$ rpki-client -vvf rpki.apnic.net/member_repository/A9173F03/64F6C28E0DE111EA99669885C4F9AE02/yZ1gB81HfYmzWcM8k8qptbsQYBo.mft File: yZ1gB81HfYmzWcM8k8qptbsQYBo.mft (raw, json) Hash identifier: V3zt6fPVSJqoDDKDT6zqE3Gf8r0XpayOdJAOpOytPH0= Subject key identifier: BA:6B:CA:51:B3:E5:AE:39:F9:99:1D:4C:E7:DF:CD:96:19:E4:3F:0A Authority key identifier: C9:9D:60:07:CD:47:7D:89:B3:59:C3:3C:93:CA:A9:B5:BB:10:60:1A Certificate issuer: /CN=A9173F03/serialNumber=C99D6007CD477D89B359C33C93CAA9B5BB10601A Certificate serial: 0CCC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yZ1gB81HfYmzWcM8k8qptbsQYBo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173F03/64F6C28E0DE111EA99669885C4F9AE02/yZ1gB81HfYmzWcM8k8qptbsQYBo.mft Manifest number: 0CBA Signing time: Tue 24 Mar 2026 18:17:56 +0000 Manifest this update: Tue 24 Mar 2026 18:17:56 +0000 Manifest next update: Tue 31 Mar 2026 18:17:56 +0000 Files and hashes: 1: yZ1gB81HfYmzWcM8k8qptbsQYBo.crl (hash: pffBZANZokcLydpViZn6dhkb8DmllYO8ThkxkIH4xGY=) 2: 7D16D03C861A11EF99D32B66C4F9AE02.roa (hash: Kb1A5wBO5M3RznUbKfbavZMFMS9wQvDqw1cJPmcK1LY=) 3: 1F3C6E3C6E6811EF93F0A64EC4F9AE02.roa (hash: NqH5a+mXAbgiI1Lm08irrgE1MllN5dr8UASRRlEklP8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173F03/64F6C28E0DE111EA99669885C4F9AE02/yZ1gB81HfYmzWcM8k8qptbsQYBo.crl rsync://rpki.apnic.net/member_repository/A9173F03/64F6C28E0DE111EA99669885C4F9AE02/yZ1gB81HfYmzWcM8k8qptbsQYBo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yZ1gB81HfYmzWcM8k8qptbsQYBo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 18:17:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3276 (0xccc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173F03, serialNumber=C99D6007CD477D89B359C33C93CAA9B5BB10601A Validity Not Before: Mar 24 18:17:56 2026 GMT Not After : Mar 31 18:17:56 2026 GMT Subject: CN=69c2d554-608f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:0b:2b:5d:76:f3:7d:03:14:dd:92:fc:10:69: e4:7c:a7:bb:98:b8:2b:c5:bb:02:d2:8f:ce:e9:53: 6d:0e:81:f0:32:f6:23:7e:38:dd:f4:da:49:22:7b: 24:8c:37:eb:e9:29:3d:3e:07:6c:fb:9a:27:cd:55: fb:62:65:e5:8c:67:13:a4:31:a7:d5:0c:ff:61:6f: a4:dd:36:b9:83:9e:e7:fa:47:36:86:b4:73:fd:ac: 76:92:23:b3:8d:b6:77:bb:c0:24:79:55:3c:14:a4: 1f:5a:4b:3e:3e:44:9f:a9:81:fd:30:54:fc:74:40: 18:24:1a:a4:5b:34:76:e2:c3:7c:33:cf:20:ce:7f: 32:1d:68:af:ff:1c:8a:b1:66:40:d2:e3:95:9d:7d: 9f:3d:1a:39:93:b4:2a:43:2d:91:ed:5f:bc:a0:b9: 86:d1:71:2e:30:98:52:75:1b:e1:33:95:6e:22:d0: b4:7f:57:17:3c:f2:74:9d:a0:6e:3e:9d:6c:52:dd: 17:85:df:77:13:c2:6e:52:46:41:ae:bb:d4:9f:ec: f9:07:a4:d8:c9:bb:5f:1b:d6:6c:cf:eb:91:e9:5c: cb:03:c3:71:ff:93:38:ff:82:3e:fa:d8:53:04:b8: 9a:28:70:4b:39:75:51:06:8a:a5:9f:e3:18:4a:c3: be:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:6B:CA:51:B3:E5:AE:39:F9:99:1D:4C:E7:DF:CD:96:19:E4:3F:0A X509v3 Authority Key Identifier: