$ rpki-client -vvf rpki.apnic.net/member_repository/A91F104D/21C2A08C585F11EA8A1B8753C4F9AE02/TrnMSjh3s_-dQLwbs-YMkK36zVM.mft File: TrnMSjh3s_-dQLwbs-YMkK36zVM.mft (raw, json) Hash identifier: 9zMVOwzYt6HRYYX1nKxBvTGOTF4Bkj+gnzT4rnERXhE= Subject key identifier: 7B:F2:87:55:84:88:CA:B9:77:86:88:5F:D8:69:83:6B:C8:E8:E3:DB Authority key identifier: 4E:B9:CC:4A:38:77:B3:FF:9D:40:BC:1B:B3:E6:0C:90:AD:FA:CD:53 Certificate issuer: /CN=A91F104D/serialNumber=4EB9CC4A3877B3FF9D40BC1BB3E60C90ADFACD53 Certificate serial: 0B33 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TrnMSjh3s_-dQLwbs-YMkK36zVM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F104D/21C2A08C585F11EA8A1B8753C4F9AE02/TrnMSjh3s_-dQLwbs-YMkK36zVM.mft Manifest number: 0B29 Signing time: Sun 01 Mar 2026 22:26:25 +0000 Manifest this update: Sun 01 Mar 2026 22:26:24 +0000 Manifest next update: Sun 08 Mar 2026 22:26:24 +0000 Files and hashes: 1: TrnMSjh3s_-dQLwbs-YMkK36zVM.crl (hash: PXe/PFrJ3Jc1Jrves5HIYk8o7dqAMX1fzOig5d8u/Bk=) 2: 1979A7C0586111EA9FC98555C4F9AE02.roa (hash: DHpveC2DBL4gVq9gAp9i6p0IPtXQ+xG1GbXA8h9vNTc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F104D/21C2A08C585F11EA8A1B8753C4F9AE02/TrnMSjh3s_-dQLwbs-YMkK36zVM.crl rsync://rpki.apnic.net/member_repository/A91F104D/21C2A08C585F11EA8A1B8753C4F9AE02/TrnMSjh3s_-dQLwbs-YMkK36zVM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TrnMSjh3s_-dQLwbs-YMkK36zVM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 18:27:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2867 (0xb33) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F104D, serialNumber=4EB9CC4A3877B3FF9D40BC1BB3E60C90ADFACD53 Validity Not Before: Mar 1 22:26:24 2026 GMT Not After : Mar 8 22:26:24 2026 GMT Subject: CN=69a4bd11-25d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:16:c5:9e:9a:9a:d8:ac:67:7d:58:71:82:47: ff:2f:82:50:8d:31:fb:4d:17:aa:2d:1e:ea:b0:e1: bd:93:85:82:bd:49:19:8e:d8:25:01:1a:3f:d2:30: 3c:ea:63:85:0e:ae:ab:ca:88:97:ca:bd:59:8a:51: 97:d3:ce:62:8d:55:a6:f3:54:13:f3:27:f4:d7:93: 4e:d3:76:4e:2c:46:53:7f:db:a9:9a:e6:e8:8b:7c: c4:02:bd:2d:b9:a6:59:3b:d2:77:c2:d0:9d:95:b0: ba:e9:77:ca:6d:83:47:40:43:94:3a:f9:b2:06:71: 37:83:b7:2b:8b:e9:38:b0:25:a8:44:d4:cd:22:dc: e5:0c:c6:16:dd:ed:2b:e7:3d:17:42:05:c1:f8:9a: 51:6e:26:24:90:2f:06:88:cc:e7:79:6d:42:e0:bb: bf:b0:97:42:63:a7:cb:bc:ed:b2:c0:97:4e:1c:1b: d6:f3:3e:33:9e:67:af:10:d7:e5:3f:48:03:bf:28: 15:ee:1a:ce:74:d7:df:e0:9c:a3:0a:5c:ea:df:39: 7e:17:15:2d:4a:d2:8e:92:46:43:f2:62:9f:b8:29: a7:c7:25:43:f9:d8:04:27:da:96:b0:84:03:7e:19: d1:52:85:71:5d:e4:79:83:1c:e4:79:62:0c:b4:ea: 1c:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:F2:87:55:84:88:CA:B9:77:86:88:5F:D8:69:83:6B:C8:E8:E3:DB X509v3 Authority Key Identifier: