$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3037/8B8DE27E8EDC11F09880C478C4F9AE02/tkuBBCq0EWB9hgdv78nllia7iBY.mft File: tkuBBCq0EWB9hgdv78nllia7iBY.mft (raw, json) Hash identifier: uxfPsfZQ/7JhfnEnd5LQkjyojKguzg5SHchbW7sobOk= Subject key identifier: A2:50:06:14:57:0C:D1:2C:71:88:84:3E:2A:03:48:AE:9C:B8:D2:5F Authority key identifier: B6:4B:81:04:2A:B4:11:60:7D:86:07:6F:EF:C9:E5:96:26:BB:88:16 Certificate issuer: /CN=A91D3037/serialNumber=B64B81042AB411607D86076FEFC9E59626BB8816 Certificate serial: 63 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tkuBBCq0EWB9hgdv78nllia7iBY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3037/8B8DE27E8EDC11F09880C478C4F9AE02/tkuBBCq0EWB9hgdv78nllia7iBY.mft Manifest number: 5D Signing time: Sun 01 Mar 2026 09:32:04 +0000 Manifest this update: Sun 01 Mar 2026 09:32:04 +0000 Manifest next update: Sun 08 Mar 2026 09:32:04 +0000 Files and hashes: 1: tkuBBCq0EWB9hgdv78nllia7iBY.crl (hash: nWTOsS7/mFReL7PFynsyALTxVB4sARSQ9bnJtu0kqHk=) 2: 0A16B10E8EE011F09A1AE72BC4F9AE02.roa (hash: 49rBi75NWLedbZFV/zCs/LhYwYBaC9SkJOjaSAzVrHk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3037/8B8DE27E8EDC11F09880C478C4F9AE02/tkuBBCq0EWB9hgdv78nllia7iBY.crl rsync://rpki.apnic.net/member_repository/A91D3037/8B8DE27E8EDC11F09880C478C4F9AE02/tkuBBCq0EWB9hgdv78nllia7iBY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tkuBBCq0EWB9hgdv78nllia7iBY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 09:32:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 99 (0x63) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3037, serialNumber=B64B81042AB411607D86076FEFC9E59626BB8816 Validity Not Before: Mar 1 09:32:04 2026 GMT Not After : Mar 8 09:32:04 2026 GMT Subject: CN=69a40794-44e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:0f:df:a6:b0:51:6a:65:32:6c:d4:5f:4d:22: 79:a3:fa:0b:99:cb:44:e8:d8:d9:f6:11:12:a7:92: d8:81:dc:b9:65:f9:ce:f8:34:a5:79:7b:3e:81:7c: 57:0e:0d:b6:11:14:7e:e0:2a:7b:8e:dc:5e:f2:92: 07:37:02:be:9e:b4:99:33:fc:db:45:e4:bf:fd:9e: 8b:3a:39:fe:df:b7:6e:85:16:2b:6e:eb:08:d3:d9: 91:3d:34:5c:ac:ef:4d:88:d5:34:a3:0f:15:e7:22: 8a:73:97:6d:b4:8f:e3:fc:54:90:44:bf:75:e4:51: 13:f0:7b:d0:39:ac:79:96:cf:6c:7c:80:ee:e1:55: 8e:a3:de:ef:f0:37:a0:dd:2b:cb:ff:22:ca:3a:1c: 3f:8e:df:2f:25:84:81:74:8f:e3:80:e5:9c:9b:e0: 9a:85:d7:72:d5:4b:83:b5:e1:38:35:1a:8a:fe:b7: b1:76:56:95:d4:d6:50:38:ff:4d:8c:7b:02:55:05: 66:c6:78:0f:59:0a:d0:6a:ef:5c:05:ac:e1:26:54: 80:40:12:70:db:f6:db:46:a2:aa:d0:10:60:49:44: f0:12:d1:8b:aa:fa:f9:f5:8f:8f:c4:00:d0:5a:97: 70:d5:a7:93:5e:73:5c:3f:4d:9a:40:0a:1d:f5:67: b4:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:50:06:14:57:0C:D1:2C:71:88:84:3E:2A:03:48:AE:9C:B8:D2:5F X509v3 Authority Key Identifier: