$ rpki-client -vvf rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.mft File: Y-SHYqiTCAlnc9nhydGpmYA1Zw0.mft (raw, json) Hash identifier: Kscobsl3BMGzUFGLGBd4S697/XX9S7jco4QXSPC6gdA= Subject key identifier: E2:48:DE:FE:88:24:CC:34:1D:27:39:4B:73:22:D7:23:58:51:59:19 Authority key identifier: 63:E4:87:62:A8:93:08:09:67:73:D9:E1:C9:D1:A9:99:80:35:67:0D Certificate issuer: /CN=A9147B58/serialNumber=63E48762A89308096773D9E1C9D1A9998035670D Certificate serial: 0652 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.mft Manifest number: 0649 Signing time: Thu 26 Mar 2026 22:32:53 +0000 Manifest this update: Thu 26 Mar 2026 22:32:53 +0000 Manifest next update: Thu 02 Apr 2026 22:32:53 +0000 Files and hashes: 1: Y-SHYqiTCAlnc9nhydGpmYA1Zw0.crl (hash: d4FqFgM5FuW2a6WSotCYiLtEkhEQLqxO26sy0pIM2CI=) 2: 657BCA62CABC11EB8D6D063BC4F9AE02.roa (hash: 9P+/XWI1mTR2CKwLdPvtfOBgjyqZfC7ZNyD/mGLr3KU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.crl rsync://rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 22:32:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1618 (0x652) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147B58, serialNumber=63E48762A89308096773D9E1C9D1A9998035670D Validity Not Before: Mar 26 22:32:53 2026 GMT Not After : Apr 2 22:32:53 2026 GMT Subject: CN=69c5b415-eea9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:1d:bd:cf:7a:ae:78:ca:60:4d:d0:83:54:a2: 74:9d:34:c2:7c:bd:b8:b8:31:d2:05:17:6d:a6:00: aa:7f:8f:7c:4a:72:93:ef:d3:da:66:00:4c:c9:8a: e8:d4:b3:29:0f:e2:79:58:c7:74:3d:36:17:dd:5a: 0f:3c:13:19:cf:4f:e2:f0:3c:94:8f:ff:ac:44:49: c2:2d:1a:a5:ea:a6:d7:64:0e:59:ef:93:8a:52:86: a0:af:64:5f:ba:16:74:d5:86:0b:2f:8b:19:6a:b9: 11:ed:31:a7:7b:e9:d0:59:3b:c9:fe:77:7a:33:13: cf:35:0d:3e:6b:23:9a:ca:f6:60:b6:30:de:62:cd: 20:e1:85:a2:c6:1e:60:31:90:0c:3e:7d:48:c3:7c: 0b:06:e7:06:df:3b:cb:15:38:fd:6b:ca:a9:ed:7f: a3:c5:3e:f0:da:29:d3:dc:83:b2:f5:76:56:d7:c5: 1f:37:0e:cd:70:d4:33:71:ef:97:d4:8d:78:60:72: 76:0e:4c:7e:e6:c2:ae:ea:9c:4e:39:2f:9d:e5:83: 64:3c:9e:1e:8c:8e:b9:8b:11:1e:03:f8:d3:36:cd: 18:03:60:97:87:7a:83:6d:e5:f8:12:24:6b:91:e9: a9:e2:e3:fd:54:f0:30:4e:cf:35:f2:ce:65:4f:1e: ed:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:48:DE:FE:88:24:CC:34:1D:27:39:4B:73:22:D7:23:58:51:59:19 X509v3 Authority Key Identifier: keyid:63:E4:87:62:A8:93:08:09:67:73:D9:E1:C9:D1:A9:99:80:35:67:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:3f:5f:36:7e:a5:9d:2c:64:f7:b0:6f:c3:d5:d5:4d:ce:03: 