$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0CD5/CD2B4B441D0B11EE87048A4CC4F9AE02/TH2sISA9rkFsH87q_FVlcgIiCKE.mft File: TH2sISA9rkFsH87q_FVlcgIiCKE.mft (raw, json) Hash identifier: 8ybj8TLVLc8CePuVqQxSIwYtUQKZSosjbVC3smKGVlU= Subject key identifier: D5:EB:F0:52:BB:9C:DE:8C:A3:32:0B:0E:40:E1:A7:E2:40:22:F6:37 Authority key identifier: 4C:7D:AC:21:20:3D:AE:41:6C:1F:CE:EA:FC:55:65:72:02:22:08:A1 Certificate issuer: /CN=A91C0CD5/serialNumber=4C7DAC21203DAE416C1FCEEAFC556572022208A1 Certificate serial: 0221 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TH2sISA9rkFsH87q_FVlcgIiCKE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0CD5/CD2B4B441D0B11EE87048A4CC4F9AE02/TH2sISA9rkFsH87q_FVlcgIiCKE.mft Manifest number: 0216 Signing time: Fri 17 Apr 2026 02:44:43 +0000 Manifest this update: Fri 17 Apr 2026 02:44:43 +0000 Manifest next update: Fri 24 Apr 2026 02:44:43 +0000 Files and hashes: 1: TH2sISA9rkFsH87q_FVlcgIiCKE.crl (hash: 7HjnbzGkXUGc4QYIBXaPUyrhyQKWAPjPFn9/8gl+DLM=) 2: 6EB972341D6011EEB28A4323C4F9AE02.roa (hash: Z4KCS8pqQW+6GdcUPkPrmcDRtL0IMSdenxwSxo9PlTw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0CD5/CD2B4B441D0B11EE87048A4CC4F9AE02/TH2sISA9rkFsH87q_FVlcgIiCKE.crl rsync://rpki.apnic.net/member_repository/A91C0CD5/CD2B4B441D0B11EE87048A4CC4F9AE02/TH2sISA9rkFsH87q_FVlcgIiCKE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TH2sISA9rkFsH87q_FVlcgIiCKE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 02:44:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 545 (0x221) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0CD5, serialNumber=4C7DAC21203DAE416C1FCEEAFC556572022208A1 Validity Not Before: Apr 17 02:44:43 2026 GMT Not After : Apr 24 02:44:43 2026 GMT Subject: CN=69e19e9b-5d39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:ae:12:2e:85:ad:4e:6f:e2:ca:c1:44:96:8d: 6a:90:b2:b5:fa:ec:81:91:bc:3b:7b:7a:71:81:6c: c7:0e:f4:cc:7a:80:b1:f0:5e:c1:b8:6c:eb:86:f4: ce:82:94:45:6e:c0:6f:98:9b:1d:43:44:2c:3b:fd: c1:d5:d9:b2:60:30:86:ba:0e:01:5e:c2:76:4d:56: 3d:78:1a:95:e9:a0:de:1e:b9:d2:ff:39:ee:64:1c: 2b:2f:d1:2b:28:c5:e3:c8:42:ac:b1:41:f6:d5:dc: ed:d2:c3:2d:2a:ab:7c:16:07:59:80:1b:d4:ef:05: 49:13:c7:6f:71:ba:a8:e1:ea:4e:ab:98:10:69:82: 65:73:c9:9e:d2:73:e5:3a:29:0b:9a:7c:d3:97:e6: 92:e1:a6:59:ce:38:63:27:01:36:fa:f8:a8:7c:b2: b4:af:ee:b4:a6:26:76:ec:e8:8f:6d:d8:ae:24:78: 0b:c9:14:22:02:e0:13:9f:7e:b6:09:79:52:2f:99: ec:0f:19:64:43:be:e8:c7:a2:c2:4b:66:d7:d5:ca: a6:e8:89:a2:bf:95:16:d6:62:85:fe:80:b8:5d:3e: c2:6e:22:32:34:35:1d:d3:41:b4:43:77:5f:72:38: 23:f7:f1:f4:7a:93:88:f6:14:3e:e1:17:de:13:68: bd:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:EB:F0:52:BB:9C:DE:8C:A3:32:0B:0E:40:E1:A7:E2:40:22:F6:37 X509v3 Authority Key Identifier: