$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5533/061151F21A4E11EA9E09CC82C4F9AE02/TIHwGTocVyRFf1LgThHyUnPm_uA.mft File: TIHwGTocVyRFf1LgThHyUnPm_uA.mft (raw, json) Hash identifier: dKxQz5iMHYrtMpcGO4Y6Qozw2IYCHRHrvaYeeb1Em3A= Subject key identifier: 3E:E5:48:3B:9F:78:7A:98:04:8C:6E:BC:AC:33:92:78:AA:8E:64:2A Authority key identifier: 4C:81:F0:19:3A:1C:57:24:45:7F:52:E0:4E:11:F2:52:73:E6:FE:E0 Certificate issuer: /CN=A91A5533/serialNumber=4C81F0193A1C5724457F52E04E11F25273E6FEE0 Certificate serial: 0C87 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TIHwGTocVyRFf1LgThHyUnPm_uA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5533/061151F21A4E11EA9E09CC82C4F9AE02/TIHwGTocVyRFf1LgThHyUnPm_uA.mft Manifest number: 0C7D Signing time: Thu 16 Apr 2026 18:30:54 +0000 Manifest this update: Thu 16 Apr 2026 18:30:54 +0000 Manifest next update: Thu 23 Apr 2026 18:30:54 +0000 Files and hashes: 1: TIHwGTocVyRFf1LgThHyUnPm_uA.crl (hash: lrFeS739wCtM7i+sQTau++hxHs1BZHr5lhr2PGlvaJM=) 2: 637A6FCC1AEE11EAAEFD5871C4F9AE02.roa (hash: fCQoX/IOk+ffJFhlDwImCtw5kH5m+tUwlmOkb8YNpXU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5533/061151F21A4E11EA9E09CC82C4F9AE02/TIHwGTocVyRFf1LgThHyUnPm_uA.crl rsync://rpki.apnic.net/member_repository/A91A5533/061151F21A4E11EA9E09CC82C4F9AE02/TIHwGTocVyRFf1LgThHyUnPm_uA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TIHwGTocVyRFf1LgThHyUnPm_uA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 18:30:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3207 (0xc87) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5533, serialNumber=4C81F0193A1C5724457F52E04E11F25273E6FEE0 Validity Not Before: Apr 16 18:30:54 2026 GMT Not After : Apr 23 18:30:54 2026 GMT Subject: CN=69e12ade-76ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:3b:17:a9:a5:06:3e:5e:15:55:c6:bb:72:d7: 29:6a:9e:82:6a:94:57:2d:c4:8f:b1:70:b8:3e:68: 9d:ce:a7:a3:0b:3a:c7:de:25:d3:c5:fe:7a:73:b9: e2:c2:ca:e1:9e:0c:23:9c:cc:4e:d2:11:4a:d3:e9: af:64:f0:eb:cf:39:c6:9d:ae:37:09:3d:a9:cd:2b: 55:89:e2:d8:52:42:c0:37:36:29:af:0f:d5:44:41: aa:d6:72:c8:49:4a:cb:16:07:60:04:ea:46:38:33: f1:e2:37:6c:64:4a:58:8d:17:5d:a2:d7:e5:ab:d7: 76:0b:84:b3:c8:b2:65:6d:b2:68:2e:12:73:d7:db: 20:3c:0c:5b:a7:a1:41:5f:51:e5:23:ad:90:13:05: b8:a3:1f:1d:b5:ac:3d:3f:1a:8a:bb:9b:f8:85:93: b8:de:9a:eb:a5:9a:83:9c:eb:a0:1d:05:f9:f7:0b: 04:43:48:0e:24:26:00:ee:24:e6:16:40:df:0d:36: f3:79:55:3f:f5:02:52:aa:aa:f7:f3:61:50:52:a6: ae:d6:c2:72:57:52:cd:e2:5d:92:9c:1d:0f:ff:4e: 9a:4a:e7:cd:cc:c9:9d:98:11:83:3a:fb:8b:51:e2: f1:cf:ae:4f:a4:6e:ce:8c:2b:53:4d:a1:10:66:ba: 76:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:E5:48:3B:9F:78:7A:98:04:8C:6E:BC:AC:33:92:78:AA:8E:64:2A X509v3 Authority Key Identifier: keyid:4C:81:F0:19:3A:1C:57:24:45:7F:52:E0:4E:11:F2:52:73:E6:FE:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5533/061151F21A4E11EA9E09CC82C4F9AE02/TIHwGTocVyRFf1LgThHyUnPm_uA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TIHwGTocVyRFf1LgThHyUnPm_uA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5533/061151F21A4E11EA9E09CC82C4F9AE02/TIHwGTocVyRFf1LgThHyUnPm_uA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:2d:5e:96:b8:84:fc:77:80:1c:77:fe:2e:13:38:00:97:ce: fd:b4:16:bb:66:39:54:a2:da:45:43:4f:b0:c5:16:2b:ca:57: b4:bc:2c:f8:fa:eb:da:f6:0b:f6:c2:a6:aa:d6:81:a8:28:dd: b6:47:00:50:d7:0c:38:08:61:39:76:77:9c:60:cd:aa:cb:d8: f5:09:25:51:3d:e0:80:93:79:4d:a9:01:8e:4b:e6:38:e3:17: 15:b1:9d:39:b4:02:6e:f2:c0:dc:4a:1d:af:d5:48:27:c8:1d: 67:00:b8:92:f8:5a:8c:48:3a:3a:6c:a1:85:3a:26:56:da:d6: 89:ae:9b:6e:97:b1:a5:fa:72:fe:4a:75:d5:fa:ea:a2:4b:69: 8b:98:c1:7c:bb:c5:76:f9:45:8f:97:43:d0:32:e6:a3:3f:f2: d5:06:6a:a1:e2:71:d7:c6:cb:3c:61:3d:4f:bf:eb:a2:98:c2: 47:5e:e6:7a:28:14:e5:b2:ba:b7:14:12:d4:ba:0b:06:58:b2: 0a:f7:32:9a:b6:fa:d7:96:69:5c:a9:18:f4:fb:f0:1c:f9:2a: 5b:2f:10:a5:1b:fd:33:68:23:e5:1f:eb:0c:0d:e2:0b:61:99: 58:77:2b:18:d9:c2:59:d9:e9:3d:e5:97:8f:86:6e:de:b2:f6: 65:e1:e3:f7 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDIcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU1MzMxMTAvBgNVBAUTKDRDODFGMDE5M0ExQzU3MjQ0NTdGNTJFMDRFMTFGMjUy NzNFNkZFRTAwHhcNMjYwNDE2MTgzMDU0WhcNMjYwNDIzMTgzMDU0WjAYMRYwFAYD VQQDEw02OWUxMmFkZS03NmVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAiTsXqaUGPl4VVca7ctcpap6CapRXLcSPsXC4PmidzqejCzrH3iXTxf56c7ni wsrhngwjnMxO0hFK0+mvZPDrzznGna43CT2pzStVieLYUkLANzYprw/VREGq1nLI SUrLFgdgBOpGODPx4jdsZEpYjRddotflq9d2C4SzyLJlbbJoLhJz19sgPAxbp6FB X1HlI62QEwW4ox8dtaw9PxqKu5v4hZO43prrpZqDnOugHQX59wsEQ0gOJCYA7iTm FkDfDTbzeVU/9QJSqqr382FQUqau1sJyV1LN4l2SnB0P/06aSufNzMmdmBGDOvuL UeLxz65PpG7OjCtTTaEQZrp28QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFD7lSDuf eHqYBIxuvKwzkniqjmQqMB8GA1UdIwQYMBaAFEyB8Bk6HFckRX9S4E4R8lJz5v7g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTUzMy8wNjExNTFGMjFB NEUxMUVBOUUwOUNDODJDNEY5QUUwMi9USUh3R1RvY1Z5UkZmMUxnVGhIeVVuUG1f dUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RJSHdHVG9jVnlSRmYxTGdUaEh5VW5QbV91QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTUzMy8wNjExNTFGMjFBNEUxMUVBOUUwOUNDODJDNEY5QUUwMi9USUh3R1RvY1Z5 UkZmMUxnVGhIeVVuUG1fdUEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAbi1elriE/HeAHHf+LhM4AJfO/bQWu2Y5VKLaRUNPsMUWK8pXtLws+Prr2vYL 9sKmqtaBqCjdtkcAUNcMOAhhOXZ3nGDNqsvY9QklUT3ggJN5TakBjkvmOOMXFbGd ObQCbvLA3Eodr9VIJ8gdZwC4kvhajEg6OmyhhTomVtrWia6bbpexpfpy/kp11frq oktpi5jBfLvFdvlFj5dD0DLmoz/y1QZqoeJx18bLPGE9T7/ropjCR17meigU5bK6 txQS1LoLBliyCvcymrb615ZpXKkY9PvwHPkqWy8QpRv9M2gj5R/rDA3iC2GZWHcr GNnCWdnpPeWXj4Zu3rL2ZeHj9w== -----END CERTIFICATE-----Generated at Fri Apr 17 13:24:46 2026 by rpki-client