$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.mft File: tDpaYNRoBqaf_vfGdiGexLqLo20.mft (raw, json) Hash identifier: afZQYeKZSyCr0M1KpZCnuUv1ipkMCDLRYgRPNTuhPcA= Subject key identifier: 39:B4:48:4E:BA:92:6B:97:5E:7B:E3:56:2C:BB:B7:77:4E:3A:05:4C Authority key identifier: B4:3A:5A:60:D4:68:06:A6:9F:FE:F7:C6:76:21:9E:C4:BA:8B:A3:6D Certificate issuer: /CN=A91E2AE5/serialNumber=B43A5A60D46806A69FFEF7C676219EC4BA8BA36D Certificate serial: 2C21 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tDpaYNRoBqaf_vfGdiGexLqLo20.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.mft Manifest number: 2BFB Signing time: Mon 02 Mar 2026 02:26:09 +0000 Manifest this update: Mon 02 Mar 2026 02:26:07 +0000 Manifest next update: Mon 09 Mar 2026 02:26:07 +0000 Files and hashes: 1: tDpaYNRoBqaf_vfGdiGexLqLo20.crl (hash: jEFplcZ1Nh2b7PzI6/wODmpa11YO1q7/bL5/g8OOGMc=) 2: 43487B18BF1811E9A2C00E63C4F9AE02.roa (hash: 9yPl2RyPXoic4hgvWw1sNI2e0xi/PvyG32cZkvJi8ws=) 3: 2815E7D4BF4211E9A93A3957C4F9AE02.roa (hash: uipKT1Jp/DMN4bzHM/v/VQW3NmoiBvgfgpPCrWFueSQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.crl rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tDpaYNRoBqaf_vfGdiGexLqLo20.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:26:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11297 (0x2c21) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2AE5, serialNumber=B43A5A60D46806A69FFEF7C676219EC4BA8BA36D Validity Not Before: Mar 2 02:26:07 2026 GMT Not After : Mar 9 02:26:07 2026 GMT Subject: CN=69a4f541-f79d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:f1:e5:c7:f6:d9:4c:df:ee:9f:3f:1b:43:01: 8a:7e:a5:cc:23:5b:2a:54:f2:ea:eb:74:d4:0d:d0: 31:e1:31:7f:2d:d4:dd:25:f3:87:e2:56:e7:90:97: d7:d6:84:fd:69:b3:d3:d4:b7:bb:b7:cc:0d:f7:94: 67:e8:ae:ee:b0:0a:20:17:5a:89:d4:7b:8f:27:ba: e4:00:5c:38:42:d5:43:51:4e:30:5e:a3:28:12:1b: 72:15:c6:88:3b:ae:f1:39:7f:fa:d6:6a:97:a9:29: 96:04:4c:b4:6d:ea:f0:39:a3:ce:dc:4b:5e:de:e5: 58:7b:cc:e8:e9:90:17:f9:17:3c:87:a6:c3:76:87: 75:e6:82:a1:2c:5e:bc:32:a1:b3:ac:68:ed:83:a2: 1c:52:cc:75:d5:52:fa:a7:55:43:88:e3:d8:90:08: fc:1b:da:16:78:ce:ce:9c:8a:f5:49:68:14:53:db: b2:7b:b7:16:59:a4:90:33:94:1f:db:77:31:e0:e5: b9:78:8a:fa:6b:02:c9:92:4c:75:1c:48:8b:b3:0b: 55:82:cc:f4:d0:ca:be:80:48:ce:25:82:c7:dc:2c: fa:f2:59:53:bb:fc:44:36:f8:c9:09:18:37:cd:75: 8d:75:40:23:7b:e8:7f:0a:57:95:18:9f:81:40:d9: 11:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:B4:48:4E:BA:92:6B:97:5E:7B:E3:56:2C:BB:B7:77:4E:3A:05:4C X509v3 Authority Key Identifier: keyid:B4:3A:5A:60:D4:68:06:A6:9F:FE:F7:C6:76:21:9E:C4:BA:8B:A3:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tDpaYNRoBqaf_vfGdiGexLqLo20.