$ rpki-client -vvf rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.mft File: 2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.mft (raw, json) Hash identifier: F/oZcQgI4p+4TKY6nCnoWBJlFwuQPiNKtL3XbhlqysQ= Subject key identifier: 83:50:5A:BF:95:BA:E4:B0:36:2B:A1:CD:02:72:2E:3A:92:4A:E3:45 Authority key identifier: D9:85:29:14:8C:BA:5D:DE:D3:B7:3D:60:52:EE:05:16:C0:24:C4:F3 Certificate issuer: /CN=A914C4ED/serialNumber=D98529148CBA5DDED3B73D6052EE0516C024C4F3 Certificate serial: 0278 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.mft Manifest number: 0272 Signing time: Wed 25 Mar 2026 00:06:59 +0000 Manifest this update: Wed 25 Mar 2026 00:06:58 +0000 Manifest next update: Wed 01 Apr 2026 00:06:58 +0000 Files and hashes: 1: 2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.crl (hash: yqqVaewI+W4X2YWWd64ukCOHZHEGAXfMRu6kuqy3FxQ=) 2: F060FF0E720D11EDA84BE02EC4F9AE02.roa (hash: bBLigJeGoxjmDkmt5bCcINVBCGyLUX4lsMZpAacSwXA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.crl rsync://rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 00:06:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 632 (0x278) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C4ED, serialNumber=D98529148CBA5DDED3B73D6052EE0516C024C4F3 Validity Not Before: Mar 25 00:06:58 2026 GMT Not After : Apr 1 00:06:58 2026 GMT Subject: CN=69c32723-0c4a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:6c:56:60:35:24:a0:08:3b:c5:8b:25:13:d7: 9b:13:93:db:e8:6e:29:8b:5f:9e:da:66:4a:81:fc: 0c:6d:7a:80:16:56:16:41:e2:0f:b3:88:01:a5:5f: 6e:24:a7:59:8a:6a:43:64:92:cf:4e:12:7d:1d:e4: c9:5c:9c:ab:6a:20:dc:c7:86:36:f8:72:cf:7a:30: bc:4d:48:0e:de:39:0a:d5:56:60:1a:dd:84:a0:fd: 32:9e:6c:27:ab:d4:bb:0e:77:19:9d:37:2c:c5:ae: 5d:3c:f6:18:b4:f9:10:91:39:a4:df:55:23:e9:93: ba:04:5b:c8:54:36:7f:ba:29:f3:4d:f2:18:f8:3c: b6:a6:9d:f8:02:fe:77:db:43:72:ce:bd:e5:11:f6: be:68:8b:6a:5b:b7:f4:e3:b1:8d:c2:4d:13:75:82: f4:bd:97:ae:11:e1:a0:40:9d:b9:93:5b:1a:06:05: ec:1e:b8:03:e6:08:64:c8:72:0c:ae:d4:3f:39:2c: 89:f9:07:8e:f0:96:42:cb:9a:89:34:4e:18:e3:4b: e9:ac:8a:8a:80:25:51:7e:d0:a7:88:8e:33:c1:60: c2:38:51:c2:ad:59:d6:8e:16:60:25:12:06:06:6a: e5:73:27:ef:34:e4:6c:a3:40:ef:38:d1:c1:dd:d6: 61:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:50:5A:BF:95:BA:E4:B0:36:2B:A1:CD:02:72:2E:3A:92:4A:E3:45 X509v3 Authority Key Identifier: keyid:D9:85:29:14:8C:BA:5D:DE:D3:B7:3D:60:52:EE:05:16:C0:24:C4:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:9d:f8:1c:6e:9b:09:97:1a:b4:9b:af:8f:5c:28:e6:6c:33: 