keyid:4C:7D:AC:21:20:3D:AE:41:6C:1F:CE:EA:FC:55:65:72:02:22:08:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0CD5/CD2B4B441D0B11EE87048A4CC4F9AE02/TH2sISA9rkFsH87q_FVlcgIiCKE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TH2sISA9rkFsH87q_FVlcgIiCKE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0CD5/CD2B4B441D0B11EE87048A4CC4F9AE02/TH2sISA9rkFsH87q_FVlcgIiCKE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b6:e2:cd:40:13:75:c5:81:36:4c:08:79:4f:87:2f:e9:8b:71: 69:07:fd:e6:0c:e2:33:5c:1e:9e:e1:ae:1b:9f:b7:ec:90:6d: f5:22:54:66:d1:40:a1:da:78:1d:93:2a:b0:74:40:c9:49:1b: f4:3d:d2:aa:56:b7:d5:65:1d:ac:b4:cc:b6:00:26:fd:37:f5: e4:4b:20:f5:0c:52:ee:61:65:88:4a:15:6a:5d:a9:a9:55:32: a6:86:ae:0e:30:47:98:11:8a:c0:46:05:df:99:94:ea:11:b4: 94:f7:99:22:b1:fa:e1:2b:96:7b:75:03:ae:4d:e1:71:e3:6a: b4:2e:f4:ab:3b:f2:13:21:95:66:bd:34:ea:69:d7:ea:d0:fe: f7:c0:1f:04:1f:4f:70:d0:05:7e:56:88:e2:68:fb:8f:fe:15: 40:ca:c3:e9:51:eb:5e:a9:fe:a5:bd:4d:51:5c:6f:55:91:2a: 89:00:00:4e:0a:c2:eb:6d:66:e9:a6:28:2f:eb:00:dc:8b:1f: 81:05:ce:ff:87:20:1b:8d:a2:67:9f:03:ae:70:33:32:a2:78: c3:5b:be:cc:27:a6:88:11:94:76:09:27:b6:e2:3d:5c:8a:9b: 55:46:fc:4e:aa:7c:76:30:45:2f:80:75:d4:22:7b:87:24:df: 41:3b:f7:c7 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAiEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBDRDUxMTAvBgNVBAUTKDRDN0RBQzIxMjAzREFFNDE2QzFGQ0VFQUZDNTU2NTcy MDIyMjA4QTEwHhcNMjYwNDE3MDI0NDQzWhcNMjYwNDI0MDI0NDQzWjAYMRYwFAYD VQQDEw02OWUxOWU5Yi01ZDM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyq4SLoWtTm/iysFElo1qkLK1+uyBkbw7e3pxgWzHDvTMeoCx8F7BuGzrhvTO gpRFbsBvmJsdQ0QsO/3B1dmyYDCGug4BXsJ2TVY9eBqV6aDeHrnS/znuZBwrL9Er KMXjyEKssUH21dzt0sMtKqt8FgdZgBvU7wVJE8dvcbqo4epOq5gQaYJlc8me0nPl OikLmnzTl+aS4aZZzjhjJwE2+viofLK0r+60piZ27OiPbdiuJHgLyRQiAuATn362 CXlSL5nsDxlkQ77ox6LCS2bX1cqm6Imiv5UW1mKF/oC4XT7CbiIyNDUd00G0Q3df cjgj9/H0epOI9hQ+4RfeE2i9IwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNXr8FK7 nN6MozILDkDhp+JAIvY3MB8GA1UdIwQYMBaAFEx9rCEgPa5BbB/O6vxVZXICIgih MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMENENS9DRDJCNEI0NDFE MEIxMUVFODcwNDhBNENDNEY5QUUwMi9USDJzSVNBOXJrRnNIODdxX0ZWbGNnSWlD S0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RIMnNJU0E5cmtGc0g4N3FfRlZsY2dJaUNLRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MENENS9DRDJCNEI0NDFEMEIxMUVFODcwNDhBNENDNEY5QUUwMi9USDJzSVNBOXJr RnNIODdxX0ZWbGNnSWlDS0UubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAtuLNQBN1xYE2TAh5T4cv6YtxaQf95gziM1wenuGuG5+37JBt9SJUZtFAodp4 HZMqsHRAyUkb9D3Sqla31WUdrLTMtgAm/Tf15Esg9QxS7mFliEoVal2pqVUypoau DjBHmBGKwEYF35mU6hG0lPeZIrH64SuWe3UDrk3hceNqtC70qzvyEyGVZr006mnX 6tD+98AfBB9PcNAFflaI4mj7j/4VQMrD6VHrXqn+pb1NUVxvVZEqiQAATgrC621m 6aYoL+sA3IsfgQXO/4cgG42iZ58DrnAzMqJ4w1u+zCemiBGUdgkntuI9XIqbVUb8 Tqp8djBFL4B11CJ7hyTfQTv3xw== -----END CERTIFICATE-----Generated at Fri Apr 17 09:27:29 2026 by rpki-client