$ rpki-client -vvf rpki.apnic.net/member_repository/A9144F45/D76FF044397011EC9B65BA16C4F9AE02/YBC8xly5zPAs9-0p7HXk1iK98_A.mft File: YBC8xly5zPAs9-0p7HXk1iK98_A.mft (raw, json) Hash identifier: iPYnGfv9JcsM4sYa8k8lsR/Nuz5C8FaL8Kp58UOtZfg= Subject key identifier: 70:71:DB:6D:61:E2:30:E4:ED:9E:33:35:3A:CD:B4:FD:0A:E4:64:AA Authority key identifier: 60:10:BC:C6:5C:B9:CC:F0:2C:F7:ED:29:EC:75:E4:D6:22:BD:F3:F0 Certificate issuer: /CN=A9144F45/serialNumber=6010BCC65CB9CCF02CF7ED29EC75E4D622BDF3F0 Certificate serial: 0538 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBC8xly5zPAs9-0p7HXk1iK98_A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144F45/D76FF044397011EC9B65BA16C4F9AE02/YBC8xly5zPAs9-0p7HXk1iK98_A.mft Manifest number: 0531 Signing time: Tue 24 Mar 2026 23:12:59 +0000 Manifest this update: Tue 24 Mar 2026 23:12:59 +0000 Manifest next update: Tue 31 Mar 2026 23:12:59 +0000 Files and hashes: 1: YBC8xly5zPAs9-0p7HXk1iK98_A.crl (hash: P8wL8gMxhwjHv1qAjfx0nTPN/Baa6ihHcP9T2EzCK/Y=) 2: E225E68E397411EC8120D135C4F9AE02.roa (hash: 7te+cPgcfpvpCMVkthOWObu0R1Pa/2uNM+7VktoCVs4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144F45/D76FF044397011EC9B65BA16C4F9AE02/YBC8xly5zPAs9-0p7HXk1iK98_A.crl rsync://rpki.apnic.net/member_repository/A9144F45/D76FF044397011EC9B65BA16C4F9AE02/YBC8xly5zPAs9-0p7HXk1iK98_A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBC8xly5zPAs9-0p7HXk1iK98_A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 23:12:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1336 (0x538) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144F45, serialNumber=6010BCC65CB9CCF02CF7ED29EC75E4D622BDF3F0 Validity Not Before: Mar 24 23:12:59 2026 GMT Not After : Mar 31 23:12:59 2026 GMT Subject: CN=69c31a7b-770f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:7a:ce:1b:b8:31:d9:e4:bd:ba:23:18:40:5c: 58:72:76:6a:94:df:8f:a1:a4:92:ee:00:e9:ca:10: ef:5b:53:52:67:64:54:cc:ae:55:1e:0d:2e:68:0b: 43:82:5d:65:6a:0f:33:56:bd:e6:b6:e7:72:17:62: 3d:5f:16:1a:22:a9:e7:fe:4d:fd:3e:35:8f:4b:fb: 47:ed:8b:29:66:65:b6:70:84:5d:47:c1:d6:8e:2f: e2:b1:81:44:a2:c6:2a:d7:e8:18:70:02:fd:08:e9: eb:2f:39:3d:5b:ac:5b:f3:4c:b4:f1:9b:dd:94:82: ff:80:3c:02:1d:aa:fe:8d:10:dd:bf:77:15:20:2c: e1:e0:e4:31:66:45:73:51:3b:e7:94:cd:51:87:1a: df:74:5c:43:c6:5d:9a:a0:8d:43:99:8b:58:fc:8c: e2:c2:af:bd:93:bb:47:0b:64:fa:a1:23:47:d9:43: 41:6c:a5:ef:aa:70:38:e4:b0:09:9e:a1:94:54:5f: 5b:03:02:08:22:37:37:4b:8e:69:9b:d5:96:42:34: 86:21:23:25:e3:75:d2:67:5e:8f:be:b9:06:cf:ed: d2:4a:47:9d:8b:f6:8d:f2:1a:83:6d:a2:84:21:f9: 07:6e:92:12:bd:b5:22:89:ae:96:ca:5d:38:24:66: 7b:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:71:DB:6D:61:E2:30:E4:ED:9E:33:35:3A:CD:B4:FD:0A:E4:64:AA X509v3 Authority Key Identifier: keyid:60:10:BC:C6:5C:B9:CC:F0:2C:F7:ED:29:EC:75:E4:D6:22:BD:F3:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144F45/D76FF044397011EC9B65BA16C4F9AE02/YBC8xly5zPAs9-0p7HXk1iK98_A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBC8xly5zPAs9-0p7HXk1iK98_A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144F45/D76FF044397011EC9B65BA16C4F9AE02/YBC8xly5zPAs9-0p7HXk1iK98_A.