$ rpki-client -vvf rpki.apnic.net/member_repository/A912BD25/07F8214A14E411EA876E8640C4F9AE02/yQm9soTk3whHdmDWgrfLP1lIMeM.mft File: yQm9soTk3whHdmDWgrfLP1lIMeM.mft (raw, json) Hash identifier: ov1+cqmCpRnL7UdBR0sRpKpsM3bihmkxj/4axYCIa50= Subject key identifier: 74:AB:08:B1:2E:F9:CA:69:13:58:1A:E0:8A:C2:38:50:89:20:30:76 Authority key identifier: C9:09:BD:B2:84:E4:DF:08:47:76:60:D6:82:B7:CB:3F:59:48:31:E3 Certificate issuer: /CN=A912BD25/serialNumber=C909BDB284E4DF08477660D682B7CB3F594831E3 Certificate serial: 0C9C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yQm9soTk3whHdmDWgrfLP1lIMeM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912BD25/07F8214A14E411EA876E8640C4F9AE02/yQm9soTk3whHdmDWgrfLP1lIMeM.mft Manifest number: 0C90 Signing time: Tue 24 Mar 2026 18:23:23 +0000 Manifest this update: Tue 24 Mar 2026 18:23:23 +0000 Manifest next update: Tue 31 Mar 2026 18:23:23 +0000 Files and hashes: 1: yQm9soTk3whHdmDWgrfLP1lIMeM.crl (hash: mjQgBB3eDIsIYTyTQY0sWER6Xx0KbxqoX06SNjq3xuA=) 2: CF3378E272DB11ED8483E95DC4F9AE02.roa (hash: k4o/xpl05MWpxfINsWsD9ge7BlRuKXGB+2xC5Rxqzp0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912BD25/07F8214A14E411EA876E8640C4F9AE02/yQm9soTk3whHdmDWgrfLP1lIMeM.crl rsync://rpki.apnic.net/member_repository/A912BD25/07F8214A14E411EA876E8640C4F9AE02/yQm9soTk3whHdmDWgrfLP1lIMeM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yQm9soTk3whHdmDWgrfLP1lIMeM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 18:23:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3228 (0xc9c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912BD25, serialNumber=C909BDB284E4DF08477660D682B7CB3F594831E3 Validity Not Before: Mar 24 18:23:23 2026 GMT Not After : Mar 31 18:23:23 2026 GMT Subject: CN=69c2d69b-002a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:f9:a7:b8:8b:b5:ae:77:af:33:b0:f7:fe:6e: e0:2b:9c:e5:37:5f:d0:ee:79:63:37:ba:0f:94:31: dd:07:62:51:a2:94:00:35:68:9b:a0:54:6b:f9:68: 9e:bb:90:5d:32:4a:c4:55:37:28:e9:82:98:43:51: 2e:87:64:2c:1b:da:39:19:cb:6b:f4:86:09:4c:7e: 73:f3:be:bd:7a:94:1c:1a:20:c9:d1:8f:40:c8:cb: 2e:a4:84:86:df:17:9a:6e:e2:de:1a:2a:d2:64:2e: 8c:3b:05:9f:60:67:75:98:5f:27:76:18:6a:23:cb: a0:18:ab:2a:54:f1:40:f3:c5:ce:b5:b3:73:0a:b3: 4d:f3:91:64:c8:22:eb:47:e7:54:ec:53:4c:bb:63: 42:8a:28:4e:9f:d0:d6:4b:3f:ef:f2:6b:ec:eb:f1: 49:11:3b:9a:b5:5b:99:06:14:5a:e3:ce:97:08:18: 19:a3:67:f4:b8:a4:fd:10:6d:3c:d2:15:8e:37:78: 59:78:d4:46:5f:4f:47:3d:5f:41:db:97:78:cf:9e: e3:90:ff:50:41:39:29:96:aa:7b:c5:f3:1b:46:d9: 04:da:dd:3b:1f:84:51:3d:bb:d7:1a:bf:4e:f7:b9: 3c:00:20:98:f9:68:62:4b:15:34:37:81:9f:a4:8e: 6f:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:AB:08:B1:2E:F9:CA:69:13:58:1A:E0:8A:C2:38:50:89:20:30:76 X509v3 Authority Key Identifier: