$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4750/90D5EC5ADABD11EA8FC62387C4F9AE02/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.mft File: aHY-kqLBeFMWdXZlEQP4H1ms3Bo.mft (raw, json) Hash identifier: evY6SVgS5yXyGCdh7bamSy1oVCtwvF5Tg+eTbkCuvLA= Subject key identifier: 4B:89:0C:1E:9E:59:B0:AD:DA:89:DA:6A:0D:52:9C:C3:03:08:24:13 Authority key identifier: 68:76:3E:92:A2:C1:78:53:16:75:76:65:11:03:F8:1F:59:AC:DC:1A Certificate issuer: /CN=A91C4750/serialNumber=68763E92A2C17853167576651103F81F59ACDC1A Certificate serial: 08A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C4750/90D5EC5ADABD11EA8FC62387C4F9AE02/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.mft Manifest number: 08A0 Signing time: Sat 28 Feb 2026 20:48:47 +0000 Manifest this update: Sat 28 Feb 2026 20:48:47 +0000 Manifest next update: Sat 07 Mar 2026 20:48:47 +0000 Files and hashes: 1: aHY-kqLBeFMWdXZlEQP4H1ms3Bo.crl (hash: qqUdgp50rC8+hBS/OsciJCMJnVFpG+0J0wImAT0Nj9k=) 2: DA1A98C4DABE11EAB12A5209C4F9AE02.roa (hash: 6yzV6dzQorpidqad88j0wSoiJND60Dw/RhEDKbVQJ3o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C4750/90D5EC5ADABD11EA8FC62387C4F9AE02/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.crl rsync://rpki.apnic.net/member_repository/A91C4750/90D5EC5ADABD11EA8FC62387C4F9AE02/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 20:48:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2217 (0x8a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C4750, serialNumber=68763E92A2C17853167576651103F81F59ACDC1A Validity Not Before: Feb 28 20:48:47 2026 GMT Not After : Mar 7 20:48:47 2026 GMT Subject: CN=69a354af-1e70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:2b:45:57:3c:40:5b:58:95:a9:f2:72:32:b0: cc:8f:77:f2:81:5c:a4:46:b1:e5:a6:d9:8d:a7:5f: 4b:2a:88:b9:4a:3e:54:9a:23:53:ca:2b:b8:0e:a3: fd:0c:ae:ff:55:e4:ae:46:f0:bf:ef:e0:35:01:7c: f9:85:6b:ac:df:cb:72:40:6f:6a:25:ea:ae:e9:70: 41:97:44:fa:39:fe:15:e7:aa:8c:61:b3:07:83:f9: 84:30:4c:96:7b:ba:05:62:c0:af:2d:04:ba:41:82: a5:93:2b:24:2d:b6:83:8b:ff:d3:82:db:58:3d:4e: ab:e4:90:ee:01:1e:95:9b:5f:0c:b9:53:52:9e:ee: 13:d2:63:7e:9f:96:b8:89:0c:45:c4:1f:38:50:71: d8:da:7f:d5:c6:d0:a0:f1:d4:f5:95:90:3e:c2:ac: d9:65:d9:22:ce:63:6e:16:6b:a1:42:70:8f:a2:72: 37:6f:b2:41:5d:3f:fb:e4:dc:b0:de:f3:c4:87:01: d3:d4:21:c0:9d:e1:a5:8b:e1:33:fa:04:83:9c:3f: cd:16:71:56:e6:8c:de:b9:5c:c6:72:43:6f:83:4e: 24:cf:50:eb:ad:fd:93:a2:e2:2f:98:91:94:49:21: 32:8e:e3:5d:1c:43:b3:3e:9a:67:9e:93:47:9b:ac: 87:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:89:0C:1E:9E:59:B0:AD:DA:89:DA:6A:0D:52:9C:C3:03:08:24:13 X509v3 Authority Key Identifier: keyid:68:76:3E:92:A2:C1:78:53:16:75:76:65:11:03:F8:1F:59:AC:DC:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C4750/90D5EC5ADABD11EA8FC62387C4F9AE02/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4750/90D5EC5ADABD11EA8FC62387C4F9AE02/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:f4:ad:a3:7c:34:0b:78:55:fe:18:00:23:80:85:e9:e8:79: 78:b9:28:58:e6:7f:2f:3d:ca:4d:06:85:03:0f:85:d3:d1:7e: b9:8a:60:11:c8:c9:44:16:35:fd:aa:94:ce:1e:53:79:53:73: 20:3f:00:12:4f:d3:a2:fa:8e:ff:e7:92:ee:a1:29:15:4f:c2: 38:a6:ec:ab:e0:87:5f:55:0d:90:36:29:dd:a4:0d:84:b8:9b: 1b:f2:e7:55:21:9e:ea:e2:60:dc:b1:b5:d4:b5:6f:07:24:6e: 5d:dc:04:59:ff:0c:5f:57:6d:8d:c8:90:5b:58:13:84:86:67: c3:44:64:a4:9c:50:f6:df:66:91:46:fc:56:75:79:44:af:f8: 52:27:c3:8d:1a:5c:1e:42:c3:c9:15:d3:c2:82:ea:1e:15:c5: 44:0b:7e:cb:85:76:89:b2:24:1b:f1:16:cd:7e:de:a5:1d:81: a1:fa:6d:6d:01:49:25:4e:ea:5f:5c:03:b1:82:c1:5d:04:45: 66:92:3f:c3:42:ea:4c:e9:aa:50:a2:24:63:f1:e7:bb:df:2c: 4c:4b:86:f1:7a:72:34:98:c9:fa:60:dc:29:7b:89:b4:a8:2b: 72:c3:a8:7a:f8:94:98:6b:23:97:71:6b:54:79:b0:19:34:90: 44:49:67:86 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCKkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzQ3NTAxMTAvBgNVBAUTKDY4NzYzRTkyQTJDMTc4NTMxNjc1NzY2NTExMDNGODFG NTlBQ0RDMUEwHhcNMjYwMjI4MjA0ODQ3WhcNMjYwMzA3MjA0ODQ3WjAYMRYwFAYD VQQDDA02OWEzNTRhZi0xZTcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlStFVzxAW1iVqfJyMrDMj3fygVykRrHlptmNp19LKoi5Sj5UmiNTyiu4DqP9 DK7/VeSuRvC/7+A1AXz5hWus38tyQG9qJequ6XBBl0T6Of4V56qMYbMHg/mEMEyW e7oFYsCvLQS6QYKlkyskLbaDi//TgttYPU6r5JDuAR6Vm18MuVNSnu4T0mN+n5a4 iQxFxB84UHHY2n/VxtCg8dT1lZA+wqzZZdkizmNuFmuhQnCPonI3b7JBXT/75Nyw 3vPEhwHT1CHAneGli+Ez+gSDnD/NFnFW5ozeuVzGckNvg04kz1Drrf2TouIvmJGU SSEyjuNdHEOzPppnnpNHm6yHOQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEuJDB6e WbCt2onaag1SnMMDCCQTMB8GA1UdIwQYMBaAFGh2PpKiwXhTFnV2ZRED+B9ZrNwa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNDc1MC85MEQ1RUM1QURB QkQxMUVBOEZDNjIzODdDNEY5QUUwMi9hSFkta3FMQmVGTVdkWFpsRVFQNEgxbXMz Qm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FIWS1rcUxCZUZNV2RYWmxFUVA0SDFtczNCby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NDc1MC85MEQ1RUM1QURBQkQxMUVBOEZDNjIzODdDNEY5QUUwMi9hSFkta3FMQmVG TVdkWFpsRVFQNEgxbXMzQm8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAOvSto3w0C3hV/hgAI4CF6eh5eLkoWOZ/Lz3KTQaFAw+F09F+uYpgEcjJRBY1 /aqUzh5TeVNzID8AEk/TovqO/+eS7qEpFU/COKbsq+CHX1UNkDYp3aQNhLibG/Ln VSGe6uJg3LG11LVvByRuXdwEWf8MX1dtjciQW1gThIZnw0RkpJxQ9t9mkUb8VnV5 RK/4UifDjRpcHkLDyRXTwoLqHhXFRAt+y4V2ibIkG/EWzX7epR2BofptbQFJJU7q X1wDsYLBXQRFZpI/w0LqTOmqUKIkY/Hnu98sTEuG8XpyNJjJ+mDcKXuJtKgrcsOo eviUmGsjl3FrVHmwGTSQRElnhg== -----END CERTIFICATE-----Generated at Sun Mar 1 22:27:47 2026 by rpki-client