$ rpki-client -vvf rpki.apnic.net/member_repository/A9148488/5D26834A838F11EAB7031862C4F9AE02/YHbFE51Mz968pEoUvbcxaIj6Y0Q.mft File: YHbFE51Mz968pEoUvbcxaIj6Y0Q.mft (raw, json) Hash identifier: f5mnJigwa8ky26Q6NvcpDVtJ783UppDldyn0wv7NnVE= Subject key identifier: 79:07:20:C5:7F:DF:0E:B6:D9:ED:0F:35:BE:36:CA:FC:C5:5C:9F:DF Authority key identifier: 60:76:C5:13:9D:4C:CF:DE:BC:A4:4A:14:BD:B7:31:68:88:FA:63:44 Certificate issuer: /CN=A9148488/serialNumber=6076C5139D4CCFDEBCA44A14BDB7316888FA6344 Certificate serial: 0A50 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YHbFE51Mz968pEoUvbcxaIj6Y0Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148488/5D26834A838F11EAB7031862C4F9AE02/YHbFE51Mz968pEoUvbcxaIj6Y0Q.mft Manifest number: 0A48 Signing time: Mon 02 Mar 2026 00:11:33 +0000 Manifest this update: Mon 02 Mar 2026 00:11:31 +0000 Manifest next update: Mon 09 Mar 2026 00:11:31 +0000 Files and hashes: 1: YHbFE51Mz968pEoUvbcxaIj6Y0Q.crl (hash: L9XivVQDzTKIe/doUXcUgDXgO1w5ExJHuVZk9FQ3vT8=) 2: 5C8929C8839011EAB5B82263C4F9AE02.roa (hash: gzbpBLHjuyIbIn1f9T7JlFlrPpRUrvtd4lxp7A9hka0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148488/5D26834A838F11EAB7031862C4F9AE02/YHbFE51Mz968pEoUvbcxaIj6Y0Q.crl rsync://rpki.apnic.net/member_repository/A9148488/5D26834A838F11EAB7031862C4F9AE02/YHbFE51Mz968pEoUvbcxaIj6Y0Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YHbFE51Mz968pEoUvbcxaIj6Y0Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:11:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2640 (0xa50) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148488, serialNumber=6076C5139D4CCFDEBCA44A14BDB7316888FA6344 Validity Not Before: Mar 2 00:11:31 2026 GMT Not After : Mar 9 00:11:31 2026 GMT Subject: CN=69a4d5b5-5c91 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:b9:ef:5f:af:8a:d7:ed:79:5c:ed:f7:0f:2b: d2:1e:72:2d:d6:29:ab:34:19:ae:38:93:50:ba:c5: 0f:88:35:78:24:ed:f4:d9:09:57:17:1e:27:b3:e9: d1:57:bb:49:7e:7c:e7:21:f7:e7:02:59:90:30:e0: 77:cb:23:59:41:d2:78:02:1c:1a:99:1b:37:17:4d: 51:b0:d6:ae:be:7f:62:5f:36:34:45:14:1b:9b:94: 49:cf:c7:57:92:c9:07:27:b9:6e:29:cf:f4:c2:0f: 1a:0f:96:6f:4e:ea:8d:b2:72:01:a5:97:bb:38:4b: 79:3d:7f:74:64:5f:54:b1:47:e4:d3:31:9b:25:f8: f7:e1:2f:9c:35:5a:81:4f:53:eb:47:39:7b:84:07: 76:41:c9:10:21:35:3a:4a:13:43:40:f7:17:bf:d7: f0:11:0c:48:a4:9b:0e:00:db:ed:9f:d9:ad:d2:d9: cb:98:99:32:83:04:ae:98:c7:cf:a8:c5:a1:7e:b3: ab:f0:c6:d6:40:d6:6a:90:e6:bc:9c:5c:74:5d:b1: e8:6b:a9:f3:b6:0f:ca:5c:fd:20:87:8d:e8:12:2b: 78:b3:2b:15:a2:0a:26:ab:74:52:bf:2a:73:f3:cb: 40:f6:ab:58:07:67:31:4e:17:c3:e3:19:95:a0:0c: bd:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:07:20:C5:7F:DF:0E:B6:D9:ED:0F:35:BE:36:CA:FC:C5:5C:9F:DF X509v3 Authority Key Identifier: keyid:60:76:C5:13:9D:4C:CF:DE:BC:A4:4A:14:BD:B7:31:68:88:FA:63:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148488/5D26834A838F11EAB7031862C4F9AE02/YHbFE51Mz968pEoUvbcxaIj6Y0Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YHbFE51Mz968pEoUvbcxaIj6Y0Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148488/5D26834A838F11EAB7031862C4F9AE02/YHbFE51Mz968pEoUvbcxaIj6Y0Q.