$ rpki-client -vvf rpki.apnic.net/member_repository/A91BFE76/D9E4C4CCB92711F0B80EC45EC4F9AE02/vY48wqk9XbzYQnUJc4oxS_kMiH0.mft File: vY48wqk9XbzYQnUJc4oxS_kMiH0.mft (raw, json) Hash identifier: cJssS78I2OuvuH1rWxlcPaiBRK/o/tJHoBCQGM5Jw48= Subject key identifier: 17:37:0E:FD:FE:99:B9:BA:49:AB:73:7A:36:D5:59:EE:A6:42:DD:9C Authority key identifier: BD:8E:3C:C2:A9:3D:5D:BC:D8:42:75:09:73:8A:31:4B:F9:0C:88:7D Certificate issuer: /CN=A91BFE76/serialNumber=BD8E3CC2A93D5DBCD8427509738A314BF90C887D Certificate serial: 51 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vY48wqk9XbzYQnUJc4oxS_kMiH0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BFE76/D9E4C4CCB92711F0B80EC45EC4F9AE02/vY48wqk9XbzYQnUJc4oxS_kMiH0.mft Manifest number: 4D Signing time: Wed 25 Mar 2026 07:28:01 +0000 Manifest this update: Wed 25 Mar 2026 07:28:01 +0000 Manifest next update: Wed 01 Apr 2026 07:28:01 +0000 Files and hashes: 1: vY48wqk9XbzYQnUJc4oxS_kMiH0.crl (hash: Oqnn5cMk13Fu2w5msFw6zPPW8bLE9EO39Ra82of8SUs=) 2: E9A639DAB9EB11F0AE27CB70C4F9AE02.roa (hash: ZuP0uWcegjrbhw4CUiK7NSueNS7Vvex1xTz8Rpwula0=) 3: 79734D6AB9EB11F095C2C735C4F9AE02.roa (hash: 1fKhxfq/TrlnYFDoICW1zCAYtSl3cbSlKcSl1u+qus8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BFE76/D9E4C4CCB92711F0B80EC45EC4F9AE02/vY48wqk9XbzYQnUJc4oxS_kMiH0.crl rsync://rpki.apnic.net/member_repository/A91BFE76/D9E4C4CCB92711F0B80EC45EC4F9AE02/vY48wqk9XbzYQnUJc4oxS_kMiH0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vY48wqk9XbzYQnUJc4oxS_kMiH0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 07:28:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 81 (0x51) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BFE76, serialNumber=BD8E3CC2A93D5DBCD8427509738A314BF90C887D Validity Not Before: Mar 25 07:28:01 2026 GMT Not After : Apr 1 07:28:01 2026 GMT Subject: CN=69c38e81-79a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:6d:bc:58:e8:8d:88:ce:52:39:9b:44:65:b5: f3:b9:a0:6f:a9:25:a9:08:09:89:a7:61:5b:ae:c4: 0f:0f:d7:e6:63:4c:b4:c3:9c:95:80:18:a9:4e:e2: 9e:5a:e0:b7:e1:b0:68:3e:24:80:17:6e:ee:28:58: 93:62:65:8a:0c:aa:78:de:ff:2e:c1:89:f6:a0:5b: 44:f1:e3:5a:e6:b6:af:75:77:ce:b9:33:ec:98:ca: d3:45:f5:93:b1:35:72:a1:af:85:6d:ff:09:b7:1b: 01:af:3e:28:b1:00:ba:be:af:16:3b:5d:cf:68:46: 42:ef:84:53:7e:31:56:08:97:ee:07:85:36:ca:20: 28:d7:43:14:65:a4:cd:25:38:8a:da:6d:f3:ad:7c: 4e:e5:de:c1:f3:e4:35:b1:77:10:0f:75:a1:0d:76: 27:83:83:38:8c:6a:b7:14:32:7e:bd:32:00:ce:2e: 1e:c6:62:3c:d4:c8:3e:e9:d9:e8:d1:cd:7b:93:06: aa:23:f5:ba:60:c3:4a:68:a9:38:87:65:41:28:43: 43:96:48:3e:77:c3:3a:b2:01:b0:39:f6:9c:08:e6: aa:4d:ec:c5:e1:75:1d:75:2e:3b:cc:39:a0:aa:38: 79:46:8e:c5:33:2f:56:a3:e3:7a:2f:90:83:a7:30: 3b:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:37:0E:FD:FE:99:B9:BA:49:AB:73:7A:36:D5:59:EE:A6:42:DD:9C X509v3 Authority Key Identifier: keyid:BD:8E:3C:C2:A9:3D:5D:BC:D8:42:75:09:73:8A:31:4B:F9:0C:88:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BFE76/D9E4C4CCB92711F0B80EC45EC4F9AE02/vY48wqk9XbzYQnUJc4oxS_kMiH0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vY48wqk9XbzYQnUJc4oxS_kMiH0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BFE76/D9E4C4CCB92711F0B80EC45EC4F9AE02/vY48wqk9XbzYQnUJc4oxS_kMiH0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:ee:a2:1f:fa:e6:f4:87:da:c2:40:a1:3a:02:5f:27:7f:ac: 8d:0a:bb:81:0c:d8:49:34:fc:50:d2:08:b7:e5:d1:d3:24:3c: 0a:e0:04:72:ae:20:01:8a:73:76:a9:d5:05:a0:b2:ae:e4:f4: bf:cc:5c:3b:a5:51:d0:b2:96:67:a3:65:a2:99:a9:1c:7b:fb: 6f:20:ff:3f:87:12:04:38:af:4f:71:65:af:c5:d1:d0:43:1a: af:9b:30:cb:42:48:aa:96:d9:70:c6:eb:20:d0:bf:0b:9a:45: aa:46:af:d1:42:f0:70:93:eb:6f:f6:f7:f6:aa:df:2b:64:44: b0:59:da:9d:68:c6:a6:0d:ae:d9:5f:4d:08:dc:2b:e1:a7:20: e0:6b:87:f2:c5:3d:c9:2c:d4:35:7b:e5:e2:1a:42:68:30:7a: 0c:62:fb:5a:1d:cf:07:5e:aa:94:89:99:90:14:d2:1a:a6:84: 80:c5:96:ca:7b:8c:12:f2:2c:67:ae:ef:bb:4e:4d:9b:a9:0c: 51:73:f7:af:24:30:53:61:eb:9b:1d:19:db:0e:3f:a8:c7:75: 1c:07:19:61:8a:23:80:16:a3:79:a5:48:3f:54:45:dc:9c:c8: f3:c2:34:34:93:1e:f1:2e:1b:e7:9b:7b:f6:33:8d:f9:3a:95: cf:bb:04:a0 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBUTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC RkU3NjExMC8GA1UEBRMoQkQ4RTNDQzJBOTNENURCQ0Q4NDI3NTA5NzM4QTMxNEJG OTBDODg3RDAeFw0yNjAzMjUwNzI4MDFaFw0yNjA0MDEwNzI4MDFaMBgxFjAUBgNV BAMTDTY5YzM4ZTgxLTc5YTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCVbbxY6I2IzlI5m0RltfO5oG+pJakICYmnYVuuxA8P1+ZjTLTDnJWAGKlO4p5a 4LfhsGg+JIAXbu4oWJNiZYoMqnje/y7BifagW0Tx41rmtq91d865M+yYytNF9ZOx NXKhr4Vt/wm3GwGvPiixALq+rxY7Xc9oRkLvhFN+MVYIl+4HhTbKICjXQxRlpM0l OIrabfOtfE7l3sHz5DWxdxAPdaENdieDgziMarcUMn69MgDOLh7GYjzUyD7p2ejR zXuTBqoj9bpgw0poqTiHZUEoQ0OWSD53wzqyAbA59pwI5qpN7MXhdR11LjvMOaCq OHlGjsUzL1aj43ovkIOnMDs7AgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUFzcO/f6Z ubpJq3N6NtVZ7qZC3ZwwHwYDVR0jBBgwFoAUvY48wqk9XbzYQnUJc4oxS/kMiH0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJGRTc2L0Q5RTRDNENDQjky NzExRjBCODBFQzQ1RUM0RjlBRTAyL3ZZNDh3cWs5WGJ6WVFuVUpjNG94U19rTWlI MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvdlk0OHdxazlYYnpZUW5VSmM0b3hTX2tNaUgwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJG RTc2L0Q5RTRDNENDQjkyNzExRjBCODBFQzQ1RUM0RjlBRTAyL3ZZNDh3cWs5WGJ6 WVFuVUpjNG94U19rTWlIMC5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQBw7qIf+ub0h9rCQKE6Al8nf6yNCruBDNhJNPxQ0gi35dHTJDwK4ARyriABinN2 qdUFoLKu5PS/zFw7pVHQspZno2Wimakce/tvIP8/hxIEOK9PcWWvxdHQQxqvmzDL Qkiqltlwxusg0L8LmkWqRq/RQvBwk+tv9vf2qt8rZESwWdqdaMamDa7ZX00I3Cvh pyDga4fyxT3JLNQ1e+XiGkJoMHoMYvtaHc8HXqqUiZmQFNIapoSAxZbKe4wS8ixn ru+7Tk2bqQxRc/evJDBTYeubHRnbDj+ox3UcBxlhiiOAFqN5pUg/VEXcnMjzwjQ0 kx7xLhvnm3v2M435OpXPuwSg -----END CERTIFICATE-----Generated at Thu Mar 26 14:36:56 2026 by rpki-client