0b:2b:10:97:30:8d:64:6c:e3:d3:a9:93:ab:4e:49:1d:ce:9a: 37:b1:4c:d5:3a:f8:f9:d6:81:c6:a0:f1:a7:d5:7f:e5:f5:13: 15:03:81:1f:a6:c0:07:c6:a1:0c:f8:95:17:b9:1f:e6:7a:9c: 52:89:9c:67:9d:f3:c9:fb:64:e0:81:14:22:f2:2b:74:64:4d: 46:34:52:a3:5b:aa:ea:9b:20:26:9f:bc:cd:46:51:c0:fa:99: 13:ee:ff:2e:34:e4:61:e5:b7:bf:4a:22:c9:80:a4:86:0f:bd: cc:10:a6:a7:0a:98:52:2f:d5:9f:b8:0d:54:96:69:a4:6d:ef: 56:f2:e0:53:55:79:42:d4:2c:78:d3:bb:6d:5f:1a:c1:f7:d2: af:0c:0f:76:5d:43:d6:04:66:49:a3:e9:d2:98:ea:fe:5f:30: 4b:4e:18:fa:e7:4e:c4:24:66:be:75:e0:97:32:3a:97:33:30: cf:3a:c8:87:38:a7:3a:1f:60:01:ff:ad:af:cd:eb:ec:ae:b3: d6:fe:b7:c0:cb:84:57:61:e3:da:de:d5:e5:54:8e:ba:00:1a: 17:ab:92:34:b3:3a:ba:dc:d7:79:0b:56:32:d3:8a:2a:56:91: 23:4a:e4:c0 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBlIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDdCNTgxMTAvBgNVBAUTKDYzRTQ4NzYyQTg5MzA4MDk2NzczRDlFMUM5RDFBOTk5 ODAzNTY3MEQwHhcNMjYwMzI2MjIzMjUzWhcNMjYwNDAyMjIzMjUzWjAYMRYwFAYD VQQDEw02OWM1YjQxNS1lZWE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArB29z3queMpgTdCDVKJ0nTTCfL24uDHSBRdtpgCqf498SnKT79PaZgBMyYro 1LMpD+J5WMd0PTYX3VoPPBMZz0/i8DyUj/+sREnCLRql6qbXZA5Z75OKUoagr2Rf uhZ01YYLL4sZarkR7TGne+nQWTvJ/nd6MxPPNQ0+ayOayvZgtjDeYs0g4YWixh5g MZAMPn1Iw3wLBucG3zvLFTj9a8qp7X+jxT7w2inT3IOy9XZW18UfNw7NcNQzce+X 1I14YHJ2Dkx+5sKu6pxOOS+d5YNkPJ4ejI65ixEeA/jTNs0YA2CXh3qDbeX4EiRr kemp4uP9VPAwTs818s5lTx7tqwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOJI3v6I JMw0HSc5S3Mi1yNYUVkZMB8GA1UdIwQYMBaAFGPkh2KokwgJZ3PZ4cnRqZmANWcN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0N0I1OC9BQUMyMUM3RUNB QjgxMUVCODQxNTUzMzZDNEY5QUUwMi9ZLVNIWXFpVENBbG5jOW5oeWRHcG1ZQTFa dzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ktU0hZcWlUQ0FsbmM5bmh5ZEdwbVlBMVp3MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 N0I1OC9BQUMyMUM3RUNBQjgxMUVCODQxNTUzMzZDNEY5QUUwMi9ZLVNIWXFpVENB bG5jOW5oeWRHcG1ZQTFadzAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAsz9fNn6lnSxk97Bvw9XVTc4DCysQlzCNZGzj06mTq05JHc6aN7FM1Tr4+daB xqDxp9V/5fUTFQOBH6bAB8ahDPiVF7kf5nqcUomcZ53zyftk4IEUIvIrdGRNRjRS o1uq6psgJp+8zUZRwPqZE+7/LjTkYeW3v0oiyYCkhg+9zBCmpwqYUi/Vn7gNVJZp pG3vVvLgU1V5QtQseNO7bV8awffSrwwPdl1D1gRmSaPp0pjq/l8wS04Y+udOxCRm vnXglzI6lzMwzzrIhzinOh9gAf+tr83r7K6z1v63wMuEV2Hj2t7V5VSOugAaF6uS NLM6utzXeQtWMtOKKlaRI0rkwA== -----END CERTIFICATE-----Generated at Sat Mar 28 10:40:51 2026 by rpki-client