$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4750/90D5EC5ADABD11EA8FC62387C4F9AE02/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.mft File: aHY-kqLBeFMWdXZlEQP4H1ms3Bo.mft (raw, json) Hash identifier: x+Yb/3+W2YHnB/Gd+kBtvbAqWqM2Iuj4YhvwpsseVJg= Subject key identifier: 07:EE:15:C9:63:31:CC:C1:00:64:A1:B7:FA:1E:EE:C2:E1:34:C5:8B Authority key identifier: 68:76:3E:92:A2:C1:78:53:16:75:76:65:11:03:F8:1F:59:AC:DC:1A Certificate issuer: /CN=A91C4750/serialNumber=68763E92A2C17853167576651103F81F59ACDC1A Certificate serial: 08C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C4750/90D5EC5ADABD11EA8FC62387C4F9AE02/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.mft Manifest number: 08AF Signing time: Tue 24 Mar 2026 20:13:28 +0000 Manifest this update: Tue 24 Mar 2026 20:13:28 +0000 Manifest next update: Tue 31 Mar 2026 20:13:28 +0000 Files and hashes: 1: aHY-kqLBeFMWdXZlEQP4H1ms3Bo.crl (hash: sKzTXhcSmJ3bCB1juGca9p1u6/HB1kkYTMwlbDHiV4c=) 2: DA1A98C4DABE11EAB12A5209C4F9AE02.roa (hash: Q2tDi7aDCqJfPbKlsvpv/Im3EMBA1tZp/jy9biarem0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C4750/90D5EC5ADABD11EA8FC62387C4F9AE02/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.crl rsync://rpki.apnic.net/member_repository/A91C4750/90D5EC5ADABD11EA8FC62387C4F9AE02/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 20:13:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2241 (0x8c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C4750, serialNumber=68763E92A2C17853167576651103F81F59ACDC1A Validity Not Before: Mar 24 20:13:28 2026 GMT Not After : Mar 31 20:13:28 2026 GMT Subject: CN=69c2f068-d43f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:c8:c0:76:97:9f:99:a3:1c:1e:53:61:32:51: 89:eb:af:99:50:ea:5e:46:5f:09:28:51:4c:a4:5e: 1b:d4:33:c5:14:1f:3e:9f:21:e1:d5:b5:59:9d:8d: 37:ac:e4:63:23:9a:d4:fc:36:56:db:ae:93:f3:2d: d1:35:ff:30:11:86:49:f5:c6:a6:6c:c2:cb:dc:7e: a3:c8:4b:65:9f:63:73:54:fc:72:17:cf:1f:a9:ec: 1b:6b:14:42:63:26:5f:67:d2:44:7e:24:59:ac:c5: aa:5c:80:ae:22:35:52:a9:9a:03:38:e0:02:f2:e4: fe:c7:24:3a:9d:78:ba:27:aa:14:bd:08:31:7b:d8: 16:bb:38:14:f1:ec:6f:fa:e1:54:75:b5:a0:6a:37: ce:68:dd:09:a2:39:18:5b:44:dc:56:64:02:91:64: f1:b8:77:0e:f8:71:f0:80:09:4d:39:41:76:66:6d: 04:f0:ab:1e:bf:1f:f6:ef:b8:f8:3b:02:52:49:6f: f9:d6:c8:c4:48:ed:0f:35:8a:89:ec:e2:b8:12:74: 06:c6:65:e3:1c:26:7a:ab:88:88:7e:6e:21:0e:67: 9b:d0:79:59:6f:2c:c3:61:f8:c7:e0:e3:d7:d0:c4: 3d:ef:37:a7:ea:0f:a6:4b:cf:99:5f:ad:53:6e:33: bd:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:EE:15:C9:63:31:CC:C1:00:64:A1:B7:FA:1E:EE:C2:E1:34:C5:8B X509v3 Authority Key Identifier: keyid:68:76:3E:92:A2:C1:78:53:16:75:76:65:11:03:F8:1F:59:AC:DC:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C4750/90D5EC5ADABD11EA8FC62387C4F9AE02/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4750/90D5EC5ADABD11EA8FC62387C4F9AE02/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bd:8c:cd:9f:36:5c:bd:77:0f:29:1c:ca:a4:64:d8:80:b5:98: f8:33:8d:83:41:d6:6a:7f:24:4b:01:66:3e:8a:bb:3a:8f:07: 30:cb:be:6d:fc:2b:4f:90:f8:d5:57:c0:48:6f:7c:b4:b2:54: a2:0d:77:e0:f9:0d:07:49:3a:42:dc:3d:6b:b0:38:0a:8e:7d: 74:f2:44:28:cd:53:bb:64:5e:f9:1c:c9:c1:4f:f6:65:75:bf: 97:c4:fa:4e:f3:f8:02:92:ef:47:8c:58:73:e8:8b:62:cf:13: 45:7e:46:0e:e7:fc:1e:e9:40:89:2a:9e:dc:6d:15:13:94:3c: 1e:42:e9:ae:19:d0:22:64:38:dc:b0:d8:8c:eb:25:83:ac:12: 2a:b1:e0:b2:17:6f:0b:03:be:a7:00:dc:55:56:f1:06:ea:3c: 4f:33:07:f7:83:b2:39:3c:aa:92:59:e2:15:f8:6f:b2:58:36: b1:74:a1:b9:96:7c:b1:12:d0:63:fb:d9:5d:5e:23:a2:d7:f7: be:26:4b:b2:6c:9b:78:e1:0d:7b:89:b9:40:d0:4c:c6:94:85: 17:5d:7e:30:ca:31:aa:93:53:df:cc:33:cb:ea:c9:01:f4:ca: 92:2d:23:1c:53:b1:1d:78:9e:b1:f6:c7:b4:a4:dd:01:b4:0f: 60:b9:6c:12 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCMEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzQ3NTAxMTAvBgNVBAUTKDY4NzYzRTkyQTJDMTc4NTMxNjc1NzY2NTExMDNGODFG NTlBQ0RDMUEwHhcNMjYwMzI0MjAxMzI4WhcNMjYwMzMxMjAxMzI4WjAYMRYwFAYD VQQDEw02OWMyZjA2OC1kNDNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0MjAdpefmaMcHlNhMlGJ66+ZUOpeRl8JKFFMpF4b1DPFFB8+nyHh1bVZnY03 rORjI5rU/DZW266T8y3RNf8wEYZJ9cambMLL3H6jyEtln2NzVPxyF88fqewbaxRC YyZfZ9JEfiRZrMWqXICuIjVSqZoDOOAC8uT+xyQ6nXi6J6oUvQgxe9gWuzgU8exv +uFUdbWgajfOaN0JojkYW0TcVmQCkWTxuHcO+HHwgAlNOUF2Zm0E8Ksevx/277j4 OwJSSW/51sjESO0PNYqJ7OK4EnQGxmXjHCZ6q4iIfm4hDmeb0HlZbyzDYfjH4OPX 0MQ97zen6g+mS8+ZX61TbjO9JQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAfuFclj MczBAGSht/oe7sLhNMWLMB8GA1UdIwQYMBaAFGh2PpKiwXhTFnV2ZRED+B9ZrNwa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNDc1MC85MEQ1RUM1QURB QkQxMUVBOEZDNjIzODdDNEY5QUUwMi9hSFkta3FMQmVGTVdkWFpsRVFQNEgxbXMz Qm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FIWS1rcUxCZUZNV2RYWmxFUVA0SDFtczNCby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NDc1MC85MEQ1RUM1QURBQkQxMUVBOEZDNjIzODdDNEY5QUUwMi9hSFkta3FMQmVG TVdkWFpsRVFQNEgxbXMzQm8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAvYzNnzZcvXcPKRzKpGTYgLWY+DONg0HWan8kSwFmPoq7Oo8HMMu+bfwrT5D4 1VfASG98tLJUog134PkNB0k6Qtw9a7A4Co59dPJEKM1Tu2Re+RzJwU/2ZXW/l8T6 TvP4ApLvR4xYc+iLYs8TRX5GDuf8HulAiSqe3G0VE5Q8HkLprhnQImQ43LDYjOsl g6wSKrHgshdvCwO+pwDcVVbxBuo8TzMH94OyOTyqklniFfhvslg2sXShuZZ8sRLQ Y/vZXV4jotf3viZLsmybeOENe4m5QNBMxpSFF11+MMoxqpNT38wzy+rJAfTKki0j HFOxHXiesfbHtKTdAbQPYLlsEg== -----END CERTIFICATE-----Generated at Thu Mar 26 15:58:34 2026 by rpki-client