keyid:4E:B9:CC:4A:38:77:B3:FF:9D:40:BC:1B:B3:E6:0C:90:AD:FA:CD:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F104D/21C2A08C585F11EA8A1B8753C4F9AE02/TrnMSjh3s_-dQLwbs-YMkK36zVM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TrnMSjh3s_-dQLwbs-YMkK36zVM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F104D/21C2A08C585F11EA8A1B8753C4F9AE02/TrnMSjh3s_-dQLwbs-YMkK36zVM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:a4:9f:ba:51:3b:91:e4:84:6d:06:68:24:f3:e0:d3:0c:18: 43:01:91:ac:9f:9e:97:91:96:03:ce:8d:44:c8:02:a1:2e:56: 4d:18:0b:59:3c:16:5b:cf:bd:6a:5d:ac:e9:c5:c9:cd:9f:03: 7e:6e:81:4b:fa:f8:53:0a:ff:91:98:10:9d:4b:08:f9:8c:8b: 62:f7:a7:92:ac:7e:ff:ec:dd:02:b0:af:be:32:eb:79:c0:0a: c5:c7:92:ce:04:28:34:51:cf:ae:09:0e:41:51:75:16:6e:5c: 49:9c:b9:c1:b5:0d:c9:64:72:91:e9:aa:c2:36:b7:28:da:33: 49:ec:18:6a:33:84:8c:79:ad:82:aa:46:30:bb:89:f6:20:8d: 0c:86:a4:6c:e4:23:80:35:3f:56:a2:f5:df:84:f4:78:a4:94: 73:dd:c9:c1:f1:b4:ed:27:3d:a1:62:f4:f3:c1:cf:e8:4f:3e: 9c:e1:cb:b5:d5:6f:7a:88:a2:ae:69:37:3b:5c:06:36:99:1c: c7:07:50:2b:5f:b9:95:89:3c:35:ef:32:84:a4:e4:c6:da:df: 4f:82:4e:9d:95:36:82:d7:dc:e5:ae:fe:60:49:cc:71:ea:82: 91:4b:a9:23:c9:9b:3f:74:72:2e:b0:00:a3:a2:75:7d:b7:c4: e2:76:c5:c6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCzMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjEwNEQxMTAvBgNVBAUTKDRFQjlDQzRBMzg3N0IzRkY5RDQwQkMxQkIzRTYwQzkw QURGQUNENTMwHhcNMjYwMzAxMjIyNjI0WhcNMjYwMzA4MjIyNjI0WjAYMRYwFAYD VQQDEw02OWE0YmQxMS0yNWQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsRbFnpqa2KxnfVhxgkf/L4JQjTH7TReqLR7qsOG9k4WCvUkZjtglARo/0jA8 6mOFDq6ryoiXyr1ZilGX085ijVWm81QT8yf015NO03ZOLEZTf9upmuboi3zEAr0t uaZZO9J3wtCdlbC66XfKbYNHQEOUOvmyBnE3g7cri+k4sCWoRNTNItzlDMYW3e0r 5z0XQgXB+JpRbiYkkC8GiMzneW1C4Lu/sJdCY6fLvO2ywJdOHBvW8z4znmevENfl P0gDvygV7hrOdNff4JyjClzq3zl+FxUtStKOkkZD8mKfuCmnxyVD+dgEJ9qWsIQD fhnRUoVxXeR5gxzkeWIMtOocTwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHvyh1WE iMq5d4aIX9hpg2vI6OPbMB8GA1UdIwQYMBaAFE65zEo4d7P/nUC8G7PmDJCt+s1T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMTA0RC8yMUMyQTA4QzU4 NUYxMUVBOEExQjg3NTNDNEY5QUUwMi9Ucm5NU2poM3NfLWRRTHdicy1ZTWtLMzZ6 Vk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Rybk1Tamgzc18tZFFMd2JzLVlNa0szNnpWTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MTA0RC8yMUMyQTA4QzU4NUYxMUVBOEExQjg3NTNDNEY5QUUwMi9Ucm5NU2poM3Nf LWRRTHdicy1ZTWtLMzZ6Vk0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAIaSfulE7keSEbQZoJPPg0wwYQwGRrJ+el5GWA86NRMgCoS5WTRgLWTwWW8+9 al2s6cXJzZ8Dfm6BS/r4Uwr/kZgQnUsI+YyLYvenkqx+/+zdArCvvjLrecAKxceS zgQoNFHPrgkOQVF1Fm5cSZy5wbUNyWRykemqwja3KNozSewYajOEjHmtgqpGMLuJ 9iCNDIakbOQjgDU/VqL134T0eKSUc93JwfG07Sc9oWL088HP6E8+nOHLtdVveoii rmk3O1wGNpkcxwdQK1+5lYk8Ne8yhKTkxtrfT4JOnZU2gtfc5a7+YEnMceqCkUup I8mbP3RyLrAAo6J1fbfE4nbFxg== -----END CERTIFICATE-----Generated at Mon Mar 2 02:05:28 2026 by rpki-client