$ rpki-client -vvf rpki.apnic.net/member_repository/A91DBB66/0C0D80DE2FAC11F08CEA0A71C4F9AE02/4Y0K0YMT4gIg3qG4cW37310JzPg.mft File: 4Y0K0YMT4gIg3qG4cW37310JzPg.mft (raw, json) Hash identifier: crw/P9n5QhNgNQ7uuHgqVaWxivdGn5FbXe4ZBDEfopg= Subject key identifier: 36:45:B0:7D:3C:E3:01:D1:0E:16:8D:03:25:F1:5D:25:A8:3B:6E:D4 Authority key identifier: E1:8D:0A:D1:83:13:E2:02:20:DE:A1:B8:71:6D:FB:DF:5D:09:CC:F8 Certificate issuer: /CN=A91DBB66/serialNumber=E18D0AD18313E20220DEA1B8716DFBDF5D09CCF8 Certificate serial: A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Y0K0YMT4gIg3qG4cW37310JzPg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DBB66/0C0D80DE2FAC11F08CEA0A71C4F9AE02/4Y0K0YMT4gIg3qG4cW37310JzPg.mft Manifest number: A4 Signing time: Wed 25 Mar 2026 06:29:01 +0000 Manifest this update: Wed 25 Mar 2026 06:29:01 +0000 Manifest next update: Wed 01 Apr 2026 06:29:01 +0000 Files and hashes: 1: 4Y0K0YMT4gIg3qG4cW37310JzPg.crl (hash: FmflRA/5ymRlM2RDCSbZGBxxyB0Zn4FhRRPqyMPi1+o=) 2: 099A56FE2FB311F09E3A9373C4F9AE02.roa (hash: VyA4FwV1jUJa0H5I6GQCaYhvuK3VrfAiw+TrBk+L/pg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DBB66/0C0D80DE2FAC11F08CEA0A71C4F9AE02/4Y0K0YMT4gIg3qG4cW37310JzPg.crl rsync://rpki.apnic.net/member_repository/A91DBB66/0C0D80DE2FAC11F08CEA0A71C4F9AE02/4Y0K0YMT4gIg3qG4cW37310JzPg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Y0K0YMT4gIg3qG4cW37310JzPg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 06:29:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 167 (0xa7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DBB66, serialNumber=E18D0AD18313E20220DEA1B8716DFBDF5D09CCF8 Validity Not Before: Mar 25 06:29:01 2026 GMT Not After : Apr 1 06:29:01 2026 GMT Subject: CN=69c380ad-02b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:ab:1e:55:a8:59:ad:6f:99:41:01:da:cb:6e: 92:d4:de:30:d7:33:9c:e4:8c:2c:04:0b:d5:b7:8b: af:0b:53:5f:82:7e:4c:2e:e2:25:32:c7:5a:ad:f0: 73:87:bb:d6:36:c0:74:e0:b6:22:1e:b2:e3:ef:8a: 42:c1:e8:90:a5:7c:0c:9d:83:91:61:2e:64:08:c5: 98:f9:97:3b:9d:ee:43:96:6c:35:8e:b3:69:8c:42: 7e:53:ef:b2:61:e6:7e:9c:e6:31:bc:b7:c1:90:61: eb:72:21:5a:25:15:14:7e:89:8c:d6:1b:9b:78:8c: f0:6e:e4:6b:30:a0:95:63:e2:1a:1c:fb:1b:b7:23: 02:97:eb:81:ae:ec:0e:35:ef:18:79:26:19:30:a5: 45:e2:78:c8:e6:d1:bf:35:75:31:89:3e:fe:56:82: c9:3c:c2:b6:3f:81:ee:7a:fd:8c:85:e7:46:e0:d5: 35:f1:b3:8a:53:b6:cb:aa:6b:a4:2e:b1:32:70:5a: 4c:cd:4b:27:cc:17:eb:43:0b:71:93:d0:59:e9:17: a4:55:42:fe:71:7c:3d:4e:e8:73:c7:9c:12:39:7a: ce:8e:75:5b:76:87:c1:95:3f:94:a7:16:82:e1:b9: 8c:67:db:b9:d2:1e:7d:31:2a:64:10:bb:4c:73:4d: 1d:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:45:B0:7D:3C:E3:01:D1:0E:16:8D:03:25:F1:5D:25:A8:3B:6E:D4 X509v3 Authority Key Identifier: