$ rpki-client -vvf rpki.apnic.net/member_repository/A91F1B39/B7699D2C446911EDBE4E794CC4F9AE02/0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.mft File: 0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.mft (raw, json) Hash identifier: 0mz5n5tdTZN0PN4zZ+GUX07QjUT8e04NqIjwj8Bp8NU= Subject key identifier: 1A:70:3F:52:01:24:AF:12:8B:4E:F7:09:A3:DA:73:E6:A0:1D:AE:23 Authority key identifier: D1:8F:98:A4:1C:0A:DC:8C:81:84:B8:26:A7:1F:3E:F2:7F:19:53:23 Certificate issuer: /CN=A91F1B39/serialNumber=D18F98A41C0ADC8C8184B826A71F3EF27F195323 Certificate serial: 0290 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F1B39/B7699D2C446911EDBE4E794CC4F9AE02/0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.mft Manifest number: 028A Signing time: Wed 25 Mar 2026 01:10:50 +0000 Manifest this update: Wed 25 Mar 2026 01:10:49 +0000 Manifest next update: Wed 01 Apr 2026 01:10:49 +0000 Files and hashes: 1: 0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.crl (hash: XDPDnnbkuAcSDQ86IAdRik+F5kS1U1X2y/FNgS0Kdq8=) 2: C18E7856446C11EDA55DB951C4F9AE02.roa (hash: cZTm/KkF9a4T8yImdIZRFI8s24gigDu7gs4zuRyCmpQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F1B39/B7699D2C446911EDBE4E794CC4F9AE02/0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.crl rsync://rpki.apnic.net/member_repository/A91F1B39/B7699D2C446911EDBE4E794CC4F9AE02/0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 01:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 656 (0x290) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F1B39, serialNumber=D18F98A41C0ADC8C8184B826A71F3EF27F195323 Validity Not Before: Mar 25 01:10:49 2026 GMT Not After : Apr 1 01:10:49 2026 GMT Subject: CN=69c33619-2183 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:78:59:c2:fa:4f:f7:05:d4:3b:a2:df:a0:8c: 5e:3e:80:d5:70:13:dd:f1:af:6a:a3:4c:91:78:06: 6f:56:f7:12:40:c6:b4:00:95:90:74:a8:71:c5:10: 99:64:23:c0:44:bb:10:1b:5a:dd:9d:a9:02:6f:46: f0:09:f2:67:22:61:c7:15:84:33:ef:3f:71:0d:ba: 4e:90:82:46:49:15:37:b3:41:f1:d2:75:65:71:65: 10:de:ab:15:35:8a:79:55:d0:68:a6:5d:95:67:18: 6d:69:93:19:2a:b7:60:9c:79:b6:61:dd:70:f5:a0: 9e:40:e1:75:cc:d5:eb:35:42:ce:f2:27:e9:77:08: 83:93:a1:81:d2:5e:3e:4e:4a:d2:12:6d:bb:ad:77: da:aa:ca:c7:db:e6:07:3d:38:e6:e4:fe:b5:ba:70: 8c:85:15:17:6f:dd:8a:30:67:be:d0:9b:54:47:4d: a1:fd:b2:30:1d:5e:fe:f0:13:c7:a0:e5:a7:30:25: a4:0c:01:eb:4b:5e:13:bd:24:0c:da:ba:ab:19:bf: 70:e7:55:a0:ac:bc:64:72:1d:9f:bb:81:04:14:d0: 19:6d:b2:4a:18:d2:b7:5d:c8:76:da:ec:bf:c8:f2: f3:37:0c:ed:10:6f:57:23:fa:84:f9:9c:b2:7f:71: eb:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:70:3F:52:01:24:AF:12:8B:4E:F7:09:A3:DA:73:E6:A0:1D:AE:23 X509v3 Authority Key Identifier: keyid:D1:8F:98:A4:1C:0A:DC:8C:81:84:B8:26:A7:1F:3E:F2:7F:19:53:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F1B39/B7699D2C446911EDBE4E794CC4F9AE02/0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F1B39/B7699D2C446911EDBE4E794CC4F9AE02/0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:4e:b4:bd:d5:3b:29:28:2a:d1:18:b7:4a:02:0c:17:b0:e5: ea:5c:4c:28:02:88:7e:a1:99:72:aa:95:e9:8f:1e:8c:89:0d: ca:07:83:66:7b:ab:74:c1:cd:4c:af:8c:5f:27:1a:94:a8:35: b7:12:48:12:8a:45:be:d6:de:18:a4:7b:e4:7a:23:70:68:47: 36:32:36:28:cb:03:87:f1:5f:6f:5f:38:1f:14:ec:12:6c:94: fb:b4:9c:3b:5e:98:d7:b6:1d:e5:1a:5d:73:a7:a0:36:20:0f: 86:04:12:69:09:1c:01:76:c2:3e:cc:b2:3c:e5:6b:cb:45:9f: 42:5c:6d:5d:3f:2e:a6:a8:9d:36:20:ae:ab:15:5a:6d:70:27: ad:70:6b:6c:77:fc:bf:d8:8a:90:4d:ca:80:2c:ad:12:be:63: a4:24:b5:c6:99:a3:75:23:17:73:a3:4c:64:82:18:0c:31:0d: da:d1:e8:e5:42:3f:07:dd:65:98:5b:ac:2f:d2:da:0b:26:a6: 67:bf:63:97:eb:65:1f:2d:89:43:10:be:ed:98:34:2a:01:a8: 16:72:19:42:d1:77:e0:b7:37:c6:aa:10:a6:7c:f2:0e:95:05: 07:11:36:a6:e7:2a:8c:12:e8:f9:61:20:af:04:25:2d:c9:cd: 74:84:db:a6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICApAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjFCMzkxMTAvBgNVBAUTKEQxOEY5OEE0MUMwQURDOEM4MTg0QjgyNkE3MUYzRUYy N0YxOTUzMjMwHhcNMjYwMzI1MDExMDQ5WhcNMjYwNDAxMDExMDQ5WjAYMRYwFAYD VQQDEw02OWMzMzYxOS0yMTgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo3hZwvpP9wXUO6LfoIxePoDVcBPd8a9qo0yReAZvVvcSQMa0AJWQdKhxxRCZ ZCPARLsQG1rdnakCb0bwCfJnImHHFYQz7z9xDbpOkIJGSRU3s0Hx0nVlcWUQ3qsV NYp5VdBopl2VZxhtaZMZKrdgnHm2Yd1w9aCeQOF1zNXrNULO8ifpdwiDk6GB0l4+ TkrSEm27rXfaqsrH2+YHPTjm5P61unCMhRUXb92KMGe+0JtUR02h/bIwHV7+8BPH oOWnMCWkDAHrS14TvSQM2rqrGb9w51WgrLxkch2fu4EEFNAZbbJKGNK3Xch22uy/ yPLzNwztEG9XI/qE+Zyyf3HrPwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBpwP1IB JK8Si073CaPac+agHa4jMB8GA1UdIwQYMBaAFNGPmKQcCtyMgYS4JqcfPvJ/GVMj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMUIzOS9CNzY5OUQyQzQ0 NjkxMUVEQkU0RTc5NENDNEY5QUUwMi8wWS1ZcEJ3SzNJeUJoTGdtcHg4LThuOFpV eU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBZLVlwQndLM0l5QmhMZ21weDgtOG44WlV5TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MUIzOS9CNzY5OUQyQzQ0NjkxMUVEQkU0RTc5NENDNEY5QUUwMi8wWS1ZcEJ3SzNJ eUJoTGdtcHg4LThuOFpVeU0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAK060vdU7KSgq0Ri3SgIMF7Dl6lxMKAKIfqGZcqqV6Y8ejIkNygeDZnurdMHN TK+MXycalKg1txJIEopFvtbeGKR75HojcGhHNjI2KMsDh/Ffb184HxTsEmyU+7Sc O16Y17Yd5Rpdc6egNiAPhgQSaQkcAXbCPsyyPOVry0WfQlxtXT8upqidNiCuqxVa bXAnrXBrbHf8v9iKkE3KgCytEr5jpCS1xpmjdSMXc6NMZIIYDDEN2tHo5UI/B91l mFusL9LaCyamZ79jl+tlHy2JQxC+7Zg0KgGoFnIZQtF34Lc3xqoQpnzyDpUFBxE2 pucqjBLo+WEgrwQlLcnNdITbpg== -----END CERTIFICATE-----Generated at Thu Mar 26 00:56:49 2026 by rpki-client