$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB7E9/E0C461306E2E11EE85D92D32C4F9AE02/y4244fF7x3I0bdn_uyByz6j9plI.mft File: y4244fF7x3I0bdn_uyByz6j9plI.mft (raw, json) Hash identifier: RFGOuA7C9Awdv+g1A7v4gPzDS3/bmTc9FS+Wk9ypIfg= Subject key identifier: CA:9B:D5:E6:89:ED:5D:FC:4A:12:85:D2:1E:59:29:8E:B4:A3:13:1F Authority key identifier: CB:8D:B8:E1:F1:7B:C7:72:34:6D:D9:FF:BB:20:72:CF:A8:FD:A6:52 Certificate issuer: /CN=A91DB7E9/serialNumber=CB8DB8E1F17BC772346DD9FFBB2072CFA8FDA652 Certificate serial: 01CD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y4244fF7x3I0bdn_uyByz6j9plI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB7E9/E0C461306E2E11EE85D92D32C4F9AE02/y4244fF7x3I0bdn_uyByz6j9plI.mft Manifest number: 01CD Signing time: Wed 25 Mar 2026 03:01:53 +0000 Manifest this update: Wed 25 Mar 2026 03:01:53 +0000 Manifest next update: Wed 01 Apr 2026 03:01:53 +0000 Files and hashes: 1: y4244fF7x3I0bdn_uyByz6j9plI.crl (hash: /fw2xnalISvxL512qFgbnE0hAhX6ZcNDH9IOrHw4x+Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB7E9/E0C461306E2E11EE85D92D32C4F9AE02/y4244fF7x3I0bdn_uyByz6j9plI.crl rsync://rpki.apnic.net/member_repository/A91DB7E9/E0C461306E2E11EE85D92D32C4F9AE02/y4244fF7x3I0bdn_uyByz6j9plI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y4244fF7x3I0bdn_uyByz6j9plI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 03:01:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 461 (0x1cd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB7E9, serialNumber=CB8DB8E1F17BC772346DD9FFBB2072CFA8FDA652 Validity Not Before: Mar 25 03:01:53 2026 GMT Not After : Apr 1 03:01:53 2026 GMT Subject: CN=69c35021-e5df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:12:d3:74:71:c0:15:46:c6:3e:3e:c1:1a:48: 54:29:c6:ff:2f:1f:c6:30:90:00:55:b9:7f:12:fc: 92:f5:dd:cd:05:3a:b3:27:bc:6f:e1:64:dd:d2:75: e8:bb:c0:b4:80:56:58:58:0a:c1:31:24:db:88:5a: 26:78:3b:dd:42:54:fc:5f:86:94:89:41:84:3e:62: 90:74:76:57:c0:81:33:12:63:fa:f7:b0:96:ad:22: 08:3b:2d:ca:61:78:06:33:e9:fb:43:93:10:fd:be: f3:99:a3:82:46:f9:5b:6c:08:36:f2:35:89:1d:c2: 8f:5e:98:06:74:96:08:91:6e:08:3c:25:7c:b8:b0: 0a:0b:a0:2a:64:11:1b:f6:02:cd:5c:2f:dd:ff:e0: c9:5b:e0:fc:d9:5d:59:78:87:42:73:00:11:b5:e2: 1b:15:0e:af:fa:1e:0f:70:b4:56:35:50:d5:fb:ff: bd:70:fb:1e:f5:f6:5e:bd:60:17:5d:d2:0a:48:05: a3:ae:34:33:99:80:9d:4a:f9:5d:cf:c0:8f:4a:b1: a1:90:60:06:68:30:d2:c0:19:57:37:68:75:5d:5b: 7a:78:64:82:53:c0:eb:b3:68:ac:ef:78:eb:38:ef: 7c:31:41:bc:6e:10:cd:40:2a:a8:31:a5:e3:2b:13: 02:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:9B:D5:E6:89:ED:5D:FC:4A:12:85:D2:1E:59:29:8E:B4:A3:13:1F X509v3 Authority Key Identifier: