$ rpki-client -vvf rpki.apnic.net/member_repository/A9171669/B558BA060D9411EDA5D4E051C4F9AE02/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.mft File: gy_lYU4C01D4hnkN5L3Jn0JkVeQ.mft (raw, json) Hash identifier: 6Lprz9bdCN5AtVovEMHJnCRw0pJpSaI9n/4eEbPAeJI= Subject key identifier: F6:F7:2E:98:DA:FB:8F:E0:25:F7:55:AD:40:8C:B0:6E:66:43:2E:1C Authority key identifier: 83:2F:E5:61:4E:02:D3:50:F8:86:79:0D:E4:BD:C9:9F:42:64:55:E4 Certificate issuer: /CN=A9171669/serialNumber=832FE5614E02D350F886790DE4BDC99F426455E4 Certificate serial: 0317 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171669/B558BA060D9411EDA5D4E051C4F9AE02/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.mft Manifest number: 0311 Signing time: Wed 25 Mar 2026 00:49:44 +0000 Manifest this update: Wed 25 Mar 2026 00:49:44 +0000 Manifest next update: Wed 01 Apr 2026 00:49:44 +0000 Files and hashes: 1: gy_lYU4C01D4hnkN5L3Jn0JkVeQ.crl (hash: 5IeH0J+IctqAw5paXt0lDDYwlQ20OUZ12aqB3hOYXWs=) 2: 91BBC8880D9711ED8F09C27DC4F9AE02.roa (hash: 1aa3czYkpSyqjPONv8BwygAakzboZ9Kn6LCrFEhTJOY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171669/B558BA060D9411EDA5D4E051C4F9AE02/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.crl rsync://rpki.apnic.net/member_repository/A9171669/B558BA060D9411EDA5D4E051C4F9AE02/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 00:49:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 791 (0x317) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171669, serialNumber=832FE5614E02D350F886790DE4BDC99F426455E4 Validity Not Before: Mar 25 00:49:44 2026 GMT Not After : Apr 1 00:49:44 2026 GMT Subject: CN=69c33128-fb46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:f9:40:3c:db:e0:c7:c5:2e:93:63:ee:37:19: 42:3b:4b:7e:c3:d9:de:cf:09:00:85:97:d2:64:58: 0c:3b:6b:98:e0:87:b3:86:d8:b8:4f:d9:42:ed:de: b8:6d:15:f9:2c:1b:a4:fe:54:32:9c:6d:bc:f3:fa: 0e:42:b2:02:00:9b:b9:5a:71:86:4c:b0:57:bb:e0: 04:2a:47:ae:09:bd:50:6a:aa:b9:0a:47:e0:43:b9: f1:eb:ee:a6:ca:1f:5a:41:06:0d:bd:b0:23:8f:08: ae:4f:29:3c:59:37:cd:a4:71:83:4e:28:4b:8c:0e: b4:3c:cf:fd:94:c4:22:98:7b:d8:da:5d:dc:02:a7: 95:9e:3a:b6:dc:2f:d5:f7:e7:5b:8b:ac:5a:28:75: b4:89:1f:9f:8c:39:7c:7a:ea:ac:d2:f5:bf:2d:7f: d5:f5:42:a4:83:f3:f5:63:a4:d2:57:8e:99:54:e9: 4c:78:1b:7b:0e:ec:ba:63:d0:97:86:54:52:74:7b: 9b:25:c9:69:ca:52:83:19:b8:50:e5:27:61:f3:ba: c8:e4:16:9e:c4:39:b6:57:ee:a2:75:2a:8b:64:34: c6:0b:3f:56:d3:f5:08:c5:a9:3b:48:78:31:34:b0: 95:93:cf:ed:a0:9a:38:fc:61:b5:f7:4f:a5:09:bd: d6:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:F7:2E:98:DA:FB:8F:E0:25:F7:55:AD:40:8C:B0:6E:66:43:2E:1C X509v3 Authority Key Identifier: