$ rpki-client -vvf rpki.apnic.net/member_repository/A91BFE76/D9E4C4CCB92711F0B80EC45EC4F9AE02/vY48wqk9XbzYQnUJc4oxS_kMiH0.mft File: vY48wqk9XbzYQnUJc4oxS_kMiH0.mft (raw, json) Hash identifier: V9CpA/YI4kxHiajp/092vu9sR9mwHQu5gTfVcU7TX7g= Subject key identifier: 37:D6:2E:AF:61:AB:FB:1B:A6:E5:28:9B:8E:97:C2:B5:C2:D3:12:5C Authority key identifier: BD:8E:3C:C2:A9:3D:5D:BC:D8:42:75:09:73:8A:31:4B:F9:0C:88:7D Certificate issuer: /CN=A91BFE76/serialNumber=BD8E3CC2A93D5DBCD8427509738A314BF90C887D Certificate serial: 45 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vY48wqk9XbzYQnUJc4oxS_kMiH0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BFE76/D9E4C4CCB92711F0B80EC45EC4F9AE02/vY48wqk9XbzYQnUJc4oxS_kMiH0.mft Manifest number: 41 Signing time: Sun 01 Mar 2026 09:51:05 +0000 Manifest this update: Sun 01 Mar 2026 09:51:05 +0000 Manifest next update: Sun 08 Mar 2026 09:51:05 +0000 Files and hashes: 1: vY48wqk9XbzYQnUJc4oxS_kMiH0.crl (hash: dWq+JY0gtBH9SjOyx6JIq8uhUCowQTzjFYets3yWO74=) 2: E9A639DAB9EB11F0AE27CB70C4F9AE02.roa (hash: ZuP0uWcegjrbhw4CUiK7NSueNS7Vvex1xTz8Rpwula0=) 3: 79734D6AB9EB11F095C2C735C4F9AE02.roa (hash: 1fKhxfq/TrlnYFDoICW1zCAYtSl3cbSlKcSl1u+qus8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BFE76/D9E4C4CCB92711F0B80EC45EC4F9AE02/vY48wqk9XbzYQnUJc4oxS_kMiH0.crl rsync://rpki.apnic.net/member_repository/A91BFE76/D9E4C4CCB92711F0B80EC45EC4F9AE02/vY48wqk9XbzYQnUJc4oxS_kMiH0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vY48wqk9XbzYQnUJc4oxS_kMiH0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 09:51:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69 (0x45) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BFE76, serialNumber=BD8E3CC2A93D5DBCD8427509738A314BF90C887D Validity Not Before: Mar 1 09:51:05 2026 GMT Not After : Mar 8 09:51:05 2026 GMT Subject: CN=69a40c09-45af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:a8:f5:f3:f2:87:b6:9d:45:f8:7b:5b:01:03: 76:5f:b7:7f:b3:a8:e4:02:d2:fe:9a:1e:ea:2b:fa: df:2f:a7:bb:70:bd:f6:09:66:16:9c:35:3b:77:ba: 40:0e:c2:c6:33:8c:86:ed:83:54:f5:c7:52:6b:bd: 11:06:d3:0f:42:a5:17:c4:91:9e:4b:03:d9:4a:d2: 1d:74:57:f5:3e:ea:e4:8b:c1:4c:0c:d0:b3:09:5d: 82:45:64:72:8f:5e:a9:ea:61:25:bf:20:d8:68:b1: f2:d7:d1:62:13:52:99:81:9c:53:7a:51:90:eb:e7: 62:72:0b:f1:95:b1:a7:c7:5b:4d:04:09:c8:65:db: 96:e9:5b:5a:c4:4d:f6:30:98:64:b9:66:ee:37:18: fa:61:07:b3:6e:9b:13:cb:1d:db:15:84:1e:22:b6: 01:58:1b:bc:73:c1:ad:4f:6e:97:62:e4:2d:06:ca: 3e:71:36:4b:ea:ab:76:bf:aa:57:cc:33:c7:ca:7d: b1:45:cc:41:b5:81:f4:7f:af:26:1a:85:15:09:24: bd:68:57:75:4d:64:6d:05:dd:55:cc:89:50:0a:ee: 15:2b:c1:74:78:c7:52:1e:54:85:78:e8:55:d0:f0: 87:01:75:c8:f9:c4:4f:ab:14:6e:37:73:12:7b:3a: ba:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:D6:2E:AF:61:AB:FB:1B:A6:E5:28:9B:8E:97:C2:B5:C2:D3:12:5C X509v3 Authority Key Identifier: keyid:BD:8E:3C:C2:A9:3D:5D:BC:D8:42:75:09:73:8A:31:4B:F9:0C:88:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BFE76/D9E4C4CCB92711F0B80EC45EC4F9AE02/vY48wqk9XbzYQnUJc4oxS_kMiH0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vY48wqk9XbzYQnUJc4oxS_kMiH0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BFE76/D9E4C4CCB92711F0B80EC45EC4F9AE02/vY48wqk9XbzYQnUJc4oxS_kMiH0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:4c:2c:1c:6f:76:9c:cc:73:94:85:bc:73:27:33:b4:2e:ee: 88:22:58:d2:26:3e:9a:bd:6e:ab:3b:e1:ec:c8:84:bf:be:f8: aa:eb:71:3b:e5:86:97:86:be:98:1b:e6:e9:56:9d:6e:3f:16: f7:37:69:4a:af:5d:17:ce:1e:cd:c9:7a:ec:e8:54:85:49:1b: b6:9e:66:9d:b7:33:46:ef:bd:f3:22:db:65:09:dc:4e:78:90: 27:e7:6f:79:f5:34:3c:89:25:7f:1f:65:e3:1f:a7:4c:3e:f6: 9c:c9:c0:8b:bb:14:eb:1b:c5:58:41:c4:b9:fa:68:aa:c8:dc: f4:dc:41:9d:f5:ed:01:c6:2f:a6:e3:0d:2b:11:58:10:75:6d: d1:51:c6:c2:9a:13:f6:2e:b7:70:51:22:f3:26:ac:b3:2b:e6: a9:7f:75:a8:2f:b6:54:36:d6:29:cb:32:cc:5c:08:a6:15:46: 3f:7c:c4:95:32:d8:ff:39:b9:eb:1d:25:88:5a:3d:62:1f:1f: ed:e5:d2:48:74:4e:bb:81:1b:3c:6d:ea:a1:47:d5:4a:fc:44: 46:2d:70:2c:96:07:80:da:34:b6:31:f5:eb:69:99:3e:6a:5f: 54:56:81:35:79:e9:28:81:de:36:b9:30:03:0f:1e:68:56:ee: c3:ac:68:70 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBRTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC RkU3NjExMC8GA1UEBRMoQkQ4RTNDQzJBOTNENURCQ0Q4NDI3NTA5NzM4QTMxNEJG OTBDODg3RDAeFw0yNjAzMDEwOTUxMDVaFw0yNjAzMDgwOTUxMDVaMBgxFjAUBgNV BAMTDTY5YTQwYzA5LTQ1YWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDRqPXz8oe2nUX4e1sBA3Zft3+zqOQC0v6aHuor+t8vp7twvfYJZhacNTt3ukAO wsYzjIbtg1T1x1JrvREG0w9CpRfEkZ5LA9lK0h10V/U+6uSLwUwM0LMJXYJFZHKP XqnqYSW/INhosfLX0WITUpmBnFN6UZDr52JyC/GVsafHW00ECchl25bpW1rETfYw mGS5Zu43GPphB7NumxPLHdsVhB4itgFYG7xzwa1Pbpdi5C0Gyj5xNkvqq3a/qlfM M8fKfbFFzEG1gfR/ryYahRUJJL1oV3VNZG0F3VXMiVAK7hUrwXR4x1IeVIV46FXQ 8IcBdcj5xE+rFG43cxJ7OrrNAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUN9Yur2Gr +xum5SibjpfCtcLTElwwHwYDVR0jBBgwFoAUvY48wqk9XbzYQnUJc4oxS/kMiH0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJGRTc2L0Q5RTRDNENDQjky NzExRjBCODBFQzQ1RUM0RjlBRTAyL3ZZNDh3cWs5WGJ6WVFuVUpjNG94U19rTWlI MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvdlk0OHdxazlYYnpZUW5VSmM0b3hTX2tNaUgwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJG RTc2L0Q5RTRDNENDQjkyNzExRjBCODBFQzQ1RUM0RjlBRTAyL3ZZNDh3cWs5WGJ6 WVFuVUpjNG94U19rTWlIMC5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQAGTCwcb3aczHOUhbxzJzO0Lu6IIljSJj6avW6rO+HsyIS/vviq63E75YaXhr6Y G+bpVp1uPxb3N2lKr10Xzh7NyXrs6FSFSRu2nmadtzNG773zIttlCdxOeJAn5295 9TQ8iSV/H2XjH6dMPvacycCLuxTrG8VYQcS5+miqyNz03EGd9e0Bxi+m4w0rEVgQ dW3RUcbCmhP2LrdwUSLzJqyzK+apf3WoL7ZUNtYpyzLMXAimFUY/fMSVMtj/Obnr HSWIWj1iHx/t5dJIdE67gRs8beqhR9VK/ERGLXAslgeA2jS2MfXraZk+al9UVoE1 eekogd42uTADDx5oVu7DrGhw -----END CERTIFICATE-----Generated at Sun Mar 1 22:54:50 2026 by rpki-client