$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.mft File: y8ZgM3D76EzM4GToT08m7b7CZ7E.mft (raw, json) Hash identifier: f9LbY2uB0oUtWB/xCweodo3Ps4kzguFcMgzP8ZSHTts= Subject key identifier: A8:F0:17:7B:7B:1C:91:8A:83:EC:17:B8:4E:89:E0:5A:F4:5A:1C:37 Authority key identifier: CB:C6:60:33:70:FB:E8:4C:CC:E0:64:E8:4F:4F:26:ED:BE:C2:67:B1 Certificate issuer: /CN=A91D9CA8/serialNumber=CBC6603370FBE84CCCE064E84F4F26EDBEC267B1 Certificate serial: E7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y8ZgM3D76EzM4GToT08m7b7CZ7E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.mft Manifest number: D9 Signing time: Tue 03 Mar 2026 06:25:02 +0000 Manifest this update: Tue 03 Mar 2026 06:25:02 +0000 Manifest next update: Tue 10 Mar 2026 06:25:02 +0000 Files and hashes: 1: y8ZgM3D76EzM4GToT08m7b7CZ7E.crl (hash: qh4UymfqcHE1wIc1zS+E0JqhBYpVUDUDOPTxTwMOifI=) 2: 459A40A0399111F0B589186BC4F9AE02.roa (hash: scPqVoYPhM9N9nt8I3yfdS2nCVlGwPE0LU2L+VLMObQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.crl rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y8ZgM3D76EzM4GToT08m7b7CZ7E.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 06:25:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 231 (0xe7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9CA8, serialNumber=CBC6603370FBE84CCCE064E84F4F26EDBEC267B1 Validity Not Before: Mar 3 06:25:02 2026 GMT Not After : Mar 10 06:25:02 2026 GMT Subject: CN=69a67ebe-b278 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:e0:02:79:40:7a:0b:17:7d:d9:4a:74:de:a5: 59:f5:d9:10:22:5c:ed:d0:fe:1d:62:c1:a7:8d:4a: 4e:1e:05:f7:22:73:40:c5:85:09:31:d6:b9:8e:60: 41:16:e4:63:c2:1e:86:eb:dc:47:36:c1:be:e9:1e: 31:75:c7:ae:a3:29:1a:95:63:de:6f:d7:c8:75:da: cb:f5:3a:31:f1:4d:9d:bb:84:a8:e0:62:79:68:b6: ff:8a:91:3e:76:f8:bb:a5:ef:09:ec:0a:c6:b9:32: c2:db:4f:9e:a6:1b:5e:3d:9b:1c:ee:0b:f1:35:55: 56:7a:81:d2:ea:2e:ad:ab:0e:a0:d8:ac:af:38:f0: 91:88:d6:82:08:33:c5:43:69:fd:a4:1e:38:af:14: 33:06:41:e2:ad:35:57:9b:e3:e9:d4:3a:55:45:59: db:85:c3:16:25:0c:82:79:50:e0:6f:96:07:f3:de: 7e:df:90:e7:57:d5:43:15:dd:e1:43:ff:2d:82:dd: 6b:78:41:c3:dd:bd:eb:bd:55:b8:7f:94:a9:98:d7: 46:52:a9:b3:3e:9c:dd:fb:53:67:c6:0a:81:e6:9f: 94:93:cf:2d:82:05:39:a1:ed:07:dd:d5:37:84:ab: f9:c3:62:8a:1e:75:e4:4a:44:81:14:b5:e8:20:a1: 17:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:F0:17:7B:7B:1C:91:8A:83:EC:17:B8:4E:89:E0:5A:F4:5A:1C:37 X509v3 Authority Key Identifier: keyid:CB:C6:60:33:70:FB:E8:4C:CC:E0:64:E8:4F:4F:26:ED:BE:C2:67:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y8ZgM3D76EzM4GToT08m7b7CZ7E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:72:03:1b:f5:fd:35:a6:74:8f:0e:97:7b:f5:5c:7c:6d:32: 16:c1:f4:42:20:6d:7b:86:70:89:fb:ec:b2:67:aa:1e:18:66: 8b:b9:61:64:ae:23:9f:57:38:22:a6:27:fe:ad:15:3e:cc:4f: 7a:4d:d4:6e:2c:c3:0e:20:1f:a0:8f:15:4a:ea:51:22:1a:df: bd:72:02:6f:fe:02:20:d2:a9:fb:96:38:fb:a4:77:c7:75:e5: 38:88:b9:4b:c2:a3:b4:b0:c2:67:8f:76:25:a0:16:63:d9:71: 4f:a7:26:61:4b:b8:6e:8e:1e:71:9a:ea:8f:7b:27:81:87:91: b9:96:48:2c:9c:b3:fe:fa:e6:67:0d:a9:71:81:96:0a:ef:50: 97:46:99:7c:1c:76:5c:44:38:11:6c:fe:71:1b:34:43:35:41: 81:51:bd:93:98:9e:db:59:70:15:66:2d:80:ee:b3:a5:ad:d7: ab:97:7a:c4:0c:fa:d6:fb:0e:23:22:ce:a1:b1:c0:ed:0f:a4: 23:4d:a0:6c:d2:62:e3:6c:85:4e:5c:ab:25:60:a5:50:5f:65: 35:35:c7:4e:be:c3:c7:f8:48:5c:61:04:a3:a9:c3:6a:3f:c9: dc:bc:4f:70:06:90:78:00:06:18:18:ec:e0:a2:2e:ae:86:a8: 53:d6:ff:cf -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAOcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDlDQTgxMTAvBgNVBAUTKENCQzY2MDMzNzBGQkU4NENDQ0UwNjRFODRGNEYyNkVE QkVDMjY3QjEwHhcNMjYwMzAzMDYyNTAyWhcNMjYwMzEwMDYyNTAyWjAYMRYwFAYD VQQDEw02OWE2N2ViZS1iMjc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzeACeUB6Cxd92Up03qVZ9dkQIlzt0P4dYsGnjUpOHgX3InNAxYUJMda5jmBB FuRjwh6G69xHNsG+6R4xdceuoykalWPeb9fIddrL9Tox8U2du4So4GJ5aLb/ipE+ dvi7pe8J7ArGuTLC20+ephtePZsc7gvxNVVWeoHS6i6tqw6g2KyvOPCRiNaCCDPF Q2n9pB44rxQzBkHirTVXm+Pp1DpVRVnbhcMWJQyCeVDgb5YH895+35DnV9VDFd3h Q/8tgt1reEHD3b3rvVW4f5SpmNdGUqmzPpzd+1NnxgqB5p+Uk88tggU5oe0H3dU3 hKv5w2KKHnXkSkSBFLXoIKEXAwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKjwF3t7 HJGKg+wXuE6J4Fr0Whw3MB8GA1UdIwQYMBaAFMvGYDNw++hMzOBk6E9PJu2+wmex MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOUNBOC8yMERBMjc0NkU0 RkQxMUVGQUMxQ0U2N0ZDNEY5QUUwMi95OFpnTTNENzZFek00R1RvVDA4bTdiN0Na N0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3k4WmdNM0Q3NkV6TTRHVG9UMDhtN2I3Q1o3RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OUNBOC8yMERBMjc0NkU0RkQxMUVGQUMxQ0U2N0ZDNEY5QUUwMi95OFpnTTNENzZF ek00R1RvVDA4bTdiN0NaN0UubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAInIDG/X9NaZ0jw6Xe/VcfG0yFsH0QiBte4ZwifvssmeqHhhmi7lhZK4jn1c4 IqYn/q0VPsxPek3UbizDDiAfoI8VSupRIhrfvXICb/4CINKp+5Y4+6R3x3XlOIi5 S8KjtLDCZ492JaAWY9lxT6cmYUu4bo4ecZrqj3sngYeRuZZILJyz/vrmZw2pcYGW Cu9Ql0aZfBx2XEQ4EWz+cRs0QzVBgVG9k5ie21lwFWYtgO6zpa3Xq5d6xAz61vsO IyLOobHA7Q+kI02gbNJi42yFTlyrJWClUF9lNTXHTr7Dx/hIXGEEo6nDaj/J3LxP cAaQeAAGGBjs4KIuroaoU9b/zw== -----END CERTIFICATE-----Generated at Wed Mar 4 08:36:28 2026 by rpki-client