$ rpki-client -vvf rpki.apnic.net/member_repository/A9158491/60DA53FADFA511EF8BD49F87C4F9AE02/YfjH66e1XnGy5rF3QJFCUdiM8KY.mft File: YfjH66e1XnGy5rF3QJFCUdiM8KY.mft (raw, json) Hash identifier: X2dARpCtb8KoE8kMo7x7vvboTTtvt2iu3pqFSYwKJrU= Subject key identifier: 17:71:F5:C9:CC:D9:E1:3A:A9:40:96:BF:5E:43:74:19:CC:C5:87:1A Authority key identifier: 61:F8:C7:EB:A7:B5:5E:71:B2:E6:B1:77:40:91:42:51:D8:8C:F0:A6 Certificate issuer: /CN=A9158491/serialNumber=61F8C7EBA7B55E71B2E6B17740914251D88CF0A6 Certificate serial: F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YfjH66e1XnGy5rF3QJFCUdiM8KY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158491/60DA53FADFA511EF8BD49F87C4F9AE02/YfjH66e1XnGy5rF3QJFCUdiM8KY.mft Manifest number: E8 Signing time: Fri 27 Mar 2026 06:10:05 +0000 Manifest this update: Fri 27 Mar 2026 06:10:04 +0000 Manifest next update: Fri 03 Apr 2026 06:10:04 +0000 Files and hashes: 1: YfjH66e1XnGy5rF3QJFCUdiM8KY.crl (hash: 0Dtyub9njAOHsIuzEGrNsS2lZCrh6dhuljvcjdPvciI=) 2: 5FDDEE1CE34211EF8EA0CA77C4F9AE02.roa (hash: +tOM25MCKNoZft+0ItL3rfD0x3Jm3+5ljYXYPQKuHQA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158491/60DA53FADFA511EF8BD49F87C4F9AE02/YfjH66e1XnGy5rF3QJFCUdiM8KY.crl rsync://rpki.apnic.net/member_repository/A9158491/60DA53FADFA511EF8BD49F87C4F9AE02/YfjH66e1XnGy5rF3QJFCUdiM8KY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YfjH66e1XnGy5rF3QJFCUdiM8KY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 06:10:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 243 (0xf3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158491, serialNumber=61F8C7EBA7B55E71B2E6B17740914251D88CF0A6 Validity Not Before: Mar 27 06:10:04 2026 GMT Not After : Apr 3 06:10:04 2026 GMT Subject: CN=69c61f3d-026e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:52:45:7f:71:25:76:6b:a2:64:ba:72:f8:82: 7b:aa:5f:72:b4:33:50:b2:fc:dd:f7:df:53:3a:2a: 17:46:62:9a:45:f2:26:1f:b9:d5:ca:ec:d6:d0:75: 2a:89:5e:f0:b3:66:c9:89:f9:6e:eb:51:70:f1:9f: f8:9d:3f:e3:39:8b:3a:2e:73:88:91:11:cf:99:2e: 93:fe:c1:ab:39:d8:6a:92:5e:6e:d3:ad:1e:8d:15: 98:4e:12:fc:be:a5:98:ee:d6:e1:a3:94:89:f1:82: 0a:7f:8e:f9:59:1d:ab:06:fa:9f:29:16:4f:ac:23: 21:07:11:db:c7:7f:5f:fb:23:27:1f:39:f6:75:7b: 6e:3c:7f:ba:aa:4e:d4:c8:9d:5a:e8:9c:2c:80:26: c7:db:51:48:40:bd:76:ff:3c:7e:30:df:e9:8c:c4: 3f:3e:10:ab:33:7c:6b:43:84:ce:ca:a6:23:5e:fb: 3d:97:b1:7e:4e:09:a0:92:45:8f:57:84:a4:7b:73: 2f:20:34:98:d7:aa:e0:44:dd:c6:a2:49:51:bf:c1: d3:3c:32:49:9c:d6:b9:40:03:8b:88:61:e1:d8:cb: 44:65:73:6d:06:15:03:66:e3:40:a7:fe:ed:fd:70: dd:89:cb:1f:8c:e9:dd:7f:fb:10:82:0a:52:a5:93: 6e:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:71:F5:C9:CC:D9:E1:3A:A9:40:96:BF:5E:43:74:19:CC:C5:87:1A X509v3 Authority Key Identifier: