$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.mft File: y8ZgM3D76EzM4GToT08m7b7CZ7E.mft (raw, json) Hash identifier: QgJJnTy2juj0VeRov5C250WmpWr0h0AfxXUbretmveM= Subject key identifier: C1:6A:9E:42:76:0F:27:2E:5D:C3:E4:D3:58:92:05:C6:52:47:0C:A8 Authority key identifier: CB:C6:60:33:70:FB:E8:4C:CC:E0:64:E8:4F:4F:26:ED:BE:C2:67:B1 Certificate issuer: /CN=A91D9CA8/serialNumber=CBC6603370FBE84CCCE064E84F4F26EDBEC267B1 Certificate serial: E6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y8ZgM3D76EzM4GToT08m7b7CZ7E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.mft Manifest number: D8 Signing time: Mon 02 Mar 2026 00:27:29 +0000 Manifest this update: Mon 02 Mar 2026 00:27:28 +0000 Manifest next update: Mon 09 Mar 2026 00:27:28 +0000 Files and hashes: 1: y8ZgM3D76EzM4GToT08m7b7CZ7E.crl (hash: din97qes47W0QnU+0VNVV4YpOSR6C/MWAHC2ECxEJ/k=) 2: 459A40A0399111F0B589186BC4F9AE02.roa (hash: scPqVoYPhM9N9nt8I3yfdS2nCVlGwPE0LU2L+VLMObQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.crl rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y8ZgM3D76EzM4GToT08m7b7CZ7E.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 14:59:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 230 (0xe6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9CA8, serialNumber=CBC6603370FBE84CCCE064E84F4F26EDBEC267B1 Validity Not Before: Mar 2 00:27:28 2026 GMT Not After : Mar 9 00:27:28 2026 GMT Subject: CN=69a4d971-1faf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:1c:71:fb:2f:6c:7d:92:08:e6:bc:ce:0e:c8: 06:26:4f:16:2f:3e:b3:6e:59:c8:a0:65:bf:70:9b: 47:ec:ec:a4:3c:44:75:4f:56:6b:2d:f4:41:7a:d5: 9e:01:e5:d3:09:8d:22:e0:f0:cc:d0:c5:41:6b:92: 59:2a:af:74:f2:aa:dc:b3:ef:3a:8f:71:3d:a7:83: a8:59:eb:40:a2:89:b8:2c:98:e0:a2:50:4b:b0:46: fc:9d:42:75:4a:44:19:1e:32:22:5a:b5:d8:7b:9e: 55:77:48:a7:f0:de:11:4e:d6:e3:98:18:91:53:74: c2:53:8c:4a:1c:65:51:67:22:9e:5b:67:5f:8f:ee: 08:60:17:07:e4:bc:a0:83:f5:b8:ca:b1:ca:52:7f: eb:eb:20:38:3b:3a:90:09:92:87:c0:5e:c7:aa:63: 45:1f:f3:b7:f3:24:b3:2c:8f:fb:a4:74:b5:97:b4: e8:34:eb:99:d3:80:08:e8:1e:31:44:d7:5f:aa:65: d6:5d:fd:b5:08:d0:f1:3e:19:99:6a:80:af:ce:3b: e2:34:ba:d0:d9:de:36:83:6f:41:0b:71:d9:b8:39: 41:50:27:c7:40:aa:08:46:96:10:50:6c:60:fb:23: 32:ae:82:21:eb:ad:dc:c1:3f:e7:dd:59:34:8d:6e: b6:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:6A:9E:42:76:0F:27:2E:5D:C3:E4:D3:58:92:05:C6:52:47:0C:A8 X509v3 Authority Key Identifier: