$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8F9B/01EDEF965DBE11EF8A06ED40C4F9AE02/TLITKnI2puO1uWMMoDARSGMoVfc.mft File: TLITKnI2puO1uWMMoDARSGMoVfc.mft (raw, json) Hash identifier: tX7jD7gCmUQUo+rNLx+Ayy3ySVUHxiq5iaJWXei0t3c= Subject key identifier: 3D:1E:02:36:16:9E:D4:82:7A:41:6F:7D:50:66:A9:60:32:6C:8E:B2 Authority key identifier: 4C:B2:13:2A:72:36:A6:E3:B5:B9:63:0C:A0:30:11:48:63:28:55:F7 Certificate issuer: /CN=A91F8F9B/serialNumber=4CB2132A7236A6E3B5B9630CA0301148632855F7 Certificate serial: 0122 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TLITKnI2puO1uWMMoDARSGMoVfc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8F9B/01EDEF965DBE11EF8A06ED40C4F9AE02/TLITKnI2puO1uWMMoDARSGMoVfc.mft Manifest number: 0120 Signing time: Sun 01 Mar 2026 06:44:47 +0000 Manifest this update: Sun 01 Mar 2026 06:44:46 +0000 Manifest next update: Sun 08 Mar 2026 06:44:46 +0000 Files and hashes: 1: TLITKnI2puO1uWMMoDARSGMoVfc.crl (hash: QK3pWzacmyrwxeEL56wdMb4Z+/hmL9ube56NoWULZDg=) 2: 71DBC7BE5DBF11EFB8714857C4F9AE02.roa (hash: Ji4FnaAA41M0xkMFETxyoill5QqKNA4PIi1n5I8VonU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8F9B/01EDEF965DBE11EF8A06ED40C4F9AE02/TLITKnI2puO1uWMMoDARSGMoVfc.crl rsync://rpki.apnic.net/member_repository/A91F8F9B/01EDEF965DBE11EF8A06ED40C4F9AE02/TLITKnI2puO1uWMMoDARSGMoVfc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TLITKnI2puO1uWMMoDARSGMoVfc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 06:44:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 290 (0x122) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8F9B, serialNumber=4CB2132A7236A6E3B5B9630CA0301148632855F7 Validity Not Before: Mar 1 06:44:46 2026 GMT Not After : Mar 8 06:44:46 2026 GMT Subject: CN=69a3e05e-e6d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:e5:9a:db:8b:aa:9e:5c:ae:77:be:3c:33:0f: 3d:61:64:6e:e8:76:08:ea:f2:3d:0d:14:f3:75:0d: e0:d2:35:ff:4b:21:39:13:84:c5:b9:ad:45:99:3d: c0:11:49:54:d6:cb:ea:e5:fd:b3:8b:46:cd:30:47: 69:83:f5:6e:e7:a1:1e:21:cc:64:ed:83:43:fe:eb: 1e:1d:fb:cc:b3:3b:ed:6c:52:5c:0b:5a:b1:7a:2b: 81:f8:2e:dd:15:fd:30:04:6b:ec:ec:4f:85:26:c3: dc:76:55:7d:20:bb:06:bb:d2:7e:9c:86:42:0e:c7: a9:07:13:36:c1:d5:69:d1:b7:f7:92:75:47:93:81: e8:e7:99:04:63:6c:3f:75:a7:b3:99:2d:66:50:00: f1:7e:62:46:ba:60:e6:a1:40:cc:f7:86:aa:30:0e: 26:ec:f9:de:40:b0:30:71:56:73:95:a1:20:5c:0b: 32:42:ca:76:db:bd:24:7e:6f:aa:3d:20:e1:bb:09: 59:a8:f6:1b:a0:9c:df:cf:2c:90:3b:1d:c8:86:74: da:2b:40:04:d9:62:0f:23:4e:c9:94:a2:ab:e2:a2: 47:fc:07:14:8d:1d:72:01:58:40:5f:45:ce:10:f5: 8f:89:5e:99:ac:a0:6f:ce:46:e9:64:cf:ea:89:41: 84:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:1E:02:36:16:9E:D4:82:7A:41:6F:7D:50:66:A9:60:32:6C:8E:B2 X509v3 Authority Key Identifier: keyid:4C:B2:13:2A:72:36:A6:E3:B5:B9:63:0C:A0:30:11:48:63:28:55:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8F9B/01EDEF965DBE11EF8A06ED40C4F9AE02/TLITKnI2puO1uWMMoDARSGMoVfc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TLITKnI2puO1uWMMoDARSGMoVfc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8F9B/01EDEF965DBE11EF8A06ED40C4F9AE02/TLITKnI2puO1uWMMoDARSGMoVfc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:9f:06:cf:79:84:6d:7d:50:ea:d3:11:b1:fe:4c:89:d5:ff: eb:9f:8c:aa:d1:82:ae:dd:6f:7c:7c:37:28:02:c5:b2:2c:26: 04:6d:11:ac:78:ac:03:dd:4b:66:31:64:77:81:27:3f:78:6c: 8e:50:bd:60:e7:ee:73:67:cd:f9:66:b6:df:36:3d:a7:4c:c1: 72:f8:a9:ee:90:4c:b5:a9:59:f3:84:50:27:57:0d:ce:30:c1: 91:f2:c0:1d:f9:0e:09:c7:dc:0e:b1:e4:05:09:bb:21:5e:d8: d1:62:bd:1b:5d:99:5c:7b:86:34:84:7c:fb:f6:50:65:8a:76: 5d:9c:5a:3d:1a:d4:06:0a:20:ad:68:82:9d:7a:e6:a8:07:89: a2:29:9d:ce:4b:fe:fe:1c:b9:9a:b6:fe:ae:c0:25:06:a6:c0: f0:07:7d:16:03:e7:ee:45:b8:d0:cc:2d:53:d7:a9:bf:2b:1f: 1a:9c:6c:89:47:c2:76:79:40:f5:3d:21:22:18:e3:53:10:9a: a7:20:ec:d4:0d:e7:47:88:77:59:40:f9:c2:93:ec:8d:60:e0: 09:73:dc:d4:f7:34:3c:80:56:43:59:68:eb:c9:14:a2:d5:e8: 87:e6:a9:e9:dd:be:97:1e:fd:f4:7f:84:e1:95:83:ec:e6:3d: 80:6e:84:5b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICASIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjhGOUIxMTAvBgNVBAUTKDRDQjIxMzJBNzIzNkE2RTNCNUI5NjMwQ0EwMzAxMTQ4 NjMyODU1RjcwHhcNMjYwMzAxMDY0NDQ2WhcNMjYwMzA4MDY0NDQ2WjAYMRYwFAYD VQQDEw02OWEzZTA1ZS1lNmQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAteWa24uqnlyud748Mw89YWRu6HYI6vI9DRTzdQ3g0jX/SyE5E4TFua1FmT3A EUlU1svq5f2zi0bNMEdpg/Vu56EeIcxk7YND/useHfvMszvtbFJcC1qxeiuB+C7d Ff0wBGvs7E+FJsPcdlV9ILsGu9J+nIZCDsepBxM2wdVp0bf3knVHk4Ho55kEY2w/ daezmS1mUADxfmJGumDmoUDM94aqMA4m7PneQLAwcVZzlaEgXAsyQsp2270kfm+q PSDhuwlZqPYboJzfzyyQOx3IhnTaK0AE2WIPI07JlKKr4qJH/AcUjR1yAVhAX0XO EPWPiV6ZrKBvzkbpZM/qiUGEYwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFD0eAjYW ntSCekFvfVBmqWAybI6yMB8GA1UdIwQYMBaAFEyyEypyNqbjtbljDKAwEUhjKFX3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOEY5Qi8wMUVERUY5NjVE QkUxMUVGOEEwNkVENDBDNEY5QUUwMi9UTElUS25JMnB1TzF1V01Nb0RBUlNHTW9W ZmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RMSVRLbkkycHVPMXVXTU1vREFSU0dNb1ZmYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OEY5Qi8wMUVERUY5NjVEQkUxMUVGOEEwNkVENDBDNEY5QUUwMi9UTElUS25JMnB1 TzF1V01Nb0RBUlNHTW9WZmMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEACp8Gz3mEbX1Q6tMRsf5MidX/65+MqtGCrt1vfHw3KALFsiwmBG0RrHisA91L ZjFkd4EnP3hsjlC9YOfuc2fN+Wa23zY9p0zBcvip7pBMtalZ84RQJ1cNzjDBkfLA HfkOCcfcDrHkBQm7IV7Y0WK9G12ZXHuGNIR8+/ZQZYp2XZxaPRrUBgogrWiCnXrm qAeJoimdzkv+/hy5mrb+rsAlBqbA8Ad9FgPn7kW40MwtU9epvysfGpxsiUfCdnlA 9T0hIhjjUxCapyDs1A3nR4h3WUD5wpPsjWDgCXPc1Pc0PIBWQ1lo68kUotXoh+ap 6d2+lx799H+E4ZWD7OY9gG6EWw== -----END CERTIFICATE-----Generated at Mon Mar 2 06:46:38 2026 by rpki-client