$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF233/08F05260B37811EF88322B0FC4F9AE02/TnWast4kVGn4MRuSc7VVOH51CpA.mft File: TnWast4kVGn4MRuSc7VVOH51CpA.mft (raw, json) Hash identifier: 3X1bQ3WwM5UcZzS7ism+AdTjgxnUuw4Mux8waXgIIE8= Subject key identifier: 9A:5C:83:62:4A:F2:D2:91:37:85:F3:C2:41:A8:EC:3F:41:F3:29:F7 Authority key identifier: 4E:75:9A:B2:DE:24:54:69:F8:31:1B:92:73:B5:55:38:7E:75:0A:90 Certificate issuer: /CN=A91DF233/serialNumber=4E759AB2DE245469F8311B9273B555387E750A90 Certificate serial: 0101 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TnWast4kVGn4MRuSc7VVOH51CpA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF233/08F05260B37811EF88322B0FC4F9AE02/TnWast4kVGn4MRuSc7VVOH51CpA.mft Manifest number: FD Signing time: Sun 05 Apr 2026 05:37:57 +0000 Manifest this update: Sun 05 Apr 2026 05:37:56 +0000 Manifest next update: Sun 12 Apr 2026 05:37:56 +0000 Files and hashes: 1: TnWast4kVGn4MRuSc7VVOH51CpA.crl (hash: yiaiWfV/dv0ny/DQ/mFVyLhPOVpMSQpUWvlrsxQnnP8=) 2: 1FE0E016B37D11EFBDE18263C4F9AE02.roa (hash: dVowzphy2uXgtzt1PiwbcwH9pWDhfnknLc0RqbSLyzs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF233/08F05260B37811EF88322B0FC4F9AE02/TnWast4kVGn4MRuSc7VVOH51CpA.crl rsync://rpki.apnic.net/member_repository/A91DF233/08F05260B37811EF88322B0FC4F9AE02/TnWast4kVGn4MRuSc7VVOH51CpA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TnWast4kVGn4MRuSc7VVOH51CpA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 05:37:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 257 (0x101) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF233, serialNumber=4E759AB2DE245469F8311B9273B555387E750A90 Validity Not Before: Apr 5 05:37:56 2026 GMT Not After : Apr 12 05:37:56 2026 GMT Subject: CN=69d1f535-2389 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:44:69:98:b0:b8:76:6d:3e:5d:ec:cc:c8:bc: f8:af:1c:a5:c8:41:ff:bd:b4:b9:0a:d9:00:12:1d: e2:ce:b0:25:ae:d6:18:9c:59:68:f8:41:c7:3d:5b: e1:8c:65:7b:19:d6:39:da:61:1f:c4:c9:71:75:ef: ba:2e:56:26:b1:5e:c5:e7:5b:71:15:4e:6f:51:28: 67:5c:ed:70:a8:77:3c:67:46:db:c1:3b:ee:b8:5f: b8:a0:c1:15:14:06:d4:7c:50:82:33:8d:9d:56:36: 68:f9:37:18:90:dc:a8:9a:d1:0c:a9:e0:01:90:d6: 06:5b:ac:3a:3b:f3:06:72:87:eb:e7:e7:b1:a2:13: 06:33:2f:0b:c9:71:ad:d4:a6:1f:15:ab:92:ce:35: 99:95:be:d8:6e:a2:7f:2d:37:f4:e2:c7:da:88:dc: fa:f7:47:e6:06:14:96:18:65:91:d7:89:d2:aa:ff: 22:30:db:42:28:74:76:1d:6f:b8:e1:81:5a:cd:58: 84:da:df:39:f5:4d:5d:54:31:3d:09:1e:4e:75:3b: bd:31:b0:21:cd:71:73:72:ab:7a:ed:4a:71:f3:cb: 7a:91:f7:83:e7:ee:c6:1c:ff:e8:7c:85:8b:06:4a: ee:28:17:06:42:87:2f:da:5f:cc:cb:7f:ac:1d:db: b0:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:5C:83:62:4A:F2:D2:91:37:85:F3:C2:41:A8:EC:3F:41:F3:29:F7 X509v3 Authority Key Identifier: keyid:4E:75:9A:B2:DE:24:54:69:F8:31:1B:92:73:B5:55:38:7E:75:0A:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF233/08F05260B37811EF88322B0FC4F9AE02/TnWast4kVGn4MRuSc7VVOH51CpA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TnWast4kVGn4MRuSc7VVOH51CpA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF233/08F05260B37811EF88322B0FC4F9AE02/TnWast4kVGn4MRuSc7VVOH51CpA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:03:9a:51:14:40:ca:c4:e2:af:93:67:4c:89:6f:cf:00:b1: ea:70:27:0c:0f:1b:90:0c:22:1d:c5:a5:c8:e5:44:ff:ad:c6: 50:7d:56:b2:32:b7:f8:a4:19:82:64:d4:01:05:97:b3:b8:7e: 7c:66:a9:c3:70:e1:a4:d8:78:6d:64:fe:44:4b:cd:3e:8c:b2: 32:7b:74:7f:e8:9e:4a:b8:79:f8:4b:0c:be:31:86:c2:cc:85: 04:30:82:91:c0:bf:c2:d1:92:d3:22:f0:e6:ca:18:ba:c0:1c: d8:7f:9c:52:8c:45:e5:9e:7d:c9:eb:c1:b3:de:93:a8:e4:56: e8:a8:cc:e2:f5:b2:ff:eb:f2:f9:93:3d:58:ef:8c:18:e5:d4: fc:97:5e:57:89:41:8f:a8:40:93:69:16:7c:be:3a:a2:63:ce: e5:5f:d0:53:96:58:bc:5c:d2:a0:e1:de:91:f0:dc:16:8b:0f: f6:c0:62:22:d0:30:d0:18:fe:0f:02:e8:af:ab:22:87:bf:53: b8:19:d3:0e:c6:47:7d:8d:41:36:ab:ea:fc:53:41:ee:ea:47: b2:3e:25:bb:29:ac:e1:82:99:3d:ce:2b:d4:a6:c9:f4:af:6e: 6e:d1:13:1f:5d:3a:b8:57:e5:f7:3a:a6:e0:15:d3:a7:70:39: 0a:e9:ce:70 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAQEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REYyMzMxMTAvBgNVBAUTKDRFNzU5QUIyREUyNDU0NjlGODMxMUI5MjczQjU1NTM4 N0U3NTBBOTAwHhcNMjYwNDA1MDUzNzU2WhcNMjYwNDEyMDUzNzU2WjAYMRYwFAYD VQQDEw02OWQxZjUzNS0yMzg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvERpmLC4dm0+XezMyLz4rxylyEH/vbS5CtkAEh3izrAlrtYYnFlo+EHHPVvh jGV7GdY52mEfxMlxde+6LlYmsV7F51txFU5vUShnXO1wqHc8Z0bbwTvuuF+4oMEV FAbUfFCCM42dVjZo+TcYkNyomtEMqeABkNYGW6w6O/MGcofr5+exohMGMy8LyXGt 1KYfFauSzjWZlb7YbqJ/LTf04sfaiNz690fmBhSWGGWR14nSqv8iMNtCKHR2HW+4 4YFazViE2t859U1dVDE9CR5OdTu9MbAhzXFzcqt67Upx88t6kfeD5+7GHP/ofIWL BkruKBcGQocv2l/My3+sHduwawIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJpcg2JK 8tKRN4XzwkGo7D9B8yn3MB8GA1UdIwQYMBaAFE51mrLeJFRp+DEbknO1VTh+dQqQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjIzMy8wOEYwNTI2MEIz NzgxMUVGODgzMjJCMEZDNEY5QUUwMi9Ubldhc3Q0a1ZHbjRNUnVTYzdWVk9INTFD cEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1RuV2FzdDRrVkduNE1SdVNjN1ZWT0g1MUNwQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RjIzMy8wOEYwNTI2MEIzNzgxMUVGODgzMjJCMEZDNEY5QUUwMi9Ubldhc3Q0a1ZH bjRNUnVTYzdWVk9INTFDcEEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAlQOaURRAysTir5NnTIlvzwCx6nAnDA8bkAwiHcWlyOVE/63GUH1WsjK3+KQZ gmTUAQWXs7h+fGapw3DhpNh4bWT+REvNPoyyMnt0f+ieSrh5+EsMvjGGwsyFBDCC kcC/wtGS0yLw5soYusAc2H+cUoxF5Z59yevBs96TqORW6KjM4vWy/+vy+ZM9WO+M GOXU/JdeV4lBj6hAk2kWfL46omPO5V/QU5ZYvFzSoOHekfDcFosP9sBiItAw0Bj+ DwLor6sih79TuBnTDsZHfY1BNqvq/FNB7upHsj4luyms4YKZPc4r1KbJ9K9ubtET H106uFfl9zqm4BXTp3A5CunOcA== -----END CERTIFICATE-----Generated at Mon Apr 6 15:29:02 2026 by rpki-client