$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD0DE/4F769D58A98F11F0B1FA5066C4F9AE02/tkP-swMnQhSPOvnDU5M41VSTcig.mft File: tkP-swMnQhSPOvnDU5M41VSTcig.mft (raw, json) Hash identifier: pAv4Ecm1lVlwEu6QRpCeYkssTkeVa4XAV3B2xalqPZs= Subject key identifier: EE:4B:B7:11:58:52:61:48:0A:C7:44:A5:62:EA:E4:04:9B:AC:B6:2E Authority key identifier: B6:43:FE:B3:03:27:42:14:8F:3A:F9:C3:53:93:38:D5:54:93:72:28 Certificate issuer: /CN=A91CD0DE/serialNumber=B643FEB3032742148F3AF9C3539338D554937228 Certificate serial: 4A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tkP-swMnQhSPOvnDU5M41VSTcig.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD0DE/4F769D58A98F11F0B1FA5066C4F9AE02/tkP-swMnQhSPOvnDU5M41VSTcig.mft Manifest number: 48 Signing time: Sun 01 Mar 2026 09:43:22 +0000 Manifest this update: Sun 01 Mar 2026 09:43:21 +0000 Manifest next update: Sun 08 Mar 2026 09:43:21 +0000 Files and hashes: 1: tkP-swMnQhSPOvnDU5M41VSTcig.crl (hash: EA5YlbKiPa2s+E7kATQtAN4nz/Crup0ua8uMh4YDZGQ=) 2: 341BBBECA99411F093BBAA15C4F9AE02.roa (hash: PpvqloufX06LkcG9zYWZ5Pcx+1uUm6NtfRlAU1EzgwM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD0DE/4F769D58A98F11F0B1FA5066C4F9AE02/tkP-swMnQhSPOvnDU5M41VSTcig.crl rsync://rpki.apnic.net/member_repository/A91CD0DE/4F769D58A98F11F0B1FA5066C4F9AE02/tkP-swMnQhSPOvnDU5M41VSTcig.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tkP-swMnQhSPOvnDU5M41VSTcig.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 09:43:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74 (0x4a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD0DE, serialNumber=B643FEB3032742148F3AF9C3539338D554937228 Validity Not Before: Mar 1 09:43:21 2026 GMT Not After : Mar 8 09:43:21 2026 GMT Subject: CN=69a40a3a-38a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:b0:be:d6:4c:04:77:5c:cb:89:25:a1:bc:b0: d0:a1:e5:b0:be:e3:c6:3d:b7:e6:f0:50:95:ba:d4: 04:ba:9d:f5:1b:d8:14:c5:09:ae:0e:64:f9:bf:0c: 10:4f:4a:ef:13:6d:70:6d:02:24:8b:80:f3:21:c2: 9d:82:08:0e:d8:88:45:46:05:03:2f:b5:73:54:0a: fc:95:b4:8b:4b:04:b8:2f:45:5c:52:f5:5d:1b:c7: 0e:3b:da:1e:53:d2:5b:61:91:90:34:b7:bf:67:55: 17:89:19:93:c0:be:bd:09:17:78:be:3b:4e:4d:7d: 14:38:1b:31:f3:e5:ae:88:a7:a3:94:2a:da:7e:ee: 23:9d:69:11:88:7b:76:00:3f:cd:8d:43:7d:34:71: 1c:a2:c8:fd:20:cf:f5:15:66:0a:68:ab:c1:9d:46: a4:58:98:a0:ee:03:9c:87:c3:d8:7e:33:c1:f0:1d: be:ed:2b:a5:5c:7e:f0:e7:25:c5:5a:2b:7a:67:4a: e6:15:29:77:99:1c:b1:39:98:36:6c:53:3d:31:ac: 36:a8:93:85:98:d5:98:19:b5:82:0f:21:f5:d1:32: f2:b6:6d:29:7f:8a:ea:ee:c4:c6:d7:d1:71:f5:3f: e0:d7:bd:6d:25:b7:a6:21:60:1e:75:a5:b9:8e:27: 18:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:4B:B7:11:58:52:61:48:0A:C7:44:A5:62:EA:E4:04:9B:AC:B6:2E X509v3 Authority Key Identifier: keyid:B6:43:FE:B3:03:27:42:14:8F:3A:F9:C3:53:93:38:D5:54:93:72:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD0DE/4F769D58A98F11F0B1FA5066C4F9AE02/tkP-swMnQhSPOvnDU5M41VSTcig.