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d5:ad:50:73:f5:4e:e6:67:56:68:1f:05:0e:cd:46:17:7d:eb: 42:fe:a5:c3:10:6f:a1:d0:8a:55:f7:68:8e:2a:c6:15:ac:e9: 44:26:8b:77:cb:e5:b4:4b:df:f9:f2:3d:f1:8a:bd:af:7c:d4: e3:20:ca:58:8c:ff:21:0d:9a:dc:2a:78:05:8b:58:76:39:89: ae:bb:07:de:7b:fb:83:ea:03:43:65:b4:7a:51:55:24:3d:b0: 6d:e6:0c:e3:cc:1c:25:4e:36:30:bd:ce:b3:69:68:b4:f4:fd: 94:e4:59:3c:7f:fa:ef:6d:0f:d7:d9:4d:4c:76:40:9f:f4:03: 76:9a:67:5e:ba:a2:2d:33:8b:f7:0e:d9:7e:e4:26:71:07:f0: 9b:d2:48:d9:96:ca:33:42:51:e4:5c:11:96:69:04:92:e8:15: f2:36:ba:d9:29:b9:d7:83:fd:4f:27:fd:f2:33:9c:32:bc:63: d3:83:ae:2d:c1:79:f0:cd:2c:5c:5c:5d:42:21:30:ea:02:bd: 6d:1f:99:3e:22:16:88:e7:20:b0:4f:f3:e6:f2:4d:f6:89:4a: 27:65:d3:3a:a5:13:c8:b2:c7:24:27:28:30:21:de:83:14:95: d2:f3:d1:d3:ba:46:86:4a:fc:30:35:9d:7d:45:17:54:ae:61: d2:89:8f:68 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBTgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDRGNDUxMTAvBgNVBAUTKDYwMTBCQ0M2NUNCOUNDRjAyQ0Y3RUQyOUVDNzVFNEQ2 MjJCREYzRjAwHhcNMjYwMzI0MjMxMjU5WhcNMjYwMzMxMjMxMjU5WjAYMRYwFAYD VQQDEw02OWMzMWE3Yi03NzBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA23rOG7gx2eS9uiMYQFxYcnZqlN+PoaSS7gDpyhDvW1NSZ2RUzK5VHg0uaAtD gl1lag8zVr3mtudyF2I9XxYaIqnn/k39PjWPS/tH7YspZmW2cIRdR8HWji/isYFE osYq1+gYcAL9COnrLzk9W6xb80y08ZvdlIL/gDwCHar+jRDdv3cVICzh4OQxZkVz UTvnlM1RhxrfdFxDxl2aoI1DmYtY/Iziwq+9k7tHC2T6oSNH2UNBbKXvqnA45LAJ nqGUVF9bAwIIIjc3S45pm9WWQjSGISMl43XSZ16PvrkGz+3SSkedi/aN8hqDbaKE IfkHbpISvbUiia6Wyl04JGZ7FQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHBx221h 4jDk7Z4zNTrNtP0K5GSqMB8GA1UdIwQYMBaAFGAQvMZcuczwLPftKex15NYivfPw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NEY0NS9ENzZGRjA0NDM5 NzAxMUVDOUI2NUJBMTZDNEY5QUUwMi9ZQkM4eGx5NXpQQXM5LTBwN0hYazFpSzk4 X0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lCQzh4bHk1elBBczktMHA3SFhrMWlLOThfQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NEY0NS9ENzZGRjA0NDM5NzAxMUVDOUI2NUJBMTZDNEY5QUUwMi9ZQkM4eGx5NXpQ QXM5LTBwN0hYazFpSzk4X0EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEA1a1Qc/VO5mdWaB8FDs1GF33rQv6lwxBvodCKVfdojirGFazpRCaLd8vltEvf +fI98Yq9r3zU4yDKWIz/IQ2a3Cp4BYtYdjmJrrsH3nv7g+oDQ2W0elFVJD2wbeYM 48wcJU42ML3Os2lotPT9lORZPH/6720P19lNTHZAn/QDdppnXrqiLTOL9w7ZfuQm cQfwm9JI2ZbKM0JR5FwRlmkEkugV8ja62Sm514P9Tyf98jOcMrxj04OuLcF58M0s XFxdQiEw6gK9bR+ZPiIWiOcgsE/z5vJN9olKJ2XTOqUTyLLHJCcoMCHegxSV0vPR 07pGhkr8MDWdfUUXVK5h0omPaA== -----END CERTIFICATE-----Generated at Thu Mar 26 16:20:24 2026 by rpki-client