$ rpki-client -vvf rpki.apnic.net/member_repository/A9161065/1A25D274E51D11ED8538B246C4F9AE02/yH_T4kCIpNnfHF0CaFII6Qph7_c.mft File: yH_T4kCIpNnfHF0CaFII6Qph7_c.mft (raw, json) Hash identifier: LRZveO2RuDgXW/I2MTNddaYDmNeDIfdmX0leEVltqdY= Subject key identifier: 07:33:38:50:36:54:17:B1:13:3A:8B:AD:32:1D:FF:00:75:76:2C:6D Authority key identifier: C8:7F:D3:E2:40:88:A4:D9:DF:1C:5D:02:68:52:08:E9:0A:61:EF:F7 Certificate issuer: /CN=A9161065/serialNumber=C87FD3E24088A4D9DF1C5D02685208E90A61EFF7 Certificate serial: 022B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yH_T4kCIpNnfHF0CaFII6Qph7_c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9161065/1A25D274E51D11ED8538B246C4F9AE02/yH_T4kCIpNnfHF0CaFII6Qph7_c.mft Manifest number: 0225 Signing time: Wed 25 Mar 2026 02:07:42 +0000 Manifest this update: Wed 25 Mar 2026 02:07:42 +0000 Manifest next update: Wed 01 Apr 2026 02:07:42 +0000 Files and hashes: 1: yH_T4kCIpNnfHF0CaFII6Qph7_c.crl (hash: 3z/2Djeif8iBJ6QkrIHLcySK48CeHtkwxqpjA8GJj9M=) 2: CDE70CB2E52011EDB505E014C4F9AE02.roa (hash: rmrewBXxG6n9T9lJyYuYh35ZNnNwGQOX9gsrKAmWQ9o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9161065/1A25D274E51D11ED8538B246C4F9AE02/yH_T4kCIpNnfHF0CaFII6Qph7_c.crl rsync://rpki.apnic.net/member_repository/A9161065/1A25D274E51D11ED8538B246C4F9AE02/yH_T4kCIpNnfHF0CaFII6Qph7_c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yH_T4kCIpNnfHF0CaFII6Qph7_c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 02:07:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 555 (0x22b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9161065, serialNumber=C87FD3E24088A4D9DF1C5D02685208E90A61EFF7 Validity Not Before: Mar 25 02:07:42 2026 GMT Not After : Apr 1 02:07:42 2026 GMT Subject: CN=69c3436e-a7b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:24:d5:5b:65:95:47:e1:ff:6e:15:c3:ca:82: 6c:84:22:13:d2:06:a1:49:b0:b9:0e:51:36:c2:d0: ce:09:a5:f7:d9:a9:d8:56:a8:e2:4b:cc:83:c5:be: 73:7e:6b:88:ab:69:4d:ea:7c:62:1d:54:f9:79:0f: b5:41:ec:3c:af:03:f9:a1:1c:8b:4b:1a:94:99:bc: 21:10:a5:9c:f7:fb:5c:dd:8a:fd:d6:37:34:23:98: 8d:89:67:d7:65:6c:83:2e:8e:4c:50:44:b1:13:a9: 34:36:5b:83:30:bd:9d:15:9c:f8:25:a8:50:44:0d: 3d:9d:ba:de:53:20:24:6b:20:c7:d5:df:2c:3a:26: 64:a4:3f:c0:89:1b:99:bd:77:32:d7:49:8c:31:a6: be:94:02:29:6b:eb:1b:2c:1f:ac:cf:1b:dc:10:2e: 43:ce:27:b0:25:b0:9d:8b:17:b1:1b:4e:ca:b7:8f: 3c:1c:47:f6:9f:57:c9:c5:68:64:b9:63:ff:6c:c0: 50:23:67:bc:1b:b0:39:c1:16:dd:f6:e0:62:5e:dc: 6d:c5:b8:0a:eb:52:e8:8f:6d:87:8a:f1:8f:18:e5: 64:55:5e:f6:66:f7:a2:bd:2a:b4:00:fb:98:a2:88: c4:55:7d:cd:9d:b8:7d:66:16:1f:6f:18:f5:d6:6c: 38:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:33:38:50:36:54:17:B1:13:3A:8B:AD:32:1D:FF:00:75:76:2C:6D X509v3 Authority Key Identifier: keyid:C8:7F:D3:E2:40:88:A4:D9:DF:1C:5D:02:68:52:08:E9:0A:61:EF:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9161065/1A25D274E51D11ED8538B246C4F9AE02/yH_T4kCIpNnfHF0CaFII6Qph7_c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yH_T4kCIpNnfHF0CaFII6Qph7_c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9161065/1A25D274E51D11ED8538B246C4F9AE02/yH_T4kCIpNnfHF0CaFII6Qph7_c.