$ rpki-client -vvf rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.mft File: tLGKJT-2KTQ3EWY13d0ZlCi2jVs.mft (raw, json) Hash identifier: bN5WbrBQ5Kf4hXADliIzHaD7nGMsrnp3+yKwcWcyDYE= Subject key identifier: 58:4B:B2:70:F1:2D:0F:48:A0:CB:53:2D:1C:C7:F0:80:B5:EF:D1:0F Authority key identifier: B4:B1:8A:25:3F:B6:29:34:37:11:66:35:DD:DD:19:94:28:B6:8D:5B Certificate issuer: /CN=A91FD64D/serialNumber=B4B18A253FB6293437116635DDDD199428B68D5B Certificate serial: 0254 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.mft Manifest number: 024B Signing time: Sun 01 Mar 2026 03:06:49 +0000 Manifest this update: Sun 01 Mar 2026 03:06:49 +0000 Manifest next update: Sun 08 Mar 2026 03:06:49 +0000 Files and hashes: 1: tLGKJT-2KTQ3EWY13d0ZlCi2jVs.crl (hash: iZ9oQiRBa3Jzjza9yMAlfbrajv8gzfV9rOAJeOYSMhs=) 2: 66D00EB2449C11EE86105C41C4F9AE02.roa (hash: nx5CKp1+pJok5aiZcq9fMYfEHq6RkLnff9FbE4yF750=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.crl rsync://rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 03:06:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 596 (0x254) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD64D, serialNumber=B4B18A253FB6293437116635DDDD199428B68D5B Validity Not Before: Mar 1 03:06:49 2026 GMT Not After : Mar 8 03:06:49 2026 GMT Subject: CN=69a3ad49-cdcc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:9c:aa:83:4b:b8:3e:ea:48:2b:df:2d:a1:1c: f2:db:3f:df:92:bc:a5:94:ef:6b:56:59:d2:15:94: 26:dd:f3:64:ad:0f:8c:30:44:d0:86:98:17:e7:e2: 88:e9:91:60:d1:0a:ed:0c:39:e8:9a:c8:66:2e:09: f7:e0:99:2d:4b:ec:1d:a8:0b:4c:47:c8:7d:7d:9d: 5b:41:6c:0f:f4:e6:4a:2b:5e:92:5b:5b:4f:d5:06: c3:f5:69:2f:2e:9b:22:60:33:4c:67:f7:b4:99:63: 53:88:ad:3e:88:4c:51:5a:a7:34:8f:30:98:1c:a1: 00:08:65:de:2b:8a:06:a2:45:54:27:04:89:a4:09: b1:cf:46:1c:ae:8c:f1:72:cf:8a:ea:5b:f3:22:9b: 22:80:02:71:c7:65:09:89:99:22:41:6e:b8:4f:32: 14:64:51:0c:58:85:54:a9:a0:d2:ba:c8:fa:6c:a6: 62:db:7d:ec:c7:c6:f5:40:0e:cf:73:4c:59:44:94: 4c:e8:1c:ad:5a:67:47:d5:41:47:fd:65:b6:e9:fb: 05:95:90:c6:f0:1e:c1:48:c7:6e:dd:7b:39:3d:01: 8d:93:c8:80:80:26:e7:f4:8d:fc:70:38:14:5c:e9: 4e:6b:db:4b:83:91:d4:64:6d:63:06:f5:72:2e:10: aa:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:4B:B2:70:F1:2D:0F:48:A0:CB:53:2D:1C:C7:F0:80:B5:EF:D1:0F X509v3 Authority Key Identifier: keyid:B4:B1:8A:25:3F:B6:29:34:37:11:66:35:DD:DD:19:94:28:B6:8D:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:49:cf:95:b5:51:94:40:ae:0a:aa:2f:df:f4:0d:1e:8a:92: 