$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0CD5/CD2B4B441D0B11EE87048A4CC4F9AE02/TH2sISA9rkFsH87q_FVlcgIiCKE.mft File: TH2sISA9rkFsH87q_FVlcgIiCKE.mft (raw, json) Hash identifier: ESs2GNthOxxXTI4rwP+lQRKpOjlH+p0peW3Bq+yJXH4= Subject key identifier: 7D:C9:52:91:A7:F9:88:CA:26:82:E5:FC:1A:DE:71:60:07:F1:22:C4 Authority key identifier: 4C:7D:AC:21:20:3D:AE:41:6C:1F:CE:EA:FC:55:65:72:02:22:08:A1 Certificate issuer: /CN=A91C0CD5/serialNumber=4C7DAC21203DAE416C1FCEEAFC556572022208A1 Certificate serial: 021B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TH2sISA9rkFsH87q_FVlcgIiCKE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0CD5/CD2B4B441D0B11EE87048A4CC4F9AE02/TH2sISA9rkFsH87q_FVlcgIiCKE.mft Manifest number: 0210 Signing time: Sun 05 Apr 2026 02:35:54 +0000 Manifest this update: Sun 05 Apr 2026 02:35:53 +0000 Manifest next update: Sun 12 Apr 2026 02:35:53 +0000 Files and hashes: 1: TH2sISA9rkFsH87q_FVlcgIiCKE.crl (hash: Q4hW16utdWWwEWnd4xXw7h4+Z9c6tZyEQ2yDNRTr4sg=) 2: 6EB972341D6011EEB28A4323C4F9AE02.roa (hash: Z4KCS8pqQW+6GdcUPkPrmcDRtL0IMSdenxwSxo9PlTw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0CD5/CD2B4B441D0B11EE87048A4CC4F9AE02/TH2sISA9rkFsH87q_FVlcgIiCKE.crl rsync://rpki.apnic.net/member_repository/A91C0CD5/CD2B4B441D0B11EE87048A4CC4F9AE02/TH2sISA9rkFsH87q_FVlcgIiCKE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TH2sISA9rkFsH87q_FVlcgIiCKE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 02:35:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 539 (0x21b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0CD5, serialNumber=4C7DAC21203DAE416C1FCEEAFC556572022208A1 Validity Not Before: Apr 5 02:35:53 2026 GMT Not After : Apr 12 02:35:53 2026 GMT Subject: CN=69d1ca8a-e0ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:bb:30:ac:50:7f:a9:4d:38:09:d2:c9:96:f4: 15:af:08:66:7a:fa:60:10:07:ad:4b:5d:61:8e:1a: b7:31:d5:78:f8:10:2a:47:0b:9e:33:8c:9a:31:99: 9d:33:0d:47:b8:c4:f1:34:16:1f:75:35:b0:34:21: 54:31:e3:0b:d5:8b:da:97:d2:fe:50:28:02:96:9f: cc:1e:9f:67:18:22:64:c8:a4:de:85:8c:05:3b:50: b7:f2:0e:7c:f0:92:bb:eb:a7:b0:cb:3f:65:95:18: 3a:07:01:c7:a8:22:9c:84:76:e7:3b:29:a2:63:7f: a0:b4:5a:2f:3e:2b:da:ea:58:6d:b3:10:ab:2c:11: e5:d0:4a:e4:b7:fa:9f:74:fe:d2:da:8e:f8:52:16: b2:43:8b:3c:6f:fa:01:96:51:fd:c2:33:dc:11:4f: 45:53:8d:83:4f:e6:23:e0:63:a9:2c:09:f0:f7:ae: 24:84:d4:14:f8:a6:80:d2:f9:48:ab:56:18:b0:7f: 6d:57:52:89:8b:04:ef:de:f5:5d:b9:e6:2c:1e:d2: d1:b1:e5:34:c7:c0:7f:f7:2f:c6:50:3c:41:44:7c: bb:47:b9:75:d2:85:0e:0d:0d:32:6e:4b:ce:9c:e3: df:bf:19:8c:c2:86:e2:e4:97:99:f2:8f:07:16:99: 26:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:C9:52:91:A7:F9:88:CA:26:82:E5:FC:1A:DE:71:60:07:F1:22:C4 X509v3 Authority Key Identifier: keyid:4C:7D:AC:21:20:3D:AE:41:6C:1F:CE:EA:FC:55:65:72:02:22:08:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0CD5/CD2B4B441D0B11EE87048A4CC4F9AE02/TH2sISA9rkFsH87q_FVlcgIiCKE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TH2sISA9rkFsH87q_FVlcgIiCKE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0CD5/CD2B4B441D0B11EE87048A4CC4F9AE02/TH2sISA9rkFsH87q_FVlcgIiCKE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:10:d1:f3:8a:d7:14:67:43:fc:e7:c2:a6:6f:63:cc:5d:08: b8:e2:d7:6c:12:d1:96:f7:ad:fe:68:5d:a2:80:f2:50:9e:b3: 38:2a:3f:80:6d:c8:49:85:b2:a2:d4:c9:f1:d8:98:70:ab:56: a2:0d:9f:06:ec:59:ff:42:a8:09:c0:b8:67:2e:91:91:a1:e7: 88:24:3c:df:5d:06:92:60:b3:ea:c3:ba:e1:49:58:20:fc:df: f8:12:ff:28:25:34:28:b6:23:00:f8:b5:b4:0f:a2:8e:43:a4: b4:1a:6f:e6:d4:51:5f:ff:bc:a0:b2:8c:de:b1:c7:9e:01:9a: 9c:4c:6e:e6:43:cc:0b:1a:01:62:2a:51:75:b4:55:81:3d:c8: 6d:d0:17:19:8b:54:08:aa:38:4a:07:cf:1d:10:54:17:db:c5: 4a:7a:10:c1:a4:7f:23:b3:cb:1a:f9:35:af:23:f6:78:e1:87: a3:37:6b:fe:a1:ce:3b:d3:53:63:2b:e9:1d:3b:4e:6f:98:38: e8:48:5c:00:22:11:e0:2a:3c:2b:e7:89:ed:af:61:7d:a5:05: f6:55:b7:67:f9:f6:fd:d9:0f:ce:2e:95:75:b9:01:cf:f8:0d: e0:fc:14:3b:e9:60:1e:b8:92:6b:07:38:0b:cc:81:dc:e0:bf: 51:d1:42:55 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAhswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBDRDUxMTAvBgNVBAUTKDRDN0RBQzIxMjAzREFFNDE2QzFGQ0VFQUZDNTU2NTcy MDIyMjA4QTEwHhcNMjYwNDA1MDIzNTUzWhcNMjYwNDEyMDIzNTUzWjAYMRYwFAYD VQQDEw02OWQxY2E4YS1lMGZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsLswrFB/qU04CdLJlvQVrwhmevpgEAetS11hjhq3MdV4+BAqRwueM4yaMZmd Mw1HuMTxNBYfdTWwNCFUMeML1Yval9L+UCgClp/MHp9nGCJkyKTehYwFO1C38g58 8JK766ewyz9llRg6BwHHqCKchHbnOymiY3+gtFovPiva6lhtsxCrLBHl0Erkt/qf dP7S2o74UhayQ4s8b/oBllH9wjPcEU9FU42DT+Yj4GOpLAnw964khNQU+KaA0vlI q1YYsH9tV1KJiwTv3vVdueYsHtLRseU0x8B/9y/GUDxBRHy7R7l10oUODQ0ybkvO nOPfvxmMwobi5JeZ8o8HFpkmGQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFH3JUpGn +YjKJoLl/BrecWAH8SLEMB8GA1UdIwQYMBaAFEx9rCEgPa5BbB/O6vxVZXICIgih MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMENENS9DRDJCNEI0NDFE MEIxMUVFODcwNDhBNENDNEY5QUUwMi9USDJzSVNBOXJrRnNIODdxX0ZWbGNnSWlD S0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RIMnNJU0E5cmtGc0g4N3FfRlZsY2dJaUNLRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MENENS9DRDJCNEI0NDFEMEIxMUVFODcwNDhBNENDNEY5QUUwMi9USDJzSVNBOXJr RnNIODdxX0ZWbGNnSWlDS0UubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEACxDR84rXFGdD/OfCpm9jzF0IuOLXbBLRlvet/mhdooDyUJ6zOCo/gG3ISYWy otTJ8diYcKtWog2fBuxZ/0KoCcC4Zy6RkaHniCQ8310GkmCz6sO64UlYIPzf+BL/ KCU0KLYjAPi1tA+ijkOktBpv5tRRX/+8oLKM3rHHngGanExu5kPMCxoBYipRdbRV gT3IbdAXGYtUCKo4SgfPHRBUF9vFSnoQwaR/I7PLGvk1ryP2eOGHozdr/qHOO9NT YyvpHTtOb5g46EhcACIR4Co8K+eJ7a9hfaUF9lW3Z/n2/dkPzi6VdbkBz/gN4PwU O+lgHriSawc4C8yB3OC/UdFCVQ== -----END CERTIFICATE-----Generated at Mon Apr 6 09:52:50 2026 by rpki-client