$ rpki-client -vvf rpki.apnic.net/member_repository/A91C32D9/64DF132C001111F1AB27ED80406F56BC/T0h-_rfHeWiBVy2X1iVPot21qHw.mft File: T0h-_rfHeWiBVy2X1iVPot21qHw.mft (raw, json) Hash identifier: 4EIzJNWrCtT9zQ9ksqBTLsw9HEhi+NlajcLUeqwrzuY= Subject key identifier: 19:F5:4E:06:87:E2:47:CB:7F:EE:A4:30:68:90:DB:DF:C9:06:50:B4 Authority key identifier: 4F:48:7E:FE:B7:C7:79:68:81:57:2D:97:D6:25:4F:A2:DD:B5:A8:7C Certificate issuer: /CN=A91C32D9/serialNumber=4F487EFEB7C7796881572D97D6254FA2DDB5A87C Certificate serial: 22 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T0h-_rfHeWiBVy2X1iVPot21qHw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C32D9/64DF132C001111F1AB27ED80406F56BC/T0h-_rfHeWiBVy2X1iVPot21qHw.mft Manifest number: 20 Signing time: Sun 29 Mar 2026 08:32:00 +0000 Manifest this update: Sun 29 Mar 2026 08:31:59 +0000 Manifest next update: Sun 05 Apr 2026 08:31:59 +0000 Files and hashes: 1: T0h-_rfHeWiBVy2X1iVPot21qHw.crl (hash: HiH/yY+MVat+NZIjcb2z27iH2KlW+XXFGK+QGGNG8b4=) 2: 9DD3FFC6001111F18C67D2A9406F56BC.roa (hash: l4S9gMbXi+gUDu4apCdlLMULJuB61B4wV3lZ30Od2K0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C32D9/64DF132C001111F1AB27ED80406F56BC/T0h-_rfHeWiBVy2X1iVPot21qHw.crl rsync://rpki.apnic.net/member_repository/A91C32D9/64DF132C001111F1AB27ED80406F56BC/T0h-_rfHeWiBVy2X1iVPot21qHw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T0h-_rfHeWiBVy2X1iVPot21qHw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 Apr 2026 08:31:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34 (0x22) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C32D9, serialNumber=4F487EFEB7C7796881572D97D6254FA2DDB5A87C Validity Not Before: Mar 29 08:31:59 2026 GMT Not After : Apr 5 08:31:59 2026 GMT Subject: CN=69c8e37f-9a51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:bf:3d:e1:ba:78:dc:6b:ec:e6:4f:c1:fc:33: 5d:f2:64:27:da:0e:6a:bb:55:2d:7a:e0:6a:9f:3d: a1:8a:c7:3f:dd:c2:e7:46:6b:57:16:60:83:18:0c: d4:55:4c:61:eb:6f:9c:85:51:c7:d4:16:bf:07:34: 23:1e:43:55:72:c1:8c:90:25:99:49:b9:93:28:c4: 8e:74:05:34:ff:51:0e:3e:f9:4c:f6:75:2d:9c:f5: 64:10:54:3d:0e:ba:2c:26:c8:80:e0:0a:c5:42:70: 3e:b9:5f:f6:5a:18:99:8f:9a:fe:77:b8:0a:73:3c: b2:db:9d:b4:38:ba:5c:ba:5e:0f:f0:2a:57:1a:31: 5c:03:1f:cd:7d:bb:a4:df:7a:d9:32:a1:20:91:b5: 5e:6a:5d:54:0c:2d:2f:09:7d:a9:7a:55:ea:17:ac: 0e:13:60:23:f5:73:11:b6:c7:15:c3:f3:0b:00:dd: 6b:ee:33:20:b5:22:d6:46:f1:58:75:f8:7f:14:5d: 56:2d:05:53:66:5f:37:eb:1c:60:54:7c:c4:22:2b: a0:e0:1d:78:75:92:05:51:8b:6a:30:f4:95:b3:82: d9:ef:1c:c5:61:80:3e:76:14:7b:85:78:93:98:89: e3:f2:df:48:59:7c:43:a5:8c:e9:9a:ed:1a:e2:e6: cd:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:F5:4E:06:87:E2:47:CB:7F:EE:A4:30:68:90:DB:DF:C9:06:50:B4 X509v3 Authority Key Identifier: keyid:4F:48:7E:FE:B7:C7:79:68:81:57:2D:97:D6:25:4F:A2:DD:B5:A8:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C32D9/64DF132C001111F1AB27ED80406F56BC/T0h-_rfHeWiBVy2X1iVPot21qHw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T0h-_rfHeWiBVy2X1iVPot21qHw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C32D9/64DF132C001111F1AB27ED80406F56BC/T0h-_rfHeWiBVy2X1iVPot21qHw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:ec:fb:0b:33:d5:79:75:e0:52:23:ed:a7:2e:1d:e3:b3:98: 43:4b:d4:92:6f:db:b5:8e:9f:8c:ac:29:c5:26:dc:f7:2e:d2: ba:6d:37:11:8c:4d:ee:5f:f4:25:b3:88:a3:2e:eb:0b:a8:e5: c0:be:ac:f8:58:dd:77:ba:ac:dd:b5:0c:d8:32:26:a0:eb:82: 7b:bb:d3:18:96:32:e1:13:d4:be:01:81:85:11:68:c4:85:e3: 82:9a:f5:ce:f2:53:de:02:2e:7b:e1:a2:fa:47:eb:55:1b:1f: 9d:68:1c:3a:50:34:47:01:89:6f:91:96:10:62:f0:d4:9c:8c: d3:cd:64:c0:fc:12:b7:ff:c0:a1:56:36:e6:b0:fd:a4:df:4b: 50:99:45:4e:7a:d4:d3:46:5d:58:dd:3b:75:d9:2b:63:e0:e1: 6e:05:4f:a3:58:ef:a5:b4:ad:48:e9:f2:5d:e8:a0:e3:03:6f: e5:08:a5:88:e0:75:df:98:50:80:70:df:dd:d5:e1:ba:57:07: 7c:e8:ee:f0:64:b1:0e:48:19:74:24:2c:30:eb:cd:1a:5a:15: 4a:72:ef:3a:89:e1:f8:63:99:fd:96:d4:a3:4b:1b:b5:98:53: 1b:ed:ec:f9:d8:dc:16:70:4c:13:ca:b8:aa:9b:f1:77:28:99: 07:05:14:33 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBIjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD MzJEOTExMC8GA1UEBRMoNEY0ODdFRkVCN0M3Nzk2ODgxNTcyRDk3RDYyNTRGQTJE REI1QTg3QzAeFw0yNjAzMjkwODMxNTlaFw0yNjA0MDUwODMxNTlaMBgxFjAUBgNV BAMTDTY5YzhlMzdmLTlhNTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDCvz3hunjca+zmT8H8M13yZCfaDmq7VS164GqfPaGKxz/dwudGa1cWYIMYDNRV TGHrb5yFUcfUFr8HNCMeQ1VywYyQJZlJuZMoxI50BTT/UQ4++Uz2dS2c9WQQVD0O uiwmyIDgCsVCcD65X/ZaGJmPmv53uApzPLLbnbQ4uly6Xg/wKlcaMVwDH819u6Tf etkyoSCRtV5qXVQMLS8Jfal6VeoXrA4TYCP1cxG2xxXD8wsA3WvuMyC1ItZG8Vh1 +H8UXVYtBVNmXzfrHGBUfMQiK6DgHXh1kgVRi2ow9JWzgtnvHMVhgD52FHuFeJOY iePy30hZfEOljOma7Rri5s2PAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUGfVOBofi R8t/7qQwaJDb38kGULQwHwYDVR0jBBgwFoAUT0h+/rfHeWiBVy2X1iVPot21qHww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMzMkQ5LzY0REYxMzJDMDAx MTExRjFBQjI3RUQ4MDQwNkY1NkJDL1QwaC1fcmZIZVdpQlZ5MlgxaVZQb3QyMXFI dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVDBoLV9yZkhlV2lCVnkyWDFpVlBvdDIxcUh3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMz MkQ5LzY0REYxMzJDMDAxMTExRjFBQjI3RUQ4MDQwNkY1NkJDL1QwaC1fcmZIZVdp QlZ5MlgxaVZQb3QyMXFIdy5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQA/7PsLM9V5deBSI+2nLh3js5hDS9SSb9u1jp+MrCnFJtz3LtK6bTcRjE3uX/Ql s4ijLusLqOXAvqz4WN13uqzdtQzYMiag64J7u9MYljLhE9S+AYGFEWjEheOCmvXO 8lPeAi574aL6R+tVGx+daBw6UDRHAYlvkZYQYvDUnIzTzWTA/BK3/8ChVjbmsP2k 30tQmUVOetTTRl1Y3Tt12Stj4OFuBU+jWO+ltK1I6fJd6KDjA2/lCKWI4HXfmFCA cN/d1eG6Vwd86O7wZLEOSBl0JCww680aWhVKcu86ieH4Y5n9ltSjSxu1mFMb7ez5 2NwWcEwTyriqm/F3KJkHBRQz -----END CERTIFICATE-----Generated at Mon Mar 30 13:16:26 2026 by rpki-client