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:f1:0e:54:74:4e:22:ad:3f:27:94:64:b4:0f:c3:f5:05:92: 61:9d:dd:fd:c4:9c:a5:2f:b2:cc:1c:cf:ea:72:da:53:8c:79: cf:5d:0a:8a:e5:a1:12:5f:7c:38:d6:21:20:74:41:52:31:9b: eb:3d:f5:75:0c:2f:b4:f1:25:8c:bc:65:d4:33:89:6e:3a:5e: 9a:25:0a:34:93:73:0a:52:81:56:5b:f9:c9:bf:fd:2c:8a:11: bc:a0:64:e2:04:10:55:43:3e:86:12:74:74:98:cd:d9:67:c1: 8d:57:7f:87:62:52:49:ce:68:9b:4e:d3:3c:35:04:c1:79:d9: 22:a4:8d:f0:95:ee:07:9b:8d:53:90:4a:3a:4c:50:50:0c:08: 0e:09:9a:9d:f0:74:df:22:2b:e8:1e:9f:0b:dd:db:1c:34:a9: 5d:c1:ba:54:cd:f0:50:3e:cf:3e:06:3b:6f:31:cb:4b:34:82: 34:5d:3f:58:9d:87:2c:18:a2:72:db:b0:24:66:22:14:87:01: b0:10:e4:31:4b:b7:45:51:5b:5a:e7:15:09:04:21:62:5e:ff: c9:e1:f1:71:1e:5c:4b:dd:a7:22:7d:f2:e2:8a:66:4c:5e:49: fd:39:b2:d3:39:0a:cb:43:29:bc:58:b5:b8:30:a3:9e:bd:8e: f6:14:dd:64 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICLCEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTJBRTUxMTAvBgNVBAUTKEI0M0E1QTYwRDQ2ODA2QTY5RkZFRjdDNjc2MjE5RUM0 QkE4QkEzNkQwHhcNMjYwMzAyMDIyNjA3WhcNMjYwMzA5MDIyNjA3WjAYMRYwFAYD VQQDEw02OWE0ZjU0MS1mNzlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArfHlx/bZTN/unz8bQwGKfqXMI1sqVPLq63TUDdAx4TF/LdTdJfOH4lbnkJfX 1oT9abPT1Le7t8wN95Rn6K7usAogF1qJ1HuPJ7rkAFw4QtVDUU4wXqMoEhtyFcaI O67xOX/61mqXqSmWBEy0berwOaPO3Ete3uVYe8zo6ZAX+Rc8h6bDdod15oKhLF68 MqGzrGjtg6IcUsx11VL6p1VDiOPYkAj8G9oWeM7OnIr1SWgUU9uye7cWWaSQM5Qf 23cx4OW5eIr6awLJkkx1HEiLswtVgsz00Mq+gEjOJYLH3Cz68llTu/xENvjJCRg3 zXWNdUAje+h/CleVGJ+BQNkRWQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDm0SE66 kmuXXnvjViy7t3dOOgVMMB8GA1UdIwQYMBaAFLQ6WmDUaAamn/73xnYhnsS6i6Nt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMkFFNS84RDNFNTRFQUVE NTkxMUUzQjA5MDExOTI1OTExRUEzMi90RHBhWU5Sb0JxYWZfdmZHZGlHZXhMcUxv MjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3REcGFZTlJvQnFhZl92ZkdkaUdleExxTG8yMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MkFFNS84RDNFNTRFQUVENTkxMUUzQjA5MDExOTI1OTExRUEzMi90RHBhWU5Sb0Jx YWZfdmZHZGlHZXhMcUxvMjAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAdPEOVHROIq0/J5RktA/D9QWSYZ3d/cScpS+yzBzP6nLaU4x5z10KiuWhEl98 ONYhIHRBUjGb6z31dQwvtPEljLxl1DOJbjpemiUKNJNzClKBVlv5yb/9LIoRvKBk 4gQQVUM+hhJ0dJjN2WfBjVd/h2JSSc5om07TPDUEwXnZIqSN8JXuB5uNU5BKOkxQ UAwIDgmanfB03yIr6B6fC93bHDSpXcG6VM3wUD7PPgY7bzHLSzSCNF0/WJ2HLBii ctuwJGYiFIcBsBDkMUu3RVFbWucVCQQhYl7/yeHxcR5cS92nIn3y4opmTF5J/Tmy 0zkKy0MpvFi1uDCjnr2O9hTdZA== -----END CERTIFICATE-----Generated at Mon Mar 2 17:29:50 2026 by rpki-client