 8: 4DFF14DE71F211F08D45AC42C4F9AE02.roa (hash: RV3R+8uCKWnB9ll+ltJkxV+x3kpjR9QPpPUyngdFPaM=) 9: 24D7D74C978011EE87BB7D53C4F9AE02.roa (hash: E8tgGZnAJ0DYVToULPFkfN33B2nidUXrmWqnz+uCtOk=) 10: EB56BC4E332311F1AE890F3EB7833773.roa (hash: KqYOqvSsGfe9/YuOAMOQ7xZCaedOl3C9H94v5PQH6VA=) 11: 8FD552C071F111F0AE49323FC4F9AE02.roa (hash: 9irr6mRRCa6Oo6K8I9PdRq3pgeAMalaJw+pxtHcISBU=) 12: 77D96D4A4F3411EFBA0A2659C4F9AE02.roa (hash: yyOi/VAw5sRVCQX5TpgvFtNkRFTz06wlp/omi2nfwPw=) 13: D166652A072211EF9AC24D5BC4F9AE02.roa (hash: zxbZTAwiDX/b2GO6W1+ev4fZzno5bblpI3qcle69OTA=) 14: 4DC27210558111EF880A8679C4F9AE02.roa (hash: CxrN5BIIQrkUc76Mjxuam5mtgMFBui6ZyXEwqKxcF3s=) 15: D630A6B206D511EFB6CFDF2DC4F9AE02.roa (hash: j7NSyaGCsiCQNnmyTpDrtH8dk6MerGuTvymGLl12qTI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.crl rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 03 May 2026 14:29:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14108 (0x371c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5D7E, serialNumber=4CAE3AEFB1AC8ABDDB99BCCEE4FA5A916D157B34 Validity Not Before: Apr 26 14:29:22 2026 GMT Not After : May 3 14:29:22 2026 GMT Subject: CN=69ee2142-8020 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:81:af:88:d2:02:02:0d:97:70:2f:28:ff:d1: 20:74:b5:60:b8:14:6d:5f:e4:e7:c3:a9:b7:73:2e: a0:c3:00:df:4c:19:c9:ef:50:62:4d:1c:c7:4c:b3: c7:19:9c:89:1d:12:fd:ba:94:c7:91:4a:82:69:d6: 4d:b3:64:17:f8:c9:30:6c:a1:1b:94:37:5f:9a:70: 43:ba:29:1e:4b:80:f1:30:38:47:37:94:c1:8f:7b: b6:18:58:91:c1:09:e5:03:cc:f6:32:16:8f:c7:3f: 4b:1f:a6:9d:46:e1:36:99:96:e8:05:5c:1c:20:00: bc:e5:72:9e:38:0b:51:21:91:13:88:71:4b:51:6d: f4:d2:fc:a6:ac:be:06:17:c3:b0:9d:15:32:33:bc: f1:84:a3:74:03:d8:ce:a7:32:2f:ac:c9:80:c9:ea: a5:9b:b5:33:6a:5d:07:96:49:af:8c:c5:7a:83:65: f9:7c:ee:32:e4:b9:6b:0b:b9:f4:11:fc:2f:d1:49: dc:5e:12:2f:fc:74:d1:a2:7b:b9:f7:e1:3b:4d:ac: ef:23:41:6e:ad:2d:e0:d0:ac:b0:f6:46:db:18:76: 66:c1:27:d6:f3:32:89:a0:cf:73:f5:6e:da:e1:44: 19:15:af:8d:d0:b0:87:02:9c:00:67:35:1a:78:4d: e8:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:E4:69:B8:F0:78:30:C5:8E:EC:61:47:6C:B7:84:08:27:3E:3B:CF X509v3 Authority Key Identifier: keyid:4C:AE:3A:EF:B1:AC:8A:BD:DB:99:BC:CE:E4:FA:5A:91:6D:15:7B:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:0f:07:d2:6a:cf:9b:dc:90:3a:36:c2:d5:ee:a0:8a:3f:9f: 