$ rpki-client -vvf rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.mft File: tLGKJT-2KTQ3EWY13d0ZlCi2jVs.mft (raw, json) Hash identifier: bY6psuVJcpvCpKzWipwFwNGDxusva68A62SmPRn2oio= Subject key identifier: 55:E1:38:D4:E1:F1:11:60:6C:D5:6A:FB:22:8F:1D:32:66:B2:7C:0D Authority key identifier: B4:B1:8A:25:3F:B6:29:34:37:11:66:35:DD:DD:19:94:28:B6:8D:5B Certificate issuer: /CN=A91FD64D/serialNumber=B4B18A253FB6293437116635DDDD199428B68D5B Certificate serial: 0268 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.mft Manifest number: 025D Signing time: Tue 31 Mar 2026 01:55:44 +0000 Manifest this update: Tue 31 Mar 2026 01:55:44 +0000 Manifest next update: Tue 07 Apr 2026 01:55:44 +0000 Files and hashes: 1: tLGKJT-2KTQ3EWY13d0ZlCi2jVs.crl (hash: mMmTRxxXzLkJsE6LfZdsf95LBGjQ+3z30tF0PnSZHRs=) 2: 66D00EB2449C11EE86105C41C4F9AE02.roa (hash: GxVSXWzE6du6WMtXT3WxN39pt4kQtD831phFtQ55DeU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.crl rsync://rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 Apr 2026 23:18:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 616 (0x268) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD64D, serialNumber=B4B18A253FB6293437116635DDDD199428B68D5B Validity Not Before: Mar 31 01:55:44 2026 GMT Not After : Apr 7 01:55:44 2026 GMT Subject: CN=69cb29a0-eb3e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:da:7e:f4:e3:68:ef:72:45:aa:e2:44:fa:67: a7:5f:64:03:23:55:6a:73:45:c3:82:15:c3:59:08: 2b:4f:45:f5:fa:8c:e8:26:7a:ab:33:48:40:64:f6: 0e:cb:f5:9f:11:d5:69:08:4a:9e:9f:ae:73:db:41: 12:a5:7a:7e:d6:11:04:6c:b9:fc:4b:ec:8a:b4:86: 7e:a5:64:f6:df:88:d6:a7:3f:5a:0e:bb:db:a0:38: 59:d4:59:81:e4:45:76:9e:b2:2f:c9:2e:98:39:b1: e2:0c:7f:3d:ac:fb:86:e9:6e:7d:91:42:97:c6:4e: 0e:84:53:4e:b4:01:a0:44:c2:e2:0b:d2:9b:a8:f7: ae:f8:cd:ee:87:4a:20:da:13:82:c5:76:e3:87:75: 47:be:62:85:42:d9:f3:cd:25:47:60:18:18:d8:b1: 7e:a4:dd:df:2d:13:91:92:d9:61:96:b4:b0:d2:70: e0:ac:4e:48:51:9b:84:c9:2c:04:1d:07:23:7c:e6: 04:a9:62:ea:53:68:75:ef:ef:15:d6:54:8b:8e:1a: 71:39:64:14:4d:8b:6d:13:e9:ae:04:ae:9c:1b:2b: ff:bf:36:ac:09:20:10:69:e0:dd:99:d3:fe:c8:1f: 17:f8:79:81:cf:23:9f:ef:64:62:a5:cf:e2:f0:76: 79:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:E1:38:D4:E1:F1:11:60:6C:D5:6A:FB:22:8F:1D:32:66:B2:7C:0D X509v3 Authority Key Identifier: keyid:B4:B1:8A:25:3F:B6:29:34:37:11:66:35:DD:DD:19:94:28:B6:8D:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:23:55:41:9f:8e:26:47:ae:6b:a7:8c:b5:f3:14:6a:c6:65: 