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tkP-swMnQhSPOvnDU5M41VSTcig.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD0DE/4F769D58A98F11F0B1FA5066C4F9AE02/tkP-swMnQhSPOvnDU5M41VSTcig.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:7d:c0:3e:37:ca:fa:a7:a6:a7:eb:b1:56:cf:98:26:8a:54: bc:b1:62:cc:11:1b:38:bd:43:b6:8c:44:bb:b4:88:c5:85:81: 02:a9:65:71:29:fa:62:a1:26:ba:79:99:b7:f0:06:dc:e2:40: a5:c5:66:5b:50:2e:3b:09:d0:c0:18:04:d5:f2:89:09:12:25: 7e:69:f8:e0:3c:48:eb:a0:89:ec:fb:49:a1:39:8c:b5:39:e9: 34:ad:76:36:71:ff:55:66:88:24:94:9b:11:23:8d:c1:6a:3d: ff:a6:0e:6d:66:a9:96:8c:83:fa:7e:ac:ea:e7:15:18:3f:49: e8:d3:5c:47:65:fe:2a:a6:8d:ba:34:ca:fb:e8:a3:c6:3a:8c: 0b:22:4d:8c:fb:0c:5c:90:e0:8d:4a:97:fd:ed:42:dc:dc:f3: 17:58:fc:b1:e8:20:7f:c0:14:13:1d:55:e6:57:ab:2f:2e:5e: 13:9c:c3:9f:62:04:ea:b0:74:2b:3e:e8:9a:2a:70:23:2a:4c: 1b:8e:1c:f2:af:f0:cd:70:0f:9c:a9:98:2f:cb:62:dc:38:64: a9:5f:86:11:7f:0e:de:67:95:df:34:a3:cf:ec:8c:17:76:f5: 2f:7f:7a:29:26:47:65:a5:5c:4e:4e:64:15:ef:86:dc:81:07: 16:3c:0d:97 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBSjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD RDBERTExMC8GA1UEBRMoQjY0M0ZFQjMwMzI3NDIxNDhGM0FGOUMzNTM5MzM4RDU1 NDkzNzIyODAeFw0yNjAzMDEwOTQzMjFaFw0yNjAzMDgwOTQzMjFaMBgxFjAUBgNV BAMTDTY5YTQwYTNhLTM4YTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDqsL7WTAR3XMuJJaG8sNCh5bC+48Y9t+bwUJW61AS6nfUb2BTFCa4OZPm/DBBP Su8TbXBtAiSLgPMhwp2CCA7YiEVGBQMvtXNUCvyVtItLBLgvRVxS9V0bxw472h5T 0lthkZA0t79nVReJGZPAvr0JF3i+O05NfRQ4GzHz5a6Ip6OUKtp+7iOdaRGIe3YA P82NQ300cRyiyP0gz/UVZgpoq8GdRqRYmKDuA5yHw9h+M8HwHb7tK6VcfvDnJcVa K3pnSuYVKXeZHLE5mDZsUz0xrDaok4WY1ZgZtYIPIfXRMvK2bSl/iuruxMbX0XH1 P+DXvW0lt6YhYB51pbmOJxijAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQU7ku3EVhS YUgKx0SlYurkBJusti4wHwYDVR0jBBgwFoAUtkP+swMnQhSPOvnDU5M41VSTcigw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNEMERFLzRGNzY5RDU4QTk4 RjExRjBCMUZBNTA2NkM0RjlBRTAyL3RrUC1zd01uUWhTUE92bkRVNU00MVZTVGNp Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvdGtQLXN3TW5RaFNQT3ZuRFU1TTQxVlNUY2lnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNE MERFLzRGNzY5RDU4QTk4RjExRjBCMUZBNTA2NkM0RjlBRTAyL3RrUC1zd01uUWhT UE92bkRVNU00MVZTVGNpZy5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQA9fcA+N8r6p6an67FWz5gmilS8sWLMERs4vUO2jES7tIjFhYECqWVxKfpioSa6 eZm38Abc4kClxWZbUC47CdDAGATV8okJEiV+afjgPEjroIns+0mhOYy1Oek0rXY2 cf9VZogklJsRI43Baj3/pg5tZqmWjIP6fqzq5xUYP0no01xHZf4qpo26NMr76KPG OowLIk2M+wxckOCNSpf97ULc3PMXWPyx6CB/wBQTHVXmV6svLl4TnMOfYgTqsHQr PuiaKnAjKkwbjhzyr/DNcA+cqZgvy2LcOGSpX4YRfw7eZ5XfNKPP7IwXdvUvf3op JkdlpVxOTmQV74bcgQcWPA2X -----END CERTIFICATE-----Generated at Mon Mar 2 10:55:10 2026 by rpki-client