$ rpki-client -vvf rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.mft File: kY5yieKMGkkiojy1Zb2CG34gphE.mft (raw, json) Hash identifier: 5+k5t3dEPe4xlcvulzafYa90zUCA/t6wp3SZbXvk8RA= Subject key identifier: 07:1B:6E:55:F2:CD:36:B4:28:96:7E:5B:61:9F:20:4D:BD:4A:1F:3D Authority key identifier: 91:8E:72:89:E2:8C:1A:49:22:A2:3C:B5:65:BD:82:1B:7E:20:A6:11 Certificate issuer: /CN=A9171B1A/serialNumber=918E7289E28C1A4922A23CB565BD821B7E20A611 Certificate serial: 0D46 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kY5yieKMGkkiojy1Zb2CG34gphE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.mft Manifest number: 0D34 Signing time: Tue 24 Mar 2026 17:53:00 +0000 Manifest this update: Tue 24 Mar 2026 17:53:00 +0000 Manifest next update: Tue 31 Mar 2026 17:53:00 +0000 Files and hashes: 1: kY5yieKMGkkiojy1Zb2CG34gphE.crl (hash: a8zERH9V/F0h4v333NlH3U7iR+AY4AUAZPmgwbyvAQ4=) 2: 6E3B1338F41211E9AAF5924EC4F9AE02.roa (hash: X8sSkThLSb4fvyIS1pC23KDUjsj3Bu29OZPUHsBaV1A=) 3: 6D9433B0F41211E9AAF5924EC4F9AE02.roa (hash: Aw64/YmY/GSEcpV9lRNLIVB3nggqqcAVaMWqQLrAoig=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.crl rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kY5yieKMGkkiojy1Zb2CG34gphE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 17:52:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3398 (0xd46) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171B1A, serialNumber=918E7289E28C1A4922A23CB565BD821B7E20A611 Validity Not Before: Mar 24 17:53:00 2026 GMT Not After : Mar 31 17:53:00 2026 GMT Subject: CN=69c2cf7c-cdcd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:31:e0:88:7b:be:76:da:8b:7d:77:70:c1:17: 61:79:5b:f2:88:bd:b1:45:c4:db:44:05:ec:ee:c1: d9:9b:cc:11:17:42:17:b9:88:ef:c1:71:f5:32:4c: 61:43:b4:de:45:90:d7:d4:23:44:1e:3c:69:48:ad: 79:9c:7f:28:da:1d:60:09:79:3e:e9:a3:d8:1f:89: bb:10:af:5a:59:a6:63:7c:a2:3f:2b:7c:f1:72:0a: 91:72:16:88:32:38:a8:17:fa:cc:af:61:0e:35:ce: ea:b5:90:e5:97:7d:27:f4:5e:84:98:e3:b3:36:aa: 8c:e4:eb:a1:d2:0c:59:69:57:21:05:4e:e5:d2:1b: 3f:a5:69:14:5a:5a:f2:8b:8e:df:32:81:42:d8:f6: 93:ea:fe:fc:27:74:1e:b8:bf:d7:9f:18:af:89:63: 3d:c0:8b:18:9c:e8:e0:bd:f3:ed:02:bf:76:a0:48: fa:04:cb:92:d4:13:5e:7b:49:70:ce:0d:5b:1c:0e: 48:bf:4f:b9:42:62:6b:c8:74:fe:b5:1b:4f:fb:3d: f5:66:75:50:08:ce:70:76:1e:11:fb:f9:6c:77:04: dc:5e:f3:75:18:b4:2f:38:00:1c:c9:3e:c1:6e:d3: 99:dd:a9:89:75:be:47:a1:c5:d2:84:aa:14:32:10: 9d:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:1B:6E:55:F2:CD:36:B4:28:96:7E:5B:61:9F:20:4D:BD:4A:1F:3D X509v3 Authority Key Identifier: keyid:91:8E:72:89:E2:8C:1A:49:22:A2:3C:B5:65:BD:82:1B:7E:20:A6:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kY5yieKMGkkiojy1Zb2CG34gphE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:07:60:75:5f:db:35:6b:2c:c9:b5:02:02:64:7b:be:c3:84: c5:21:9e:e1:36:92:25:45:99:b9:5b:a9:67:ba:2b:2c:1f:04: 3e:f1:9e:7d:20:77:7d:33:2c:55:93:ea:34:a5:3e:77:84:b3: 7d:d1:d8:65:13:f8:a4:b6:84:e8:5b:29:88:e8:31:01:34:fa: b8:b0:40:e1:96:84:7f:19:ca:59:3c:c1:30:36:cd:66:70:b8: 26:ee:0e:60:7c:ce:d9:c4:bd:24:6c:bd:7d:f2:1c:45:d9:9e: 8a:9f:93:7a:fc:d5:7e:9a:fa:f1:ae:4d:25:6b:55:8d:60:fc: d5:aa:c9:52:4d:a9:0d:b3:a2:58:ac:39:77:05:e5:91:58:0c: 51:0f:31:c8:59:f0:66:61:26:2a:40:44:d1:28:ff:35:61:f7: 19:19:36:5b:00:68:07:cf:ff:a3:c5:a6:8f:2b:ba:ec:00:e2: 78:3f:15:33:0d:03:31:bd:c7:b1:c0:c9:a1:da:b3:7f:f2:c2: 28:c7:4c:e9:18:2c:0c:8f:d2:60:ec:76:25:98:20:74:8d:19: 92:a3:c9:92:37:5a:ec:f6:34:a0:d8:8d:68:1a:74:7a:dc:33: 4f:80:bd:f7:37:5c:16:85:47:ab:af:9f:44:5f:a2:00:47:de: b7:a2:86:cb -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDUYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFCMUExMTAvBgNVBAUTKDkxOEU3Mjg5RTI4QzFBNDkyMkEyM0NCNTY1QkQ4MjFC N0UyMEE2MTEwHhcNMjYwMzI0MTc1MzAwWhcNMjYwMzMxMTc1MzAwWjAYMRYwFAYD VQQDEw02OWMyY2Y3Yy1jZGNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlzHgiHu+dtqLfXdwwRdheVvyiL2xRcTbRAXs7sHZm8wRF0IXuYjvwXH1Mkxh Q7TeRZDX1CNEHjxpSK15nH8o2h1gCXk+6aPYH4m7EK9aWaZjfKI/K3zxcgqRchaI MjioF/rMr2EONc7qtZDll30n9F6EmOOzNqqM5Ouh0gxZaVchBU7l0hs/pWkUWlry i47fMoFC2PaT6v78J3QeuL/XnxiviWM9wIsYnOjgvfPtAr92oEj6BMuS1BNee0lw zg1bHA5Iv0+5QmJryHT+tRtP+z31ZnVQCM5wdh4R+/lsdwTcXvN1GLQvOAAcyT7B btOZ3amJdb5HocXShKoUMhCdswIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAcbblXy zTa0KJZ+W2GfIE29Sh89MB8GA1UdIwQYMBaAFJGOconijBpJIqI8tWW9ght+IKYR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUIxQS81MUZGQzRFNEY0 MTExMUU5QTQzNUIwNENDNEY5QUUwMi9rWTV5aWVLTUdra2lvankxWmIyQ0czNGdw aEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tZNXlpZUtNR2traW9qeTFaYjJDRzM0Z3BoRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MUIxQS81MUZGQzRFNEY0MTExMUU5QTQzNUIwNENDNEY5QUUwMi9rWTV5aWVLTUdr a2lvankxWmIyQ0czNGdwaEUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAlQdgdV/bNWssybUCAmR7vsOExSGe4TaSJUWZuVupZ7orLB8EPvGefSB3fTMs VZPqNKU+d4SzfdHYZRP4pLaE6FspiOgxATT6uLBA4ZaEfxnKWTzBMDbNZnC4Ju4O YHzO2cS9JGy9ffIcRdmeip+TevzVfpr68a5NJWtVjWD81arJUk2pDbOiWKw5dwXl kVgMUQ8xyFnwZmEmKkBE0Sj/NWH3GRk2WwBoB8//o8Wmjyu67ADieD8VMw0DMb3H scDJodqzf/LCKMdM6RgsDI/SYOx2JZggdI0ZkqPJkjda7PY0oNiNaBp0etwzT4C9 9zdcFoVHq6+fRF+iAEfet6KGyw== -----END CERTIFICATE-----Generated at Thu Mar 26 13:55:03 2026 by rpki-client