$ rpki-client -vvf rpki.apnic.net/member_repository/A9126F2B/90FADEECD5CD11E5AA426E40C4F9AE02/4YL5k2lSxCadZw2ldS3syGgjTxs.mft File: 4YL5k2lSxCadZw2ldS3syGgjTxs.mft (raw, json) Hash identifier: WMZO7iW9V5+s+Hgi+QRW6pH8ZB4oDM8ROFw4NCjQYoY= Subject key identifier: 5F:72:92:1F:99:C6:9C:37:D0:F7:A2:F6:B7:E1:77:1B:70:43:51:02 Authority key identifier: E1:82:F9:93:69:52:C4:26:9D:67:0D:A5:75:2D:EC:C8:68:23:4F:1B Certificate issuer: /CN=A9126F2B/serialNumber=E182F9936952C4269D670DA5752DECC868234F1B Certificate serial: 2273 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4YL5k2lSxCadZw2ldS3syGgjTxs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9126F2B/90FADEECD5CD11E5AA426E40C4F9AE02/4YL5k2lSxCadZw2ldS3syGgjTxs.mft Manifest number: 224A Signing time: Tue 24 Mar 2026 15:48:21 +0000 Manifest this update: Tue 24 Mar 2026 15:48:20 +0000 Manifest next update: Tue 31 Mar 2026 15:48:20 +0000 Files and hashes: 1: 4YL5k2lSxCadZw2ldS3syGgjTxs.crl (hash: C2sMXrBdsy/wvQqZCZsX24V/koIRS7BdSvS6kKf+iiU=) 2: B72206B4554B11E791BA5861C4F9AE02.roa (hash: i8ynNvisFun6KLb9XReq+KAa11jwRPXK2t/Z0bHo3gM=) 3: A8E9DE704B8511E7BF406610C4F9AE02.roa (hash: IV9u+bL98dY9vhWPzSb2VF1m+KNoLGbMT7wCZc4XtUw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9126F2B/90FADEECD5CD11E5AA426E40C4F9AE02/4YL5k2lSxCadZw2ldS3syGgjTxs.crl rsync://rpki.apnic.net/member_repository/A9126F2B/90FADEECD5CD11E5AA426E40C4F9AE02/4YL5k2lSxCadZw2ldS3syGgjTxs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4YL5k2lSxCadZw2ldS3syGgjTxs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 15:48:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8819 (0x2273) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9126F2B, serialNumber=E182F9936952C4269D670DA5752DECC868234F1B Validity Not Before: Mar 24 15:48:20 2026 GMT Not After : Mar 31 15:48:20 2026 GMT Subject: CN=69c2b244-eed8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:88:05:4c:bb:60:99:fe:91:31:8a:a1:93:9b:6a: e0:38:11:64:98:03:3b:cb:d4:12:ea:37:11:79:35: 74:12:d0:b4:0c:bd:3f:27:e5:09:39:fe:94:af:c4: 9d:a0:3e:8f:44:e6:89:33:c5:8c:21:a0:4a:60:8a: 57:d3:50:42:c6:34:bb:76:41:7e:23:6d:05:95:bc: 30:de:d7:df:e3:31:76:36:79:66:f9:c6:55:e2:01: cf:c5:cc:01:42:4e:12:fe:b2:72:88:7c:fb:fa:10: 47:8b:6b:f3:d6:b8:43:20:e8:b0:9b:a6:93:45:cc: 35:1a:98:b8:7c:bb:19:f1:ca:c2:b9:38:e3:04:a2: 5e:4c:4d:a3:4d:ad:6b:76:11:87:9e:86:63:ee:b4: f9:ac:4a:32:52:b1:69:e8:2e:cb:c6:1a:74:b9:5f: 68:24:21:b6:ac:f6:36:f3:0f:4b:7d:02:d6:21:14: 7f:24:a7:bd:4e:16:68:b3:e3:7d:4d:1d:ec:4f:d3: 15:93:96:eb:d9:31:70:11:dd:13:8b:e2:cf:1e:44: 8b:2f:c6:57:11:04:f5:cb:05:5d:73:f6:99:b2:3a: 98:15:ab:2f:6a:6e:90:73:a1:e9:60:e1:53:76:cb: c1:a2:40:ce:15:fa:c9:ed:7c:3f:33:79:ad:41:a6: 1d:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:72:92:1F:99:C6:9C:37:D0:F7:A2:F6:B7:E1:77:1B:70:43:51:02 X509v3 Authority Key Identifier: keyid:E1:82:F9:93:69:52:C4:26:9D:67:0D:A5:75:2D:EC:C8:68:23:4F:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9126F2B/90FADEECD5CD11E5AA426E40C4F9AE02/4YL5k2lSxCadZw2ldS3syGgjTxs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4YL5k2lSxCadZw2ldS3syGgjTxs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9126F2B/90FADEECD5CD11E5AA426E40C4F9AE02/4YL5k2lSxCadZw2ldS3syGgjTxs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:dc:b6:91:60:07:dc:55:b4:71:a3:c5:af:a7:ac:12:70:68: 84:87:4c:38:50:5a:70:bc:23:fe:a6:35:0f:26:24:93:34:5a: 9d:6a:90:57:4e:4b:15:33:6e:dd:67:3f:9a:9d:7b:03:7e:02: 30:d1:25:4e:b1:bd:6c:fc:03:50:c1:b3:b0:2b:f1:12:e0:02: 57:94:72:73:1d:3c:78:87:be:26:7e:4a:07:58:0b:a6:53:c8: a8:db:9b:5c:07:f0:80:08:13:2b:ce:0f:99:ce:87:4b:48:06: 24:97:05:8b:b0:b7:73:8e:c5:ce:da:fc:ef:fe:11:e8:49:5e: 0d:35:7a:05:25:14:46:48:d5:2b:ef:76:7e:5c:b8:66:2b:35: 68:c6:b7:c5:6b:ff:03:d5:c0:b3:aa:28:1d:90:78:9b:65:6a: 82:3b:fb:20:fc:c4:61:c0:a7:5f:3d:2f:2e:d9:0e:c1:bb:ca: 52:f8:79:68:c2:51:5a:b7:e6:0a:4d:92:b2:e2:d3:9f:8f:dc: 28:9b:42:5c:e0:d6:26:21:6f:a2:18:5f:b1:87:b8:00:25:69: b3:84:67:ec:00:74:d9:63:e7:fc:4f:77:b2:f9:91:c2:4c:92: 42:4a:06:cf:6f:09:6e:db:f3:96:2a:a5:91:8b:6b:d1:a3:7a: 31:84:92:d7 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICInMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjZGMkIxMTAvBgNVBAUTKEUxODJGOTkzNjk1MkM0MjY5RDY3MERBNTc1MkRFQ0M4 NjgyMzRGMUIwHhcNMjYwMzI0MTU0ODIwWhcNMjYwMzMxMTU0ODIwWjAYMRYwFAYD VQQDEw02OWMyYjI0NC1lZWQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAiAVMu2CZ/pExiqGTm2rgOBFkmAM7y9QS6jcReTV0EtC0DL0/J+UJOf6Ur8Sd oD6PROaJM8WMIaBKYIpX01BCxjS7dkF+I20Flbww3tff4zF2Nnlm+cZV4gHPxcwB Qk4S/rJyiHz7+hBHi2vz1rhDIOiwm6aTRcw1Gpi4fLsZ8crCuTjjBKJeTE2jTa1r dhGHnoZj7rT5rEoyUrFp6C7Lxhp0uV9oJCG2rPY28w9LfQLWIRR/JKe9ThZos+N9 TR3sT9MVk5br2TFwEd0Ti+LPHkSLL8ZXEQT1ywVdc/aZsjqYFasvam6Qc6HpYOFT dsvBokDOFfrJ7Xw/M3mtQaYdYwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFF9ykh+Z xpw30Pei9rfhdxtwQ1ECMB8GA1UdIwQYMBaAFOGC+ZNpUsQmnWcNpXUt7MhoI08b MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNkYyQi85MEZBREVFQ0Q1 Q0QxMUU1QUE0MjZFNDBDNEY5QUUwMi80WUw1azJsU3hDYWRadzJsZFMzc3lHZ2pU eHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRZTDVrMmxTeENhZFp3MmxkUzNzeUdnalR4cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NkYyQi85MEZBREVFQ0Q1Q0QxMUU1QUE0MjZFNDBDNEY5QUUwMi80WUw1azJsU3hD YWRadzJsZFMzc3lHZ2pUeHMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAWty2kWAH3FW0caPFr6esEnBohIdMOFBacLwj/qY1DyYkkzRanWqQV05LFTNu 3Wc/mp17A34CMNElTrG9bPwDUMGzsCvxEuACV5Rycx08eIe+Jn5KB1gLplPIqNub XAfwgAgTK84Pmc6HS0gGJJcFi7C3c47Fztr87/4R6EleDTV6BSUURkjVK+92fly4 Zis1aMa3xWv/A9XAs6ooHZB4m2Vqgjv7IPzEYcCnXz0vLtkOwbvKUvh5aMJRWrfm Ck2SsuLTn4/cKJtCXODWJiFvohhfsYe4ACVps4Rn7AB02WPn/E93svmRwkySQkoG z28JbtvzliqlkYtr0aN6MYSS1w== -----END CERTIFICATE-----Generated at Thu Mar 26 05:35:59 2026 by rpki-client