$ rpki-client -vvf rpki.apnic.net/member_repository/A91DBB66/0C0D80DE2FAC11F08CEA0A71C4F9AE02/4Y0K0YMT4gIg3qG4cW37310JzPg.mft File: 4Y0K0YMT4gIg3qG4cW37310JzPg.mft (raw, json) Hash identifier: OLxEDHUcxR2AgRNLXTXdVedSu4sDbUJ5fegq22/3okU= Subject key identifier: 11:9F:BE:EE:A7:9B:7A:C2:DD:FA:FD:0F:6B:C3:20:B0:83:4C:D8:AF Authority key identifier: E1:8D:0A:D1:83:13:E2:02:20:DE:A1:B8:71:6D:FB:DF:5D:09:CC:F8 Certificate issuer: /CN=A91DBB66/serialNumber=E18D0AD18313E20220DEA1B8716DFBDF5D09CCF8 Certificate serial: 9B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Y0K0YMT4gIg3qG4cW37310JzPg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DBB66/0C0D80DE2FAC11F08CEA0A71C4F9AE02/4Y0K0YMT4gIg3qG4cW37310JzPg.mft Manifest number: 98 Signing time: Sun 01 Mar 2026 08:41:16 +0000 Manifest this update: Sun 01 Mar 2026 08:41:15 +0000 Manifest next update: Sun 08 Mar 2026 08:41:15 +0000 Files and hashes: 1: 4Y0K0YMT4gIg3qG4cW37310JzPg.crl (hash: 4l52r8Mkzgo1ykfWep5TJ7Ni9S6NmPGXAsVfgDpID9c=) 2: 099A56FE2FB311F09E3A9373C4F9AE02.roa (hash: VyA4FwV1jUJa0H5I6GQCaYhvuK3VrfAiw+TrBk+L/pg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DBB66/0C0D80DE2FAC11F08CEA0A71C4F9AE02/4Y0K0YMT4gIg3qG4cW37310JzPg.crl rsync://rpki.apnic.net/member_repository/A91DBB66/0C0D80DE2FAC11F08CEA0A71C4F9AE02/4Y0K0YMT4gIg3qG4cW37310JzPg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Y0K0YMT4gIg3qG4cW37310JzPg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 08:41:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 155 (0x9b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DBB66, serialNumber=E18D0AD18313E20220DEA1B8716DFBDF5D09CCF8 Validity Not Before: Mar 1 08:41:15 2026 GMT Not After : Mar 8 08:41:15 2026 GMT Subject: CN=69a3fbac-2b35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:b9:b8:dc:54:9e:78:17:85:ba:32:cf:fa:f3: 45:22:08:b7:81:94:7c:ba:b5:dc:73:49:3a:30:2c: 7a:97:9c:43:06:f9:55:d1:fc:00:ec:46:fe:e6:85: 29:67:bb:0f:aa:02:65:65:4c:61:2f:f0:91:64:8a: c4:d1:b3:23:fb:a5:07:de:fb:7b:55:39:69:01:62: 5f:51:b3:3b:38:5a:b8:75:b6:69:c7:a0:2e:d9:2e: 16:35:68:ca:a8:f9:00:a9:e8:ea:1e:f2:24:6e:39: b9:2b:e9:d8:24:cd:bb:f0:65:21:7a:5d:4b:4f:6c: b0:7c:2c:ee:c8:aa:55:93:7f:d5:35:77:e0:4d:bf: 88:a3:1e:db:2b:78:dc:94:6b:cc:a6:9e:12:a9:ee: 69:7f:63:69:41:1f:cc:e4:3e:a2:05:4c:1e:27:4d: 79:f7:06:90:0f:ad:4e:8c:3a:b7:ba:42:b2:4a:c7: 6f:e5:d5:6b:b8:af:60:c8:f3:bc:3f:ae:25:5d:51: 89:c2:29:2e:47:0d:e1:43:81:e5:46:5f:59:c3:73: d3:2a:55:7e:24:e3:6e:b5:ee:39:04:43:9f:f6:e7: f6:7a:c4:c7:2a:17:e1:71:92:bd:68:e4:8f:c1:29: 82:2f:c7:00:e3:d3:18:b3:51:cd:78:ad:48:0d:07: 7a:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:9F:BE:EE:A7:9B:7A:C2:DD:FA:FD:0F:6B:C3:20:B0:83:4C:D8:AF X509v3 Authority Key Identifier: keyid:E1:8D:0A:D1:83:13:E2:02:20:DE:A1:B8:71:6D:FB:DF:5D:09:CC:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DBB66/0C0D80DE2FAC11F08CEA0A71C4F9AE02/4Y0K0YMT4gIg3qG4cW37310JzPg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Y0K0YMT4gIg3qG4cW37310JzPg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DBB66/0C0D80DE2FAC11F08CEA0A71C4F9AE02/4Y0K0YMT4gIg3qG4cW37310JzPg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:00:02:be:19:17:27:50:d3:f0:8f:56:84:a3:bb:ac:b6:7b: 96:03:95:e3:80:0c:36:49:b1:45:b3:3f:65:f8:49:f1:95:b3: 3c:a4:cf:20:67:96:ba:14:9a:0b:13:54:29:76:9e:36:2a:9b: 01:de:ad:73:fc:eb:01:00:1c:13:fd:f3:f8:1f:db:75:eb:39: fe:20:dd:eb:d9:5a:97:3f:10:c4:50:7e:34:65:7e:09:f9:fb: eb:07:b6:96:3c:29:2a:15:01:c2:3e:c0:30:ea:fb:e3:66:bb: 12:dc:d6:63:d7:e5:eb:52:3e:e8:ce:71:1c:88:a5:4a:9e:62: ed:da:d1:6b:33:34:df:4d:5e:a8:4c:71:5f:c8:1d:63:b7:4f: 7f:e7:ae:54:14:09:a9:8e:46:5d:44:d2:92:08:83:2d:fe:da: d2:24:dd:08:6c:21:da:aa:8b:26:24:c9:07:77:43:b9:35:48: ee:29:2a:dc:45:46:e0:60:4f:a4:37:13:bb:74:8e:c8:e0:07: b7:2f:32:21:17:06:ca:3d:67:a9:87:73:de:e2:da:34:4f:68: 47:f5:a7:1c:73:85:bc:5b:79:de:62:c0:cd:aa:32:32:73:cd: 6b:6d:1c:3c:2b:a1:33:98:cc:ff:0b:ac:41:4d:96:9b:49:09: 6b:5e:e4:6a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAJswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REJCNjYxMTAvBgNVBAUTKEUxOEQwQUQxODMxM0UyMDIyMERFQTFCODcxNkRGQkRG NUQwOUNDRjgwHhcNMjYwMzAxMDg0MTE1WhcNMjYwMzA4MDg0MTE1WjAYMRYwFAYD VQQDEw02OWEzZmJhYy0yYjM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArbm43FSeeBeFujLP+vNFIgi3gZR8urXcc0k6MCx6l5xDBvlV0fwA7Eb+5oUp Z7sPqgJlZUxhL/CRZIrE0bMj+6UH3vt7VTlpAWJfUbM7OFq4dbZpx6Au2S4WNWjK qPkAqejqHvIkbjm5K+nYJM278GUhel1LT2ywfCzuyKpVk3/VNXfgTb+Iox7bK3jc lGvMpp4Sqe5pf2NpQR/M5D6iBUweJ0159waQD61OjDq3ukKySsdv5dVruK9gyPO8 P64lXVGJwikuRw3hQ4HlRl9Zw3PTKlV+JONute45BEOf9uf2esTHKhfhcZK9aOSP wSmCL8cA49MYs1HNeK1IDQd6swIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBGfvu6n m3rC3fr9D2vDILCDTNivMB8GA1UdIwQYMBaAFOGNCtGDE+ICIN6huHFt+99dCcz4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQkI2Ni8wQzBEODBERTJG QUMxMUYwOENFQTBBNzFDNEY5QUUwMi80WTBLMFlNVDRnSWczcUc0Y1czNzMxMEp6 UGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRZMEswWU1UNGdJZzNxRzRjVzM3MzEwSnpQZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QkI2Ni8wQzBEODBERTJGQUMxMUYwOENFQTBBNzFDNEY5QUUwMi80WTBLMFlNVDRn SWczcUc0Y1czNzMxMEp6UGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAsAACvhkXJ1DT8I9WhKO7rLZ7lgOV44AMNkmxRbM/ZfhJ8ZWzPKTPIGeWuhSa CxNUKXaeNiqbAd6tc/zrAQAcE/3z+B/bdes5/iDd69lalz8QxFB+NGV+Cfn76we2 ljwpKhUBwj7AMOr742a7EtzWY9fl61I+6M5xHIilSp5i7drRazM0301eqExxX8gd Y7dPf+euVBQJqY5GXUTSkgiDLf7a0iTdCGwh2qqLJiTJB3dDuTVI7ikq3EVG4GBP pDcTu3SOyOAHty8yIRcGyj1nqYdz3uLaNE9oR/WnHHOFvFt53mLAzaoyMnPNa20c PCuhM5jM/wusQU2Wm0kJa17kag== -----END CERTIFICATE-----Generated at Sun Mar 1 20:37:40 2026 by rpki-client