keyid:C9:9D:60:07:CD:47:7D:89:B3:59:C3:3C:93:CA:A9:B5:BB:10:60:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173F03/64F6C28E0DE111EA99669885C4F9AE02/yZ1gB81HfYmzWcM8k8qptbsQYBo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yZ1gB81HfYmzWcM8k8qptbsQYBo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173F03/64F6C28E0DE111EA99669885C4F9AE02/yZ1gB81HfYmzWcM8k8qptbsQYBo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:62:81:a9:43:68:8d:4a:96:9d:af:7b:11:c9:d7:79:47:83: 05:14:81:ec:2b:c1:bb:60:e5:0f:8d:74:38:f6:dd:78:d4:d7: 41:d3:39:4f:22:a6:90:67:bc:96:b7:b9:c0:69:b7:86:09:d5: c1:4b:21:ea:4b:ee:fa:65:3f:da:cf:97:d4:0f:47:fb:4d:17: 7a:98:d4:61:3d:02:1d:6d:79:c8:8e:61:1b:3b:8e:84:37:8f: d4:19:f4:da:4b:1e:8c:b2:66:5b:4f:09:18:06:1f:70:e3:29: 4e:28:84:3f:e6:34:c7:2b:a5:85:a1:3e:f6:bd:a6:d1:23:6f: 2b:3e:e7:51:f2:6a:c8:e6:0a:86:65:bd:bb:9f:46:12:42:32: 9c:37:cf:30:41:3b:a3:27:d8:0a:d6:e1:ba:73:10:17:11:b4: 86:8b:e1:08:eb:42:a0:7d:9a:a0:25:85:cf:88:87:42:9a:ad: 9e:b4:a7:7a:bb:90:54:86:28:09:9f:30:52:c4:39:dc:b3:2d: 91:45:10:6a:76:ae:2a:42:94:62:29:8b:0b:a3:88:ce:ec:8b: 47:8d:3e:22:39:09:1b:b5:e2:bc:bd:76:32:6d:10:83:55:68: a4:76:60:d5:4e:e2:b2:69:31:87:b9:0d:80:30:ff:f2:6a:b9: b6:51:cf:df -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDMwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNGMDMxMTAvBgNVBAUTKEM5OUQ2MDA3Q0Q0NzdEODlCMzU5QzMzQzkzQ0FBOUI1 QkIxMDYwMUEwHhcNMjYwMzI0MTgxNzU2WhcNMjYwMzMxMTgxNzU2WjAYMRYwFAYD VQQDEw02OWMyZDU1NC02MDhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsgsrXXbzfQMU3ZL8EGnkfKe7mLgrxbsC0o/O6VNtDoHwMvYjfjjd9NpJInsk jDfr6Sk9Pgds+5onzVX7YmXljGcTpDGn1Qz/YW+k3Ta5g57n+kc2hrRz/ax2kiOz jbZ3u8AkeVU8FKQfWks+PkSfqYH9MFT8dEAYJBqkWzR24sN8M88gzn8yHWiv/xyK sWZA0uOVnX2fPRo5k7QqQy2R7V+8oLmG0XEuMJhSdRvhM5VuItC0f1cXPPJ0naBu Pp1sUt0Xhd93E8JuUkZBrrvUn+z5B6TYybtfG9Zsz+uR6VzLA8Nx/5M4/4I++thT BLiaKHBLOXVRBoqln+MYSsO+OwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLprylGz 5a45+ZkdTOffzZYZ5D8KMB8GA1UdIwQYMBaAFMmdYAfNR32Js1nDPJPKqbW7EGAa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0YwMy82NEY2QzI4RTBE RTExMUVBOTk2Njk4ODVDNEY5QUUwMi95WjFnQjgxSGZZbXpXY004azhxcHRic1FZ Qm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3laMWdCODFIZllteldjTThrOHFwdGJzUVlCby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 M0YwMy82NEY2QzI4RTBERTExMUVBOTk2Njk4ODVDNEY5QUUwMi95WjFnQjgxSGZZ bXpXY004azhxcHRic1FZQm8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEASmKBqUNojUqWna97EcnXeUeDBRSB7CvBu2DlD410OPbdeNTXQdM5TyKmkGe8 lre5wGm3hgnVwUsh6kvu+mU/2s+X1A9H+00XepjUYT0CHW15yI5hGzuOhDeP1Bn0 2ksejLJmW08JGAYfcOMpTiiEP+Y0xyulhaE+9r2m0SNvKz7nUfJqyOYKhmW9u59G EkIynDfPMEE7oyfYCtbhunMQFxG0hovhCOtCoH2aoCWFz4iHQpqtnrSneruQVIYo CZ8wUsQ53LMtkUUQanauKkKUYimLC6OIzuyLR40+IjkJG7XivL12Mm0Qg1VopHZg 1U7ismkxh7kNgDD/8mq5tlHP3w== -----END CERTIFICATE-----Generated at Thu Mar 26 18:30:40 2026 by rpki-client