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:ed:bd:6b:c3:b1:2a:3e:eb:55:6a:56:8c:dd:c2:f5:49:29: d6:68:01:31:b0:c8:10:80:ce:18:93:97:0a:09:4d:a1:38:23: 5e:b8:87:9a:3c:32:15:f4:95:06:0f:3e:9b:89:52:22:4c:b3: b1:51:12:86:b5:4e:e5:d4:03:ce:e5:83:f4:2f:a8:5d:20:7f: 52:7c:fa:3f:b4:57:35:20:37:cb:60:5a:c7:19:80:0f:55:b8: 04:cd:d2:85:27:9c:7b:58:e4:d4:de:71:64:e3:3f:11:ef:ef: cd:a2:1b:b7:32:49:d1:e6:64:1d:f6:db:1c:30:fc:9a:4a:b8: 08:a3:aa:a2:84:5a:d2:9a:05:25:f6:6c:dc:c0:28:5b:60:4a: 78:25:44:b1:78:8a:fc:85:2a:f2:7c:d5:dc:60:0a:f9:76:b5: b3:08:d5:c5:0b:a7:6e:09:69:8d:dd:13:90:00:3c:28:a4:62: 9f:11:3f:ad:64:67:81:f0:6c:54:ad:38:c1:94:a9:0a:68:0a: c5:ef:24:c9:c9:e0:84:43:5a:b4:fc:06:fa:1b:55:de:c4:df: 93:cc:58:a8:ff:97:8f:9c:62:96:77:9c:e8:77:4e:df:34:0e: 15:9a:d8:3a:80:50:e7:e9:91:eb:11:09:a6:35:6e:7a:bb:35: 46:2c:ab:2a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICClAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDg0ODgxMTAvBgNVBAUTKDYwNzZDNTEzOUQ0Q0NGREVCQ0E0NEExNEJEQjczMTY4 ODhGQTYzNDQwHhcNMjYwMzAyMDAxMTMxWhcNMjYwMzA5MDAxMTMxWjAYMRYwFAYD VQQDEw02OWE0ZDViNS01YzkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4LnvX6+K1+15XO33DyvSHnIt1imrNBmuOJNQusUPiDV4JO302QlXFx4ns+nR V7tJfnznIffnAlmQMOB3yyNZQdJ4AhwamRs3F01RsNauvn9iXzY0RRQbm5RJz8dX kskHJ7luKc/0wg8aD5ZvTuqNsnIBpZe7OEt5PX90ZF9UsUfk0zGbJfj34S+cNVqB T1PrRzl7hAd2QckQITU6ShNDQPcXv9fwEQxIpJsOANvtn9mt0tnLmJkygwSumMfP qMWhfrOr8MbWQNZqkOa8nFx0XbHoa6nztg/KXP0gh43oEit4sysVogomq3RSvypz 88tA9qtYB2cxThfD4xmVoAy9AwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHkHIMV/ 3w622e0PNb42yvzFXJ/fMB8GA1UdIwQYMBaAFGB2xROdTM/evKRKFL23MWiI+mNE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0ODQ4OC81RDI2ODM0QTgz OEYxMUVBQjcwMzE4NjJDNEY5QUUwMi9ZSGJGRTUxTXo5NjhwRW9VdmJjeGFJajZZ MFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lIYkZFNTFNejk2OHBFb1V2YmN4YUlqNlkwUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 ODQ4OC81RDI2ODM0QTgzOEYxMUVBQjcwMzE4NjJDNEY5QUUwMi9ZSGJGRTUxTXo5 NjhwRW9VdmJjeGFJajZZMFEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAdu29a8OxKj7rVWpWjN3C9Ukp1mgBMbDIEIDOGJOXCglNoTgjXriHmjwyFfSV Bg8+m4lSIkyzsVEShrVO5dQDzuWD9C+oXSB/Unz6P7RXNSA3y2BaxxmAD1W4BM3S hSece1jk1N5xZOM/Ee/vzaIbtzJJ0eZkHfbbHDD8mkq4CKOqooRa0poFJfZs3MAo W2BKeCVEsXiK/IUq8nzV3GAK+Xa1swjVxQunbglpjd0TkAA8KKRinxE/rWRngfBs VK04wZSpCmgKxe8kycnghENatPwG+htV3sTfk8xYqP+Xj5xilnec6HdO3zQOFZrY OoBQ5+mR6xEJpjVuers1RiyrKg== -----END CERTIFICATE-----Generated at Mon Mar 2 14:43:48 2026 by rpki-client