$ rpki-client -vvf rpki.apnic.net/member_repository/A911A4F7/9A58C38A85FC11EFBC210F5EC4F9AE02/tdlVl3raRoOsW1nCWBi0Q4HCT-Y.mft File: tdlVl3raRoOsW1nCWBi0Q4HCT-Y.mft (raw, json) Hash identifier: irxHIPDJAdK8DWZ8dzQ6LLCclXT3zHR7XegH4jSy+TI= Subject key identifier: 5D:39:10:A8:C3:CD:DB:FC:1A:77:2D:56:FE:6D:3D:01:F9:59:1C:25 Authority key identifier: B5:D9:55:97:7A:DA:46:83:AC:5B:59:C2:58:18:B4:43:81:C2:4F:E6 Certificate issuer: /CN=A911A4F7/serialNumber=B5D955977ADA4683AC5B59C25818B44381C24FE6 Certificate serial: 0107 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tdlVl3raRoOsW1nCWBi0Q4HCT-Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911A4F7/9A58C38A85FC11EFBC210F5EC4F9AE02/tdlVl3raRoOsW1nCWBi0Q4HCT-Y.mft Manifest number: 0105 Signing time: Sun 01 Mar 2026 07:06:43 +0000 Manifest this update: Sun 01 Mar 2026 07:06:43 +0000 Manifest next update: Sun 08 Mar 2026 07:06:43 +0000 Files and hashes: 1: tdlVl3raRoOsW1nCWBi0Q4HCT-Y.crl (hash: i+T+qEGOL/sx/OSXFKprE/22LWknzR4rYaMuXeLy8c8=) 2: F17DA0FE85FC11EFBD7A485FC4F9AE02.roa (hash: +1YVoYAarcTcq9CjGoyqxTV7x6G+Zf3EIQipKgeUN5Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911A4F7/9A58C38A85FC11EFBC210F5EC4F9AE02/tdlVl3raRoOsW1nCWBi0Q4HCT-Y.crl rsync://rpki.apnic.net/member_repository/A911A4F7/9A58C38A85FC11EFBC210F5EC4F9AE02/tdlVl3raRoOsW1nCWBi0Q4HCT-Y.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tdlVl3raRoOsW1nCWBi0Q4HCT-Y.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 07:06:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 263 (0x107) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911A4F7, serialNumber=B5D955977ADA4683AC5B59C25818B44381C24FE6 Validity Not Before: Mar 1 07:06:43 2026 GMT Not After : Mar 8 07:06:43 2026 GMT Subject: CN=69a3e583-07d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:56:c0:d5:48:e5:6a:46:35:79:2c:7d:d0:ea: 13:0f:6d:be:01:35:42:33:a8:fd:a0:0d:6a:a6:b9: c7:0f:8e:93:a6:23:a5:2a:26:b6:35:4a:cc:0b:1f: 2a:ce:ff:7c:c6:f6:5a:8a:52:83:6d:f1:d4:5f:24: ec:bb:98:7f:63:b6:08:3c:3f:fd:93:df:bc:3e:b8: d5:67:8e:ff:63:71:b1:61:22:2e:22:6c:5d:66:a2: 5d:1e:40:5c:67:bc:87:9e:b5:b3:f7:f7:66:c6:94: 68:21:7c:00:ad:62:7b:8b:a1:00:40:62:e5:87:eb: 9d:dd:9d:b7:52:7e:03:db:9e:b4:61:e8:fd:c2:d6: d8:f9:b7:a3:4e:a6:05:1f:9c:c4:79:42:1e:13:53: 07:df:64:2a:aa:19:6c:05:cd:f7:1d:4f:79:df:50: 93:c7:4a:3b:b6:4e:2b:30:9f:b9:5e:5c:f1:d9:5a: 88:19:d2:e6:27:df:fa:53:5c:a1:84:00:ed:55:d6: c0:9c:ab:6e:77:c6:29:3c:dd:35:af:e8:24:4b:c0: 65:ef:1d:4a:86:b0:a1:1f:05:5c:0a:33:93:f8:77: 05:2e:55:9f:d5:a2:e7:99:db:5e:6d:39:ea:21:a8: 81:bb:43:75:46:75:3f:00:92:d8:58:6b:61:22:7a: 38:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:39:10:A8:C3:CD:DB:FC:1A:77:2D:56:FE:6D:3D:01:F9:59:1C:25 X509v3 Authority Key Identifier: keyid:B5:D9:55:97:7A:DA:46:83:AC:5B:59:C2:58:18:B4:43:81:C2:4F:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911A4F7/9A58C38A85FC11EFBC210F5EC4F9AE02/tdlVl3raRoOsW1nCWBi0Q4HCT-Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tdlVl3raRoOsW1nCWBi0Q4HCT-Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911A4F7/9A58C38A85FC11EFBC210F5EC4F9AE02/tdlVl3raRoOsW1nCWBi0Q4HCT-Y.