$ rpki-client -vvf rpki.apnic.net/member_repository/A911DD08/9A5FBB625B1911EFBED0C47AC4F9AE02/YqwbuVgKcRmBnntrbrLDUVNHh_0.mft File: YqwbuVgKcRmBnntrbrLDUVNHh_0.mft (raw, json) Hash identifier: YfMQgTWIJ1DxVV05irOK+SIHwb4Wy9M/YTh/IglkXJM= Subject key identifier: 98:BF:B6:06:DA:53:C2:F1:B7:3C:DD:92:38:C4:2D:C4:6D:C2:1C:D1 Authority key identifier: 62:AC:1B:B9:58:0A:71:19:81:9E:7B:6B:6E:B2:C3:51:53:47:87:FD Certificate issuer: /CN=A911DD08/serialNumber=62AC1BB9580A7119819E7B6B6EB2C351534787FD Certificate serial: 0143 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YqwbuVgKcRmBnntrbrLDUVNHh_0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911DD08/9A5FBB625B1911EFBED0C47AC4F9AE02/YqwbuVgKcRmBnntrbrLDUVNHh_0.mft Manifest number: 0132 Signing time: Wed 25 Mar 2026 04:44:05 +0000 Manifest this update: Wed 25 Mar 2026 04:44:04 +0000 Manifest next update: Wed 01 Apr 2026 04:44:04 +0000 Files and hashes: 1: YqwbuVgKcRmBnntrbrLDUVNHh_0.crl (hash: ZFcC1jDDqWcvzmtJ0g8wl45hv+UqlDOg59UnBJJ7CMw=) 2: 474934DE5B1A11EFBF0E1F7CC4F9AE02.roa (hash: BuxXyoL8osjsOVkcemiUlr0GNXekE0nxlamBP/kmyXM=) 3: 652283665B1A11EFA78B847EC4F9AE02.roa (hash: UsVYh0cMVNRpr+Gc87SWu7LilmsEheyEv/IWx8kKIpA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911DD08/9A5FBB625B1911EFBED0C47AC4F9AE02/YqwbuVgKcRmBnntrbrLDUVNHh_0.crl rsync://rpki.apnic.net/member_repository/A911DD08/9A5FBB625B1911EFBED0C47AC4F9AE02/YqwbuVgKcRmBnntrbrLDUVNHh_0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YqwbuVgKcRmBnntrbrLDUVNHh_0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:44:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 323 (0x143) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911DD08, serialNumber=62AC1BB9580A7119819E7B6B6EB2C351534787FD Validity Not Before: Mar 25 04:44:04 2026 GMT Not After : Apr 1 04:44:04 2026 GMT Subject: CN=69c36814-845d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:db:29:c5:e4:a3:10:f6:33:72:7f:b7:bd:dc: 96:32:e6:30:7c:9f:ab:94:c9:4e:97:2f:1a:d3:10: ef:73:bf:f4:be:1b:61:8c:62:de:77:20:ab:de:33: e1:d0:37:99:0f:b7:6d:3c:b7:63:fb:0c:d4:8a:42: 51:e3:9d:a3:e8:ba:9f:42:74:be:c9:71:ad:39:4d: 9c:13:4d:b5:e1:8c:bf:3e:37:81:59:41:90:3d:cd: 11:33:9e:4e:93:20:41:68:3e:69:07:c6:1e:11:e4: 6a:c4:b4:53:4b:5c:41:55:7d:21:64:a3:3c:62:71: 5e:dc:72:cb:82:41:e2:bc:3c:55:8f:fd:ff:73:4a: 28:6f:f0:1a:aa:fa:b2:7f:1e:ef:8a:0f:88:51:ef: 8b:10:f8:e1:1f:f3:5f:4e:69:47:a3:1d:1e:ef:5e: 95:6d:f6:e8:b3:2d:f1:39:a8:a8:80:e3:b1:34:d0: ce:d9:05:cd:0b:13:8e:54:bd:ca:78:e2:d0:3c:e6: e7:8c:f9:f0:4e:47:33:af:cd:82:56:5e:c5:6d:ca: ea:2d:2a:66:b5:5f:b2:87:38:75:41:f4:26:e4:f1: f8:6e:f0:38:02:65:e1:0f:7b:33:d9:ba:16:4b:fd: 32:f3:c9:be:1d:5d:03:40:31:23:cf:fa:80:df:87: c1:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:BF:B6:06:DA:53:C2:F1:B7:3C:DD:92:38:C4:2D:C4:6D:C2:1C:D1 X509v3 Authority Key Identifier: keyid:62:AC:1B:B9:58:0A:71:19:81:9E:7B:6B:6E:B2:C3:51:53:47:87:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911DD08/9A5FBB625B1911EFBED0C47AC4F9AE02/YqwbuVgKcRmBnntrbrLDUVNHh_0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YqwbuVgKcRmBnntrbrLDUVNHh_0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911DD08/9A5FBB625B1911EFBED0C47AC4F9AE02/YqwbuVgKcRmBnntrbrLDUVNHh_0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:91:fa:68:26:b5:99:50:c1:b4:1b:5d:4b:29:d3:59:a2:8c: f2:c3:d1:05:cf:9e:5b:08:e5:45:41:51:ab:84:fd:6f:ca:ad: 81:88:76:b9:a6:ce:d6:fe:65:fa:2f:70:de:39:a1:cb:15:39: ed:d8:9c:2c:1c:3f:da:dd:d0:21:55:67:9e:dd:4c:1e:df:c3: aa:c8:38:8c:5a:74:51:ba:4d:e3:f9:b3:44:9f:73:c9:02:f7: e1:e8:36:2e:aa:49:6c:27:e4:69:5a:c3:b9:1f:95:98:09:fd: 5c:06:1c:94:c4:a3:d4:0b:54:32:dc:18:70:cd:96:35:b3:d9: 7b:c2:ce:67:07:3b:0d:45:d1:f7:f0:37:79:b3:54:30:2e:7d: ea:45:80:c9:fa:76:f5:33:3a:90:d5:fe:25:14:02:b2:46:c9: 25:6c:7c:c5:31:10:a3:bf:b4:73:26:56:e6:88:9e:b7:cd:96: b0:f2:3d:f2:16:bf:aa:3e:c2:fa:ec:24:fb:d0:0f:07:dd:26: bc:bf:a6:d5:d7:fd:98:a8:be:8c:97:03:e5:3c:db:bd:82:71: eb:0d:5e:6a:08:26:bc:d3:47:46:0b:3a:17:54:15:20:8a:ba: 31:d0:1e:16:9b:60:ff:01:f7:b6:f8:74:03:02:d0:d0:eb:c5: 94:25:2d:b1 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAUMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUREMDgxMTAvBgNVBAUTKDYyQUMxQkI5NTgwQTcxMTk4MTlFN0I2QjZFQjJDMzUx NTM0Nzg3RkQwHhcNMjYwMzI1MDQ0NDA0WhcNMjYwNDAxMDQ0NDA0WjAYMRYwFAYD VQQDEw02OWMzNjgxNC04NDVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1dspxeSjEPYzcn+3vdyWMuYwfJ+rlMlOly8a0xDvc7/0vhthjGLedyCr3jPh 0DeZD7dtPLdj+wzUikJR452j6LqfQnS+yXGtOU2cE0214Yy/PjeBWUGQPc0RM55O kyBBaD5pB8YeEeRqxLRTS1xBVX0hZKM8YnFe3HLLgkHivDxVj/3/c0oob/Aaqvqy fx7vig+IUe+LEPjhH/NfTmlHox0e716Vbfbosy3xOaiogOOxNNDO2QXNCxOOVL3K eOLQPObnjPnwTkczr82CVl7FbcrqLSpmtV+yhzh1QfQm5PH4bvA4AmXhD3sz2boW S/0y88m+HV0DQDEjz/qA34fBUwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJi/tgba U8LxtzzdkjjELcRtwhzRMB8GA1UdIwQYMBaAFGKsG7lYCnEZgZ57a26yw1FTR4f9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExREQwOC85QTVGQkI2MjVC MTkxMUVGQkVEMEM0N0FDNEY5QUUwMi9ZcXdidVZnS2NSbUJubnRyYnJMRFVWTkho XzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lxd2J1VmdLY1JtQm5udHJickxEVVZOSGhfMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx REQwOC85QTVGQkI2MjVCMTkxMUVGQkVEMEM0N0FDNEY5QUUwMi9ZcXdidVZnS2NS bUJubnRyYnJMRFVWTkhoXzAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAWJH6aCa1mVDBtBtdSynTWaKM8sPRBc+eWwjlRUFRq4T9b8qtgYh2uabO1v5l +i9w3jmhyxU57dicLBw/2t3QIVVnnt1MHt/Dqsg4jFp0UbpN4/mzRJ9zyQL34eg2 LqpJbCfkaVrDuR+VmAn9XAYclMSj1AtUMtwYcM2WNbPZe8LOZwc7DUXR9/A3ebNU MC596kWAyfp29TM6kNX+JRQCskbJJWx8xTEQo7+0cyZW5oiet82WsPI98ha/qj7C +uwk+9APB90mvL+m1df9mKi+jJcD5TzbvYJx6w1eaggmvNNHRgs6F1QVIIq6MdAe Fptg/wH3tvh0AwLQ0OvFlCUtsQ== -----END CERTIFICATE-----Generated at Thu Mar 26 19:53:08 2026 by rpki-client