27:63:7c:f9:a4:01:3f:3e:2d:a4:ea:2b:cc:0c:64:83:e8:fa: 8e:c2:b6:88:b3:90:35:3e:0f:32:75:7f:cf:e1:b8:4f:f9:74: 0a:eb:84:c5:9c:13:81:df:fc:43:aa:19:98:00:b9:9b:9a:c6: fd:7d:60:1e:e3:97:18:de:a3:83:a4:a1:6e:c6:32:39:73:be: 6b:9d:b5:d9:7a:92:d7:f9:74:90:2b:75:f1:43:6a:21:6a:b1: 94:c2:ba:f3:96:38:1e:b1:cf:ba:61:22:8b:5c:2f:81:75:b6: 2d:36:76:34:e6:be:30:e1:88:da:9d:ea:9c:98:0d:f0:40:ff: a1:53:07:d6:28:82:a3:47:f2:2c:9f:e8:3d:f0:66:d0:dd:26: db:4a:2c:cf:c9:19:10:26:77:b7:7b:b8:86:23:4b:2a:be:98: 72:dc:28:e9:23:45:b3:55:2d:c1:96:41:a8:25:e9:da:de:68: 64:84:a7:75:f8:6f:bc:35:46:97:33:55:48:dc:04:46:45:d3: b6:44:a6:49:b1:70:2f:d9:51:c0:81:2a:2b:4f:ed:ab:a1:d2: 78:f6:7c:5a:80:90:28:b0:a4:41:5b:0c:e5:39:e3:7c:7b:72: b4:ee:88:f0 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAlQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkQ2NEQxMTAvBgNVBAUTKEI0QjE4QTI1M0ZCNjI5MzQzNzExNjYzNUREREQxOTk0 MjhCNjhENUIwHhcNMjYwMzAxMDMwNjQ5WhcNMjYwMzA4MDMwNjQ5WjAYMRYwFAYD VQQDDA02OWEzYWQ0OS1jZGNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzZyqg0u4PupIK98toRzy2z/fkryllO9rVlnSFZQm3fNkrQ+MMETQhpgX5+KI 6ZFg0QrtDDnomshmLgn34JktS+wdqAtMR8h9fZ1bQWwP9OZKK16SW1tP1QbD9Wkv LpsiYDNMZ/e0mWNTiK0+iExRWqc0jzCYHKEACGXeK4oGokVUJwSJpAmxz0Ycrozx cs+K6lvzIpsigAJxx2UJiZkiQW64TzIUZFEMWIVUqaDSusj6bKZi233sx8b1QA7P c0xZRJRM6BytWmdH1UFH/WW26fsFlZDG8B7BSMdu3Xs5PQGNk8iAgCbn9I38cDgU XOlOa9tLg5HUZG1jBvVyLhCqBQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFhLsnDx LQ9IoMtTLRzH8IC179EPMB8GA1UdIwQYMBaAFLSxiiU/tik0NxFmNd3dGZQoto1b MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRDY0RC8zNzA3ODZDODk5 OTQxMUVEODU2NzMxMUZDNEY5QUUwMi90TEdLSlQtMktUUTNFV1kxM2QwWmxDaTJq VnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RMR0tKVC0yS1RRM0VXWTEzZDBabENpMmpWcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RDY0RC8zNzA3ODZDODk5OTQxMUVEODU2NzMxMUZDNEY5QUUwMi90TEdLSlQtMktU UTNFV1kxM2QwWmxDaTJqVnMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAEUnPlbVRlECuCqov3/QNHoqSJ2N8+aQBPz4tpOorzAxkg+j6jsK2iLOQNT4P MnV/z+G4T/l0CuuExZwTgd/8Q6oZmAC5m5rG/X1gHuOXGN6jg6ShbsYyOXO+a521 2XqS1/l0kCt18UNqIWqxlMK685Y4HrHPumEii1wvgXW2LTZ2NOa+MOGI2p3qnJgN 8ED/oVMH1iiCo0fyLJ/oPfBm0N0m20osz8kZECZ3t3u4hiNLKr6Yctwo6SNFs1Ut wZZBqCXp2t5oZISndfhvvDVGlzNVSNwERkXTtkSmSbFwL9lRwIEqK0/tq6HSePZ8 WoCQKLCkQVsM5TnjfHtytO6I8A== -----END CERTIFICATE-----Generated at Mon Mar 2 00:30:02 2026 by rpki-client