$ rpki-client -vvf rpki.apnic.net/member_repository/A911B5BA/93E2FB0C3DA311EAA4DC3A59C4F9AE02/yozvXh2MPaWsm67lsZbvBmCaOVk.mft File: yozvXh2MPaWsm67lsZbvBmCaOVk.mft (raw, json) Hash identifier: cXqj+BB3n3Z/avJAVG+a9KwboQST04nPHzFZGoNPOFo= Subject key identifier: 7C:22:AE:06:2B:86:66:FF:43:13:DD:E5:BA:BF:C9:89:3A:D3:AF:E7 Authority key identifier: CA:8C:EF:5E:1D:8C:3D:A5:AC:9B:AE:E5:B1:96:EF:06:60:9A:39:59 Certificate issuer: /CN=A911B5BA/serialNumber=CA8CEF5E1D8C3DA5AC9BAEE5B196EF06609A3959 Certificate serial: 0BC4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yozvXh2MPaWsm67lsZbvBmCaOVk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B5BA/93E2FB0C3DA311EAA4DC3A59C4F9AE02/yozvXh2MPaWsm67lsZbvBmCaOVk.mft Manifest number: 0BBB Signing time: Tue 24 Mar 2026 18:46:34 +0000 Manifest this update: Tue 24 Mar 2026 18:46:34 +0000 Manifest next update: Tue 31 Mar 2026 18:46:34 +0000 Files and hashes: 1: yozvXh2MPaWsm67lsZbvBmCaOVk.crl (hash: XNgrTMfw/6Qb1sgTa52Z+8VY9aFq1xDKUX7hSHjDlKw=) 2: 410BAD2095F011EFA9137C67C4F9AE02.roa (hash: nsk1UqBSMxXhAmerfIUuT9a9NoDkCJE2EAsvPLMgex8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B5BA/93E2FB0C3DA311EAA4DC3A59C4F9AE02/yozvXh2MPaWsm67lsZbvBmCaOVk.crl rsync://rpki.apnic.net/member_repository/A911B5BA/93E2FB0C3DA311EAA4DC3A59C4F9AE02/yozvXh2MPaWsm67lsZbvBmCaOVk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yozvXh2MPaWsm67lsZbvBmCaOVk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 18:46:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3012 (0xbc4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B5BA, serialNumber=CA8CEF5E1D8C3DA5AC9BAEE5B196EF06609A3959 Validity Not Before: Mar 24 18:46:34 2026 GMT Not After : Mar 31 18:46:34 2026 GMT Subject: CN=69c2dc0a-9432 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:74:82:7a:39:ce:b1:49:ca:3f:7a:75:0b:a3: d6:0b:e5:2b:7b:15:95:f7:2f:8f:85:37:f0:a1:6c: e8:be:53:62:73:af:95:3f:9a:f9:a0:35:39:44:68: 5d:a5:76:8d:90:a3:f0:75:51:43:a3:c1:6a:a6:e3: f9:c9:3d:2c:15:ff:67:3d:5b:05:8b:9f:23:4f:d4: b0:b5:06:5e:f6:56:2e:91:28:24:56:59:a2:db:d7: 92:a3:c5:2f:b7:b2:ff:2c:34:97:b5:df:eb:bc:18: ab:de:f2:41:6b:5c:b5:50:d0:18:4a:9e:b7:79:cf: 67:15:c3:3f:ae:54:49:90:63:f7:e2:16:90:af:05: 73:34:06:85:b0:44:b7:22:68:45:2d:68:4b:4e:ff: ae:0a:71:95:ad:d6:52:45:47:61:b4:a4:1c:8e:67: 7b:e9:a6:a2:39:c2:8d:60:6a:97:50:20:25:07:b3: c7:ea:f2:df:f0:d6:da:a9:aa:01:09:00:95:fe:50: 80:f4:5a:8f:f4:99:43:a8:bb:23:f4:5f:43:cd:19: 96:59:5e:fa:dc:ef:5b:7b:a2:d2:72:04:12:09:ea: ae:7a:a9:ea:11:0e:66:45:50:83:eb:9a:54:78:c7: 70:8c:09:75:93:fe:0b:35:3e:8b:03:7b:9b:f7:ad: 5b:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:22:AE:06:2B:86:66:FF:43:13:DD:E5:BA:BF:C9:89:3A:D3:AF:E7 X509v3 Authority Key Identifier: keyid:CA:8C:EF:5E:1D:8C:3D:A5:AC:9B:AE:E5:B1:96:EF:06:60:9A:39:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B5BA/93E2FB0C3DA311EAA4DC3A59C4F9AE02/yozvXh2MPaWsm67lsZbvBmCaOVk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yozvXh2MPaWsm67lsZbvBmCaOVk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B5BA/93E2FB0C3DA311EAA4DC3A59C4F9AE02/yozvXh2MPaWsm67lsZbvBmCaOVk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:40:a1:fb:5c:92:bf:d4:a1:e2:61:3b:00:3e:ab:f5:67:1e: 4c:d1:20:fc:ad:d4:73:6c:a6:22:5b:92:fc:00:60:70:1c:37: 62:db:50:47:7f:01:98:f4:3c:db:5f:22:05:08:98:3f:09:af: a2:c6:85:6f:cb:66:c9:53:b0:c9:a9:87:de:18:a6:84:b4:42: 92:99:a2:61:ec:93:26:fe:20:a8:dd:9c:02:28:bf:3a:8d:0a: a5:a0:25:d3:70:ab:3c:bd:6f:0c:45:a1:3a:8b:0a:1e:d5:0f: 4a:b2:8e:de:96:4e:e2:2b:c1:54:d1:2a:d1:8e:38:b1:5d:12: ee:aa:a3:51:f7:a4:8e:4b:71:ec:e1:af:a6:09:7e:a9:0b:e1: 40:07:a9:ed:43:94:19:d9:c3:0a:1f:2a:7e:6e:f0:99:3e:f8: 5f:63:42:15:90:72:97:3e:0e:50:43:66:73:ee:ca:34:23:d2: 50:14:9b:14:12:90:0b:ff:76:d4:8d:60:a7:ce:33:19:b0:44: 6d:34:e2:c7:19:2d:b0:c5:41:c1:b4:7d:d3:57:d3:b0:57:98: 8b:4b:ae:de:48:ce:c0:a4:31:dd:a9:d2:13:4f:39:58:33:e4: 16:29:3d:35:7c:74:e7:1c:98:f3:85:5c:9c:9a:4e:7b:8d:2d: 60:f5:b0:b0 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICC8QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI1QkExMTAvBgNVBAUTKENBOENFRjVFMUQ4QzNEQTVBQzlCQUVFNUIxOTZFRjA2 NjA5QTM5NTkwHhcNMjYwMzI0MTg0NjM0WhcNMjYwMzMxMTg0NjM0WjAYMRYwFAYD VQQDEw02OWMyZGMwYS05NDMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwXSCejnOsUnKP3p1C6PWC+UrexWV9y+PhTfwoWzovlNic6+VP5r5oDU5RGhd pXaNkKPwdVFDo8FqpuP5yT0sFf9nPVsFi58jT9SwtQZe9lYukSgkVlmi29eSo8Uv t7L/LDSXtd/rvBir3vJBa1y1UNAYSp63ec9nFcM/rlRJkGP34haQrwVzNAaFsES3 ImhFLWhLTv+uCnGVrdZSRUdhtKQcjmd76aaiOcKNYGqXUCAlB7PH6vLf8NbaqaoB CQCV/lCA9FqP9JlDqLsj9F9DzRmWWV763O9be6LScgQSCequeqnqEQ5mRVCD65pU eMdwjAl1k/4LNT6LA3ub961b8QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHwirgYr hmb/QxPd5bq/yYk606/nMB8GA1UdIwQYMBaAFMqM714djD2lrJuu5bGW7wZgmjlZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjVCQS85M0UyRkIwQzNE QTMxMUVBQTREQzNBNTlDNEY5QUUwMi95b3p2WGgyTVBhV3NtNjdsc1pidkJtQ2FP VmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lvenZYaDJNUGFXc202N2xzWmJ2Qm1DYU9Way5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QjVCQS85M0UyRkIwQzNEQTMxMUVBQTREQzNBNTlDNEY5QUUwMi95b3p2WGgyTVBh V3NtNjdsc1pidkJtQ2FPVmsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEANUCh+1ySv9Sh4mE7AD6r9WceTNEg/K3Uc2ymIluS/ABgcBw3YttQR38BmPQ8 218iBQiYPwmvosaFb8tmyVOwyamH3himhLRCkpmiYeyTJv4gqN2cAii/Oo0KpaAl 03CrPL1vDEWhOosKHtUPSrKO3pZO4ivBVNEq0Y44sV0S7qqjUfekjktx7OGvpgl+ qQvhQAep7UOUGdnDCh8qfm7wmT74X2NCFZBylz4OUENmc+7KNCPSUBSbFBKQC/92 1I1gp84zGbBEbTTixxktsMVBwbR901fTsFeYi0uu3kjOwKQx3anSE085WDPkFik9 NXx05xyY84VcnJpOe40tYPWwsA== -----END CERTIFICATE-----Generated at Thu Mar 26 00:34:24 2026 by rpki-client