keyid:E1:8D:0A:D1:83:13:E2:02:20:DE:A1:B8:71:6D:FB:DF:5D:09:CC:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DBB66/0C0D80DE2FAC11F08CEA0A71C4F9AE02/4Y0K0YMT4gIg3qG4cW37310JzPg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Y0K0YMT4gIg3qG4cW37310JzPg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DBB66/0C0D80DE2FAC11F08CEA0A71C4F9AE02/4Y0K0YMT4gIg3qG4cW37310JzPg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:9e:5d:23:32:20:41:94:8f:85:05:5a:1d:16:90:ef:fa:3c: ba:aa:ad:09:37:f8:15:f6:0a:f8:18:76:de:97:f9:a5:80:ed: 42:a3:1e:85:0d:bc:d9:95:59:50:77:02:b2:b8:2b:f8:48:c3: c8:eb:37:d6:87:a0:ad:05:a7:9b:84:b8:3b:08:c9:46:a1:2e: ce:fd:8a:fc:c9:42:1d:5a:8a:24:2a:4d:f2:ef:e3:69:e7:27: 2f:f9:d4:aa:a9:be:f4:15:02:01:13:57:58:b6:34:00:78:05: 23:91:eb:75:af:3d:b6:ed:f5:a9:62:ff:23:9e:96:56:96:60: f8:70:34:c5:60:b1:d4:1e:34:27:b4:bf:a7:45:ec:a2:e0:36: 94:45:be:bd:1d:03:88:57:63:33:23:d8:2f:88:96:5b:bb:03: 18:3b:8b:98:9c:61:70:8e:c4:51:ce:f8:ae:86:95:00:66:8e: b9:a7:9c:7a:36:6b:79:9c:7a:be:14:d4:96:7a:d7:6a:51:b1: 3d:7d:cd:08:bd:57:d6:6d:4d:ed:97:a5:d1:15:74:e0:35:c9: b3:70:18:76:3e:c3:62:23:48:6b:32:8c:ab:28:e7:09:6c:84: 68:8b:ec:08:39:a9:c1:aa:55:78:49:dd:f8:e6:b9:70:1f:4a: c4:55:93:10 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAKcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REJCNjYxMTAvBgNVBAUTKEUxOEQwQUQxODMxM0UyMDIyMERFQTFCODcxNkRGQkRG NUQwOUNDRjgwHhcNMjYwMzI1MDYyOTAxWhcNMjYwNDAxMDYyOTAxWjAYMRYwFAYD VQQDEw02OWMzODBhZC0wMmI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1aseVahZrW+ZQQHay26S1N4w1zOc5IwsBAvVt4uvC1Nfgn5MLuIlMsdarfBz h7vWNsB04LYiHrLj74pCweiQpXwMnYORYS5kCMWY+Zc7ne5Dlmw1jrNpjEJ+U++y YeZ+nOYxvLfBkGHrciFaJRUUfomM1hubeIzwbuRrMKCVY+IaHPsbtyMCl+uBruwO Ne8YeSYZMKVF4njI5tG/NXUxiT7+VoLJPMK2P4Huev2MhedG4NU18bOKU7bLqmuk LrEycFpMzUsnzBfrQwtxk9BZ6RekVUL+cXw9Tuhzx5wSOXrOjnVbdofBlT+UpxaC 4bmMZ9u50h59MSpkELtMc00d3QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDZFsH08 4wHRDhaNAyXxXSWoO27UMB8GA1UdIwQYMBaAFOGNCtGDE+ICIN6huHFt+99dCcz4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQkI2Ni8wQzBEODBERTJG QUMxMUYwOENFQTBBNzFDNEY5QUUwMi80WTBLMFlNVDRnSWczcUc0Y1czNzMxMEp6 UGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRZMEswWU1UNGdJZzNxRzRjVzM3MzEwSnpQZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QkI2Ni8wQzBEODBERTJGQUMxMUYwOENFQTBBNzFDNEY5QUUwMi80WTBLMFlNVDRn SWczcUc0Y1czNzMxMEp6UGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEALZ5dIzIgQZSPhQVaHRaQ7/o8uqqtCTf4FfYK+Bh23pf5pYDtQqMehQ282ZVZ UHcCsrgr+EjDyOs31oegrQWnm4S4OwjJRqEuzv2K/MlCHVqKJCpN8u/jaecnL/nU qqm+9BUCARNXWLY0AHgFI5Hrda89tu31qWL/I56WVpZg+HA0xWCx1B40J7S/p0Xs ouA2lEW+vR0DiFdjMyPYL4iWW7sDGDuLmJxhcI7EUc74roaVAGaOuaecejZreZx6 vhTUlnrXalGxPX3NCL1X1m1N7Zel0RV04DXJs3AYdj7DYiNIazKMqyjnCWyEaIvs CDmpwapVeEnd+Oa5cB9KxFWTEA== -----END CERTIFICATE-----Generated at Thu Mar 26 11:28:04 2026 by rpki-client