$ rpki-client -vvf rpki.apnic.net/member_repository/A913E4AA/674CA29E11DB11EABF45DA55C4F9AE02/Y4g-TKLI593aw5h-SE_R1nLZOUk.mft File: Y4g-TKLI593aw5h-SE_R1nLZOUk.mft (raw, json) Hash identifier: bCs4W2nRZa7HAsg6Bs0Ljqe206nJcrJNV9r8cQswsCQ= Subject key identifier: 4F:5B:CB:6D:13:25:F8:BD:B0:12:59:B8:E0:8E:BF:69:32:F3:FE:F0 Authority key identifier: 63:88:3E:4C:A2:C8:E7:DD:DA:C3:98:7E:48:4F:D1:D6:72:D9:39:49 Certificate issuer: /CN=A913E4AA/serialNumber=63883E4CA2C8E7DDDAC3987E484FD1D672D93949 Certificate serial: 0CB7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y4g-TKLI593aw5h-SE_R1nLZOUk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913E4AA/674CA29E11DB11EABF45DA55C4F9AE02/Y4g-TKLI593aw5h-SE_R1nLZOUk.mft Manifest number: 0CA8 Signing time: Tue 24 Mar 2026 18:21:10 +0000 Manifest this update: Tue 24 Mar 2026 18:21:09 +0000 Manifest next update: Tue 31 Mar 2026 18:21:09 +0000 Files and hashes: 1: Y4g-TKLI593aw5h-SE_R1nLZOUk.crl (hash: 9PiIDfzzxcqyu7O/PqLcWnc1ci3KN/z5WCGzdEH2uyk=) 2: DF7C7778A97711F0A76BF369C4F9AE02.roa (hash: BQ60yu99DWJ9CNKy9x/LydxX4YGxdVFeZGopEZ5WrOo=) 3: 3C48E7BECA0E11F0B519EA6AC4F9AE02.roa (hash: BJhR7XO5jBVX7pJopEIukYOW4YF8aEvCYgvTMv/w/5E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913E4AA/674CA29E11DB11EABF45DA55C4F9AE02/Y4g-TKLI593aw5h-SE_R1nLZOUk.crl rsync://rpki.apnic.net/member_repository/A913E4AA/674CA29E11DB11EABF45DA55C4F9AE02/Y4g-TKLI593aw5h-SE_R1nLZOUk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y4g-TKLI593aw5h-SE_R1nLZOUk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 18:21:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3255 (0xcb7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913E4AA, serialNumber=63883E4CA2C8E7DDDAC3987E484FD1D672D93949 Validity Not Before: Mar 24 18:21:09 2026 GMT Not After : Mar 31 18:21:09 2026 GMT Subject: CN=69c2d616-e18b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:3c:30:9e:79:cc:86:e9:1e:55:1a:47:3c:ea: 54:f7:e4:e5:fc:11:b8:bb:cf:90:e3:64:c0:e2:6c: 3d:61:31:d1:18:3a:86:58:7d:9d:01:83:e3:f1:61: 8a:3e:e6:03:0b:ee:31:01:49:21:90:3f:78:f3:3c: 27:50:e2:57:a8:f2:26:23:06:3a:4e:62:8e:ad:40: d8:0f:4e:4c:3d:3f:45:0c:52:ba:d8:16:64:09:24: 53:2e:a9:35:5b:29:48:a9:64:20:ee:c3:8b:cc:57: 45:08:69:38:39:14:45:a7:00:54:12:0f:08:8b:49: 80:99:43:92:27:ed:b5:fd:92:58:3e:0d:27:a6:c2: 01:6d:6a:62:40:03:1e:95:c9:64:2c:3f:9b:62:33: 8b:08:40:cd:fc:b3:d7:a6:08:53:2c:86:c2:98:e7: 3f:49:c2:97:89:79:a6:41:70:72:91:19:39:6d:a4: 29:35:70:fd:79:d3:e8:75:cc:62:5a:c7:b1:a3:d1: 49:c1:72:5a:3f:20:fb:d2:1c:2c:34:0c:2a:b7:b4: 39:f1:e5:a8:b6:37:9a:53:39:e6:22:1f:e5:23:42: f5:ec:8c:1b:e9:39:b0:ad:98:7e:5c:ba:55:58:78: b8:5e:83:00:5c:cf:42:18:dc:3e:00:3f:60:6c:25: 5b:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:5B:CB:6D:13:25:F8:BD:B0:12:59:B8:E0:8E:BF:69:32:F3:FE:F0 X509v3 Authority Key Identifier: keyid:63:88:3E:4C:A2:C8:E7:DD:DA:C3:98:7E:48:4F:D1:D6:72:D9:39:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913E4AA/674CA29E11DB11EABF45DA55C4F9AE02/Y4g-TKLI593aw5h-SE_R1nLZOUk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y4g-TKLI593aw5h-SE_R1nLZOUk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E4AA/674CA29E11DB11EABF45DA55C4F9AE02/Y4g-TKLI593aw5h-SE_R1nLZOUk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:d5:3d:af:46:37:51:15:0a:a9:1c:91:3d:6f:26:b3:0e:42: 79:d8:e3:9c:ea:1b:cb:0f:17:1a:ba:18:27:86:ae:0c:15:8b: 5f:c9:18:4e:c1:97:76:72:d0:4b:ec:46:04:5a:7b:7e:39:09: df:d2:c6:6f:a5:39:4a:a8:1e:3f:8b:76:af:50:e0:a2:d4:73: c3:d9:3c:80:1c:41:84:c4:ef:a5:47:a1:cd:47:e9:3a:88:ee: c2:27:76:04:d0:50:c8:8a:b6:bd:b4:17:5d:02:4c:0e:07:b0: 9b:4f:ce:c2:3b:52:1e:1c:8e:29:8c:c5:40:3e:64:29:bb:f8: 16:c9:68:ad:e4:f5:2a:21:91:d7:56:4b:fb:e8:75:8d:be:05: 2b:23:ef:65:1f:c9:8c:bd:5e:c9:b3:4f:e7:c2:b7:ce:5a:94: 92:b2:4b:2a:49:d5:95:e3:72:a2:83:d7:17:a5:68:28:01:c5: 66:f7:6a:1d:cb:8c:59:c5:49:16:bd:6c:7e:a9:ee:b1:ba:a0: 1b:08:04:07:f7:5e:a7:ea:83:cf:4f:8b:1d:7a:e1:7a:12:33: 08:a1:a6:c6:aa:96:84:c6:f9:57:f7:ca:a3:54:8a:d9:79:35: fc:85:f8:16:74:3b:f7:cd:8a:b5:c7:f1:84:84:25:d5:22:51: d3:b9:42:52 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDLcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0U0QUExMTAvBgNVBAUTKDYzODgzRTRDQTJDOEU3REREQUMzOTg3RTQ4NEZEMUQ2 NzJEOTM5NDkwHhcNMjYwMzI0MTgyMTA5WhcNMjYwMzMxMTgyMTA5WjAYMRYwFAYD VQQDEw02OWMyZDYxNi1lMThiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAljwwnnnMhukeVRpHPOpU9+Tl/BG4u8+Q42TA4mw9YTHRGDqGWH2dAYPj8WGK PuYDC+4xAUkhkD948zwnUOJXqPImIwY6TmKOrUDYD05MPT9FDFK62BZkCSRTLqk1 WylIqWQg7sOLzFdFCGk4ORRFpwBUEg8Ii0mAmUOSJ+21/ZJYPg0npsIBbWpiQAMe lclkLD+bYjOLCEDN/LPXpghTLIbCmOc/ScKXiXmmQXBykRk5baQpNXD9edPodcxi Wsexo9FJwXJaPyD70hwsNAwqt7Q58eWotjeaUznmIh/lI0L17Iwb6TmwrZh+XLpV WHi4XoMAXM9CGNw+AD9gbCVbZwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFE9by20T Jfi9sBJZuOCOv2ky8/7wMB8GA1UdIwQYMBaAFGOIPkyiyOfd2sOYfkhP0dZy2TlJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRTRBQS82NzRDQTI5RTEx REIxMUVBQkY0NURBNTVDNEY5QUUwMi9ZNGctVEtMSTU5M2F3NWgtU0VfUjFuTFpP VWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1k0Zy1US0xJNTkzYXc1aC1TRV9SMW5MWk9Vay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RTRBQS82NzRDQTI5RTExREIxMUVBQkY0NURBNTVDNEY5QUUwMi9ZNGctVEtMSTU5 M2F3NWgtU0VfUjFuTFpPVWsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAAtU9r0Y3URUKqRyRPW8msw5CedjjnOobyw8XGroYJ4auDBWLX8kYTsGXdnLQ S+xGBFp7fjkJ39LGb6U5SqgeP4t2r1DgotRzw9k8gBxBhMTvpUehzUfpOojuwid2 BNBQyIq2vbQXXQJMDgewm0/OwjtSHhyOKYzFQD5kKbv4FsloreT1KiGR11ZL++h1 jb4FKyPvZR/JjL1eybNP58K3zlqUkrJLKknVleNyooPXF6VoKAHFZvdqHcuMWcVJ Fr1sfqnusbqgGwgEB/dep+qDz0+LHXrhehIzCKGmxqqWhMb5V/fKo1SK2Xk1/IX4 FnQ7982KtcfxhIQl1SJR07lCUg== -----END CERTIFICATE-----Generated at Thu Mar 26 02:28:12 2026 by rpki-client