$ rpki-client -vvf rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/YNExg9Od5pVlYCMefgMX5py8bA8.mft File: YNExg9Od5pVlYCMefgMX5py8bA8.mft (raw, json) Hash identifier: 9do+7ZrLLhaJbo4raaYuAOxOyto9I15e7eCKJFWWeyA= Subject key identifier: 66:23:90:3D:11:60:3E:6A:EF:1F:C6:A9:49:EA:DA:D2:7A:05:1C:D0 Authority key identifier: 60:D1:31:83:D3:9D:E6:95:65:60:23:1E:7E:03:17:E6:9C:BC:6C:0F Certificate issuer: /CN=A9131D31/serialNumber=60D13183D39DE6956560231E7E0317E69CBC6C0F Certificate serial: 1177 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YNExg9Od5pVlYCMefgMX5py8bA8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/YNExg9Od5pVlYCMefgMX5py8bA8.mft Manifest number: 1160 Signing time: Tue 24 Mar 2026 17:06:32 +0000 Manifest this update: Tue 24 Mar 2026 17:06:32 +0000 Manifest next update: Tue 31 Mar 2026 17:06:32 +0000 Files and hashes: 1: YNExg9Od5pVlYCMefgMX5py8bA8.crl (hash: E2C/1u8aNuYK/MPgMrUjCC/XpJEmbnX5deVSmjLgFRo=) 2: 1F8D757623B811E9971D8168C4F9AE02.roa (hash: tg6gwL9xi3e5wANWh21zlYrfNKQR0XlwSAlXOjgZ0kc=) 3: BA310DEC23B611E98E5E6062C4F9AE02.roa (hash: JilViRKDlmsk+N83QmxDs8LmHyCkZAyKQozoC1ANkFc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/YNExg9Od5pVlYCMefgMX5py8bA8.crl rsync://rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/YNExg9Od5pVlYCMefgMX5py8bA8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YNExg9Od5pVlYCMefgMX5py8bA8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 17:06:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4471 (0x1177) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131D31, serialNumber=60D13183D39DE6956560231E7E0317E69CBC6C0F Validity Not Before: Mar 24 17:06:32 2026 GMT Not After : Mar 31 17:06:32 2026 GMT Subject: CN=69c2c498-3238 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:ae:52:77:55:77:36:5f:95:2d:bd:09:54:1b: 7e:6b:14:69:d3:15:35:b6:d2:b3:f2:ce:bd:23:1e: 92:bb:0a:a6:3e:d4:5e:b4:94:3f:cd:c7:79:f7:f3: a1:94:14:0a:2b:95:46:f9:53:21:56:a4:f6:f6:29: b6:7e:c2:23:9d:b7:7b:12:b4:6d:ea:a0:60:53:8f: d0:94:75:4a:e5:33:ec:b7:40:ce:b9:aa:e3:bb:c8: 38:a6:07:1f:5f:ff:15:56:67:56:71:0d:e9:1a:50: 1b:fb:53:a3:db:0f:b9:5b:de:5a:6d:51:3a:cd:1c: 2d:67:cb:0b:09:9b:76:1b:8d:fa:6e:c0:23:6c:41: 7c:ed:d2:4d:7d:72:99:e3:d3:1d:b8:58:98:38:45: d7:fc:7a:a0:70:05:f0:a3:c1:b7:99:c5:db:a2:77: 26:a5:58:00:2f:8f:95:85:06:91:39:18:e0:4b:13: 08:69:d7:48:ea:bb:42:b5:11:f1:84:72:b8:22:f5: f3:86:67:03:ea:a7:6f:d1:49:0c:e7:8c:c3:22:68: e6:2c:06:8f:d4:04:cc:b3:18:04:2c:e6:dd:e2:3d: 49:59:ca:94:3f:cf:9d:63:42:ed:49:8a:62:ee:38: 1f:1f:45:97:c2:f5:9f:c5:ac:1f:92:88:c6:37:41: 9f:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:23:90:3D:11:60:3E:6A:EF:1F:C6:A9:49:EA:DA:D2:7A:05:1C:D0 X509v3 Authority Key Identifier: keyid:60:D1:31:83:D3:9D:E6:95:65:60:23:1E:7E:03:17:E6:9C:BC:6C:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/YNExg9Od5pVlYCMefgMX5py8bA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YNExg9Od5pVlYCMefgMX5py8bA8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/YNExg9Od5pVlYCMefgMX5py8bA8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:05:83:40:36:02:e0:70:70:90:f1:b3:e6:27:d1:90:d5:3f: df:da:55:38:1e:9e:79:19:1b:af:b4:cb:be:43:13:05:d8:f5: de:d0:84:2a:e1:02:13:9f:3f:f4:2d:c6:68:2b:b0:8e:ce:11: ec:e5:05:4b:bf:e0:c5:00:d2:f7:ae:6e:51:1c:ae:84:b8:87: 94:d3:04:65:58:7a:ba:86:97:93:2a:9b:99:5e:c7:29:15:44: cd:43:3a:39:8b:6d:e5:63:5f:ea:28:01:ff:79:03:f8:9c:a5: 1e:cf:10:20:32:99:82:1d:90:67:eb:b0:7e:25:66:c6:b0:fb: bd:c9:b6:46:8f:79:4c:b4:c4:55:31:ca:30:95:8e:df:45:5b: f9:d3:93:ce:6b:e7:37:41:78:99:e2:1f:55:29:40:80:bc:32: b1:29:35:3d:df:37:bc:bd:f7:20:2b:2b:2d:36:c0:f5:1d:da: 6a:6d:e7:f7:4a:cc:db:41:7d:5d:38:11:6b:1f:4c:4a:bc:7e: e1:1c:cf:20:98:8d:99:04:57:b6:b9:9d:09:3c:23:90:ad:2f: 6f:01:18:2e:81:04:39:5b:85:c9:45:c0:8d:22:61:9e:f0:f6: ba:37:9b:ac:56:24:85:48:bd:51:0e:74:c9:b1:2e:4a:ec:1e: c7:3a:ec:a1 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICEXcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzFEMzExMTAvBgNVBAUTKDYwRDEzMTgzRDM5REU2OTU2NTYwMjMxRTdFMDMxN0U2 OUNCQzZDMEYwHhcNMjYwMzI0MTcwNjMyWhcNMjYwMzMxMTcwNjMyWjAYMRYwFAYD VQQDEw02OWMyYzQ5OC0zMjM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7a5Sd1V3Nl+VLb0JVBt+axRp0xU1ttKz8s69Ix6SuwqmPtRetJQ/zcd59/Oh lBQKK5VG+VMhVqT29im2fsIjnbd7ErRt6qBgU4/QlHVK5TPst0DOuarju8g4pgcf X/8VVmdWcQ3pGlAb+1Oj2w+5W95abVE6zRwtZ8sLCZt2G436bsAjbEF87dJNfXKZ 49MduFiYOEXX/HqgcAXwo8G3mcXboncmpVgAL4+VhQaRORjgSxMIaddI6rtCtRHx hHK4IvXzhmcD6qdv0UkM54zDImjmLAaP1ATMsxgELObd4j1JWcqUP8+dY0LtSYpi 7jgfH0WXwvWfxawfkojGN0GfVwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGYjkD0R YD5q7x/GqUnq2tJ6BRzQMB8GA1UdIwQYMBaAFGDRMYPTneaVZWAjHn4DF+acvGwP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMUQzMS82NUVGMjk2QTIz MTMxMUU5QTI5QkIxNzRDNEY5QUUwMi9ZTkV4ZzlPZDVwVmxZQ01lZmdNWDVweThi QTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lORXhnOU9kNXBWbFlDTWVmZ01YNXB5OGJBOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MUQzMS82NUVGMjk2QTIzMTMxMUU5QTI5QkIxNzRDNEY5QUUwMi9ZTkV4ZzlPZDVw VmxZQ01lZmdNWDVweThiQTgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEArgWDQDYC4HBwkPGz5ifRkNU/39pVOB6eeRkbr7TLvkMTBdj13tCEKuECE58/ 9C3GaCuwjs4R7OUFS7/gxQDS965uURyuhLiHlNMEZVh6uoaXkyqbmV7HKRVEzUM6 OYtt5WNf6igB/3kD+JylHs8QIDKZgh2QZ+uwfiVmxrD7vcm2Ro95TLTEVTHKMJWO 30Vb+dOTzmvnN0F4meIfVSlAgLwysSk1Pd83vL33ICsrLTbA9R3aam3n90rM20F9 XTgRax9MSrx+4RzPIJiNmQRXtrmdCTwjkK0vbwEYLoEEOVuFyUXAjSJhnvD2ujeb rFYkhUi9UQ50ybEuSuwexzrsoQ== -----END CERTIFICATE-----Generated at Thu Mar 26 00:37:19 2026 by rpki-client