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:4c:49:91:6a:1b:6a:ac:8f:5d:6b:5f:83:ba:73:d0:ba:de: ef:c9:c5:b2:ef:c8:d6:c2:de:28:13:eb:a6:d4:4f:96:bd:f4: b9:0e:3b:28:0d:28:90:f2:93:b9:a5:fe:91:e2:c7:33:97:ad: 0f:e0:4e:f5:1f:af:10:fc:dd:01:c7:fa:fd:2f:5c:63:3a:3c: c2:a8:df:2f:0e:10:40:0d:fd:16:7e:4a:02:a9:2c:87:5b:7b: 1c:38:01:6b:f1:f6:7e:b5:1b:9f:8c:da:32:9e:51:1e:a8:4b: ed:49:e2:e8:ab:a2:e8:17:1a:fd:9e:45:e6:2e:8d:f6:b8:50: ba:14:08:f2:ff:d5:fa:f0:a6:0b:c5:4c:a7:e5:d0:90:9f:c4: 5c:06:25:bc:78:e1:1f:6f:18:be:1f:2d:fc:0b:c8:1a:db:9c: 6c:a9:1f:93:2a:a8:9f:4c:50:ae:46:67:d6:57:f7:f4:9d:58: 59:ea:98:de:b1:a9:cd:5d:24:3d:43:00:53:69:2c:db:bc:60: 6f:2a:a1:bd:71:fa:fa:a8:03:6c:68:e0:7e:01:94:98:90:ae: d8:1d:9e:a4:5a:d9:6c:93:2a:c7:07:09:97:f5:3e:db:33:d1: bf:74:0c:91:9d:8f:a9:0f:29:0a:6f:5f:b3:05:ba:60:a0:6e: 13:a3:d4:d5 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAiswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjEwNjUxMTAvBgNVBAUTKEM4N0ZEM0UyNDA4OEE0RDlERjFDNUQwMjY4NTIwOEU5 MEE2MUVGRjcwHhcNMjYwMzI1MDIwNzQyWhcNMjYwNDAxMDIwNzQyWjAYMRYwFAYD VQQDEw02OWMzNDM2ZS1hN2I4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyyTVW2WVR+H/bhXDyoJshCIT0gahSbC5DlE2wtDOCaX32anYVqjiS8yDxb5z fmuIq2lN6nxiHVT5eQ+1Qew8rwP5oRyLSxqUmbwhEKWc9/tc3Yr91jc0I5iNiWfX ZWyDLo5MUESxE6k0NluDML2dFZz4JahQRA09nbreUyAkayDH1d8sOiZkpD/AiRuZ vXcy10mMMaa+lAIpa+sbLB+szxvcEC5DziewJbCdixexG07Kt488HEf2n1fJxWhk uWP/bMBQI2e8G7A5wRbd9uBiXtxtxbgK61Loj22HivGPGOVkVV72ZveivSq0APuY oojEVX3Nnbh9ZhYfbxj11mw4wwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAczOFA2 VBexEzqLrTId/wB1dixtMB8GA1UdIwQYMBaAFMh/0+JAiKTZ3xxdAmhSCOkKYe/3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MTA2NS8xQTI1RDI3NEU1 MUQxMUVEODUzOEIyNDZDNEY5QUUwMi95SF9UNGtDSXBObmZIRjBDYUZJSTZRcGg3 X2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lIX1Q0a0NJcE5uZkhGMENhRklJNlFwaDdfYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MTA2NS8xQTI1RDI3NEU1MUQxMUVEODUzOEIyNDZDNEY5QUUwMi95SF9UNGtDSXBO bmZIRjBDYUZJSTZRcGg3X2MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAnUxJkWobaqyPXWtfg7pz0Lre78nFsu/I1sLeKBPrptRPlr30uQ47KA0okPKT uaX+keLHM5etD+BO9R+vEPzdAcf6/S9cYzo8wqjfLw4QQA39Fn5KAqksh1t7HDgB a/H2frUbn4zaMp5RHqhL7Uni6Kui6Bca/Z5F5i6N9rhQuhQI8v/V+vCmC8VMp+XQ kJ/EXAYlvHjhH28Yvh8t/AvIGtucbKkfkyqon0xQrkZn1lf39J1YWeqY3rGpzV0k PUMAU2ks27xgbyqhvXH6+qgDbGjgfgGUmJCu2B2epFrZbJMqxwcJl/U+2zPRv3QM kZ2PqQ8pCm9fswW6YKBuE6PU1Q== -----END CERTIFICATE-----Generated at Thu Mar 26 14:31:44 2026 by rpki-client