26:cd:17:96:8a:55:d4:94:0c:d8:cf:71:e1:6a:7d:75:c4:dc: 38:21:84:91:56:b0:c5:d3:6b:a0:e4:f0:26:9a:65:3e:2f:97: 75:cb:ad:b5:5a:b0:5d:8d:c3:43:6c:df:07:d2:7b:ba:99:8f: 28:96:bf:9c:70:e5:ab:36:81:2c:93:6b:96:36:38:cf:dc:d6: ad:83:6a:e3:c8:47:1d:c1:d8:e0:93:31:bb:26:68:bc:42:1b: b0:2b:f9:15:8d:38:a3:c6:0a:63:0b:94:91:dc:63:34:d6:93: e9:3b:44:0f:d7:5c:66:ae:10:9a:d3:c9:e7:a5:69:cf:a2:40: ad:8d:82:a2:f7:e1:23:1d:31:3f:99:7a:90:cd:13:45:0f:2a: fa:be:fe:88:b7:68:b5:cd:6c:c1:58:95:ff:f5:c3:a7:ee:33: a3:d7:73:17:64:be:13:13:41:76:0a:73:6b:2b:b4:6f:12:de: 7d:25:a0:45:75:3f:51:7b:23:2e:c6:c7:91:c5:61:f7:d1:08: 9c:18:93:78:ef:08:a8:74:7a:31:14:28:57:d3:67:9e:72:8f: 6a:e2:a0:d8:b2:5a:87:ef:f8:7f:e5:f1:a5:c2:18:8d:2d:a5: cf:ca:f5:e8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAmgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkQ2NEQxMTAvBgNVBAUTKEI0QjE4QTI1M0ZCNjI5MzQzNzExNjYzNUREREQxOTk0 MjhCNjhENUIwHhcNMjYwMzMxMDE1NTQ0WhcNMjYwNDA3MDE1NTQ0WjAYMRYwFAYD VQQDEw02OWNiMjlhMC1lYjNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAldp+9ONo73JFquJE+menX2QDI1Vqc0XDghXDWQgrT0X1+ozoJnqrM0hAZPYO y/WfEdVpCEqen65z20ESpXp+1hEEbLn8S+yKtIZ+pWT234jWpz9aDrvboDhZ1FmB 5EV2nrIvyS6YObHiDH89rPuG6W59kUKXxk4OhFNOtAGgRMLiC9KbqPeu+M3uh0og 2hOCxXbjh3VHvmKFQtnzzSVHYBgY2LF+pN3fLRORktlhlrSw0nDgrE5IUZuEySwE HQcjfOYEqWLqU2h17+8V1lSLjhpxOWQUTYttE+muBK6cGyv/vzasCSAQaeDdmdP+ yB8X+HmBzyOf72Ripc/i8HZ5TwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFXhONTh 8RFgbNVq+yKPHTJmsnwNMB8GA1UdIwQYMBaAFLSxiiU/tik0NxFmNd3dGZQoto1b MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRDY0RC8zNzA3ODZDODk5 OTQxMUVEODU2NzMxMUZDNEY5QUUwMi90TEdLSlQtMktUUTNFV1kxM2QwWmxDaTJq VnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RMR0tKVC0yS1RRM0VXWTEzZDBabENpMmpWcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RDY0RC8zNzA3ODZDODk5OTQxMUVEODU2NzMxMUZDNEY5QUUwMi90TEdLSlQtMktU UTNFV1kxM2QwWmxDaTJqVnMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAJCNVQZ+OJkeua6eMtfMUasZlJs0XlopV1JQM2M9x4Wp9dcTcOCGEkVawxdNr oOTwJpplPi+XdcuttVqwXY3DQ2zfB9J7upmPKJa/nHDlqzaBLJNrljY4z9zWrYNq 48hHHcHY4JMxuyZovEIbsCv5FY04o8YKYwuUkdxjNNaT6TtED9dcZq4QmtPJ56Vp z6JArY2CovfhIx0xP5l6kM0TRQ8q+r7+iLdotc1swViV//XDp+4zo9dzF2S+ExNB dgpzayu0bxLefSWgRXU/UXsjLsbHkcVh99EInBiTeO8IqHR6MRQoV9NnnnKPauKg 2LJah+/4f+XxpcIYjS2lz8r16A== -----END CERTIFICATE-----Generated at Tue Mar 31 11:35:18 2026 by rpki-client