$ rpki-client -vvf rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.mft File: ymLkOPmNhRjS8qXZ9nZWUeWtpg4.mft (raw, json) Hash identifier: 0SCGFLlQloOf1phPlJ+xT5RPf6eTeYUBuq5x6q34uiI= Subject key identifier: 15:B2:6B:82:56:1C:76:49:75:B4:5B:C4:9D:44:01:76:53:32:7D:CD Authority key identifier: CA:62:E4:38:F9:8D:85:18:D2:F2:A5:D9:F6:76:56:51:E5:AD:A6:0E Certificate issuer: /CN=A9168BA2/serialNumber=CA62E438F98D8518D2F2A5D9F6765651E5ADA60E Certificate serial: 0B88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.mft Manifest number: 0B67 Signing time: Thu 26 Mar 2026 19:08:55 +0000 Manifest this update: Thu 26 Mar 2026 19:08:55 +0000 Manifest next update: Thu 02 Apr 2026 19:08:55 +0000 Files and hashes: 1: ymLkOPmNhRjS8qXZ9nZWUeWtpg4.crl (hash: aj49a7TMjRKNXZcabxoO+NDv4oAuSI5qIY4GagN4gek=) 2: EF29C95E69C311EF82BCE77AC4F9AE02.roa (hash: wATgHFFEBhvghT6gMqTJTC0PonsBt+Ml1sqdhxwQAPg=) 3: A2AF0622853711EFA09C892EC4F9AE02.roa (hash: OLS2n2bCipeK2cJAKKmNcGHacmpb1F1CGfou3xcKoRw=) 4: BA7B024C04D811EDBE98F982C4F9AE02.roa (hash: Qrs9ea1Ryt4mplsCkDhjHp70Ezhx/br174uLvjICktg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.crl rsync://rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 19:08:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2952 (0xb88) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168BA2, serialNumber=CA62E438F98D8518D2F2A5D9F6765651E5ADA60E Validity Not Before: Mar 26 19:08:55 2026 GMT Not After : Apr 2 19:08:55 2026 GMT Subject: CN=69c58447-424a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:83:00:96:97:40:11:49:81:23:ae:cb:86:16: e5:35:87:83:8c:f8:33:7d:19:f2:29:18:fe:da:8d: 2e:66:d3:83:96:6d:f2:d7:6a:ea:cb:b3:e3:9b:32: 5c:f8:19:25:e5:16:a6:11:88:61:b5:78:7a:54:9d: 0a:9d:a5:09:14:e6:b2:96:cd:43:88:ef:32:96:43: f5:c3:e2:59:44:b2:08:e6:60:00:bd:30:6d:ea:2a: a0:5a:81:40:45:a2:62:31:80:c9:68:cf:b0:bd:62: 64:6d:c2:5f:00:d5:b9:b5:32:db:9c:e5:59:c9:a6: 5a:1c:0b:76:41:78:74:fd:b8:f5:17:65:78:da:63: ce:8a:9f:0c:0b:e4:bc:ea:9a:21:1b:a0:5e:8e:0d: 38:1b:12:a0:8d:c5:b1:f1:62:89:bd:de:fd:5d:0b: a5:d7:12:a8:5b:b5:73:34:29:cb:02:38:c0:e2:09: 2a:93:25:75:e9:e7:44:26:24:b0:9b:eb:e2:91:1a: fa:89:bf:64:d5:f9:61:6c:38:84:1d:16:eb:e1:4f: 75:7f:bf:e5:54:7e:18:55:cb:a3:37:7d:5e:a4:95: e5:4d:79:09:e5:f6:5a:06:72:bc:be:42:f3:a3:5f: 52:94:de:1e:ce:bf:bd:33:dc:f4:79:0d:87:db:c5: 86:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:B2:6B:82:56:1C:76:49:75:B4:5B:C4:9D:44:01:76:53:32:7D:CD X509v3 Authority Key Identifier: