$ rpki-client -vvf rpki.apnic.net/member_repository/A91116C7/C856D6C4C6C611E882A41260C4F9AE02/tnwkXksr7q0jwfBd0w_5B32HuOY.mft File: tnwkXksr7q0jwfBd0w_5B32HuOY.mft (raw, json) Hash identifier: CBnzVi0a8xoIgqNYqMLt4v8LM/E3OXL8cxhI0Bo5yxw= Subject key identifier: FF:DD:7D:DF:27:CC:66:20:51:9B:79:65:C1:47:11:E5:C7:2B:6B:6A Authority key identifier: B6:7C:24:5E:4B:2B:EE:AD:23:C1:F0:5D:D3:0F:F9:07:7D:87:B8:E6 Certificate issuer: /CN=A91116C7/serialNumber=B67C245E4B2BEEAD23C1F05DD30FF9077D87B8E6 Certificate serial: 1329 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tnwkXksr7q0jwfBd0w_5B32HuOY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91116C7/C856D6C4C6C611E882A41260C4F9AE02/tnwkXksr7q0jwfBd0w_5B32HuOY.mft Manifest number: 1321 Signing time: Sat 28 Feb 2026 17:04:52 +0000 Manifest this update: Sat 28 Feb 2026 17:04:51 +0000 Manifest next update: Sat 07 Mar 2026 17:04:51 +0000 Files and hashes: 1: tnwkXksr7q0jwfBd0w_5B32HuOY.crl (hash: zVpQKX9Hh7cEamA6Ng3I+XwXoNF+/PylqdHMdlo+yDk=) 2: 0CAF01A6C6C811E8AECD6165C4F9AE02.roa (hash: OXXzoi8LLX55gX/DfWbkzrbLh+Han7QgMUGkYSwbpGo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91116C7/C856D6C4C6C611E882A41260C4F9AE02/tnwkXksr7q0jwfBd0w_5B32HuOY.crl rsync://rpki.apnic.net/member_repository/A91116C7/C856D6C4C6C611E882A41260C4F9AE02/tnwkXksr7q0jwfBd0w_5B32HuOY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tnwkXksr7q0jwfBd0w_5B32HuOY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 17:04:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4905 (0x1329) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91116C7, serialNumber=B67C245E4B2BEEAD23C1F05DD30FF9077D87B8E6 Validity Not Before: Feb 28 17:04:51 2026 GMT Not After : Mar 7 17:04:51 2026 GMT Subject: CN=69a32034-e17f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:cc:7b:81:7d:1f:ea:45:44:66:62:81:d4:ed: e1:68:7a:c1:bd:77:13:d1:d0:a0:f4:90:12:68:6e: 2e:37:f7:60:2a:c8:e2:cf:66:ad:8e:40:19:e0:d3: e0:1d:7d:d3:a9:e5:86:9e:21:07:0b:0e:94:54:54: 16:2e:9d:41:7e:ce:7d:8c:ba:12:e5:10:11:bb:58: bf:7b:a7:bc:e2:ea:2f:e3:07:17:a5:d8:1f:0c:a2: 49:ee:e2:28:28:29:a6:7c:cd:3a:50:a1:8d:21:a4: 0c:8c:2d:5f:b4:cc:4d:08:f8:f1:2c:b8:3e:d0:00: 35:00:ae:bd:f1:ca:98:00:09:02:61:07:37:e8:f0: 88:6c:aa:f3:19:9f:48:39:7a:fb:8d:35:7a:20:48: c1:c3:ee:1b:7b:5e:25:c8:e5:e8:d9:f1:e4:34:ae: 88:b3:ae:21:af:6a:c0:9d:2f:83:02:b3:ca:15:81: 63:6c:30:97:2b:24:35:43:b6:43:b4:30:4d:8b:23: 6a:ec:da:69:f3:3a:57:7a:49:b0:8e:cb:d7:b6:18: 49:b7:02:e6:39:65:d4:8a:91:31:de:66:ab:2a:cf: e3:c3:72:61:b9:14:9b:6b:03:b0:e9:d1:41:8d:58: 8f:79:7d:b9:5f:57:6f:a9:97:8c:c4:94:54:4e:f0: c0:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:DD:7D:DF:27:CC:66:20:51:9B:79:65:C1:47:11:E5:C7:2B:6B:6A X509v3 Authority Key Identifier: keyid:B6:7C:24:5E:4B:2B:EE:AD:23:C1:F0:5D:D3:0F:F9:07:7D:87:B8:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91116C7/C856D6C4C6C611E882A41260C4F9AE02/tnwkXksr7q0jwfBd0w_5B32HuOY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tnwkXksr7q0jwfBd0w_5B32HuOY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91116C7/C856D6C4C6C611E882A41260C4F9AE02/tnwkXksr7q0jwfBd0w_5B32HuOY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:28:70:90:7c:7a:8b:7a:49:90:94:89:18:45:ab:e6:e0:6b: 14:f1:c9:5f:8b:17:9b:39:d9:53:7a:d8:76:4e:6d:9f:d9:8d: ac:a3:59:92:46:fa:7f:83:ab:e0:15:00:e2:83:93:18:19:51: f5:35:1c:5d:13:50:b1:5d:2e:01:6d:09:68:da:76:0b:e6:88: c3:be:40:60:e0:96:2f:30:f3:8a:03:0e:15:f1:aa:0e:04:26: f3:4f:4f:54:bb:9a:1e:bc:60:49:91:68:91:78:20:c8:42:8a: 99:37:ec:46:d5:fc:b1:39:2c:25:e8:77:f4:a5:47:f3:16:20: 0d:0e:16:cc:c1:f7:cc:a6:0e:cf:46:e3:eb:ee:97:2f:a0:28: 7f:74:1c:98:41:cb:bb:72:23:e7:3d:92:be:cd:4e:a1:07:4d: 0f:f5:82:17:1c:d4:a9:f6:b8:ff:7e:5c:3b:40:bb:f5:d5:9b: 1d:a0:9c:b6:73:02:64:b8:f0:94:f9:52:30:72:d1:d0:b0:2b: 18:04:fb:7e:25:40:3a:fa:d6:4b:dc:74:5c:f3:c0:bb:4b:d1: 12:20:54:53:26:ef:65:1a:b9:9d:ba:b6:a4:f8:8e:fc:fe:33: 79:f2:6c:31:e6:24:f1:8f:21:02:8d:be:36:22:02:8c:f2:c9: 5b:da:b2:19 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICEykwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTE2QzcxMTAvBgNVBAUTKEI2N0MyNDVFNEIyQkVFQUQyM0MxRjA1REQzMEZGOTA3 N0Q4N0I4RTYwHhcNMjYwMjI4MTcwNDUxWhcNMjYwMzA3MTcwNDUxWjAYMRYwFAYD VQQDDA02OWEzMjAzNC1lMTdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzMx7gX0f6kVEZmKB1O3haHrBvXcT0dCg9JASaG4uN/dgKsjiz2atjkAZ4NPg HX3TqeWGniEHCw6UVFQWLp1Bfs59jLoS5RARu1i/e6e84uov4wcXpdgfDKJJ7uIo KCmmfM06UKGNIaQMjC1ftMxNCPjxLLg+0AA1AK698cqYAAkCYQc36PCIbKrzGZ9I OXr7jTV6IEjBw+4be14lyOXo2fHkNK6Is64hr2rAnS+DArPKFYFjbDCXKyQ1Q7ZD tDBNiyNq7Npp8zpXekmwjsvXthhJtwLmOWXUipEx3marKs/jw3JhuRSbawOw6dFB jViPeX25X1dvqZeMxJRUTvDACQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFP/dfd8n zGYgUZt5ZcFHEeXHK2tqMB8GA1UdIwQYMBaAFLZ8JF5LK+6tI8HwXdMP+Qd9h7jm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMTZDNy9DODU2RDZDNEM2 QzYxMUU4ODJBNDEyNjBDNEY5QUUwMi90bndrWGtzcjdxMGp3ZkJkMHdfNUIzMkh1 T1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Rud2tYa3NyN3EwandmQmQwd181QjMySHVPWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MTZDNy9DODU2RDZDNEM2QzYxMUU4ODJBNDEyNjBDNEY5QUUwMi90bndrWGtzcjdx MGp3ZkJkMHdfNUIzMkh1T1kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAOShwkHx6i3pJkJSJGEWr5uBrFPHJX4sXmznZU3rYdk5tn9mNrKNZkkb6f4Or 4BUA4oOTGBlR9TUcXRNQsV0uAW0JaNp2C+aIw75AYOCWLzDzigMOFfGqDgQm809P VLuaHrxgSZFokXggyEKKmTfsRtX8sTksJeh39KVH8xYgDQ4WzMH3zKYOz0bj6+6X L6Aof3QcmEHLu3Ij5z2Svs1OoQdND/WCFxzUqfa4/35cO0C79dWbHaCctnMCZLjw lPlSMHLR0LArGAT7fiVAOvrWS9x0XPPAu0vREiBUUybvZRq5nbq2pPiO/P4zefJs MeYk8Y8hAo2+NiICjPLJW9qyGQ== -----END CERTIFICATE-----Generated at Sun Mar 1 21:10:02 2026 by rpki-client