keyid:61:F8:C7:EB:A7:B5:5E:71:B2:E6:B1:77:40:91:42:51:D8:8C:F0:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158491/60DA53FADFA511EF8BD49F87C4F9AE02/YfjH66e1XnGy5rF3QJFCUdiM8KY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YfjH66e1XnGy5rF3QJFCUdiM8KY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158491/60DA53FADFA511EF8BD49F87C4F9AE02/YfjH66e1XnGy5rF3QJFCUdiM8KY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:c1:c9:1e:da:8d:b9:f1:54:33:cf:1e:c3:38:dc:d4:d4:b1: d9:67:64:b0:f3:ea:20:ce:e5:41:eb:62:09:04:ec:fb:fd:b7: 52:8c:5c:0f:a5:3d:c8:c6:70:f7:fa:7e:11:29:be:fb:4d:77: d2:6d:96:6e:12:29:51:87:7e:e7:1f:14:b2:a1:0e:c4:91:82: c0:70:01:f8:a1:ec:91:73:37:e6:d2:6a:93:9b:8e:d2:ba:34: 1a:f5:02:a1:0f:5f:fc:07:43:e6:8b:b9:28:4f:b4:83:50:b5: 5f:ed:e4:14:a8:f2:a8:ec:4e:15:19:f8:de:0c:5c:b8:bb:dd: 64:1d:71:d3:e0:97:94:07:54:86:61:23:5b:92:45:e4:89:f4: 36:3f:6d:ea:87:38:72:8d:99:80:3b:84:0e:12:bd:25:11:62: 28:76:a2:f1:2a:f7:4d:45:2c:ca:f1:66:c8:8a:b3:8f:ac:5f: fa:36:9a:1f:d1:77:50:4f:10:64:15:21:45:5e:05:df:40:07: 8d:7e:87:eb:83:5a:94:03:8e:74:b7:86:88:c6:44:28:39:9c: 34:20:ad:1a:23:02:61:ec:92:e7:02:6d:82:71:2f:c7:ce:d3: e8:c8:9d:21:1b:a6:d4:6f:b5:b6:87:30:fa:ee:3f:d0:56:82: c0:99:e4:cc -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAPMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg0OTExMTAvBgNVBAUTKDYxRjhDN0VCQTdCNTVFNzFCMkU2QjE3NzQwOTE0MjUx RDg4Q0YwQTYwHhcNMjYwMzI3MDYxMDA0WhcNMjYwNDAzMDYxMDA0WjAYMRYwFAYD VQQDEw02OWM2MWYzZC0wMjZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl1JFf3EldmuiZLpy+IJ7ql9ytDNQsvzd999TOioXRmKaRfImH7nVyuzW0HUq iV7ws2bJiflu61Fw8Z/4nT/jOYs6LnOIkRHPmS6T/sGrOdhqkl5u060ejRWYThL8 vqWY7tbho5SJ8YIKf475WR2rBvqfKRZPrCMhBxHbx39f+yMnHzn2dXtuPH+6qk7U yJ1a6JwsgCbH21FIQL12/zx+MN/pjMQ/PhCrM3xrQ4TOyqYjXvs9l7F+TgmgkkWP V4Ske3MvIDSY16rgRN3GoklRv8HTPDJJnNa5QAOLiGHh2MtEZXNtBhUDZuNAp/7t /XDdicsfjOndf/sQggpSpZNuzQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBdx9cnM 2eE6qUCWv15DdBnMxYcaMB8GA1UdIwQYMBaAFGH4x+untV5xsuaxd0CRQlHYjPCm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODQ5MS82MERBNTNGQURG QTUxMUVGOEJENDlGODdDNEY5QUUwMi9ZZmpINjZlMVhuR3k1ckYzUUpGQ1VkaU04 S1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lmakg2NmUxWG5HeTVyRjNRSkZDVWRpTThLWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODQ5MS82MERBNTNGQURGQTUxMUVGOEJENDlGODdDNEY5QUUwMi9ZZmpINjZlMVhu R3k1ckYzUUpGQ1VkaU04S1kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAAMHJHtqNufFUM88ewzjc1NSx2WdksPPqIM7lQetiCQTs+/23UoxcD6U9yMZw 9/p+ESm++0130m2WbhIpUYd+5x8UsqEOxJGCwHAB+KHskXM35tJqk5uO0ro0GvUC oQ9f/AdD5ou5KE+0g1C1X+3kFKjyqOxOFRn43gxcuLvdZB1x0+CXlAdUhmEjW5JF 5In0Nj9t6oc4co2ZgDuEDhK9JRFiKHai8Sr3TUUsyvFmyIqzj6xf+jaaH9F3UE8Q ZBUhRV4F30AHjX6H64NalAOOdLeGiMZEKDmcNCCtGiMCYeyS5wJtgnEvx87T6Mid IRum1G+1tocw+u4/0FaCwJnkzA== -----END CERTIFICATE-----Generated at Sat Mar 28 10:36:53 2026 by rpki-client