$ rpki-client -vvf rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.mft File: tg1afDY_D02TL-MXuQzmz4DSg8k.mft (raw, json) Hash identifier: ahYByFVB4o5opNzVEQAQN3G+jHTXJFJ/VeVgSB3PRoU= Subject key identifier: 17:54:A7:02:CC:42:27:EB:36:DC:54:B5:E2:A3:85:3C:23:CB:6C:AE Authority key identifier: B6:0D:5A:7C:36:3F:0F:4D:93:2F:E3:17:B9:0C:E6:CF:80:D2:83:C9 Certificate issuer: /CN=A9118309/serialNumber=B60D5A7C363F0F4D932FE317B90CE6CF80D283C9 Certificate serial: 0ABF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tg1afDY_D02TL-MXuQzmz4DSg8k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.mft Manifest number: 0AB4 Signing time: Mon 02 Mar 2026 00:10:14 +0000 Manifest this update: Mon 02 Mar 2026 00:10:12 +0000 Manifest next update: Mon 09 Mar 2026 00:10:12 +0000 Files and hashes: 1: tg1afDY_D02TL-MXuQzmz4DSg8k.crl (hash: Wv5mu184jxZ6FdUvfQBe4P+TWXTEJI+uhRRGgsZHWTQ=) 2: 59AA22D06FFD11EA9160902DC4F9AE02.roa (hash: 4ySgU+Qbw483DuuzbhZ9kLRgi9y2rOI0pD1mNDl5sN4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.crl rsync://rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tg1afDY_D02TL-MXuQzmz4DSg8k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:10:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2751 (0xabf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118309, serialNumber=B60D5A7C363F0F4D932FE317B90CE6CF80D283C9 Validity Not Before: Mar 2 00:10:12 2026 GMT Not After : Mar 9 00:10:12 2026 GMT Subject: CN=69a4d565-a355 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:1b:aa:67:d4:e1:f7:0d:9f:85:ba:68:1f:45: c6:b0:f1:e7:ea:2d:17:ae:1e:16:8a:22:91:57:44: 95:cb:10:43:92:65:97:96:56:b9:05:e3:bc:ff:4e: 71:cd:b9:8a:63:a6:db:76:3a:e2:9c:e3:c5:3e:a4: 99:b1:04:60:4b:ae:0d:19:63:6e:61:bd:ab:a3:d0: d2:4c:f7:1c:56:e7:2f:03:52:9e:77:b0:e4:fd:54: be:2a:1c:92:52:80:c0:2e:3f:7a:14:c2:1b:be:77: d5:c8:66:b1:e2:e8:a8:cf:17:8c:bc:0b:8a:6d:55: 43:52:81:17:eb:40:4f:0d:96:2a:67:4f:2e:4e:43: 1a:66:08:4a:2b:da:6c:72:bf:82:fb:b7:28:b1:1e: 2d:4e:1e:a3:13:ef:66:b5:8d:e6:03:cb:ef:28:53: b0:75:4b:48:91:46:f1:dd:73:51:32:0f:da:68:c2: c6:e2:a5:71:89:a1:88:d5:47:5a:2f:1e:fc:46:05: c2:6a:1e:fb:61:6a:2b:6a:ea:90:a2:6d:3f:6e:d8: b8:28:b6:b9:20:b6:da:a5:2d:f1:26:85:38:55:92: 8a:1c:eb:21:39:15:32:b7:48:cf:76:a4:8f:0b:ae: 67:47:90:4f:6e:1c:42:47:b5:e8:fb:d1:61:74:45: 97:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:54:A7:02:CC:42:27:EB:36:DC:54:B5:E2:A3:85:3C:23:CB:6C:AE X509v3 Authority Key Identifier: