$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.mft File: y8ZgM3D76EzM4GToT08m7b7CZ7E.mft (raw, json) Hash identifier: HU6xpxGdn/mJaiHlEiS98TOnjUST76eoZChKJwXEl4M= Subject key identifier: F9:DC:F7:95:D8:34:68:24:D7:37:BC:D1:A1:1B:CB:F0:81:75:7A:32 Authority key identifier: CB:C6:60:33:70:FB:E8:4C:CC:E0:64:E8:4F:4F:26:ED:BE:C2:67:B1 Certificate issuer: /CN=A91D9CA8/serialNumber=CBC6603370FBE84CCCE064E84F4F26EDBEC267B1 Certificate serial: F2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y8ZgM3D76EzM4GToT08m7b7CZ7E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.mft Manifest number: E4 Signing time: Wed 25 Mar 2026 05:52:58 +0000 Manifest this update: Wed 25 Mar 2026 05:52:58 +0000 Manifest next update: Wed 01 Apr 2026 05:52:58 +0000 Files and hashes: 1: y8ZgM3D76EzM4GToT08m7b7CZ7E.crl (hash: YpnASMk66ypibe5XCunktqTHkNYwHYvTDgR7PhGZIx4=) 2: 459A40A0399111F0B589186BC4F9AE02.roa (hash: scPqVoYPhM9N9nt8I3yfdS2nCVlGwPE0LU2L+VLMObQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.crl rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y8ZgM3D76EzM4GToT08m7b7CZ7E.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 05:52:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 242 (0xf2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9CA8, serialNumber=CBC6603370FBE84CCCE064E84F4F26EDBEC267B1 Validity Not Before: Mar 25 05:52:58 2026 GMT Not After : Apr 1 05:52:58 2026 GMT Subject: CN=69c3783a-aad2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:79:fc:9d:63:f3:4e:f8:6a:d3:f7:13:12:d8: b8:ce:04:de:23:c7:eb:3a:a5:e6:9e:7d:03:b1:67: fd:8e:c5:82:83:75:81:35:ff:5a:6d:94:0f:0f:06: 0e:b5:b7:dc:a2:58:3a:eb:d1:c9:b3:59:d7:bd:59: 47:8f:b7:af:b6:bf:2e:21:ca:bb:d7:1e:54:ba:e0: 1e:04:b0:d7:9a:e5:36:2d:c7:a8:be:d3:c5:34:86: 55:44:77:96:6b:6e:67:f8:65:55:3c:cc:0b:fb:c5: 4b:e9:56:67:48:8b:5f:95:d4:d8:ee:7d:ab:58:5b: 26:b9:7f:c6:0c:8e:b1:1e:a6:64:aa:85:9f:50:4a: a3:4e:5c:cd:36:a0:23:97:ba:dd:f0:76:82:19:49: 13:55:f4:d6:3b:15:9a:34:2b:e3:70:75:8f:59:b1: ad:55:c1:a9:44:c2:87:75:05:fc:9b:44:03:03:f0: 25:16:33:61:58:db:b3:e1:c6:62:cd:fb:74:00:a6: 23:5e:ff:ef:35:c6:e7:be:45:9a:cb:fe:40:b8:47: 86:24:ce:88:d6:64:2b:67:d8:5e:29:6d:5c:57:42: 2d:ad:55:fc:35:73:d9:6c:7f:a6:0c:36:05:ca:82: 21:08:90:94:3a:01:63:de:32:ca:f4:1b:2e:e5:71: 85:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:DC:F7:95:D8:34:68:24:D7:37:BC:D1:A1:1B:CB:F0:81:75:7A:32 X509v3 Authority Key Identifier: keyid:CB:C6:60:33:70:FB:E8:4C:CC:E0:64:E8:4F:4F:26:ED:BE:C2:67:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y8ZgM3D76EzM4GToT08m7b7CZ7E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:ca:20:e8:cc:b0:57:df:b2:4f:b1:29:8c:4d:00:7b:e0:fc: c2:bc:51:a1:80:d2:bf:30:d8:0f:ec:50:84:60:a5:a0:bf:ea: fe:47:83:34:12:e3:2a:2b:3f:bf:d8:4b:56:3b:15:f1:6f:2e: fe:87:4e:83:cb:b3:02:a8:fc:4f:c0:bf:0a:93:9e:bf:cd:0c: 5d:17:e1:77:52:fc:ec:0e:a3:2a:9e:d0:90:25:c8:20:b7:31: 11:99:d5:46:f0:0b:f5:c9:35:c7:4f:78:3d:52:e1:89:c5:6b: 5a:2b:6c:0c:08:e5:39:06:a2:4d:5d:ef:3c:44:67:db:d4:b8: f0:57:2b:62:bc:40:21:22:2d:76:f2:9a:fb:55:c8:c7:f3:7b: e4:07:d8:9d:c8:ba:52:12:d2:6d:7c:49:7f:d0:67:6c:96:db: 7f:e4:e2:2d:90:42:34:08:7d:31:ab:74:15:cc:be:65:dd:d1: f8:83:86:c0:25:c8:7b:d9:fa:47:58:93:89:5c:9d:7f:a7:16: 12:2b:6a:4b:ff:2f:eb:10:b6:3a:15:e4:00:d8:43:0b:6c:5a: 99:1f:d4:49:99:46:0f:ec:7a:1d:9e:dc:d1:24:2c:58:36:d3: ee:b2:a1:52:88:26:2e:7f:91:06:44:73:47:a2:0b:65:e9:3e: c4:69:d3:71 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAPIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDlDQTgxMTAvBgNVBAUTKENCQzY2MDMzNzBGQkU4NENDQ0UwNjRFODRGNEYyNkVE QkVDMjY3QjEwHhcNMjYwMzI1MDU1MjU4WhcNMjYwNDAxMDU1MjU4WjAYMRYwFAYD VQQDEw02OWMzNzgzYS1hYWQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo3n8nWPzTvhq0/cTEti4zgTeI8frOqXmnn0DsWf9jsWCg3WBNf9abZQPDwYO tbfcolg669HJs1nXvVlHj7evtr8uIcq71x5UuuAeBLDXmuU2LceovtPFNIZVRHeW a25n+GVVPMwL+8VL6VZnSItfldTY7n2rWFsmuX/GDI6xHqZkqoWfUEqjTlzNNqAj l7rd8HaCGUkTVfTWOxWaNCvjcHWPWbGtVcGpRMKHdQX8m0QDA/AlFjNhWNuz4cZi zft0AKYjXv/vNcbnvkWay/5AuEeGJM6I1mQrZ9heKW1cV0ItrVX8NXPZbH+mDDYF yoIhCJCUOgFj3jLK9Bsu5XGFRwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPnc95XY NGgk1ze80aEby/CBdXoyMB8GA1UdIwQYMBaAFMvGYDNw++hMzOBk6E9PJu2+wmex MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOUNBOC8yMERBMjc0NkU0 RkQxMUVGQUMxQ0U2N0ZDNEY5QUUwMi95OFpnTTNENzZFek00R1RvVDA4bTdiN0Na N0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3k4WmdNM0Q3NkV6TTRHVG9UMDhtN2I3Q1o3RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OUNBOC8yMERBMjc0NkU0RkQxMUVGQUMxQ0U2N0ZDNEY5QUUwMi95OFpnTTNENzZF ek00R1RvVDA4bTdiN0NaN0UubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAOcog6MywV9+yT7EpjE0Ae+D8wrxRoYDSvzDYD+xQhGCloL/q/keDNBLjKis/ v9hLVjsV8W8u/odOg8uzAqj8T8C/CpOev80MXRfhd1L87A6jKp7QkCXIILcxEZnV RvAL9ck1x094PVLhicVrWitsDAjlOQaiTV3vPERn29S48FcrYrxAISItdvKa+1XI x/N75AfYnci6UhLSbXxJf9BnbJbbf+TiLZBCNAh9Mat0Fcy+Zd3R+IOGwCXIe9n6 R1iTiVydf6cWEitqS/8v6xC2OhXkANhDC2xamR/USZlGD+x6HZ7c0SQsWDbT7rKh UogmLn+RBkRzR6ILZek+xGnTcQ== -----END CERTIFICATE-----Generated at Thu Mar 26 15:58:39 2026 by rpki-client