$ rpki-client -vvf rpki.apnic.net/member_repository/A91C31B7/F2A5732E1E6B11EFAC0E914EC4F9AE02/TDOcq_yApfQZ3zPfsGiFwcNIiy0.mft File: TDOcq_yApfQZ3zPfsGiFwcNIiy0.mft (raw, json) Hash identifier: TMcKeM8rGwnttl+whU4pNUTjETKTICWxPb5UCAAfilI= Subject key identifier: 68:C8:48:BB:22:45:18:56:B5:F8:2A:FB:03:75:BB:E8:9A:38:91:D9 Authority key identifier: 4C:33:9C:AB:FC:80:A5:F4:19:DF:33:DF:B0:68:85:C1:C3:48:8B:2D Certificate issuer: /CN=A91C31B7/serialNumber=4C339CABFC80A5F419DF33DFB06885C1C3488B2D Certificate serial: 0170 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TDOcq_yApfQZ3zPfsGiFwcNIiy0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C31B7/F2A5732E1E6B11EFAC0E914EC4F9AE02/TDOcq_yApfQZ3zPfsGiFwcNIiy0.mft Manifest number: 0166 Signing time: Fri 17 Apr 2026 04:35:03 +0000 Manifest this update: Fri 17 Apr 2026 04:35:02 +0000 Manifest next update: Fri 24 Apr 2026 04:35:02 +0000 Files and hashes: 1: TDOcq_yApfQZ3zPfsGiFwcNIiy0.crl (hash: coo0/Z5iu+3eOgJS+KiNgERuz7ur8thfOMccNSKLjUI=) 2: 1FC3B0DE1E6F11EFB392D937C4F9AE02.roa (hash: l3+VnONZP7m8JwaUiP43A2WyQeN+GHf1Ta3Z96yt358=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C31B7/F2A5732E1E6B11EFAC0E914EC4F9AE02/TDOcq_yApfQZ3zPfsGiFwcNIiy0.crl rsync://rpki.apnic.net/member_repository/A91C31B7/F2A5732E1E6B11EFAC0E914EC4F9AE02/TDOcq_yApfQZ3zPfsGiFwcNIiy0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TDOcq_yApfQZ3zPfsGiFwcNIiy0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 04:35:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 368 (0x170) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C31B7, serialNumber=4C339CABFC80A5F419DF33DFB06885C1C3488B2D Validity Not Before: Apr 17 04:35:02 2026 GMT Not After : Apr 24 04:35:02 2026 GMT Subject: CN=69e1b877-5aa6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:91:0e:4d:b7:20:55:b7:2a:ef:c0:e8:99:a1: 62:76:39:c6:37:2e:3b:82:37:f7:fd:48:c1:98:e4: 5b:3f:af:d6:b1:e7:40:dd:1c:71:3a:e7:b2:85:28: b4:48:5e:9b:c2:56:a5:4c:0b:92:be:7c:ee:31:c0: 5f:c2:b0:fa:74:0d:59:01:7b:77:eb:db:31:a2:ee: 19:0b:5a:e0:06:29:ce:49:72:7a:e4:fc:5f:cd:cb: 8d:64:d9:71:66:4c:ec:05:80:db:f4:7c:5c:e2:64: c8:ec:1c:cc:ca:99:3c:04:01:31:31:3a:bf:f1:1f: 43:d9:78:35:f6:eb:b9:a2:29:61:da:45:c4:2c:7c: ef:ae:2c:8c:45:f6:8b:de:97:42:54:d4:90:f5:5b: 44:a8:9d:21:81:6f:46:b9:ae:23:71:ca:a8:7f:fd: bb:63:fa:0a:a9:6d:07:8e:95:57:50:bb:54:07:97: 5e:e6:f1:cf:f5:3d:1b:cf:0f:92:3a:0e:a5:ec:55: c3:8e:c9:00:6b:fd:6e:8f:7a:7c:1d:b5:6b:68:f2: cf:52:6b:59:23:02:1d:a3:29:6c:a0:db:58:2e:ba: 7c:c0:41:15:e5:61:e8:f6:06:27:ff:8f:19:f8:0a: e7:7b:21:9e:28:f9:8d:cd:02:0d:2c:9c:25:cc:27: a8:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:C8:48:BB:22:45:18:56:B5:F8:2A:FB:03:75:BB:E8:9A:38:91:D9 X509v3 Authority Key Identifier: keyid:4C:33:9C:AB:FC:80:A5:F4:19:DF:33:DF:B0:68:85:C1:C3:48:8B:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C31B7/F2A5732E1E6B11EFAC0E914EC4F9AE02/TDOcq_yApfQZ3zPfsGiFwcNIiy0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TDOcq_yApfQZ3zPfsGiFwcNIiy0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C31B7/F2A5732E1E6B11EFAC0E914EC4F9AE02/TDOcq_yApfQZ3zPfsGiFwcNIiy0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:78:8a:2c:a3:a6:aa:3a:1a:a0:37:85:68:c6:b8:4c:ab:e1: f7:43:70:82:45:04:73:63:04:52:c4:34:76:df:2c:eb:27:2c: 0a:1d:00:98:7f:9a:44:39:65:e5:bf:c4:91:1c:4f:15:11:a6: 98:82:58:1a:0b:fd:a6:ce:83:d3:20:74:b3:5a:1c:2e:27:1a: ad:0d:ca:13:68:2f:e2:1e:1c:f4:ba:7a:6a:13:05:63:56:d7: 48:3f:d4:e8:bd:8a:49:8f:2c:28:ed:11:55:23:d7:df:5e:b9: 8f:ea:40:90:e7:ed:5e:5b:a9:61:67:40:a4:c9:93:7c:98:e7: e6:b1:b0:80:e7:3c:f6:bb:21:50:3f:2d:4d:ea:76:8d:e3:f5: 8d:61:41:ec:dc:f4:a0:62:dc:47:a0:38:a7:43:67:14:4c:9c: af:f7:a6:dc:eb:e3:1d:ba:db:1b:21:21:55:da:2c:18:b7:89: 90:a4:98:cd:73:21:26:41:90:47:02:92:68:42:af:e4:33:9b: bb:a1:b5:44:46:81:12:5c:8e:76:6d:82:54:aa:99:ca:8c:77: ce:ac:19:5c:fd:c3:d3:d3:fa:b8:4d:4f:e5:1b:22:1a:d5:54: 89:cb:63:43:fb:af:f1:f3:0e:fe:ac:01:34:c9:93:99:dc:b2: c7:7a:7b:49 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAXAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzMxQjcxMTAvBgNVBAUTKDRDMzM5Q0FCRkM4MEE1RjQxOURGMzNERkIwNjg4NUMx QzM0ODhCMkQwHhcNMjYwNDE3MDQzNTAyWhcNMjYwNDI0MDQzNTAyWjAYMRYwFAYD VQQDEw02OWUxYjg3Ny01YWE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu5EOTbcgVbcq78DomaFidjnGNy47gjf3/UjBmORbP6/WsedA3RxxOueyhSi0 SF6bwlalTAuSvnzuMcBfwrD6dA1ZAXt369sxou4ZC1rgBinOSXJ65PxfzcuNZNlx ZkzsBYDb9Hxc4mTI7BzMypk8BAExMTq/8R9D2Xg19uu5oilh2kXELHzvriyMRfaL 3pdCVNSQ9VtEqJ0hgW9Gua4jccqof/27Y/oKqW0HjpVXULtUB5de5vHP9T0bzw+S Og6l7FXDjskAa/1uj3p8HbVraPLPUmtZIwIdoylsoNtYLrp8wEEV5WHo9gYn/48Z +ArneyGeKPmNzQINLJwlzCeoKQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGjISLsi RRhWtfgq+wN1u+iaOJHZMB8GA1UdIwQYMBaAFEwznKv8gKX0Gd8z37BohcHDSIst MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMzFCNy9GMkE1NzMyRTFF NkIxMUVGQUMwRTkxNEVDNEY5QUUwMi9URE9jcV95QXBmUVozelBmc0dpRndjTklp eTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1RET2NxX3lBcGZRWjN6UGZzR2lGd2NOSWl5MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MzFCNy9GMkE1NzMyRTFFNkIxMUVGQUMwRTkxNEVDNEY5QUUwMi9URE9jcV95QXBm UVozelBmc0dpRndjTklpeTAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEArHiKLKOmqjoaoDeFaMa4TKvh90NwgkUEc2MEUsQ0dt8s6ycsCh0AmH+aRDll 5b/EkRxPFRGmmIJYGgv9ps6D0yB0s1ocLicarQ3KE2gv4h4c9Lp6ahMFY1bXSD/U 6L2KSY8sKO0RVSPX3165j+pAkOftXlupYWdApMmTfJjn5rGwgOc89rshUD8tTep2 jeP1jWFB7Nz0oGLcR6A4p0NnFEycr/em3OvjHbrbGyEhVdosGLeJkKSYzXMhJkGQ RwKSaEKv5DObu6G1REaBElyOdm2CVKqZyox3zqwZXP3D09P6uE1P5RsiGtVUictj Q/uv8fMO/qwBNMmTmdyyx3p7SQ== -----END CERTIFICATE-----Generated at Sat Apr 18 21:05:40 2026 by rpki-client