$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/TZAcNCU7ylsnTusQaZPe9yCiUqw.mft File: TZAcNCU7ylsnTusQaZPe9yCiUqw.mft (raw, json) Hash identifier: lTPlag03V+RlPv9HQUweTmNPe4UpfdURM99ZvohjtcM= Subject key identifier: 9B:06:7E:26:DC:9D:BE:B6:E1:D8:82:CA:60:4E:1A:56:31:9D:0B:37 Authority key identifier: 4D:90:1C:34:25:3B:CA:5B:27:4E:EB:10:69:93:DE:F7:20:A2:52:AC Certificate issuer: /CN=A91D6AB2/serialNumber=4D901C34253BCA5B274EEB106993DEF720A252AC Certificate serial: 04C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TZAcNCU7ylsnTusQaZPe9yCiUqw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/TZAcNCU7ylsnTusQaZPe9yCiUqw.mft Manifest number: 0D85 Signing time: Sat 04 Apr 2026 20:10:58 +0000 Manifest this update: Sat 04 Apr 2026 20:10:57 +0000 Manifest next update: Sat 11 Apr 2026 20:10:57 +0000 Files and hashes: 1: TZAcNCU7ylsnTusQaZPe9yCiUqw.crl (hash: 8MxZPllIbrLkTF4srdnyns+s5lRvFqFo0FkZOWXBSBU=) 2: A1B8D10EF5C511EF83B21246C4F9AE02.roa (hash: V07yp4azfzM5YFQd3DFJvRMzAViuDBC6g0jJfgu6wvI=) 3: 8E4BBF50F5C511EF89110646C4F9AE02.roa (hash: 1qbYu5KRZI3rxH4kzvhF/miC5oW7IXAqReX/2/VUDaU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/TZAcNCU7ylsnTusQaZPe9yCiUqw.crl rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/TZAcNCU7ylsnTusQaZPe9yCiUqw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TZAcNCU7ylsnTusQaZPe9yCiUqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 20:10:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1218 (0x4c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D6AB2, serialNumber=4D901C34253BCA5B274EEB106993DEF720A252AC Validity Not Before: Apr 4 20:10:57 2026 GMT Not After : Apr 11 20:10:57 2026 GMT Subject: CN=69d17052-c0f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:de:f5:34:ef:d7:be:68:8f:8c:6c:d2:c7:98: 0b:02:41:14:6a:e7:78:47:d2:c1:10:c0:41:2b:d1: 7f:ff:3e:53:92:7c:90:ac:16:c1:3e:a3:a0:85:7f: b0:33:49:87:ca:79:81:e4:23:7e:95:5c:77:de:e4: 1c:6b:4d:85:25:d1:88:4f:c3:f4:f0:ee:3d:4a:d4: 3d:a7:5f:a5:80:2b:5b:33:ac:05:9a:38:70:13:b1: f9:1b:c8:6a:6d:fd:3e:fe:fa:7b:ee:15:c2:2c:4e: 3b:57:b2:ab:9f:a6:4f:d7:67:87:ab:00:cb:b5:d8: 48:73:f9:b8:e0:83:54:93:9f:87:b5:84:7b:1c:c2: 46:e2:91:e9:41:8a:5b:2e:62:38:97:02:9e:20:ab: b7:0f:e4:e4:a5:b4:85:1f:a5:a0:17:49:44:08:6c: 97:54:fc:d3:4e:74:7d:8d:ac:7d:da:dd:a5:5d:db: de:02:b8:88:f6:00:c0:e9:9f:2c:79:67:ab:25:52: 97:96:c6:a0:f3:40:68:c3:35:9b:a7:ea:49:66:02: 44:38:11:77:80:e0:23:68:71:19:5c:14:36:8e:f4: 53:43:b5:11:9e:91:24:c3:98:0b:fa:86:02:30:27: 60:f8:ff:3c:17:2d:15:94:28:9f:fb:b7:e9:06:d9: ce:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:06:7E:26:DC:9D:BE:B6:E1:D8:82:CA:60:4E:1A:56:31:9D:0B:37 X509v3 Authority Key Identifier: keyid:4D:90:1C:34:25:3B:CA:5B:27:4E:EB:10:69:93:DE:F7:20:A2:52:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/TZAcNCU7ylsnTusQaZPe9yCiUqw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TZAcNCU7ylsnTusQaZPe9yCiUqw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/TZAcNCU7ylsnTusQaZPe9yCiUqw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b7:b1:e7:e7:07:e5:d5:48:24:f0:4a:b8:35:4d:e5:fc:b3:e0: 4c:fb:68:28:1c:fc:cc:45:22:08:3c:10:3f:e3:3c:3e:3b:c9: 0f:b9:fc:6f:0a:d2:e1:78:40:f5:58:f2:6f:21:8a:fc:a3:78: e6:ec:eb:d7:0d:07:1d:eb:eb:53:37:05:94:6f:47:c4:f7:5b: 6c:18:39:2f:3e:a7:b7:26:df:76:a4:f9:d9:dc:ca:82:08:4f: 91:06:3f:e3:2e:71:c3:91:25:c7:35:2d:22:85:b6:c5:5c:16: 9f:f3:f2:17:7d:27:e8:f8:80:7c:b1:a7:0f:5c:95:33:08:f4: e3:9d:dc:66:60:fc:71:be:11:10:4c:e1:d7:b5:31:2e:f3:4c: 79:23:16:a9:b9:e6:93:bd:13:f4:af:66:22:70:1e:be:f9:b9: 90:2a:f1:47:87:9d:b9:6b:32:07:77:af:2d:45:8f:d1:48:fd: 48:4c:28:21:87:cd:b2:fc:17:7d:4c:94:63:11:88:29:b5:30: 6d:98:8b:6f:b9:1b:73:d9:9f:d5:2b:94:74:bf:19:90:82:fe: b9:e4:21:86:c1:4c:19:fc:86:7e:bc:35:a0:e9:26:78:0a:7f: 58:7c:d0:db:17:27:e0:d2:b7:f9:47:0b:d5:40:69:d6:73:e8: 90:02:ff:2b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBMIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDZBQjIxMTAvBgNVBAUTKDREOTAxQzM0MjUzQkNBNUIyNzRFRUIxMDY5OTNERUY3 MjBBMjUyQUMwHhcNMjYwNDA0MjAxMDU3WhcNMjYwNDExMjAxMDU3WjAYMRYwFAYD VQQDEw02OWQxNzA1Mi1jMGY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAi971NO/XvmiPjGzSx5gLAkEUaud4R9LBEMBBK9F//z5TknyQrBbBPqOghX+w M0mHynmB5CN+lVx33uQca02FJdGIT8P08O49StQ9p1+lgCtbM6wFmjhwE7H5G8hq bf0+/vp77hXCLE47V7Krn6ZP12eHqwDLtdhIc/m44INUk5+HtYR7HMJG4pHpQYpb LmI4lwKeIKu3D+TkpbSFH6WgF0lECGyXVPzTTnR9jax92t2lXdveAriI9gDA6Z8s eWerJVKXlsag80BowzWbp+pJZgJEOBF3gOAjaHEZXBQ2jvRTQ7URnpEkw5gL+oYC MCdg+P88Fy0VlCif+7fpBtnObQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJsGfibc nb624diCymBOGlYxnQs3MB8GA1UdIwQYMBaAFE2QHDQlO8pbJ07rEGmT3vcgolKs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENkFCMi8wQUYyRUFBQUNG NzAxMUVBOEFFNTVENDhDNEY5QUUwMi9UWkFjTkNVN3lsc25UdXNRYVpQZTl5Q2lV cXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RaQWNOQ1U3eWxzblR1c1FhWlBlOXlDaVVxdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NkFCMi8wQUYyRUFBQUNGNzAxMUVBOEFFNTVENDhDNEY5QUUwMi9UWkFjTkNVN3ls c25UdXNRYVpQZTl5Q2lVcXcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAt7Hn5wfl1Ugk8Eq4NU3l/LPgTPtoKBz8zEUiCDwQP+M8PjvJD7n8bwrS4XhA 9VjybyGK/KN45uzr1w0HHevrUzcFlG9HxPdbbBg5Lz6ntybfdqT52dzKgghPkQY/ 4y5xw5ElxzUtIoW2xVwWn/PyF30n6PiAfLGnD1yVMwj0453cZmD8cb4REEzh17Ux LvNMeSMWqbnmk70T9K9mInAevvm5kCrxR4eduWsyB3evLUWP0Uj9SEwoIYfNsvwX fUyUYxGIKbUwbZiLb7kbc9mf1SuUdL8ZkIL+ueQhhsFMGfyGfrw1oOkmeAp/WHzQ 2xcn4NK3+UcL1UBp1nPokAL/Kw== -----END CERTIFICATE-----Generated at Mon Apr 6 09:02:46 2026 by rpki-client