93:cd:f1:b7:33:d7:0b:57:56:38:0c:75:e6:11:bf:2c:72:ed: ea:3a:85:3f:dc:9f:73:eb:a1:2e:c7:58:f4:e9:4f:31:70:1f: 13:98:d0:f9:3d:ae:a8:52:ca:90:aa:6f:e9:27:df:05:53:2f: 70:89:6c:76:70:3e:fb:3b:37:1a:d4:3a:25:2c:7e:09:08:c1: db:cf:d9:53:18:e0:e4:73:bf:b1:73:2a:b9:80:9d:66:2a:7e: a8:0d:ac:db:ed:2c:9e:c5:31:9b:33:5e:49:ac:b8:bd:44:50: 21:1b:d0:2a:4a:5f:cc:73:b3:dd:4f:f8:9f:68:fd:74:af:d0: 8f:39:f1:88:a8:40:1f:0e:48:cf:51:0e:2f:3d:3c:65:81:be: 60:4b:67:2d:40:b3:f0:d7:a2:28:17:46:d7:7f:e4:da:95:39: 11:68:7d:e1:ea:8e:1b:09:46:8e:ae:44:f1:db:a1:b0:c0:7c: 2c:89:27:db:f3:a4:b2:c7:6c:e6:03:2b:f7:b1:0a:09:d2:f9: aa:ae:fe:a6:10:93:02:de:d0:94:06:8b:54:96:f4:93:9b:77: 53:5b:38:ae:ef:0a:7e:84:0d:3c:68:86:cd:47:ed:49:ce:7e: 5f:4c:33:fc -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNxwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVEN0UxMTAvBgNVBAUTKDRDQUUzQUVGQjFBQzhBQkREQjk5QkNDRUU0RkE1QTkx NkQxNTdCMzQwHhcNMjYwNDI2MTQyOTIyWhcNMjYwNTAzMTQyOTIyWjAYMRYwFAYD VQQDEw02OWVlMjE0Mi04MDIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyYGviNICAg2XcC8o/9EgdLVguBRtX+Tnw6m3cy6gwwDfTBnJ71BiTRzHTLPH GZyJHRL9upTHkUqCadZNs2QX+MkwbKEblDdfmnBDuikeS4DxMDhHN5TBj3u2GFiR wQnlA8z2MhaPxz9LH6adRuE2mZboBVwcIAC85XKeOAtRIZETiHFLUW300vymrL4G F8OwnRUyM7zxhKN0A9jOpzIvrMmAyeqlm7Uzal0HlkmvjMV6g2X5fO4y5LlrC7n0 Efwv0UncXhIv/HTRonu59+E7TazvI0FurS3g0Kyw9kbbGHZmwSfW8zKJoM9z9W7a 4UQZFa+N0LCHApwAZzUaeE3o6QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCfkabjw eDDFjuxhR2y3hAgnPjvPMB8GA1UdIwQYMBaAFEyuOu+xrIq925m8zuT6WpFtFXs0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUQ3RS9FQ0E2ODIzNDFE ODcxMUUyOTgzMjJERTAwOEIwMkNEMi9USzQ2NzdHc2lyM2JtYnpPNVBwYWtXMFZl elEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RLNDY3N0dzaXIzYm1iek81UHBha1cwVmV6US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NUQ3RS9FQ0E2ODIzNDFEODcxMUUyOTgzMjJERTAwOEIwMkNEMi9USzQ2NzdHc2ly M2JtYnpPNVBwYWtXMFZlelEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAcA8H0mrPm9yQOjbC1e6gij+fk83xtzPXC1dWOAx15hG/LHLt6jqFP9yfc+uh LsdY9OlPMXAfE5jQ+T2uqFLKkKpv6SffBVMvcIlsdnA++zs3GtQ6JSx+CQjB28/Z Uxjg5HO/sXMquYCdZip+qA2s2+0snsUxmzNeSay4vURQIRvQKkpfzHOz3U/4n2j9 dK/QjznxiKhAHw5Iz1EOLz08ZYG+YEtnLUCz8NeiKBdG13/k2pU5EWh94eqOGwlG jq5E8duhsMB8LIkn2/Okssds5gMr97EKCdL5qq7+phCTAt7QlAaLVJb0k5t3U1s4 ru8KfoQNPGiGzUftSc5+X0wz/A== -----END CERTIFICATE-----Generated at Tue Apr 28 04:15:55 2026 by rpki-client