5b:e0:4e:5a:fb:f1:37:8d:c9:d2:98:13:39:88:75:94:ec:c7: 31:64:0c:88:18:0c:b9:cd:04:f9:2a:3d:88:85:e9:cd:c3:5d: 11:0a:40:82:e1:75:aa:15:8c:d9:2a:86:48:9c:33:f6:b1:16: 59:b6:48:c6:aa:ac:71:eb:d0:53:4f:b6:09:0b:b9:1d:78:21: c7:da:11:cf:a4:6a:b6:c9:71:34:4f:11:64:ca:38:be:91:df: cb:67:60:1e:8c:1e:7d:49:ae:6e:e6:a3:c7:dc:39:d9:38:4b: dc:2e:8a:ad:97:93:4e:a0:bb:64:5f:bd:15:c6:15:6c:cc:3c: c8:66:62:58:f8:4a:b5:7e:10:06:c6:c5:82:92:e5:45:0b:70: 67:e8:89:15:bf:70:3f:4f:61:0b:94:f3:e8:8a:a4:75:3e:05: b7:9f:6d:0f:88:ec:31:ef:97:91:5d:c9:ab:11:92:94:61:65: d8:a3:fd:47:b4:70:1d:62:d4:50:8a:dd:e7:45:b7:23:8c:79: 0c:f3:41:b0:c2:de:42:46:a8:25:9d:d3:60:62:24:7d:b0:50: e0:8d:29:80:bc:32:be:3b:5b:e6:35:5f:21:70:7e:5d:c0:3d: 4c:9c:dc:d3 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAngwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEM0RUQxMTAvBgNVBAUTKEQ5ODUyOTE0OENCQTVEREVEM0I3M0Q2MDUyRUUwNTE2 QzAyNEM0RjMwHhcNMjYwMzI1MDAwNjU4WhcNMjYwNDAxMDAwNjU4WjAYMRYwFAYD VQQDEw02OWMzMjcyMy0wYzRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr2xWYDUkoAg7xYslE9ebE5Pb6G4pi1+e2mZKgfwMbXqAFlYWQeIPs4gBpV9u JKdZimpDZJLPThJ9HeTJXJyraiDcx4Y2+HLPejC8TUgO3jkK1VZgGt2EoP0ynmwn q9S7DncZnTcsxa5dPPYYtPkQkTmk31Uj6ZO6BFvIVDZ/uinzTfIY+Dy2pp34Av53 20Nyzr3lEfa+aItqW7f047GNwk0TdYL0vZeuEeGgQJ25k1saBgXsHrgD5ghkyHIM rtQ/OSyJ+QeO8JZCy5qJNE4Y40vprIqKgCVRftCniI4zwWDCOFHCrVnWjhZgJRIG BmrlcyfvNORso0DvONHB3dZhgQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFINQWr+V uuSwNiuhzQJyLjqSSuNFMB8GA1UdIwQYMBaAFNmFKRSMul3e07c9YFLuBRbAJMTz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzRFRC83NTk4NDQ0NDcy MEQxMUVEQjU0NUUwMzBDNEY5QUUwMi8yWVVwRkl5NlhkN1R0ejFnVXU0RkZzQWt4 UE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJZVXBGSXk2WGQ3VHR6MWdVdTRGRnNBa3hQTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QzRFRC83NTk4NDQ0NDcyMEQxMUVEQjU0NUUwMzBDNEY5QUUwMi8yWVVwRkl5Nlhk N1R0ejFnVXU0RkZzQWt4UE0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAWZ34HG6bCZcatJuvj1wo5mwzW+BOWvvxN43J0pgTOYh1lOzHMWQMiBgMuc0E +So9iIXpzcNdEQpAguF1qhWM2SqGSJwz9rEWWbZIxqqscevQU0+2CQu5HXghx9oR z6RqtslxNE8RZMo4vpHfy2dgHowefUmubuajx9w52ThL3C6KrZeTTqC7ZF+9FcYV bMw8yGZiWPhKtX4QBsbFgpLlRQtwZ+iJFb9wP09hC5Tz6IqkdT4Ft59tD4jsMe+X kV3JqxGSlGFl2KP9R7RwHWLUUIrd50W3I4x5DPNBsMLeQkaoJZ3TYGIkfbBQ4I0p gLwyvjtb5jVfIXB+XcA9TJzc0w== -----END CERTIFICATE-----Generated at Thu Mar 26 11:37:21 2026 by rpki-client