$ rpki-client -vvf rpki.apnic.net/member_repository/A914EED0/6EEB1150C2B311EAB4832750C4F9AE02/y-ExoIOkVjx8Q52webZLatEQGnw.mft File: y-ExoIOkVjx8Q52webZLatEQGnw.mft (raw, json) Hash identifier: P4LFgpn51Ma88xo3wUO0l8UDXaKBph3L7Kr5hLGa0E4= Subject key identifier: 40:36:58:80:FE:4E:F6:01:FF:6C:4C:55:EF:F2:4C:A4:A0:16:20:DD Authority key identifier: CB:E1:31:A0:83:A4:56:3C:7C:43:9D:B0:79:B6:4B:6A:D1:10:1A:7C Certificate issuer: /CN=A914EED0/serialNumber=CBE131A083A4563C7C439DB079B64B6AD1101A7C Certificate serial: 0931 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-ExoIOkVjx8Q52webZLatEQGnw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914EED0/6EEB1150C2B311EAB4832750C4F9AE02/y-ExoIOkVjx8Q52webZLatEQGnw.mft Manifest number: 0917 Signing time: Tue 24 Mar 2026 20:03:31 +0000 Manifest this update: Tue 24 Mar 2026 20:03:31 +0000 Manifest next update: Tue 31 Mar 2026 20:03:31 +0000 Files and hashes: 1: y-ExoIOkVjx8Q52webZLatEQGnw.crl (hash: DHRuWLuJpKHsuV+etYS3r2eNdXrXvkUt3Cqf0FNApLY=) 2: 90D4C28CC2BA11EA8A079767C4F9AE02.roa (hash: xPzPEEzjonH18gW4iaUITzfSURpkuwZnTJJlRi6h5I4=) 3: 91B81F1EC2BA11EA8A079767C4F9AE02.roa (hash: 6Szm2QWfkOsYb1i1zd7g9FOIR4EuHLgd8D1MqV0Eyn4=) 4: F043A0CCC2B411EA9BAFF054C4F9AE02.roa (hash: VNNGkBpD1q5WZ16FnB1qRceTw8NjIdUzV5+D2PvmOUk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914EED0/6EEB1150C2B311EAB4832750C4F9AE02/y-ExoIOkVjx8Q52webZLatEQGnw.crl rsync://rpki.apnic.net/member_repository/A914EED0/6EEB1150C2B311EAB4832750C4F9AE02/y-ExoIOkVjx8Q52webZLatEQGnw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-ExoIOkVjx8Q52webZLatEQGnw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 20:03:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2353 (0x931) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EED0, serialNumber=CBE131A083A4563C7C439DB079B64B6AD1101A7C Validity Not Before: Mar 24 20:03:31 2026 GMT Not After : Mar 31 20:03:31 2026 GMT Subject: CN=69c2ee13-fe90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:12:1e:e9:5d:9f:45:ba:7f:23:43:d8:9c:56: e8:3a:27:84:ce:18:6c:84:2e:40:97:68:be:17:d4: 00:33:1d:db:9e:83:74:83:97:0a:21:e2:23:84:76: 72:2c:7c:bd:be:1f:ce:83:f5:87:0d:16:30:be:a3: bc:4f:5e:a2:3b:82:4d:27:44:14:34:11:55:eb:06: c1:75:78:0a:06:53:63:ca:5e:c5:fe:ce:12:98:06: 0d:2d:f2:c3:6b:ba:4c:bb:fa:94:75:0b:7c:02:a1: b6:4c:00:dd:15:20:ee:81:d6:7a:c6:4f:8c:f0:dd: 2c:06:cc:28:c4:b8:dd:f3:88:2d:f8:44:0c:d0:d7: 2d:a1:8d:49:5b:20:aa:25:5d:1d:0a:a9:fd:1f:31: e2:7c:2d:77:8a:52:30:fe:0f:71:b5:b6:e3:be:2b: 1f:3f:b9:75:30:5c:76:07:05:3d:69:82:bf:f4:e9: 24:c0:f4:11:c8:a3:95:35:80:46:cf:cc:96:7c:9a: c5:71:52:f3:f9:35:cc:74:12:92:b2:0f:f7:9a:08: fd:86:62:46:de:1e:eb:a1:7c:15:32:7a:2b:2a:ef: d5:03:cc:2f:35:d5:44:ea:9f:b2:b7:ca:58:46:cb: 1b:25:c6:be:c0:a6:1e:e6:3a:ce:85:c7:2e:81:67: 4f:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:36:58:80:FE:4E:F6:01:FF:6C:4C:55:EF:F2:4C:A4:A0:16:20:DD