keyid:CA:62:E4:38:F9:8D:85:18:D2:F2:A5:D9:F6:76:56:51:E5:AD:A6:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d7:80:9e:78:ab:67:10:88:98:e9:36:d6:5d:cc:e3:34:23:ba: 35:f7:8e:c1:f2:d4:5f:a3:49:b8:fe:89:85:b9:a4:8a:89:c9: 72:55:b2:6c:87:2a:a7:5e:0a:ac:48:62:61:b8:55:cf:ba:b8: 38:a6:4b:db:e5:4a:1b:ae:f0:c0:a9:08:23:b6:8f:4d:32:ce: e0:e9:5f:68:a9:1b:2a:21:15:bb:3a:ab:02:01:20:65:9f:2e: 4a:8f:55:f2:8b:f2:5e:b5:bf:30:9d:ce:4c:4b:fa:a9:cd:d9: eb:34:f8:68:3d:62:ee:ce:cd:f2:15:35:94:19:9e:d7:e5:bf: f4:90:d0:47:18:f7:70:ca:65:e0:8a:e2:d2:2a:a3:31:80:35: e1:56:fc:2d:bd:11:d8:8a:e5:f3:82:7b:ae:c4:02:98:cb:fc: e1:3f:4f:c0:c0:93:92:c3:71:1c:31:4d:64:76:1f:9d:f1:86: ec:a0:a5:60:a6:68:7b:8a:33:78:21:63:03:8f:99:0d:73:0c: 91:51:2e:fe:9f:45:99:92:45:bc:58:4f:90:87:6b:ec:a9:75: d0:df:33:1a:bd:fe:df:ac:36:ef:55:bf:bf:d5:9b:49:90:ce: 9d:d0:19:30:9e:b8:c1:49:ef:b9:59:2e:a9:10:46:3d:3d:02: e6:22:68:56 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICC4gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjhCQTIxMTAvBgNVBAUTKENBNjJFNDM4Rjk4RDg1MThEMkYyQTVEOUY2NzY1NjUx RTVBREE2MEUwHhcNMjYwMzI2MTkwODU1WhcNMjYwNDAyMTkwODU1WjAYMRYwFAYD VQQDEw02OWM1ODQ0Ny00MjRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxoMAlpdAEUmBI67LhhblNYeDjPgzfRnyKRj+2o0uZtODlm3y12rqy7PjmzJc +Bkl5RamEYhhtXh6VJ0KnaUJFOayls1DiO8ylkP1w+JZRLII5mAAvTBt6iqgWoFA RaJiMYDJaM+wvWJkbcJfANW5tTLbnOVZyaZaHAt2QXh0/bj1F2V42mPOip8MC+S8 6pohG6Bejg04GxKgjcWx8WKJvd79XQul1xKoW7VzNCnLAjjA4gkqkyV16edEJiSw m+vikRr6ib9k1flhbDiEHRbr4U91f7/lVH4YVcujN31epJXlTXkJ5fZaBnK8vkLz o19SlN4ezr+9M9z0eQ2H28WGMQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBWya4JW HHZJdbRbxJ1EAXZTMn3NMB8GA1UdIwQYMBaAFMpi5Dj5jYUY0vKl2fZ2VlHlraYO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OEJBMi85OURGMzg2MjU0 QzQxMUVBODRGNEU3MkRDNEY5QUUwMi95bUxrT1BtTmhSalM4cVhaOW5aV1VlV3Rw ZzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ltTGtPUG1OaFJqUzhxWFo5blpXVWVXdHBnNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OEJBMi85OURGMzg2MjU0QzQxMUVBODRGNEU3MkRDNEY5QUUwMi95bUxrT1BtTmhS alM4cVhaOW5aV1VlV3RwZzQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEA14CeeKtnEIiY6TbWXczjNCO6NfeOwfLUX6NJuP6JhbmkionJclWybIcqp14K rEhiYbhVz7q4OKZL2+VKG67wwKkII7aPTTLO4OlfaKkbKiEVuzqrAgEgZZ8uSo9V 8ovyXrW/MJ3OTEv6qc3Z6zT4aD1i7s7N8hU1lBme1+W/9JDQRxj3cMpl4Iri0iqj MYA14Vb8Lb0R2Irl84J7rsQCmMv84T9PwMCTksNxHDFNZHYfnfGG7KClYKZoe4oz eCFjA4+ZDXMMkVEu/p9FmZJFvFhPkIdr7Kl10N8zGr3+36w271W/v9WbSZDOndAZ MJ64wUnvuVkuqRBGPT0C5iJoVg== -----END CERTIFICATE-----Generated at Sat Mar 28 08:44:37 2026 by rpki-client