$ rpki-client -vvf rpki.apnic.net/member_repository/A913FBB2/0E2705441A8611EEA0AA8716C4F9AE02/rYW34Ys6FvU-kpOKM07Guz64tjA.mft File: rYW34Ys6FvU-kpOKM07Guz64tjA.mft (raw, json) Hash identifier: zgHHKPAzUufgiqwl90/TaAlxzgrgq87CwPUz9Tl2mVo= Subject key identifier: 11:76:37:8E:79:11:50:87:A4:FC:13:BD:D8:A9:DA:25:D1:F1:B5:9F Authority key identifier: AD:85:B7:E1:8B:3A:16:F5:3E:92:93:8A:33:4E:C6:BB:3E:B8:B6:30 Certificate issuer: /CN=A913FBB2/serialNumber=AD85B7E18B3A16F53E92938A334EC6BB3EB8B630 Certificate serial: 0215 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rYW34Ys6FvU-kpOKM07Guz64tjA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913FBB2/0E2705441A8611EEA0AA8716C4F9AE02/rYW34Ys6FvU-kpOKM07Guz64tjA.mft Manifest number: 0203 Signing time: Wed 25 Mar 2026 02:27:07 +0000 Manifest this update: Wed 25 Mar 2026 02:27:06 +0000 Manifest next update: Wed 01 Apr 2026 02:27:06 +0000 Files and hashes: 1: rYW34Ys6FvU-kpOKM07Guz64tjA.crl (hash: 1kieDidn5VwdJj+cFOoXVOt8UIBeU14+GEZcDs7/WZo=) 2: B97D647C1A8811EEB5AE963CC4F9AE02.roa (hash: NpABsuTNt3Of0zFwuT3M1C2R99zLqBty3uuQSGUzpfg=) 3: A9321C0A1B2A11EE84F40B3AC4F9AE02.roa (hash: tRTg+EzOsPEBd/CyA9yv6uVUIfA6399PeHgHdLPDFdI=) 4: A8C501F61B2A11EE84F40B3AC4F9AE02.roa (hash: kgK3NjgQxpDJ05PetKW0f4eD4WtSWH7QBEKwm+5D1qk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913FBB2/0E2705441A8611EEA0AA8716C4F9AE02/rYW34Ys6FvU-kpOKM07Guz64tjA.crl rsync://rpki.apnic.net/member_repository/A913FBB2/0E2705441A8611EEA0AA8716C4F9AE02/rYW34Ys6FvU-kpOKM07Guz64tjA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rYW34Ys6FvU-kpOKM07Guz64tjA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 02:27:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 533 (0x215) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913FBB2, serialNumber=AD85B7E18B3A16F53E92938A334EC6BB3EB8B630 Validity Not Before: Mar 25 02:27:06 2026 GMT Not After : Apr 1 02:27:06 2026 GMT Subject: CN=69c347fb-7cb0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:4d:2f:37:a0:94:56:cc:45:d6:ac:bf:90:51: 5f:cf:52:67:e9:48:c2:fd:36:bd:71:f4:f5:4c:99: 4b:8c:4f:78:50:e5:c7:33:14:05:61:cb:93:a3:77: 14:8f:af:8a:33:cd:1f:ae:5f:ac:61:2d:d9:09:43: 8c:dd:c0:f5:f2:8b:3e:59:8d:e9:30:4a:c3:8c:f3: 34:dc:b2:19:9f:62:84:07:f6:38:c7:c7:46:5a:ef: 60:7c:56:7a:e3:79:82:ca:dc:27:f2:d0:34:ec:cb: 2f:d9:0e:f4:d7:9d:43:32:9d:cd:05:c4:48:46:36: 8a:0c:1e:b1:df:38:88:87:0d:79:e3:0f:8e:9b:fb: 48:c4:f6:85:86:fe:4b:ca:df:d9:3a:76:8d:1d:f0: 04:d5:fa:cd:ee:0d:2c:75:21:e8:06:e7:d2:96:8e: ca:d9:1b:d4:0a:7e:cb:9f:53:62:16:fb:cd:5a:27: 40:9c:5f:a5:68:62:0d:24:80:ae:36:9c:55:a4:40: 9e:d7:da:58:dc:96:ce:64:59:75:68:46:79:30:7d: 86:31:66:ca:e0:cd:1d:14:3a:50:ee:bc:a5:dc:dd: fb:b3:30:ef:f0:66:13:a1:c2:93:a3:4d:5d:e7:e2: 99:4c:b7:78:6f:27:51:cd:24:57:92:b4:6e:66:7f: f5:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:76:37:8E:79:11:50:87:A4:FC:13:BD:D8:A9:DA:25:D1:F1:B5:9F