$ rpki-client -vvf rpki.apnic.net/member_repository/A914988F/19247FBAFE2511EA9CC10C4CC4F9AE02/P-YDHyVWekVHzeFzGi2BTbhuIJQ.mft File: P-YDHyVWekVHzeFzGi2BTbhuIJQ.mft (raw, json) Hash identifier: jSoBjIranNYTj7eFnK4NSupBGCKvOcJWJe56WDuTKwk= Subject key identifier: 5F:EB:3C:8D:B9:D3:EC:47:E7:CB:8E:AC:A5:ED:57:2A:E0:01:2B:94 Authority key identifier: 3F:E6:03:1F:25:56:7A:45:47:CD:E1:73:1A:2D:81:4D:B8:6E:20:94 Certificate issuer: /CN=A914988F/serialNumber=3FE6031F25567A4547CDE1731A2D814DB86E2094 Certificate serial: 085D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P-YDHyVWekVHzeFzGi2BTbhuIJQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914988F/19247FBAFE2511EA9CC10C4CC4F9AE02/P-YDHyVWekVHzeFzGi2BTbhuIJQ.mft Manifest number: 0853 Signing time: Tue 24 Mar 2026 20:33:06 +0000 Manifest this update: Tue 24 Mar 2026 20:33:06 +0000 Manifest next update: Tue 31 Mar 2026 20:33:06 +0000 Files and hashes: 1: P-YDHyVWekVHzeFzGi2BTbhuIJQ.crl (hash: PT9nNYSeBYiW9gMpvADsbP1ZhNZSqiUiyq1xsAgKacY=) 2: 4ED5A00CFE2611EAA4F3424DC4F9AE02.roa (hash: JI2Y4J6EIn1uWFB8nwUdnofquITm7Yx3KS03ihwD+yc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914988F/19247FBAFE2511EA9CC10C4CC4F9AE02/P-YDHyVWekVHzeFzGi2BTbhuIJQ.crl rsync://rpki.apnic.net/member_repository/A914988F/19247FBAFE2511EA9CC10C4CC4F9AE02/P-YDHyVWekVHzeFzGi2BTbhuIJQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P-YDHyVWekVHzeFzGi2BTbhuIJQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 20:33:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2141 (0x85d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914988F, serialNumber=3FE6031F25567A4547CDE1731A2D814DB86E2094 Validity Not Before: Mar 24 20:33:06 2026 GMT Not After : Mar 31 20:33:06 2026 GMT Subject: CN=69c2f502-afab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:28:dd:dc:7d:16:44:8e:d7:0f:92:15:e1:ae: fb:8c:98:6b:31:d8:b1:fa:35:9c:3a:d3:be:d3:5d: 17:3e:a9:b7:e3:b2:74:f4:3f:73:9b:82:fc:09:0c: 04:0e:4a:b2:21:ee:36:07:30:8f:fe:fb:60:96:c0: b8:d2:af:73:8e:98:03:fa:5c:ef:22:ed:7f:36:94: b7:c3:01:23:ec:ab:b0:aa:8a:e8:32:f4:80:cd:ce: c8:d6:c1:7a:54:0f:0d:d8:97:22:62:2c:5d:f9:f9: 37:c0:35:b4:96:d3:66:12:b0:35:95:0b:a2:6e:64: f6:5e:92:14:ef:40:50:8e:1a:1b:97:d4:3c:4b:22: 9b:bd:e4:3f:57:44:ef:52:07:67:bb:7a:cd:fc:c5: c3:a4:6c:fa:3e:6d:00:74:ab:5f:cb:51:08:06:61: ea:7f:91:a4:fe:75:49:c5:07:63:48:8f:d5:8c:59: 7e:ab:69:27:98:cf:64:fc:7b:88:2b:8b:a0:0e:a1: 63:46:ae:d8:89:f0:b3:ed:b2:4f:f4:cc:c1:bb:0b: 80:e2:25:61:a4:c5:83:86:6d:0c:a4:7a:37:96:0c: 9b:15:a3:2e:05:f6:07:0f:cf:28:c8:b2:4c:45:fa: 3a:d1:77:08:9b:9c:8b:7a:6b:0a:4f:6b:61:20:39: 02:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:EB:3C:8D:B9:D3:EC:47:E7:CB:8E:AC:A5:ED:57:2A:E0:01:2B:94 X509v3 Authority Key Identifier: keyid:3F:E6:03:1F:25:56:7A:45:47:CD:E1:73:1A:2D:81:4D:B8:6E:20:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914988F/19247FBAFE2511EA9CC10C4CC4F9AE02/P-YDHyVWekVHzeFzGi2BTbhuIJQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P-YDHyVWekVHzeFzGi2BTbhuIJQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914988F/19247FBAFE2511EA9CC10C4CC4F9AE02/P-YDHyVWekVHzeFzGi2BTbhuIJQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:da:68:1b:c3:46:d4:d7:ae:0b:36:51:a7:4c:1c:5c:b4:c8: bb:77:a6:7e:cf:23:ab:ca:3c:d2:c4:6c:05:e8:ea:54:25:3e: 3d:6e:e0:53:72:ed:8b:88:c8:27:cb:1d:3b:d4:97:4d:a8:38: 30:5b:2c:50:90:a9:20:d6:f0:5a:51:ba:55:ef:d6:67:7f:2a: 3c:04:00:cd:86:70:a8:e3:11:91:b0:64:a1:26:26:a3:2a:87: 84:5c:50:21:c9:a8:36:0e:a8:ec:33:76:4e:e3:39:ce:41:e5: 04:4b:40:97:95:48:da:e7:16:13:01:ae:e8:40:1b:05:2d:77: 17:c4:0a:45:ae:d9:21:3b:e8:56:e1:f4:63:c7:d4:39:ac:af: 7b:7c:90:39:fc:f8:95:3c:ab:1d:0a:3b:7c:37:62:be:25:05: 18:ce:fa:04:6a:57:af:62:31:93:6b:08:78:dd:ba:34:c0:f3: 04:55:57:af:b0:ff:1c:55:ab:54:8e:1a:82:d2:9d:7d:d3:02: 21:83:55:ee:1b:08:57:91:d6:89:c9:82:d2:80:ca:49:a0:02: 13:3f:88:35:1f:fb:32:70:f6:14:b7:d3:9d:3c:78:b5:31:e0: e6:b6:7d:ee:fc:78:00:fb:14:05:68:7b:f8:b5:88:0d:60:c8: 8c:01:23:31 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCF0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDk4OEYxMTAvBgNVBAUTKDNGRTYwMzFGMjU1NjdBNDU0N0NERTE3MzFBMkQ4MTRE Qjg2RTIwOTQwHhcNMjYwMzI0MjAzMzA2WhcNMjYwMzMxMjAzMzA2WjAYMRYwFAYD VQQDEw02OWMyZjUwMi1hZmFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqyjd3H0WRI7XD5IV4a77jJhrMdix+jWcOtO+010XPqm347J09D9zm4L8CQwE DkqyIe42BzCP/vtglsC40q9zjpgD+lzvIu1/NpS3wwEj7KuwqoroMvSAzc7I1sF6 VA8N2JciYixd+fk3wDW0ltNmErA1lQuibmT2XpIU70BQjhobl9Q8SyKbveQ/V0Tv Ugdnu3rN/MXDpGz6Pm0AdKtfy1EIBmHqf5Gk/nVJxQdjSI/VjFl+q2knmM9k/HuI K4ugDqFjRq7YifCz7bJP9MzBuwuA4iVhpMWDhm0MpHo3lgybFaMuBfYHD88oyLJM Rfo60XcIm5yLemsKT2thIDkCUwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFF/rPI25 0+xH58uOrKXtVyrgASuUMB8GA1UdIwQYMBaAFD/mAx8lVnpFR83hcxotgU24biCU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OTg4Ri8xOTI0N0ZCQUZF MjUxMUVBOUNDMTBDNENDNEY5QUUwMi9QLVlESHlWV2VrVkh6ZUZ6R2kyQlRiaHVJ SlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1AtWURIeVZXZWtWSHplRnpHaTJCVGJodUlKUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OTg4Ri8xOTI0N0ZCQUZFMjUxMUVBOUNDMTBDNENDNEY5QUUwMi9QLVlESHlWV2Vr Vkh6ZUZ6R2kyQlRiaHVJSlEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAAdpoG8NG1NeuCzZRp0wcXLTIu3emfs8jq8o80sRsBejqVCU+PW7gU3Lti4jI J8sdO9SXTag4MFssUJCpINbwWlG6Ve/WZ38qPAQAzYZwqOMRkbBkoSYmoyqHhFxQ IcmoNg6o7DN2TuM5zkHlBEtAl5VI2ucWEwGu6EAbBS13F8QKRa7ZITvoVuH0Y8fU Oayve3yQOfz4lTyrHQo7fDdiviUFGM76BGpXr2Ixk2sIeN26NMDzBFVXr7D/HFWr VI4agtKdfdMCIYNV7hsIV5HWicmC0oDKSaACEz+INR/7MnD2FLfTnTx4tTHg5rZ9 7vx4APsUBWh7+LWIDWDIjAEjMQ== -----END CERTIFICATE-----Generated at Thu Mar 26 07:30:11 2026 by rpki-client