$ rpki-client -vvf rpki.apnic.net/member_repository/A91D15A4/B34E6D50708A11E9AF0F8D21C4F9AE02/TUTi91KilQtrVSjAaZsUkOdXd0Q.mft File: TUTi91KilQtrVSjAaZsUkOdXd0Q.mft (raw, json) Hash identifier: ELnPbNm9WSDewe5HHejPnX8960u6w7tBTjJ4MGcauZQ= Subject key identifier: 4D:BF:72:08:0A:46:1C:4E:B5:2F:F5:FB:C8:59:8A:0B:93:A5:D5:7B Authority key identifier: 4D:44:E2:F7:52:A2:95:0B:6B:55:28:C0:69:9B:14:90:E7:57:77:44 Certificate issuer: /CN=A91D15A4/serialNumber=4D44E2F752A2950B6B5528C0699B1490E7577744 Certificate serial: 0FD9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TUTi91KilQtrVSjAaZsUkOdXd0Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D15A4/B34E6D50708A11E9AF0F8D21C4F9AE02/TUTi91KilQtrVSjAaZsUkOdXd0Q.mft Manifest number: 0FCC Signing time: Sun 01 Mar 2026 23:36:00 +0000 Manifest this update: Sun 01 Mar 2026 23:35:58 +0000 Manifest next update: Sun 08 Mar 2026 23:35:58 +0000 Files and hashes: 1: TUTi91KilQtrVSjAaZsUkOdXd0Q.crl (hash: G9pHoMzcANTsIuLVcGOGVkhD0K+xDo8kjJKQ9x1Vz/I=) 2: 3D371C5C708F11E9B105E92CC4F9AE02.roa (hash: vIYlDs8E7x8tmtwgfqy6xQ1CQ25/qx1eb5H0P0MwlIM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D15A4/B34E6D50708A11E9AF0F8D21C4F9AE02/TUTi91KilQtrVSjAaZsUkOdXd0Q.crl rsync://rpki.apnic.net/member_repository/A91D15A4/B34E6D50708A11E9AF0F8D21C4F9AE02/TUTi91KilQtrVSjAaZsUkOdXd0Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TUTi91KilQtrVSjAaZsUkOdXd0Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:35:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4057 (0xfd9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D15A4, serialNumber=4D44E2F752A2950B6B5528C0699B1490E7577744 Validity Not Before: Mar 1 23:35:58 2026 GMT Not After : Mar 8 23:35:58 2026 GMT Subject: CN=69a4cd60-b6b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:e6:b7:a3:66:2f:2b:30:7f:60:9f:4c:ac:b5: 05:c5:0a:c6:ce:3f:8a:c4:cd:fd:6d:ac:a4:85:84: 0d:d9:9c:cb:f1:1c:90:bc:0a:04:07:14:8e:db:c4: 08:39:e6:fb:f6:bc:0c:1a:12:80:52:88:05:18:d9: fd:04:4c:4d:65:24:a8:05:67:ed:ef:9c:11:6a:33: a2:c0:57:cc:37:75:22:36:17:66:90:97:68:75:56: f7:51:5b:f9:de:a5:07:63:93:58:08:ce:dc:d3:2d: b3:26:14:fa:0e:9a:99:ba:af:7f:53:fa:32:20:2c: 08:a2:a1:a2:a9:dc:f3:dc:2a:08:d8:21:89:82:54: f0:be:c2:09:8a:59:88:9b:99:bf:ab:ba:3a:a2:96: f9:79:06:6e:ee:16:22:fa:42:9b:1b:c2:f0:d7:02: 38:e3:57:f5:d3:63:4d:76:73:5d:96:27:14:a9:2b: ac:fb:eb:a5:31:41:78:40:39:e3:4c:8b:bd:13:c5: 25:27:e1:ba:cf:6b:cf:21:8c:46:5d:dd:a5:e5:9f: 7e:66:e5:aa:65:a6:bb:af:a2:a1:be:6d:7e:19:f5: 4f:10:bb:13:d0:c8:cb:43:92:89:a8:c5:80:cb:68: 1f:75:60:01:94:a3:84:18:33:38:b1:51:41:23:32: d4:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:BF:72:08:0A:46:1C:4E:B5:2F:F5:FB:C8:59:8A:0B:93:A5:D5:7B X509v3 Authority Key Identifier: keyid:4D:44:E2:F7:52:A2:95:0B:6B:55:28:C0:69:9B:14:90:E7:57:77:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D15A4/B34E6D50708A11E9AF0F8D21C4F9AE02/TUTi91KilQtrVSjAaZsUkOdXd0Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TUTi91KilQtrVSjAaZsUkOdXd0Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D15A4/B34E6D50708A11E9AF0F8D21C4F9AE02/TUTi91KilQtrVSjAaZsUkOdXd0Q.