$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0CD5/CD2B4B441D0B11EE87048A4CC4F9AE02/TH2sISA9rkFsH87q_FVlcgIiCKE.mft File: TH2sISA9rkFsH87q_FVlcgIiCKE.mft (raw, json) Hash identifier: RzEvZCkMD6lscHKJULOvNBjjDsvcRHqjZhz7EffGOJk= Subject key identifier: 6B:A6:E9:A4:90:F2:05:63:98:A8:6C:6E:F7:CB:2F:8A:07:AC:A8:E7 Authority key identifier: 4C:7D:AC:21:20:3D:AE:41:6C:1F:CE:EA:FC:55:65:72:02:22:08:A1 Certificate issuer: /CN=A91C0CD5/serialNumber=4C7DAC21203DAE416C1FCEEAFC556572022208A1 Certificate serial: 0205 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TH2sISA9rkFsH87q_FVlcgIiCKE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0CD5/CD2B4B441D0B11EE87048A4CC4F9AE02/TH2sISA9rkFsH87q_FVlcgIiCKE.mft Manifest number: 01FC Signing time: Sun 01 Mar 2026 04:00:39 +0000 Manifest this update: Sun 01 Mar 2026 04:00:38 +0000 Manifest next update: Sun 08 Mar 2026 04:00:38 +0000 Files and hashes: 1: TH2sISA9rkFsH87q_FVlcgIiCKE.crl (hash: cqZffl72kiUa+gs//dHFJ5TfZePQUqEzaKDOE0TAC4A=) 2: 6EB972341D6011EEB28A4323C4F9AE02.roa (hash: V7+xw0Oh19sCCsRJ/3dn3BE03yFJdR1cttirX6vRQc4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0CD5/CD2B4B441D0B11EE87048A4CC4F9AE02/TH2sISA9rkFsH87q_FVlcgIiCKE.crl rsync://rpki.apnic.net/member_repository/A91C0CD5/CD2B4B441D0B11EE87048A4CC4F9AE02/TH2sISA9rkFsH87q_FVlcgIiCKE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TH2sISA9rkFsH87q_FVlcgIiCKE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 04:00:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 517 (0x205) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0CD5, serialNumber=4C7DAC21203DAE416C1FCEEAFC556572022208A1 Validity Not Before: Mar 1 04:00:38 2026 GMT Not After : Mar 8 04:00:38 2026 GMT Subject: CN=69a3b9e7-4442 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:ce:80:40:21:2b:25:d8:ed:77:d0:cf:45:34: 63:35:8b:95:cf:84:47:f2:22:22:6e:be:62:0c:a4: 86:32:e5:6b:0b:14:1b:ec:36:07:09:85:75:35:4e: 50:7b:3a:35:13:c9:27:da:2c:4e:96:99:91:dc:67: 01:fb:f5:9e:4d:aa:da:dc:8a:ad:e3:c9:43:3c:61: d1:72:79:dc:d6:8e:da:be:49:93:a4:05:7f:b6:4c: 39:73:e2:c3:23:a2:2f:17:ad:3c:2d:a1:63:fb:76: ec:4e:a3:cf:4c:1c:de:a0:a1:02:76:b0:7c:da:fd: 72:b7:db:8a:84:a3:0b:01:20:bf:55:2b:c1:6a:15: 3b:a7:55:e8:53:aa:fe:e5:28:15:e7:73:55:aa:4e: 2d:3b:0e:c2:cd:40:00:84:02:0a:99:88:0e:88:dd: b1:bc:00:16:70:ac:4c:20:dd:90:c3:10:39:40:b2: b0:43:f5:02:50:03:61:40:ee:35:09:42:88:0f:18: be:9c:60:b6:d8:f4:a5:85:30:ee:df:bf:d1:8b:f7: a1:b4:eb:d2:c6:b6:34:15:52:36:2e:13:40:25:11: 11:7f:46:07:73:98:99:bc:66:04:b7:28:1e:7f:42: ab:48:c5:d8:32:85:cf:18:8c:e6:06:15:a5:89:ea: e5:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:A6:E9:A4:90:F2:05:63:98:A8:6C:6E:F7:CB:2F:8A:07:AC:A8:E7 X509v3 Authority Key Identifier: keyid:4C:7D:AC:21:20:3D:AE:41:6C:1F:CE:EA:FC:55:65:72:02:22:08:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0CD5/CD2B4B441D0B11EE87048A4CC4F9AE02/TH2sISA9rkFsH87q_FVlcgIiCKE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TH2sISA9rkFsH87q_FVlcgIiCKE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0CD5/CD2B4B441D0B11EE87048A4CC4F9AE02/TH2sISA9rkFsH87q_FVlcgIiCKE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:4d:b9:64:9d:91:5b:a3:0b:9b:9e:e5:5d:ca:d7:79:e0:ab: d5:8b:c6:95:11:f8:f4:49:b1:e7:b2:50:66:ce:6f:cc:f1:d7: 6f:27:d9:f3:97:e7:85:80:95:b6:3f:35:44:45:f4:a3:cf:fd: c1:95:fc:6f:d6:99:2b:55:9c:d4:91:c8:a7:c1:74:dc:0f:14: 80:26:57:e8:8f:54:eb:ec:26:27:a0:4d:01:fe:d5:6b:d2:e9: 73:8a:2d:fd:d5:76:f8:17:d0:46:f3:36:27:f1:be:ca:15:06: df:8e:5a:c9:df:8f:6f:df:6f:f0:b7:7f:30:c9:1c:23:7d:99: e9:84:1b:c1:ba:1c:ea:5a:df:f0:3d:f4:cf:08:20:94:be:ff: 57:a2:15:ec:3f:30:a3:06:0b:88:b6:a4:38:7d:a9:1b:63:b5: 5e:06:0a:fc:ad:73:ef:42:7c:f5:85:94:55:cd:f2:c5:30:f8: ab:08:ed:f9:fe:95:c7:b5:5f:81:70:38:96:04:7f:63:9b:43: 6b:f4:18:02:a6:1f:60:06:a5:63:5b:72:30:1a:16:cc:09:7b: 4a:13:d4:69:f0:49:cf:94:f4:63:92:e8:6f:61:3e:7b:eb:71: 6a:00:6c:ba:96:3f:79:28:f6:00:50:25:be:b9:e4:bf:7c:5e: 84:06:16:a4 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAgUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBDRDUxMTAvBgNVBAUTKDRDN0RBQzIxMjAzREFFNDE2QzFGQ0VFQUZDNTU2NTcy MDIyMjA4QTEwHhcNMjYwMzAxMDQwMDM4WhcNMjYwMzA4MDQwMDM4WjAYMRYwFAYD VQQDDA02OWEzYjllNy00NDQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAts6AQCErJdjtd9DPRTRjNYuVz4RH8iIibr5iDKSGMuVrCxQb7DYHCYV1NU5Q ezo1E8kn2ixOlpmR3GcB+/WeTara3Iqt48lDPGHRcnnc1o7avkmTpAV/tkw5c+LD I6IvF608LaFj+3bsTqPPTBzeoKECdrB82v1yt9uKhKMLASC/VSvBahU7p1XoU6r+ 5SgV53NVqk4tOw7CzUAAhAIKmYgOiN2xvAAWcKxMIN2QwxA5QLKwQ/UCUANhQO41 CUKIDxi+nGC22PSlhTDu37/Ri/ehtOvSxrY0FVI2LhNAJRERf0YHc5iZvGYEtyge f0KrSMXYMoXPGIzmBhWlierl6QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGum6aSQ 8gVjmKhsbvfLL4oHrKjnMB8GA1UdIwQYMBaAFEx9rCEgPa5BbB/O6vxVZXICIgih MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMENENS9DRDJCNEI0NDFE MEIxMUVFODcwNDhBNENDNEY5QUUwMi9USDJzSVNBOXJrRnNIODdxX0ZWbGNnSWlD S0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RIMnNJU0E5cmtGc0g4N3FfRlZsY2dJaUNLRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MENENS9DRDJCNEI0NDFEMEIxMUVFODcwNDhBNENDNEY5QUUwMi9USDJzSVNBOXJr RnNIODdxX0ZWbGNnSWlDS0UubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAs025ZJ2RW6MLm57lXcrXeeCr1YvGlRH49Emx57JQZs5vzPHXbyfZ85fnhYCV tj81REX0o8/9wZX8b9aZK1Wc1JHIp8F03A8UgCZX6I9U6+wmJ6BNAf7Va9Lpc4ot /dV2+BfQRvM2J/G+yhUG345ayd+Pb99v8Ld/MMkcI32Z6YQbwboc6lrf8D30zwgg lL7/V6IV7D8wowYLiLakOH2pG2O1XgYK/K1z70J89YWUVc3yxTD4qwjt+f6Vx7Vf gXA4lgR/Y5tDa/QYAqYfYAalY1tyMBoWzAl7ShPUafBJz5T0Y5Lob2E+e+txagBs upY/eSj2AFAlvrnkv3xehAYWpA== -----END CERTIFICATE-----Generated at Mon Mar 2 00:10:58 2026 by rpki-client