keyid:CB:C6:60:33:70:FB:E8:4C:CC:E0:64:E8:4F:4F:26:ED:BE:C2:67:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y8ZgM3D76EzM4GToT08m7b7CZ7E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:de:00:8b:7e:30:9b:1e:b0:23:ea:37:b8:7e:a0:ef:ed:2b: 4d:64:83:28:7f:9e:9c:ea:98:eb:83:9c:39:0b:49:74:ad:2e: 09:7e:25:9e:9d:0c:78:09:e8:29:d1:db:bc:9a:0d:d7:c8:fe: 2e:f8:77:53:03:94:dc:52:cc:69:e0:5c:8f:a6:46:bd:d0:b3: e1:5b:22:95:3d:18:b7:3e:77:1c:4d:d7:a8:24:81:fc:48:7b: 45:39:dd:1a:1f:b6:29:68:3d:fb:97:aa:1b:82:d3:f1:e0:f6: 05:a0:01:f4:a2:d6:88:bf:3f:6f:19:6b:dc:b5:ce:0c:c7:55: 1a:79:3e:f0:7b:8b:2f:4f:30:0b:38:53:9d:ec:e9:f8:55:8f: a3:8c:4c:07:12:d6:e7:c2:4e:0f:9b:0b:64:c2:6b:e3:d2:0a: 15:a0:91:3d:81:7f:0c:86:93:d7:6f:d2:bd:2a:dd:6e:7d:d1: ee:38:db:a5:21:2d:39:6a:2b:0c:12:10:c4:35:22:20:3a:56: 55:4e:9d:30:26:38:5e:23:07:30:5c:a0:85:28:86:ac:e8:c0: 38:4f:93:fd:b7:ae:c0:5f:d2:c3:1c:b5:19:68:db:ef:4e:e2: c2:c5:a2:61:a3:77:ad:28:4e:7f:68:78:7a:6b:14:03:17:0c: 15:4a:c5:16 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAOYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDlDQTgxMTAvBgNVBAUTKENCQzY2MDMzNzBGQkU4NENDQ0UwNjRFODRGNEYyNkVE QkVDMjY3QjEwHhcNMjYwMzAyMDAyNzI4WhcNMjYwMzA5MDAyNzI4WjAYMRYwFAYD VQQDEw02OWE0ZDk3MS0xZmFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtBxx+y9sfZII5rzODsgGJk8WLz6zblnIoGW/cJtH7OykPER1T1ZrLfRBetWe AeXTCY0i4PDM0MVBa5JZKq908qrcs+86j3E9p4OoWetAoom4LJjgolBLsEb8nUJ1 SkQZHjIiWrXYe55Vd0in8N4RTtbjmBiRU3TCU4xKHGVRZyKeW2dfj+4IYBcH5Lyg g/W4yrHKUn/r6yA4OzqQCZKHwF7HqmNFH/O38ySzLI/7pHS1l7ToNOuZ04AI6B4x RNdfqmXWXf21CNDxPhmZaoCvzjviNLrQ2d42g29BC3HZuDlBUCfHQKoIRpYQUGxg +yMyroIh663cwT/n3Vk0jW62uQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMFqnkJ2 DycuXcPk01iSBcZSRwyoMB8GA1UdIwQYMBaAFMvGYDNw++hMzOBk6E9PJu2+wmex MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOUNBOC8yMERBMjc0NkU0 RkQxMUVGQUMxQ0U2N0ZDNEY5QUUwMi95OFpnTTNENzZFek00R1RvVDA4bTdiN0Na N0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3k4WmdNM0Q3NkV6TTRHVG9UMDhtN2I3Q1o3RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OUNBOC8yMERBMjc0NkU0RkQxMUVGQUMxQ0U2N0ZDNEY5QUUwMi95OFpnTTNENzZF ek00R1RvVDA4bTdiN0NaN0UubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEASt4Ai34wmx6wI+o3uH6g7+0rTWSDKH+enOqY64OcOQtJdK0uCX4lnp0MeAno KdHbvJoN18j+Lvh3UwOU3FLMaeBcj6ZGvdCz4VsilT0Ytz53HE3XqCSB/Eh7RTnd Gh+2KWg9+5eqG4LT8eD2BaAB9KLWiL8/bxlr3LXODMdVGnk+8HuLL08wCzhTnezp +FWPo4xMBxLW58JOD5sLZMJr49IKFaCRPYF/DIaT12/SvSrdbn3R7jjbpSEtOWor DBIQxDUiIDpWVU6dMCY4XiMHMFyghSiGrOjAOE+T/beuwF/Swxy1GWjb707iwsWi YaN3rShOf2h4emsUAxcMFUrFFg== -----END CERTIFICATE-----Generated at Mon Mar 2 03:50:47 2026 by rpki-client