keyid:B6:0D:5A:7C:36:3F:0F:4D:93:2F:E3:17:B9:0C:E6:CF:80:D2:83:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tg1afDY_D02TL-MXuQzmz4DSg8k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:6d:09:cd:13:b9:c7:88:93:58:cd:85:16:f0:ad:ec:6f:cf: 73:fb:83:5e:9a:bd:61:ab:8b:4a:44:a2:ba:d1:73:f4:6f:e4: 82:32:c2:ec:fe:62:19:90:ff:94:fe:4e:cf:7f:f8:dd:1a:4b: 2f:c8:1d:c0:fe:94:07:52:8c:1d:61:cc:cb:00:8e:77:7d:f1: bb:ad:99:c6:14:30:17:1a:12:80:ec:88:f2:81:6e:56:70:75: 39:5d:99:14:52:4a:00:71:ae:a3:03:88:30:15:8a:3f:a5:68: 8e:08:4c:09:05:43:e6:c1:ea:d7:8c:7e:16:7a:b8:3a:5f:c0: 09:c4:35:90:5f:b6:37:4a:39:1b:8e:73:df:14:2b:fc:0e:53: f0:05:b2:d0:b8:62:45:3c:ad:47:14:9e:4d:91:ad:c7:aa:18: aa:6e:5e:64:bf:a7:0b:08:74:5e:e4:d2:04:0e:b8:dd:2c:4a: 59:58:24:89:1b:2f:39:ef:92:0c:17:7c:10:0b:e7:7f:93:35: 69:87:ec:a4:61:08:10:37:d2:69:e6:dd:9a:14:78:55:f5:e4: 8c:dd:96:81:f7:63:fa:03:e5:c2:95:f8:bc:f4:39:b3:b4:1c: f0:c2:6c:1f:29:e5:0e:c7:cf:07:99:e9:0a:7d:a1:02:b0:ee: 70:58:b7:74 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCr8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTgzMDkxMTAvBgNVBAUTKEI2MEQ1QTdDMzYzRjBGNEQ5MzJGRTMxN0I5MENFNkNG ODBEMjgzQzkwHhcNMjYwMzAyMDAxMDEyWhcNMjYwMzA5MDAxMDEyWjAYMRYwFAYD VQQDEw02OWE0ZDU2NS1hMzU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzRuqZ9Th9w2fhbpoH0XGsPHn6i0Xrh4WiiKRV0SVyxBDkmWXlla5BeO8/05x zbmKY6bbdjrinOPFPqSZsQRgS64NGWNuYb2ro9DSTPccVucvA1Ked7Dk/VS+KhyS UoDALj96FMIbvnfVyGax4uiozxeMvAuKbVVDUoEX60BPDZYqZ08uTkMaZghKK9ps cr+C+7cosR4tTh6jE+9mtY3mA8vvKFOwdUtIkUbx3XNRMg/aaMLG4qVxiaGI1Uda Lx78RgXCah77YWorauqQom0/bti4KLa5ILbapS3xJoU4VZKKHOshORUyt0jPdqSP C65nR5BPbhxCR7Xo+9FhdEWXSQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBdUpwLM QifrNtxUteKjhTwjy2yuMB8GA1UdIwQYMBaAFLYNWnw2Pw9Nky/jF7kM5s+A0oPJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODMwOS8xQTQ4REM4NjZG RkMxMUVBODhGM0QyMkJDNEY5QUUwMi90ZzFhZkRZX0QwMlRMLU1YdVF6bXo0RFNn OGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RnMWFmRFlfRDAyVEwtTVh1UXptejREU2c4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx ODMwOS8xQTQ4REM4NjZGRkMxMUVBODhGM0QyMkJDNEY5QUUwMi90ZzFhZkRZX0Qw MlRMLU1YdVF6bXo0RFNnOGsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAmW0JzRO5x4iTWM2FFvCt7G/Pc/uDXpq9YauLSkSiutFz9G/kgjLC7P5iGZD/ lP5Oz3/43RpLL8gdwP6UB1KMHWHMywCOd33xu62ZxhQwFxoSgOyI8oFuVnB1OV2Z FFJKAHGuowOIMBWKP6VojghMCQVD5sHq14x+Fnq4Ol/ACcQ1kF+2N0o5G45z3xQr /A5T8AWy0LhiRTytRxSeTZGtx6oYqm5eZL+nCwh0XuTSBA643SxKWVgkiRsvOe+S DBd8EAvnf5M1aYfspGEIEDfSaebdmhR4VfXkjN2Wgfdj+gPlwpX4vPQ5s7Qc8MJs HynlDsfPB5npCn2hArDucFi3dA== -----END CERTIFICATE-----Generated at Mon Mar 2 15:02:16 2026 by rpki-client