keyid:B6:4B:81:04:2A:B4:11:60:7D:86:07:6F:EF:C9:E5:96:26:BB:88:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3037/8B8DE27E8EDC11F09880C478C4F9AE02/tkuBBCq0EWB9hgdv78nllia7iBY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tkuBBCq0EWB9hgdv78nllia7iBY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3037/8B8DE27E8EDC11F09880C478C4F9AE02/tkuBBCq0EWB9hgdv78nllia7iBY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:ba:ae:4a:9e:78:c8:ff:74:5b:f4:40:bb:61:6a:29:b0:14: 3c:63:da:f4:c9:66:9a:4e:16:66:0e:05:2c:b5:a5:0c:89:00: 5e:04:4c:b8:ce:7f:bd:d0:ba:ea:2b:e0:7a:14:9b:19:f8:3c: 85:09:cf:4d:40:d3:c0:33:ff:0a:47:8d:52:38:d3:fc:10:4e: a9:9a:74:b7:fb:3d:19:39:d5:83:4c:9e:43:f8:0f:73:4c:67: c8:40:35:2e:81:97:da:e6:59:03:7d:fc:d0:4a:31:b6:8c:84: 5c:5a:46:cf:48:c1:19:9a:01:c5:1a:78:4d:97:19:51:81:71: 95:14:e4:d3:e6:67:15:9f:c3:67:a1:20:aa:41:dd:c5:98:7f: 44:37:0b:88:ff:2c:05:a4:ba:bb:d9:08:06:36:ee:e0:0e:0f: 70:35:2d:7f:0d:2a:ca:d8:42:75:45:16:ca:22:c7:0b:c3:57: c4:c7:e0:52:5e:8c:8f:37:8e:b5:c6:0c:fa:ef:a6:04:1f:6d: 40:36:43:e2:3f:8b:00:19:7e:0c:90:5e:0c:ae:80:87:4d:45: 4f:fd:3f:6d:69:6d:df:80:ed:c7:2b:38:22:d6:72:21:b9:42: 68:8a:b8:ee:be:52:e7:63:cd:00:81:e8:f7:bc:b1:8e:d9:74: 7d:2c:d6:58 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBYzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE MzAzNzExMC8GA1UEBRMoQjY0QjgxMDQyQUI0MTE2MDdEODYwNzZGRUZDOUU1OTYy NkJCODgxNjAeFw0yNjAzMDEwOTMyMDRaFw0yNjAzMDgwOTMyMDRaMBgxFjAUBgNV BAMTDTY5YTQwNzk0LTQ0ZTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCpD9+msFFqZTJs1F9NInmj+guZy0To2Nn2ERKnktiB3Lll+c74NKV5ez6BfFcO DbYRFH7gKnuO3F7ykgc3Ar6etJkz/NtF5L/9nos6Of7ft26FFitu6wjT2ZE9NFys 702I1TSjDxXnIopzl220j+P8VJBEv3XkURPwe9A5rHmWz2x8gO7hVY6j3u/wN6Dd K8v/Iso6HD+O3y8lhIF0j+OA5Zyb4JqF13LVS4O14Tg1Gor+t7F2VpXU1lA4/02M ewJVBWbGeA9ZCtBq71wFrOEmVIBAEnDb9ttGoqrQEGBJRPAS0Yuq+vn1j4/EANBa l3DVp5Nec1w/TZpACh31Z7RLAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUolAGFFcM 0SxxiIQ+KgNIrpy40l8wHwYDVR0jBBgwFoAUtkuBBCq0EWB9hgdv78nllia7iBYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQzMDM3LzhCOERFMjdFOEVE QzExRjA5ODgwQzQ3OEM0RjlBRTAyL3RrdUJCQ3EwRVdCOWhnZHY3OG5sbGlhN2lC WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdGt1QkJDcTBFV0I5aGdkdjc4bmxsaWE3aUJZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQz MDM3LzhCOERFMjdFOEVEQzExRjA5ODgwQzQ3OEM0RjlBRTAyL3RrdUJCQ3EwRVdC OWhnZHY3OG5sbGlhN2lCWS5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQA1uq5KnnjI/3Rb9EC7YWopsBQ8Y9r0yWaaThZmDgUstaUMiQBeBEy4zn+90Lrq K+B6FJsZ+DyFCc9NQNPAM/8KR41SONP8EE6pmnS3+z0ZOdWDTJ5D+A9zTGfIQDUu gZfa5lkDffzQSjG2jIRcWkbPSMEZmgHFGnhNlxlRgXGVFOTT5mcVn8NnoSCqQd3F mH9ENwuI/ywFpLq72QgGNu7gDg9wNS1/DSrK2EJ1RRbKIscLw1fEx+BSXoyPN461 xgz676YEH21ANkPiP4sAGX4MkF4MroCHTUVP/T9taW3fgO3HKzgi1nIhuUJoirju vlLnY80Agej3vLGO2XR9LNZY -----END CERTIFICATE-----Generated at Sun Mar 1 21:13:02 2026 by rpki-client