X509v3 Authority Key Identifier: keyid:AD:85:B7:E1:8B:3A:16:F5:3E:92:93:8A:33:4E:C6:BB:3E:B8:B6:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913FBB2/0E2705441A8611EEA0AA8716C4F9AE02/rYW34Ys6FvU-kpOKM07Guz64tjA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rYW34Ys6FvU-kpOKM07Guz64tjA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913FBB2/0E2705441A8611EEA0AA8716C4F9AE02/rYW34Ys6FvU-kpOKM07Guz64tjA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:82:aa:6c:85:1f:12:3b:1a:76:f0:51:b8:4e:c6:8d:6a:54: 9d:68:b3:08:c0:b5:72:cf:de:2d:b0:81:e7:ff:cb:d6:2a:ad: 3e:78:d7:0b:50:03:26:55:7a:f0:2b:db:25:aa:05:a4:3a:83: ae:ef:ec:90:eb:c7:8d:16:96:38:91:f2:8e:c9:05:1f:b8:2e: 43:78:7f:b6:5e:d0:72:a0:6b:44:c1:4b:df:bb:44:e9:00:56: 48:bb:d7:a7:6b:a4:d0:3c:74:f7:2b:ed:6e:df:c4:02:5b:a4: 65:46:7d:27:59:5a:8c:b9:15:5e:47:25:0b:66:50:c6:ff:a5: ea:5b:f1:d4:f3:72:c6:3a:1e:35:96:bf:a6:c4:19:e0:85:53: b6:8b:13:cb:43:1a:98:65:84:86:e7:ff:06:88:fc:17:ec:ee: 27:69:19:6b:e4:a9:7c:f2:97:7c:d8:29:84:94:2e:16:23:10: 61:c4:20:9f:c4:09:39:27:b0:9e:7b:60:38:66:d7:4b:83:b4: 1b:f5:03:0e:cd:35:82:8a:d6:57:3d:5c:b6:22:5c:9f:c9:48: 34:9a:e3:1f:4e:5f:af:bb:c5:c4:e4:65:e0:c6:a7:ce:04:12: f4:c4:8e:7e:2b:6e:1f:b6:08:75:ad:20:0e:f0:33:48:18:66: 15:d3:e4:c9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAhUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0ZCQjIxMTAvBgNVBAUTKEFEODVCN0UxOEIzQTE2RjUzRTkyOTM4QTMzNEVDNkJC M0VCOEI2MzAwHhcNMjYwMzI1MDIyNzA2WhcNMjYwNDAxMDIyNzA2WjAYMRYwFAYD VQQDEw02OWMzNDdmYi03Y2IwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlU0vN6CUVsxF1qy/kFFfz1Jn6UjC/Ta9cfT1TJlLjE94UOXHMxQFYcuTo3cU j6+KM80frl+sYS3ZCUOM3cD18os+WY3pMErDjPM03LIZn2KEB/Y4x8dGWu9gfFZ6 43mCytwn8tA07Msv2Q70151DMp3NBcRIRjaKDB6x3ziIhw154w+Om/tIxPaFhv5L yt/ZOnaNHfAE1frN7g0sdSHoBufSlo7K2RvUCn7Ln1NiFvvNWidAnF+laGINJICu NpxVpECe19pY3JbOZFl1aEZ5MH2GMWbK4M0dFDpQ7ryl3N37szDv8GYTocKTo01d 5+KZTLd4bydRzSRXkrRuZn/1lQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBF2N455 EVCHpPwTvdip2iXR8bWfMB8GA1UdIwQYMBaAFK2Ft+GLOhb1PpKTijNOxrs+uLYw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRkJCMi8wRTI3MDU0NDFB ODYxMUVFQTBBQTg3MTZDNEY5QUUwMi9yWVczNFlzNkZ2VS1rcE9LTTA3R3V6NjR0 akEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JZVzM0WXM2RnZVLWtwT0tNMDdHdXo2NHRqQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RkJCMi8wRTI3MDU0NDFBODYxMUVFQTBBQTg3MTZDNEY5QUUwMi9yWVczNFlzNkZ2 VS1rcE9LTTA3R3V6NjR0akEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEASIKqbIUfEjsadvBRuE7GjWpUnWizCMC1cs/eLbCB5//L1iqtPnjXC1ADJlV6 8CvbJaoFpDqDru/skOvHjRaWOJHyjskFH7guQ3h/tl7QcqBrRMFL37tE6QBWSLvX p2uk0Dx09yvtbt/EAlukZUZ9J1lajLkVXkclC2ZQxv+l6lvx1PNyxjoeNZa/psQZ 4IVTtosTy0MamGWEhuf/Boj8F+zuJ2kZa+SpfPKXfNgphJQuFiMQYcQgn8QJOSew nntgOGbXS4O0G/UDDs01gorWVz1ctiJcn8lINJrjH05fr7vFxORl4ManzgQS9MSO fituH7YIda0gDvAzSBhmFdPkyQ== -----END CERTIFICATE-----Generated at Thu Mar 26 19:59:15 2026 by rpki-client