$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5533/061151F21A4E11EA9E09CC82C4F9AE02/TIHwGTocVyRFf1LgThHyUnPm_uA.mft File: TIHwGTocVyRFf1LgThHyUnPm_uA.mft (raw, json) Hash identifier: /FjWKOh4PU006ynmX3ffn2Ou//jX46q4sJHyadZ/1gw= Subject key identifier: 9A:80:2C:67:5C:40:E8:C1:BF:38:06:4B:A0:04:91:42:A8:07:0F:E2 Authority key identifier: 4C:81:F0:19:3A:1C:57:24:45:7F:52:E0:4E:11:F2:52:73:E6:FE:E0 Certificate issuer: /CN=A91A5533/serialNumber=4C81F0193A1C5724457F52E04E11F25273E6FEE0 Certificate serial: 0C6F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TIHwGTocVyRFf1LgThHyUnPm_uA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5533/061151F21A4E11EA9E09CC82C4F9AE02/TIHwGTocVyRFf1LgThHyUnPm_uA.mft Manifest number: 0C65 Signing time: Sun 01 Mar 2026 23:38:16 +0000 Manifest this update: Sun 01 Mar 2026 23:38:14 +0000 Manifest next update: Sun 08 Mar 2026 23:38:14 +0000 Files and hashes: 1: TIHwGTocVyRFf1LgThHyUnPm_uA.crl (hash: EmcMRP7N1ISaA3Zi8r3b6hupoB0e9/4Bt9Nl5+hPWpk=) 2: 637A6FCC1AEE11EAAEFD5871C4F9AE02.roa (hash: fCQoX/IOk+ffJFhlDwImCtw5kH5m+tUwlmOkb8YNpXU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5533/061151F21A4E11EA9E09CC82C4F9AE02/TIHwGTocVyRFf1LgThHyUnPm_uA.crl rsync://rpki.apnic.net/member_repository/A91A5533/061151F21A4E11EA9E09CC82C4F9AE02/TIHwGTocVyRFf1LgThHyUnPm_uA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TIHwGTocVyRFf1LgThHyUnPm_uA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:38:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3183 (0xc6f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5533, serialNumber=4C81F0193A1C5724457F52E04E11F25273E6FEE0 Validity Not Before: Mar 1 23:38:14 2026 GMT Not After : Mar 8 23:38:14 2026 GMT Subject: CN=69a4cde7-3d2f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:47:ce:0c:07:53:55:7c:12:3c:d7:27:0d:05: 5f:ff:13:a9:36:77:e8:b1:71:0a:f7:b4:44:d6:9e: 11:a4:a8:61:2c:29:e6:60:82:5f:ef:e0:9b:a0:d5: 9c:28:64:c3:d3:60:63:ac:61:83:c1:b5:f8:00:9e: b2:22:de:11:f2:9c:f8:a9:cb:78:51:74:ce:52:38: 5c:05:ff:4a:a1:e9:05:9a:7c:5e:d1:1d:9a:6f:41: f2:fd:85:8f:91:01:4d:25:e6:0b:32:51:a0:00:38: 50:f3:c2:bb:3c:67:97:f1:3e:4c:16:7e:98:61:0f: 23:dd:15:eb:68:1a:bf:37:34:d0:87:b6:4a:8b:dc: 9c:07:be:64:56:e0:66:8e:f8:cd:3a:58:ec:73:58: 2e:b5:cf:6b:ab:f2:ee:f6:34:be:b2:ed:8b:50:2f: 1a:0f:ae:bc:00:52:d4:e6:f3:85:ce:41:bc:11:aa: f9:e2:da:10:05:f5:24:a4:ee:0c:64:36:a4:3a:fd: e9:e9:e9:85:f4:57:fd:08:db:14:f9:34:70:f7:d0: ff:b9:c4:fb:24:cc:1b:74:e4:f7:9c:ef:0b:fa:49: 61:07:56:32:38:ae:2b:97:b1:48:81:c2:04:84:79: 63:57:ae:c0:c4:92:80:ad:71:42:55:3b:17:03:22: 91:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:80:2C:67:5C:40:E8:C1:BF:38:06:4B:A0:04:91:42:A8:07:0F:E2 X509v3 Authority Key Identifier: keyid:4C:81:F0:19:3A:1C:57:24:45:7F:52:E0:4E:11:F2:52:73:E6:FE:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5533/061151F21A4E11EA9E09CC82C4F9AE02/TIHwGTocVyRFf1LgThHyUnPm_uA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TIHwGTocVyRFf1LgThHyUnPm_uA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5533/061151F21A4E11EA9E09CC82C4F9AE02/TIHwGTocVyRFf1LgThHyUnPm_uA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:cf:ce:ca:6b:63:fa:ab:89:6a:a9:1f:b2:3e:52:6b:0e:15: eb:58:2e:b8:56:4d:4f:6d:91:04:24:e7:ee:a6:9a:72:fc:a0: 08:46:cc:6b:02:31:29:13:e7:2e:cc:60:76:ad:01:2a:aa:8e: 5c:30:15:3e:15:c4:e2:25:57:37:bb:1f:75:48:d8:a8:60:6e: b8:bb:1f:2e:0c:c6:85:8f:28:86:0a:d2:fa:00:c0:22:93:0e: a1:50:27:96:3e:16:43:b4:2e:08:0f:ff:47:c3:82:5a:fe:34: 14:56:46:89:2c:49:8b:2a:4e:4f:47:71:c6:0b:8c:aa:9f:91: 6f:0e:7e:bc:77:e2:4f:3c:a8:a2:23:76:19:c7:47:93:8f:17: 2b:21:ad:f1:98:cd:93:98:9e:20:d6:31:09:9a:26:24:e4:42: 31:ee:0f:5b:03:7b:ec:f3:45:e1:25:2b:ef:8f:6d:55:9d:e1: bf:0e:fb:e1:1e:16:07:4f:c6:46:9e:e0:a6:04:d8:8a:35:93: b0:99:33:65:72:57:c0:a2:fc:6d:9d:4f:fd:cd:cf:9e:5f:a5: 02:a8:7b:4b:d5:12:76:93:36:05:af:44:91:40:49:06:4a:f8: c4:a7:dd:a9:8b:53:fe:ef:05:04:8f:33:fb:46:6a:28:18:f3: 36:a7:bb:3a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDG8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU1MzMxMTAvBgNVBAUTKDRDODFGMDE5M0ExQzU3MjQ0NTdGNTJFMDRFMTFGMjUy NzNFNkZFRTAwHhcNMjYwMzAxMjMzODE0WhcNMjYwMzA4MjMzODE0WjAYMRYwFAYD VQQDEw02OWE0Y2RlNy0zZDJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw0fODAdTVXwSPNcnDQVf/xOpNnfosXEK97RE1p4RpKhhLCnmYIJf7+CboNWc KGTD02BjrGGDwbX4AJ6yIt4R8pz4qct4UXTOUjhcBf9KoekFmnxe0R2ab0Hy/YWP kQFNJeYLMlGgADhQ88K7PGeX8T5MFn6YYQ8j3RXraBq/NzTQh7ZKi9ycB75kVuBm jvjNOljsc1gutc9rq/Lu9jS+su2LUC8aD668AFLU5vOFzkG8Ear54toQBfUkpO4M ZDakOv3p6emF9Ff9CNsU+TRw99D/ucT7JMwbdOT3nO8L+klhB1YyOK4rl7FIgcIE hHljV67AxJKArXFCVTsXAyKRqQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJqALGdc QOjBvzgGS6AEkUKoBw/iMB8GA1UdIwQYMBaAFEyB8Bk6HFckRX9S4E4R8lJz5v7g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTUzMy8wNjExNTFGMjFB NEUxMUVBOUUwOUNDODJDNEY5QUUwMi9USUh3R1RvY1Z5UkZmMUxnVGhIeVVuUG1f dUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RJSHdHVG9jVnlSRmYxTGdUaEh5VW5QbV91QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTUzMy8wNjExNTFGMjFBNEUxMUVBOUUwOUNDODJDNEY5QUUwMi9USUh3R1RvY1Z5 UkZmMUxnVGhIeVVuUG1fdUEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAMM/Oymtj+quJaqkfsj5Saw4V61guuFZNT22RBCTn7qaacvygCEbMawIxKRPn Lsxgdq0BKqqOXDAVPhXE4iVXN7sfdUjYqGBuuLsfLgzGhY8ohgrS+gDAIpMOoVAn lj4WQ7QuCA//R8OCWv40FFZGiSxJiypOT0dxxguMqp+Rbw5+vHfiTzyooiN2GcdH k48XKyGt8ZjNk5ieINYxCZomJORCMe4PWwN77PNF4SUr749tVZ3hvw774R4WB0/G Rp7gpgTYijWTsJkzZXJXwKL8bZ1P/c3Pnl+lAqh7S9USdpM2Ba9EkUBJBkr4xKfd qYtT/u8FBI8z+0ZqKBjzNqe7Og== -----END CERTIFICATE-----Generated at Mon Mar 2 08:05:09 2026 by rpki-client