$ rpki-client -vvf rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.mft File: tIGYczHh7UCLUcuf2O9KZQrIZpo.mft (raw, json) Hash identifier: QeITDSQqVNOw96dYpR90wWqVHU56cfyJOhifn0nJZ08= Subject key identifier: 1F:AD:BC:15:75:AD:19:2E:62:70:E8:BE:8C:9A:F1:C3:18:CE:31:45 Authority key identifier: B4:81:98:73:31:E1:ED:40:8B:51:CB:9F:D8:EF:4A:65:0A:C8:66:9A Certificate issuer: /CN=A91E28E2/serialNumber=B481987331E1ED408B51CB9FD8EF4A650AC8669A Certificate serial: 0264 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tIGYczHh7UCLUcuf2O9KZQrIZpo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.mft Manifest number: 024A Signing time: Sun 05 Apr 2026 02:10:04 +0000 Manifest this update: Sun 05 Apr 2026 02:10:04 +0000 Manifest next update: Sun 12 Apr 2026 02:10:04 +0000 Files and hashes: 1: tIGYczHh7UCLUcuf2O9KZQrIZpo.crl (hash: Vchix3Gjsvevp6UEvjgzNpJs12dUELzdng8oqxljJmU=) 2: 9C6F02C6249D11EF9532356DC4F9AE02.roa (hash: rqdiCtjrx/nRHSFBDJET2Hy4bfU3/bkdX125W59d+co=) 3: 42D4386CDFDB11F0A18E0FE3536F56BC.roa (hash: eUh3+0eNlTLz/GijzP1F9VFF/VuE/2wjuZ3Eqz98/Ac=) 4: B4B581DEDFDB11F0B149F2E3536F56BC.roa (hash: xl+ZGGMMsQzXdRoVvAevwVbibKiAjAP36zHm8LVE2Zw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.crl rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tIGYczHh7UCLUcuf2O9KZQrIZpo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 02:10:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 612 (0x264) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E28E2, serialNumber=B481987331E1ED408B51CB9FD8EF4A650AC8669A Validity Not Before: Apr 5 02:10:04 2026 GMT Not After : Apr 12 02:10:04 2026 GMT Subject: CN=69d1c47c-25a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:c8:64:50:42:79:5e:8b:81:6f:3a:df:b6:0e: e6:91:7b:4d:de:b1:e5:3a:98:e7:0e:ff:54:6e:65: 3f:e6:70:21:0a:7b:4a:50:dc:69:c9:bf:2a:23:cb: e0:e2:65:a7:1e:c4:99:db:33:db:72:04:30:53:b4: 96:11:54:07:cb:7a:af:ce:23:0f:10:82:94:cd:3c: 59:ad:11:3f:8f:a3:87:60:65:73:bb:56:79:69:c3: 45:f5:00:b8:fe:08:69:92:df:89:f8:d4:da:fd:e7: 70:07:5c:cc:48:34:7e:fd:16:df:8e:d9:5b:d6:01: 56:5d:af:f4:6d:e2:2a:24:19:87:2f:4c:0d:5b:16: a2:d5:65:36:1e:ef:a3:a0:15:f3:b2:a2:7b:18:14: f0:f1:29:80:3f:49:4e:eb:31:12:33:b3:6a:80:e2: 30:ae:e7:1a:a2:98:00:f0:93:67:c8:56:80:da:3d: e9:2c:d4:a7:e4:0e:cb:d6:65:35:80:03:24:e9:e9: bd:27:e4:da:6b:14:9b:47:67:55:d5:7a:1f:ef:22: 3f:4a:ad:9f:27:7e:50:8f:d0:89:70:78:3c:f5:8d: a2:cb:81:78:dc:9a:fc:8f:40:3d:7c:b8:19:4c:0a: 04:e0:dd:d5:28:50:3a:69:c1:55:d0:fc:59:02:4d: 3c:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:AD:BC:15:75:AD:19:2E:62:70:E8:BE:8C:9A:F1:C3:18:CE:31:45 X509v3 Authority Key