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:71:59:9e:0d:c2:5a:14:7f:cf:7a:e9:4c:86:b8:0e:bf:e9: 41:43:46:fc:6b:81:d2:82:c4:85:59:9a:bd:46:b7:d9:a1:fe: 83:96:23:1e:f3:e6:87:74:43:c7:fc:73:45:40:bd:67:47:54: 8b:ed:50:e7:cd:5f:55:f2:0a:e3:8c:c7:e0:a7:bb:75:cc:bb: cc:05:2f:28:e1:a1:70:49:fe:68:a6:68:43:35:8d:a5:56:c1: 04:f6:8b:45:e8:fb:2f:fa:63:23:28:28:96:64:7c:df:4c:f2: d1:80:dd:1a:80:85:f9:7f:ee:f9:e4:85:10:f3:47:b6:a5:fa: 20:53:75:22:98:ab:d4:9b:78:52:38:59:38:3a:94:79:6e:0b: 63:39:fe:d2:7e:73:87:48:b8:13:06:e4:ed:2b:02:32:f5:34: cb:52:94:92:6c:9b:04:29:c8:35:b5:63:bf:c8:62:57:ca:d4: b3:a9:76:5a:9b:d7:61:ee:14:4d:7c:06:ec:67:0e:cd:ed:2b: 58:58:a5:d7:83:67:c1:5b:e0:33:6a:04:67:c2:39:24:c7:09: ba:58:4e:ec:e1:ef:42:7c:a0:d3:34:e5:6c:f4:f4:cd:70:9e: fd:23:71:0a:4b:03:b6:57:1d:3f:18:6f:c4:3b:85:8d:e0:81: a1:ac:a4:bd -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAQcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUE0RjcxMTAvBgNVBAUTKEI1RDk1NTk3N0FEQTQ2ODNBQzVCNTlDMjU4MThCNDQz ODFDMjRGRTYwHhcNMjYwMzAxMDcwNjQzWhcNMjYwMzA4MDcwNjQzWjAYMRYwFAYD VQQDEw02OWEzZTU4My0wN2Q5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAllbA1UjlakY1eSx90OoTD22+ATVCM6j9oA1qprnHD46TpiOlKia2NUrMCx8q zv98xvZailKDbfHUXyTsu5h/Y7YIPD/9k9+8PrjVZ47/Y3GxYSIuImxdZqJdHkBc Z7yHnrWz9/dmxpRoIXwArWJ7i6EAQGLlh+ud3Z23Un4D2560Yej9wtbY+bejTqYF H5zEeUIeE1MH32QqqhlsBc33HU9531CTx0o7tk4rMJ+5Xlzx2VqIGdLmJ9/6U1yh hADtVdbAnKtud8YpPN01r+gkS8Bl7x1KhrChHwVcCjOT+HcFLlWf1aLnmdtebTnq IaiBu0N1RnU/AJLYWGthIno4aQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFF05EKjD zdv8GnctVv5tPQH5WRwlMB8GA1UdIwQYMBaAFLXZVZd62kaDrFtZwlgYtEOBwk/m MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQTRGNy85QTU4QzM4QTg1 RkMxMUVGQkMyMTBGNUVDNEY5QUUwMi90ZGxWbDNyYVJvT3NXMW5DV0JpMFE0SENU LVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3RkbFZsM3JhUm9Pc1cxbkNXQmkwUTRIQ1QtWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QTRGNy85QTU4QzM4QTg1RkMxMUVGQkMyMTBGNUVDNEY5QUUwMi90ZGxWbDNyYVJv T3NXMW5DV0JpMFE0SENULVkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAYnFZng3CWhR/z3rpTIa4Dr/pQUNG/GuB0oLEhVmavUa32aH+g5YjHvPmh3RD x/xzRUC9Z0dUi+1Q581fVfIK44zH4Ke7dcy7zAUvKOGhcEn+aKZoQzWNpVbBBPaL Rej7L/pjIygolmR830zy0YDdGoCF+X/u+eSFEPNHtqX6IFN1Ipir1Jt4UjhZODqU eW4LYzn+0n5zh0i4Ewbk7SsCMvU0y1KUkmybBCnINbVjv8hiV8rUs6l2WpvXYe4U TXwG7GcOze0rWFil14NnwVvgM2oEZ8I5JMcJulhO7OHvQnyg0zTlbPT0zXCe/SNx CksDtlcdPxhvxDuFjeCBoaykvQ== -----END CERTIFICATE-----Generated at Mon Mar 2 02:17:33 2026 by rpki-client