X509v3 Authority Key Identifier: keyid:CB:E1:31:A0:83:A4:56:3C:7C:43:9D:B0:79:B6:4B:6A:D1:10:1A:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914EED0/6EEB1150C2B311EAB4832750C4F9AE02/y-ExoIOkVjx8Q52webZLatEQGnw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-ExoIOkVjx8Q52webZLatEQGnw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EED0/6EEB1150C2B311EAB4832750C4F9AE02/y-ExoIOkVjx8Q52webZLatEQGnw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:55:e6:96:a8:1e:4f:89:1c:00:56:41:7b:cf:b4:40:de:b1: e9:7b:8c:7d:00:65:b1:55:a4:d6:07:6e:30:be:cc:fc:52:70: 2b:8f:fe:28:e1:4b:09:cd:cb:9a:08:47:96:a7:47:b1:1e:42: 25:00:0b:80:d4:86:1d:e1:69:fb:93:e6:75:54:57:7b:32:5c: d4:72:bd:8e:46:b5:1c:fd:09:a5:34:df:c7:1c:7a:89:44:be: 36:b6:d4:5b:26:77:d0:39:67:c6:1d:bb:fe:dc:1a:ad:5c:ee: 9f:3e:0b:1c:9d:8f:2c:89:f1:00:9d:51:b8:05:62:de:0f:ed: dc:11:0e:85:fe:16:8c:9a:0d:6c:33:1f:8c:be:a7:b5:47:bf: 92:ba:08:78:eb:d0:29:f4:42:10:78:c7:4b:6f:82:5b:7e:9f: 62:49:06:62:be:17:3d:0e:00:6d:6a:e1:5c:58:5d:31:dd:2e: d1:f9:4d:f7:39:3a:b7:11:da:4b:f3:75:9b:c1:82:45:0a:36: c0:cb:dd:e6:db:c5:5d:57:65:e0:d5:3b:de:b5:c7:74:5b:be: da:2d:ee:09:5d:79:80:34:a5:7f:8c:46:20:ff:1b:33:13:fc: 1e:14:34:9c:d1:04:3f:98:b5:e5:82:6b:19:9d:14:42:49:0b: 88:65:ac:4c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCTEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVFRDAxMTAvBgNVBAUTKENCRTEzMUEwODNBNDU2M0M3QzQzOURCMDc5QjY0QjZB RDExMDFBN0MwHhcNMjYwMzI0MjAwMzMxWhcNMjYwMzMxMjAwMzMxWjAYMRYwFAYD VQQDEw02OWMyZWUxMy1mZTkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnBIe6V2fRbp/I0PYnFboOieEzhhshC5Al2i+F9QAMx3bnoN0g5cKIeIjhHZy LHy9vh/Og/WHDRYwvqO8T16iO4JNJ0QUNBFV6wbBdXgKBlNjyl7F/s4SmAYNLfLD a7pMu/qUdQt8AqG2TADdFSDugdZ6xk+M8N0sBswoxLjd84gt+EQM0NctoY1JWyCq JV0dCqn9HzHifC13ilIw/g9xtbbjvisfP7l1MFx2BwU9aYK/9OkkwPQRyKOVNYBG z8yWfJrFcVLz+TXMdBKSsg/3mgj9hmJG3h7roXwVMnorKu/VA8wvNdVE6p+yt8pY RssbJca+wKYe5jrOhccugWdPzwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEA2WID+ TvYB/2xMVe/yTKSgFiDdMB8GA1UdIwQYMBaAFMvhMaCDpFY8fEOdsHm2S2rREBp8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUVEMC82RUVCMTE1MEMy QjMxMUVBQjQ4MzI3NTBDNEY5QUUwMi95LUV4b0lPa1ZqeDhRNTJ3ZWJaTGF0RVFH bncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ktRXhvSU9rVmp4OFE1MndlYlpMYXRFUUdudy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RUVEMC82RUVCMTE1MEMyQjMxMUVBQjQ4MzI3NTBDNEY5QUUwMi95LUV4b0lPa1Zq eDhRNTJ3ZWJaTGF0RVFHbncubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAl1XmlqgeT4kcAFZBe8+0QN6x6XuMfQBlsVWk1gduML7M/FJwK4/+KOFLCc3L mghHlqdHsR5CJQALgNSGHeFp+5PmdVRXezJc1HK9jka1HP0JpTTfxxx6iUS+NrbU WyZ30Dlnxh27/twarVzunz4LHJ2PLInxAJ1RuAVi3g/t3BEOhf4WjJoNbDMfjL6n tUe/kroIeOvQKfRCEHjHS2+CW36fYkkGYr4XPQ4AbWrhXFhdMd0u0flN9zk6txHa S/N1m8GCRQo2wMvd5tvFXVdl4NU73rXHdFu+2i3uCV15gDSlf4xGIP8bMxP8HhQ0 nNEEP5i15YJrGZ0UQkkLiGWsTA== -----END CERTIFICATE-----Generated at Thu Mar 26 08:42:40 2026 by rpki-client