$ rpki-client -vvf rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.mft File: Y0lzWQThvA1lvVlKB3YrtSmcA4o.mft (raw, json) Hash identifier: ncZw3NMY+E3KZcc3JbCzhp/8yv6L8YdHs2SvhOLmwSs= Subject key identifier: 28:F6:0A:4C:DB:AC:A4:30:45:05:CC:45:06:11:6D:96:BB:05:B2:D0 Authority key identifier: 63:49:73:59:04:E1:BC:0D:65:BD:59:4A:07:76:2B:B5:29:9C:03:8A Certificate issuer: /CN=A91AFB4C/serialNumber=6349735904E1BC0D65BD594A07762BB5299C038A Certificate serial: 024E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y0lzWQThvA1lvVlKB3YrtSmcA4o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.mft Manifest number: 0248 Signing time: Wed 25 Mar 2026 01:49:21 +0000 Manifest this update: Wed 25 Mar 2026 01:49:20 +0000 Manifest next update: Wed 01 Apr 2026 01:49:20 +0000 Files and hashes: 1: Y0lzWQThvA1lvVlKB3YrtSmcA4o.crl (hash: LBBXC63KNbq9zaYqS6Uf1MVupb+GB86Z3Kvxc39i488=) 2: AD286018B29C11EDB216812EC4F9AE02.roa (hash: YsWaPmtg5tmHB4YVZTYxNVoG50IpCI5IiT+MeSWq6Eg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.crl rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y0lzWQThvA1lvVlKB3YrtSmcA4o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 01:49:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 590 (0x24e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AFB4C, serialNumber=6349735904E1BC0D65BD594A07762BB5299C038A Validity Not Before: Mar 25 01:49:20 2026 GMT Not After : Apr 1 01:49:20 2026 GMT Subject: CN=69c33f21-f0c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:ea:31:f3:08:ff:41:68:90:64:90:ca:ba:26: 37:fa:3f:45:0a:87:5f:91:23:85:47:85:64:49:9e: 6e:92:92:10:0c:12:29:61:41:28:32:67:cf:28:2d: 56:a9:96:84:b8:26:4c:83:2b:b0:77:0e:68:2e:39: e3:36:c0:7b:60:92:43:78:ed:b2:5c:d0:57:9c:34: 82:02:90:94:d6:f1:3f:7c:bf:86:b9:ab:2f:9d:20: c2:71:75:f0:82:71:1c:89:0c:50:ca:bb:22:cb:5b: 50:15:f8:4e:54:ed:73:56:40:1b:dc:76:9c:e2:f3: c2:3b:45:0e:89:5b:bd:8c:14:ad:dd:ca:a4:6a:68: f7:c0:36:25:83:40:f2:a2:1f:c1:df:08:27:b2:4b: bf:94:dd:7e:08:a3:89:0b:b0:c0:69:10:49:9f:66: a5:48:c4:c1:a2:dc:ef:70:c9:08:4f:8c:c8:28:8d: 02:6a:49:92:89:18:97:0d:30:53:f9:4d:b0:21:36: 4f:a4:0e:9f:83:58:d0:75:51:c6:21:55:bc:4c:81: f8:83:aa:ff:d1:d7:8f:06:de:6a:f3:90:50:54:ab: fd:58:3d:b8:a6:50:5e:cc:7c:bf:7b:79:0b:3b:4b: 03:e2:1a:db:9e:6a:00:5d:1e:10:e0:f0:69:42:a5: 80:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:F6:0A:4C:DB:AC:A4:30:45:05:CC:45:06:11:6D:96:BB:05:B2:D0 X509v3 Authority Key Identifier: keyid:63:49:73:59:04:E1:BC:0D:65:BD:59:4A:07:76:2B:B5:29:9C:03:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y0lzWQThvA1lvVlKB3YrtSmcA4o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:af:33:17:91:2a:b0:6d:d6:3a:ff:0d:e6:7b:2d:db:07:9c: 63:e3:85:3b:2f:3e:d8:9c:c2:e4:7f:ae:c2:eb:f9:3e:a5:1c: 0e:c3:88:78:44:bb:1a:64:07:f6:8e:dc:15:69:73:57:3c:f0: de:5e:b8:51:4e:86:a5:e6:fd:de:28:24:c5:58:1d:02:56:73: bf:fe:49:5b:b3:cd:ff:9d:6f:8a:6f:cf:43:fb:b0:a7:35:b5: a2:1c:81:d5:aa:4f:a7:10:5e:d6:c7:3f:f4:25:3f:e2:7a:91: 4a:2b:ee:3b:85:29:0d:54:a5:90:c5:5b:13:00:ff:4e:64:83: 69:7d:ea:67:82:14:82:03:a9:d9:4e:ff:35:eb:f5:18:48:6c: cb:a3:b3:1f:07:48:d5:57:09:72:06:32:fd:c8:5b:a7:62:cd: ca:76:47:d8:88:c2:7b:8f:9f:63:0c:28:9b:ae:ba:28:2c:76: 72:bf:e6:b3:89:68:77:37:83:ed:e9:87:db:ae:c9:e7:f9:da: 32:1e:04:94:49:ee:b7:14:29:0e:ff:ac:98:0a:50:de:cb:6e: 9e:d0:78:6e:fc:fa:77:41:1d:ed:f9:a8:f1:75:96:f0:29:eb: 8f:f8:aa:3a:b0:8c:6f:9e:0d:73:ee:91:c6:bf:26:a9:14:89: a8:a6:a5:7d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAk4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUZCNEMxMTAvBgNVBAUTKDYzNDk3MzU5MDRFMUJDMEQ2NUJENTk0QTA3NzYyQkI1 Mjk5QzAzOEEwHhcNMjYwMzI1MDE0OTIwWhcNMjYwNDAxMDE0OTIwWjAYMRYwFAYD VQQDEw02OWMzM2YyMS1mMGM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyeox8wj/QWiQZJDKuiY3+j9FCodfkSOFR4VkSZ5ukpIQDBIpYUEoMmfPKC1W qZaEuCZMgyuwdw5oLjnjNsB7YJJDeO2yXNBXnDSCApCU1vE/fL+GuasvnSDCcXXw gnEciQxQyrsiy1tQFfhOVO1zVkAb3Hac4vPCO0UOiVu9jBSt3cqkamj3wDYlg0Dy oh/B3wgnsku/lN1+CKOJC7DAaRBJn2alSMTBotzvcMkIT4zIKI0CakmSiRiXDTBT +U2wITZPpA6fg1jQdVHGIVW8TIH4g6r/0dePBt5q85BQVKv9WD24plBezHy/e3kL O0sD4hrbnmoAXR4Q4PBpQqWAaQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCj2Ckzb rKQwRQXMRQYRbZa7BbLQMB8GA1UdIwQYMBaAFGNJc1kE4bwNZb1ZSgd2K7UpnAOK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRkI0Qy9DNDcwQjIyQUIy OTcxMUVEOTRFRjA5MjZDNEY5QUUwMi9ZMGx6V1FUaHZBMWx2VmxLQjNZcnRTbWNB NG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1kwbHpXUVRodkExbHZWbEtCM1lydFNtY0E0by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RkI0Qy9DNDcwQjIyQUIyOTcxMUVEOTRFRjA5MjZDNEY5QUUwMi9ZMGx6V1FUaHZB MWx2VmxLQjNZcnRTbWNBNG8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAia8zF5EqsG3WOv8N5nst2wecY+OFOy8+2JzC5H+uwuv5PqUcDsOIeES7GmQH 9o7cFWlzVzzw3l64UU6Gpeb93igkxVgdAlZzv/5JW7PN/51vim/PQ/uwpzW1ohyB 1apPpxBe1sc/9CU/4nqRSivuO4UpDVSlkMVbEwD/TmSDaX3qZ4IUggOp2U7/Nev1 GEhsy6OzHwdI1VcJcgYy/chbp2LNynZH2IjCe4+fYwwom666KCx2cr/ms4lodzeD 7emH267J5/naMh4ElEnutxQpDv+smApQ3stuntB4bvz6d0Ed7fmo8XWW8Cnrj/iq OrCMb54Nc+6Rxr8mqRSJqKalfQ== -----END CERTIFICATE-----Generated at Thu Mar 26 00:50:18 2026 by rpki-client