Identifier: keyid:B4:81:98:73:31:E1:ED:40:8B:51:CB:9F:D8:EF:4A:65:0A:C8:66:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tIGYczHh7UCLUcuf2O9KZQrIZpo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:84:ed:73:9c:ab:9d:d9:9d:92:3c:a1:d8:7b:72:76:6d:66: 7e:50:8e:73:c4:6c:85:47:e8:ca:bc:b9:80:6b:ed:94:89:88: 39:b1:95:05:f4:5e:14:81:6f:e2:2c:01:43:9e:49:c9:db:33: a8:5f:f6:58:6f:8c:f5:c8:97:ad:03:d4:c4:2c:c2:65:dd:48: 17:70:2f:14:c3:07:89:43:7c:aa:e3:a8:a6:6a:ac:17:25:07: 45:4e:ca:93:89:e1:d4:b1:db:ca:eb:70:48:0f:52:06:15:b8: 2c:f4:78:8a:4e:38:c8:81:44:8c:c4:d0:1f:55:31:4e:95:c6: f1:97:5a:a6:39:e8:e3:b7:c2:38:01:88:c1:33:1e:1c:b2:fb: 2f:bb:ed:49:59:bf:9f:55:1a:6b:7e:3a:fb:eb:63:4f:40:7c: b7:3d:ff:59:3b:e9:5d:ff:bb:9c:57:e7:da:8d:be:2c:95:2a: 7f:52:19:0e:e1:c4:a8:17:7e:31:00:bf:ea:27:e4:23:df:22: 61:4b:72:c2:91:bf:98:77:58:f8:26:37:f5:df:10:d9:95:ac: ea:f1:68:97:42:66:c4:32:5e:1a:7e:c8:2d:ab:4c:1a:4a:0d: d9:69:8b:cc:7f:0d:8c:bb:d5:4d:46:72:b8:ef:1a:11:36:81: 65:63:79:13 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAmQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI4RTIxMTAvBgNVBAUTKEI0ODE5ODczMzFFMUVENDA4QjUxQ0I5RkQ4RUY0QTY1 MEFDODY2OUEwHhcNMjYwNDA1MDIxMDA0WhcNMjYwNDEyMDIxMDA0WjAYMRYwFAYD VQQDEw02OWQxYzQ3Yy0yNWEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1chkUEJ5XouBbzrftg7mkXtN3rHlOpjnDv9UbmU/5nAhCntKUNxpyb8qI8vg 4mWnHsSZ2zPbcgQwU7SWEVQHy3qvziMPEIKUzTxZrRE/j6OHYGVzu1Z5acNF9QC4 /ghpkt+J+NTa/edwB1zMSDR+/Rbfjtlb1gFWXa/0beIqJBmHL0wNWxai1WU2Hu+j oBXzsqJ7GBTw8SmAP0lO6zESM7NqgOIwrucaopgA8JNnyFaA2j3pLNSn5A7L1mU1 gAMk6em9J+TaaxSbR2dV1Xof7yI/Sq2fJ35Qj9CJcHg89Y2iy4F43Jr8j0A9fLgZ TAoE4N3VKFA6acFV0PxZAk08BwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFB+tvBV1 rRkuYnDovoya8cMYzjFFMB8GA1UdIwQYMBaAFLSBmHMx4e1Ai1HLn9jvSmUKyGaa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjhFMi85NTJGQTYzMkQy RTYxMUVEOUE1MkQ1NUFDNEY5QUUwMi90SUdZY3pIaDdVQ0xVY3VmMk85S1pRckla cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RJR1ljekhoN1VDTFVjdWYyTzlLWlFySVpwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MjhFMi85NTJGQTYzMkQyRTYxMUVEOUE1MkQ1NUFDNEY5QUUwMi90SUdZY3pIaDdV Q0xVY3VmMk85S1pRcklacG8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAGITtc5yrndmdkjyh2Htydm1mflCOc8RshUfoyry5gGvtlImIObGVBfReFIFv 4iwBQ55JydszqF/2WG+M9ciXrQPUxCzCZd1IF3AvFMMHiUN8quOopmqsFyUHRU7K k4nh1LHbyutwSA9SBhW4LPR4ik44yIFEjMTQH1UxTpXG8Zdapjno47fCOAGIwTMe HLL7L7vtSVm/n1Uaa346++tjT0B8tz3/WTvpXf+7nFfn2o2+LJUqf1IZDuHEqBd+ MQC/6ifkI98iYUtywpG/mHdY+CY39d8Q2ZWs6vFol0JmxDJeGn7ILatMGkoN2WmL zH8NjLvVTUZyuO8aETaBZWN5Ew== -----END CERTIFICATE-----Generated at Mon Apr 6 13:40:37 2026 by rpki-client