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:f7:3d:fd:64:da:92:d5:9f:ed:62:fc:dc:d1:da:e7:f0:ff: 2f:17:5a:8c:12:5b:60:5c:cc:01:70:78:38:1f:78:f2:99:32: fc:13:8a:b9:4f:ea:b2:cc:dc:36:5a:ff:51:c1:c9:d4:cf:bb: 8f:1c:4f:c0:43:f3:7e:7d:55:39:89:de:9e:19:d3:9e:7a:be: b3:a5:2a:78:e4:7c:97:a3:b8:b4:40:57:3a:17:2a:a5:eb:c4: 4a:2c:c9:28:53:66:a6:d3:d5:2f:12:ea:0b:b0:8d:fa:aa:ef: 29:15:ac:7c:6c:8d:45:b0:c1:a6:63:84:89:f7:c4:1e:49:68: 03:77:ae:13:0c:de:36:5f:f9:4c:81:22:23:39:4c:9a:ac:06: a2:15:c3:9a:fa:74:22:b1:eb:8f:b9:0d:27:36:ac:b7:fa:a1: fb:ed:b4:45:6e:f2:9f:e2:1b:9c:35:49:4e:38:53:da:2c:ae: 31:7a:83:c3:1a:3b:95:04:ae:4e:86:89:8c:12:b3:9d:19:68: 8f:e9:9c:a9:af:7d:e9:77:e4:85:66:fe:04:e6:4a:37:bc:f0: 3f:39:3e:67:4b:ef:63:fc:93:51:20:00:d5:cd:58:be:a3:08: ad:a9:6b:a8:a2:ed:4d:45:0a:c7:37:a1:84:64:44:c2:c1:63: b6:43:38:12 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICD9kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDE1QTQxMTAvBgNVBAUTKDRENDRFMkY3NTJBMjk1MEI2QjU1MjhDMDY5OUIxNDkw RTc1Nzc3NDQwHhcNMjYwMzAxMjMzNTU4WhcNMjYwMzA4MjMzNTU4WjAYMRYwFAYD VQQDEw02OWE0Y2Q2MC1iNmIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoOa3o2YvKzB/YJ9MrLUFxQrGzj+KxM39baykhYQN2ZzL8RyQvAoEBxSO28QI Oeb79rwMGhKAUogFGNn9BExNZSSoBWft75wRajOiwFfMN3UiNhdmkJdodVb3UVv5 3qUHY5NYCM7c0y2zJhT6DpqZuq9/U/oyICwIoqGiqdzz3CoI2CGJglTwvsIJilmI m5m/q7o6opb5eQZu7hYi+kKbG8Lw1wI441f102NNdnNdlicUqSus++ulMUF4QDnj TIu9E8UlJ+G6z2vPIYxGXd2l5Z9+ZuWqZaa7r6Khvm1+GfVPELsT0MjLQ5KJqMWA y2gfdWABlKOEGDM4sVFBIzLU2wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFE2/cggK RhxOtS/1+8hZiguTpdV7MB8GA1UdIwQYMBaAFE1E4vdSopULa1UowGmbFJDnV3dE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTVBNC9CMzRFNkQ1MDcw OEExMUU5QUYwRjhEMjFDNEY5QUUwMi9UVVRpOTFLaWxRdHJWU2pBYVpzVWtPZFhk MFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RVVGk5MUtpbFF0clZTakFhWnNVa09kWGQwUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTVBNC9CMzRFNkQ1MDcwOEExMUU5QUYwRjhEMjFDNEY5QUUwMi9UVVRpOTFLaWxR dHJWU2pBYVpzVWtPZFhkMFEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAOfc9/WTaktWf7WL83NHa5/D/LxdajBJbYFzMAXB4OB948pky/BOKuU/qsszc Nlr/UcHJ1M+7jxxPwEPzfn1VOYnenhnTnnq+s6UqeOR8l6O4tEBXOhcqpevESizJ KFNmptPVLxLqC7CN+qrvKRWsfGyNRbDBpmOEiffEHkloA3euEwzeNl/5TIEiIzlM mqwGohXDmvp0IrHrj7kNJzast/qh++20RW7yn+IbnDVJTjhT2iyuMXqDwxo7lQSu ToaJjBKznRloj+mcqa996XfkhWb+BOZKN7zwPzk+Z0vvY/yTUSAA1c1YvqMIralr qKLtTUUKxzehhGREwsFjtkM4Eg== -----END CERTIFICATE-----Generated at Mon Mar 2 04:17:47 2026 by rpki-client