keyid:83:2F:E5:61:4E:02:D3:50:F8:86:79:0D:E4:BD:C9:9F:42:64:55:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171669/B558BA060D9411EDA5D4E051C4F9AE02/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171669/B558BA060D9411EDA5D4E051C4F9AE02/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:ba:fe:eb:e6:c0:14:1e:de:db:4c:1a:3b:11:37:34:ee:a5: b1:fe:81:6b:c9:66:fc:4c:19:64:f7:e0:a8:42:7e:c7:da:5a: 28:23:cc:7b:f9:73:d6:d6:27:bd:17:87:e1:8a:c7:d8:75:a9: 09:53:ed:88:eb:70:e2:c0:2e:53:bb:e5:cf:37:19:62:dd:09: 0c:60:a1:21:7c:c4:46:da:80:4a:f3:16:54:27:4c:2c:f6:a2: 10:03:82:49:a3:af:9e:3a:5e:51:50:a6:5a:b8:4b:29:9e:2d: ba:b6:7b:ea:13:b8:b7:a3:95:4c:ed:53:2b:82:7e:86:15:48: 6c:bc:f5:58:6a:8a:54:e0:eb:88:94:b6:9b:d6:cc:7b:bf:fd: 65:d0:c2:24:c8:02:d1:47:15:49:3e:b3:57:6e:84:99:16:05: 82:30:15:f6:7b:cb:99:04:41:86:bb:58:45:79:4e:f3:e1:ae: 74:28:7a:4c:14:62:8d:03:2e:0a:25:8c:ea:9d:e3:55:d6:7d: 52:c6:bd:b8:50:28:00:af:2f:8c:ed:90:13:c2:d2:23:5a:16: 08:1e:4a:93:ff:40:c7:48:30:5f:87:ec:31:f9:32:20:e5:9a: 1d:f4:5d:1a:1a:af:74:dc:77:21:2c:81:db:dd:ae:24:53:84: fb:c5:49:84 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAxcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE2NjkxMTAvBgNVBAUTKDgzMkZFNTYxNEUwMkQzNTBGODg2NzkwREU0QkRDOTlG NDI2NDU1RTQwHhcNMjYwMzI1MDA0OTQ0WhcNMjYwNDAxMDA0OTQ0WjAYMRYwFAYD VQQDEw02OWMzMzEyOC1mYjQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsvlAPNvgx8Uuk2PuNxlCO0t+w9nezwkAhZfSZFgMO2uY4Iezhti4T9lC7d64 bRX5LBuk/lQynG288/oOQrICAJu5WnGGTLBXu+AEKkeuCb1Qaqq5CkfgQ7nx6+6m yh9aQQYNvbAjjwiuTyk8WTfNpHGDTihLjA60PM/9lMQimHvY2l3cAqeVnjq23C/V 9+dbi6xaKHW0iR+fjDl8euqs0vW/LX/V9UKkg/P1Y6TSV46ZVOlMeBt7Duy6Y9CX hlRSdHubJclpylKDGbhQ5Sdh87rI5BaexDm2V+6idSqLZDTGCz9W0/UIxak7SHgx NLCVk8/toJo4/GG190+lCb3WMQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPb3Lpja +4/gJfdVrUCMsG5mQy4cMB8GA1UdIwQYMBaAFIMv5WFOAtNQ+IZ5DeS9yZ9CZFXk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTY2OS9CNTU4QkEwNjBE OTQxMUVEQTVENEUwNTFDNEY5QUUwMi9neV9sWVU0QzAxRDRobmtONUwzSm4wSmtW ZVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2d5X2xZVTRDMDFENGhua041TDNKbjBKa1ZlUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTY2OS9CNTU4QkEwNjBEOTQxMUVEQTVENEUwNTFDNEY5QUUwMi9neV9sWVU0QzAx RDRobmtONUwzSm4wSmtWZVEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEABbr+6+bAFB7e20waOxE3NO6lsf6Ba8lm/EwZZPfgqEJ+x9paKCPMe/lz1tYn vReH4YrH2HWpCVPtiOtw4sAuU7vlzzcZYt0JDGChIXzERtqASvMWVCdMLPaiEAOC SaOvnjpeUVCmWrhLKZ4turZ76hO4t6OVTO1TK4J+hhVIbLz1WGqKVODriJS2m9bM e7/9ZdDCJMgC0UcVST6zV26EmRYFgjAV9nvLmQRBhrtYRXlO8+GudCh6TBRijQMu CiWM6p3jVdZ9Usa9uFAoAK8vjO2QE8LSI1oWCB5Kk/9Ax0gwX4fsMfkyIOWaHfRd GhqvdNx3ISyB292uJFOE+8VJhA== -----END CERTIFICATE-----Generated at Thu Mar 26 18:36:36 2026 by rpki-client