keyid:CB:8D:B8:E1:F1:7B:C7:72:34:6D:D9:FF:BB:20:72:CF:A8:FD:A6:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB7E9/E0C461306E2E11EE85D92D32C4F9AE02/y4244fF7x3I0bdn_uyByz6j9plI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y4244fF7x3I0bdn_uyByz6j9plI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB7E9/E0C461306E2E11EE85D92D32C4F9AE02/y4244fF7x3I0bdn_uyByz6j9plI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:ae:8f:76:56:ca:c6:22:5f:2b:d5:f6:a5:08:e2:b6:9b:f8: b3:b3:7b:bc:ed:02:ed:6b:c5:2e:bd:b4:04:f9:78:7e:85:37: f3:d4:35:0b:99:cb:4d:b2:d6:d1:c1:32:02:78:fe:49:a9:74: b9:1b:a8:4a:66:57:c8:32:1b:70:d2:17:ab:b4:7c:7e:71:0d: d7:ef:61:a2:b3:c6:24:28:3e:7a:0d:d7:9e:e1:c2:c4:49:ac: 18:e9:a0:51:11:c8:7d:c8:2d:bb:3c:79:72:0a:97:61:45:97: 41:26:5b:da:22:25:62:15:cb:59:6d:12:1d:68:96:92:46:a1: 2c:bf:f7:66:4c:c2:46:92:2d:30:6b:d8:9d:8f:05:ed:a4:fc: dc:c3:71:fc:b4:28:ad:24:d3:a3:ba:e7:27:f1:ba:d7:d9:b1: d2:6a:bd:7a:c1:51:0f:d4:c4:ac:18:6f:78:63:cf:d1:a0:05: ef:88:84:fc:57:74:03:6a:d0:fb:c8:a2:11:08:fa:4c:53:21: 95:e2:c5:9d:e9:a9:de:66:64:c3:dd:68:0e:75:b8:c9:28:a6: 23:65:31:b5:12:10:77:89:b1:7e:e9:a7:c3:ea:d1:58:69:d4: 52:b5:82:5d:24:94:44:27:3f:f9:3f:36:25:95:46:93:76:dc: 80:82:9a:98 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAc0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REI3RTkxMTAvBgNVBAUTKENCOERCOEUxRjE3QkM3NzIzNDZERDlGRkJCMjA3MkNG QThGREE2NTIwHhcNMjYwMzI1MDMwMTUzWhcNMjYwNDAxMDMwMTUzWjAYMRYwFAYD VQQDEw02OWMzNTAyMS1lNWRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqRLTdHHAFUbGPj7BGkhUKcb/Lx/GMJAAVbl/EvyS9d3NBTqzJ7xv4WTd0nXo u8C0gFZYWArBMSTbiFomeDvdQlT8X4aUiUGEPmKQdHZXwIEzEmP697CWrSIIOy3K YXgGM+n7Q5MQ/b7zmaOCRvlbbAg28jWJHcKPXpgGdJYIkW4IPCV8uLAKC6AqZBEb 9gLNXC/d/+DJW+D82V1ZeIdCcwARteIbFQ6v+h4PcLRWNVDV+/+9cPse9fZevWAX XdIKSAWjrjQzmYCdSvldz8CPSrGhkGAGaDDSwBlXN2h1XVt6eGSCU8Drs2is73jr OO98MUG8bhDNQCqoMaXjKxMCJQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMqb1eaJ 7V38ShKF0h5ZKY60oxMfMB8GA1UdIwQYMBaAFMuNuOHxe8dyNG3Z/7sgcs+o/aZS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjdFOS9FMEM0NjEzMDZF MkUxMUVFODVEOTJEMzJDNEY5QUUwMi95NDI0NGZGN3gzSTBiZG5fdXlCeXo2ajlw bEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3k0MjQ0ZkY3eDNJMGJkbl91eUJ5ejZqOXBsSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QjdFOS9FMEM0NjEzMDZFMkUxMUVFODVEOTJEMzJDNEY5QUUwMi95NDI0NGZGN3gz STBiZG5fdXlCeXo2ajlwbEkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAfK6PdlbKxiJfK9X2pQjitpv4s7N7vO0C7WvFLr20BPl4foU389Q1C5nLTbLW 0cEyAnj+Sal0uRuoSmZXyDIbcNIXq7R8fnEN1+9horPGJCg+eg3XnuHCxEmsGOmg URHIfcgtuzx5cgqXYUWXQSZb2iIlYhXLWW0SHWiWkkahLL/3ZkzCRpItMGvYnY8F 7aT83MNx/LQorSTTo7rnJ/G619mx0mq9esFRD9TErBhveGPP0aAF74iE/Fd0A2rQ +8iiEQj6TFMhleLFnemp3mZkw91oDnW4ySimI2UxtRIQd4mxfumnw+rRWGnUUrWC XSSURCc/+T82JZVGk3bcgIKamA== -----END CERTIFICATE-----Generated at Thu Mar 26 15:01:28 2026 by rpki-client