keyid:C9:09:BD:B2:84:E4:DF:08:47:76:60:D6:82:B7:CB:3F:59:48:31:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912BD25/07F8214A14E411EA876E8640C4F9AE02/yQm9soTk3whHdmDWgrfLP1lIMeM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yQm9soTk3whHdmDWgrfLP1lIMeM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912BD25/07F8214A14E411EA876E8640C4F9AE02/yQm9soTk3whHdmDWgrfLP1lIMeM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:ac:66:15:f2:0e:4d:72:8f:f0:03:5a:91:0c:1d:8f:1f:a2: 0b:61:36:74:3b:94:4a:ee:a5:f7:72:ce:8e:af:d6:95:bc:31: 02:87:14:46:e8:05:7d:02:e4:0f:44:ac:fb:fe:9f:e7:51:01: 43:65:26:b8:ac:f6:04:78:f4:f8:48:93:39:37:63:c2:10:26: 0c:65:94:68:4a:51:98:5e:ad:93:5b:47:76:58:b9:dd:e9:50: e5:55:5f:f4:2f:7c:a8:85:3b:c4:98:11:fe:23:bb:c4:fe:b3: 59:99:80:01:aa:2f:96:7f:68:52:9a:43:a3:9f:7d:92:25:27: 66:f3:0c:67:2b:f1:6f:40:6c:b8:32:16:e1:2f:51:78:1a:a8: 5b:fd:26:2d:b7:71:54:f6:10:3b:af:58:ad:67:7a:6f:29:47: e3:f6:36:79:6f:43:5d:39:76:ea:24:ab:5e:44:23:07:d1:f9: c8:2a:46:9c:e1:70:1c:f8:36:c9:af:f4:b6:b4:64:ef:04:8c: c1:7d:43:a0:12:d5:d6:97:56:d0:17:8f:2c:e6:0a:c4:14:21: d6:99:cc:24:c2:25:aa:0f:d2:56:97:d5:12:31:95:29:9c:fa: 39:25:19:5e:e7:8e:7e:8c:88:6e:10:07:7b:51:2e:00:96:80: 95:5b:4a:fe -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDJwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkJEMjUxMTAvBgNVBAUTKEM5MDlCREIyODRFNERGMDg0Nzc2NjBENjgyQjdDQjNG NTk0ODMxRTMwHhcNMjYwMzI0MTgyMzIzWhcNMjYwMzMxMTgyMzIzWjAYMRYwFAYD VQQDEw02OWMyZDY5Yi0wMDJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAofmnuIu1rnevM7D3/m7gK5zlN1/Q7nljN7oPlDHdB2JRopQANWiboFRr+Wie u5BdMkrEVTco6YKYQ1Euh2QsG9o5Gctr9IYJTH5z8769epQcGiDJ0Y9AyMsupISG 3xeabuLeGirSZC6MOwWfYGd1mF8ndhhqI8ugGKsqVPFA88XOtbNzCrNN85FkyCLr R+dU7FNMu2NCiihOn9DWSz/v8mvs6/FJETuatVuZBhRa486XCBgZo2f0uKT9EG08 0hWON3hZeNRGX09HPV9B25d4z57jkP9QQTkplqp7xfMbRtkE2t07H4RRPbvXGr9O 97k8ACCY+WhiSxU0N4GfpI5vMQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHSrCLEu +cppE1ga4IrCOFCJIDB2MB8GA1UdIwQYMBaAFMkJvbKE5N8IR3Zg1oK3yz9ZSDHj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQkQyNS8wN0Y4MjE0QTE0 RTQxMUVBODc2RTg2NDBDNEY5QUUwMi95UW05c29UazN3aEhkbURXZ3JmTFAxbElN ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lRbTlzb1RrM3doSGRtRFdncmZMUDFsSU1lTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QkQyNS8wN0Y4MjE0QTE0RTQxMUVBODc2RTg2NDBDNEY5QUUwMi95UW05c29UazN3 aEhkbURXZ3JmTFAxbElNZU0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAYaxmFfIOTXKP8ANakQwdjx+iC2E2dDuUSu6l93LOjq/WlbwxAocURugFfQLk D0Ss+/6f51EBQ2UmuKz2BHj0+EiTOTdjwhAmDGWUaEpRmF6tk1tHdli53elQ5VVf 9C98qIU7xJgR/iO7xP6zWZmAAaovln9oUppDo599kiUnZvMMZyvxb0BsuDIW4S9R eBqoW/0mLbdxVPYQO69YrWd6bylH4/Y2eW9DXTl26iSrXkQjB9H5yCpGnOFwHPg2 ya/0trRk7wSMwX1DoBLV1pdW0BePLOYKxBQh1pnMJMIlqg/SVpfVEjGVKZz6OSUZ XueOfoyIbhAHe1EuAJaAlVtK/g== -----END CERTIFICATE-----Generated at Thu Mar 26 16:00:38 2026 by rpki-client