$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3037/8B8DE27E8EDC11F09880C478C4F9AE02/tkuBBCq0EWB9hgdv78nllia7iBY.mft File: tkuBBCq0EWB9hgdv78nllia7iBY.mft (raw, json) Hash identifier: 6chVjrHY2HICp9aK30MysWx7b+A6hZea64DlTwshN6Y= Subject key identifier: 53:32:2F:6E:FC:59:5D:0B:5B:A4:92:97:CE:22:E7:30:E1:E2:5A:F2 Authority key identifier: B6:4B:81:04:2A:B4:11:60:7D:86:07:6F:EF:C9:E5:96:26:BB:88:16 Certificate issuer: /CN=A91D3037/serialNumber=B64B81042AB411607D86076FEFC9E59626BB8816 Certificate serial: 77 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tkuBBCq0EWB9hgdv78nllia7iBY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3037/8B8DE27E8EDC11F09880C478C4F9AE02/tkuBBCq0EWB9hgdv78nllia7iBY.mft Manifest number: 70 Signing time: Sun 05 Apr 2026 07:14:47 +0000 Manifest this update: Sun 05 Apr 2026 07:14:46 +0000 Manifest next update: Sun 12 Apr 2026 07:14:46 +0000 Files and hashes: 1: tkuBBCq0EWB9hgdv78nllia7iBY.crl (hash: ObV09oTJ88n+mW1W1EQHtehqO1ku3rm8FGLvRYgL7nA=) 2: 0A16B10E8EE011F09A1AE72BC4F9AE02.roa (hash: oQE4lKjrb9uBnPjONyf7ZrBM9Hns2uL/UwtMTK49Mk4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3037/8B8DE27E8EDC11F09880C478C4F9AE02/tkuBBCq0EWB9hgdv78nllia7iBY.crl rsync://rpki.apnic.net/member_repository/A91D3037/8B8DE27E8EDC11F09880C478C4F9AE02/tkuBBCq0EWB9hgdv78nllia7iBY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tkuBBCq0EWB9hgdv78nllia7iBY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 07:14:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 119 (0x77) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3037, serialNumber=B64B81042AB411607D86076FEFC9E59626BB8816 Validity Not Before: Apr 5 07:14:46 2026 GMT Not After : Apr 12 07:14:46 2026 GMT Subject: CN=69d20be6-740b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:01:d6:a3:27:d5:eb:a1:be:cc:8d:f4:a9:c3: d9:24:5f:ba:86:02:e1:6c:01:78:a0:59:8f:e8:00: 8c:b2:a3:f1:bf:3b:3f:3e:1c:51:6c:5b:8d:3b:02: fd:d5:af:cc:08:51:15:e7:13:48:9b:d9:33:f4:6c: cd:6b:f7:ec:1d:c1:33:70:9e:27:86:74:7a:71:7f: d1:38:3d:b4:5a:cc:dd:34:cc:8b:93:34:47:66:fe: e4:33:8d:d2:18:f4:88:26:8e:8a:ac:96:88:3a:7e: 3e:23:18:e5:3e:10:26:4a:1a:a2:09:0f:a1:94:45: c5:25:ca:72:43:68:65:9a:46:11:c5:7c:96:89:3a: ea:56:14:44:12:91:5c:87:90:d4:62:f6:46:3c:e6: 43:49:56:3c:7f:ee:1c:e0:6a:37:1b:c9:e8:8a:b5: 65:87:0c:50:a8:dc:8a:d1:93:ad:db:ae:4c:20:b5: 54:b2:e6:3d:8b:74:f3:76:e7:94:9f:ea:cf:02:fc: ee:94:d3:1b:0f:7b:6a:23:53:d1:97:20:d4:29:0d: 61:78:22:10:b6:03:95:b0:5e:82:92:85:07:75:78: da:80:19:13:ab:c4:c7:15:32:33:18:77:d1:60:63: 6b:93:7b:40:9d:24:90:37:6f:f9:75:aa:66:43:62: 2c:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:32:2F:6E:FC:59:5D:0B:5B:A4:92:97:CE:22:E7:30:E1:E2:5A:F2 X509v3 Authority Key Identifier: keyid:B6:4B:81:04:2A:B4:11:60:7D:86:07:6F:EF:C9:E5:96:26:BB:88:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3037/8B8DE27E8EDC11F09880C478C4F9AE02/tkuBBCq0EWB9hgdv78nllia7iBY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tkuBBCq0EWB9hgdv78nllia7iBY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3037/8B8DE27E8EDC11F09880C478C4F9AE02/tkuBBCq0EWB9hgdv78nllia7iBY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:b6:af:86:da:19:cf:82:3c:04:95:25:f6:fc:b2:3b:f9:fd: 74:70:60:b7:8e:95:bc:bb:b3:ff:f4:d7:bb:b2:7f:d0:3e:84: f6:e3:e3:df:29:97:88:7c:4f:5d:cd:2d:f3:71:60:16:b7:8a: b7:de:ca:9e:0e:0b:8d:b6:f5:c2:44:98:79:05:15:d1:17:62: b5:c2:19:71:4b:0b:84:ec:d4:ed:ea:95:21:36:d4:40:39:34: d6:24:c3:f7:5a:1e:32:dd:3c:ec:e1:06:46:3f:45:ee:77:d6: 23:d1:ed:d3:f0:6e:75:be:9b:44:a3:d2:40:06:72:8f:d3:cf: 89:18:da:71:78:97:6d:de:48:27:7f:a1:00:6a:43:9b:c5:85: 00:12:27:27:a6:01:fa:25:4f:7a:9e:86:d1:b3:37:64:10:99: 30:f3:74:5a:07:a4:d5:31:4c:d8:83:7a:25:b8:c6:9e:af:04: 92:b4:5e:e6:90:04:e4:f5:6e:d8:1a:cf:e4:a2:91:ad:19:d8: 8b:72:79:a6:bb:5f:23:25:08:d0:bb:ea:1f:18:b4:19:0a:ac: 7e:6f:8a:f2:a8:9a:28:b8:28:b7:b6:dd:9d:2e:46:20:48:54: 29:a7:2e:42:3b:64:51:7b:79:a6:17:0a:a1:b8:cd:5f:1c:7a: ff:6f:7f:d2 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBdzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE MzAzNzExMC8GA1UEBRMoQjY0QjgxMDQyQUI0MTE2MDdEODYwNzZGRUZDOUU1OTYy NkJCODgxNjAeFw0yNjA0MDUwNzE0NDZaFw0yNjA0MTIwNzE0NDZaMBgxFjAUBgNV BAMTDTY5ZDIwYmU2LTc0MGIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCLAdajJ9Xrob7MjfSpw9kkX7qGAuFsAXigWY/oAIyyo/G/Oz8+HFFsW407Av3V r8wIURXnE0ib2TP0bM1r9+wdwTNwnieGdHpxf9E4PbRazN00zIuTNEdm/uQzjdIY 9Igmjoqslog6fj4jGOU+ECZKGqIJD6GURcUlynJDaGWaRhHFfJaJOupWFEQSkVyH kNRi9kY85kNJVjx/7hzgajcbyeiKtWWHDFCo3IrRk63brkwgtVSy5j2LdPN255Sf 6s8C/O6U0xsPe2ojU9GXINQpDWF4IhC2A5WwXoKShQd1eNqAGROrxMcVMjMYd9Fg Y2uTe0CdJJA3b/l1qmZDYiwHAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUUzIvbvxZ XQtbpJKXziLnMOHiWvIwHwYDVR0jBBgwFoAUtkuBBCq0EWB9hgdv78nllia7iBYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQzMDM3LzhCOERFMjdFOEVE QzExRjA5ODgwQzQ3OEM0RjlBRTAyL3RrdUJCQ3EwRVdCOWhnZHY3OG5sbGlhN2lC WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdGt1QkJDcTBFV0I5aGdkdjc4bmxsaWE3aUJZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQz MDM3LzhCOERFMjdFOEVEQzExRjA5ODgwQzQ3OEM0RjlBRTAyL3RrdUJCQ3EwRVdC OWhnZHY3OG5sbGlhN2lCWS5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQAutq+G2hnPgjwElSX2/LI7+f10cGC3jpW8u7P/9Ne7sn/QPoT24+PfKZeIfE9d zS3zcWAWt4q33sqeDguNtvXCRJh5BRXRF2K1whlxSwuE7NTt6pUhNtRAOTTWJMP3 Wh4y3Tzs4QZGP0Xud9Yj0e3T8G51vptEo9JABnKP08+JGNpxeJdt3kgnf6EAakOb xYUAEicnpgH6JU96nobRszdkEJkw83RaB6TVMUzYg3oluMaerwSStF7mkATk9W7Y Gs/kopGtGdiLcnmmu18jJQjQu+ofGLQZCqx+b4ryqJoouCi3tt2dLkYgSFQppy5C O2RRe3mmFwqhuM1fHHr/b3/S -----END CERTIFICATE-----Generated at Mon Apr 6 08:53:45 2026 by rpki-client