$ rpki-client -vvf rpki.apnic.net/member_repository/A917845B/97369B46217611EEB4F3AD6FC4F9AE02/y3TVYT1zQs-5t_ed7wyfrYhceCI.mft File: y3TVYT1zQs-5t_ed7wyfrYhceCI.mft (raw, json) Hash identifier: aOVyPnbGHByXBZ8NokqXL/pHokh+D62mk1NNB+F1+ZU= Subject key identifier: 64:C5:BE:7B:6D:99:3E:90:53:5A:DA:52:1D:CE:34:CB:58:A0:25:F2 Authority key identifier: CB:74:D5:61:3D:73:42:CF:B9:B7:F7:9D:EF:0C:9F:AD:88:5C:78:22 Certificate issuer: /CN=A917845B/serialNumber=CB74D5613D7342CFB9B7F79DEF0C9FAD885C7822 Certificate serial: 01FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y3TVYT1zQs-5t_ed7wyfrYhceCI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917845B/97369B46217611EEB4F3AD6FC4F9AE02/y3TVYT1zQs-5t_ed7wyfrYhceCI.mft Manifest number: 01FA Signing time: Wed 25 Mar 2026 02:30:25 +0000 Manifest this update: Wed 25 Mar 2026 02:30:25 +0000 Manifest next update: Wed 01 Apr 2026 02:30:25 +0000 Files and hashes: 1: y3TVYT1zQs-5t_ed7wyfrYhceCI.crl (hash: JsSR2mDiu519oCX5Tm0byVflu+M2pUdUpcu3RYakLfM=) 2: D5981734217611EE9EBE2F70C4F9AE02.roa (hash: 7IOfb8HM29ciA7cox8pbWCfYTYYIY73wwEqngceppxA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917845B/97369B46217611EEB4F3AD6FC4F9AE02/y3TVYT1zQs-5t_ed7wyfrYhceCI.crl rsync://rpki.apnic.net/member_repository/A917845B/97369B46217611EEB4F3AD6FC4F9AE02/y3TVYT1zQs-5t_ed7wyfrYhceCI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y3TVYT1zQs-5t_ed7wyfrYhceCI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 02:30:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 511 (0x1ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917845B, serialNumber=CB74D5613D7342CFB9B7F79DEF0C9FAD885C7822 Validity Not Before: Mar 25 02:30:25 2026 GMT Not After : Apr 1 02:30:25 2026 GMT Subject: CN=69c348c1-5369 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:4f:ae:49:f7:7f:d8:9b:37:14:92:76:a3:1d: 3f:4b:88:8a:d9:1d:f5:13:c1:b1:f8:6f:a6:3f:90: 4b:37:47:67:76:4f:78:dd:f7:d7:5a:cf:b8:e0:59: 16:59:09:ba:eb:d2:30:f0:e8:d2:78:b3:df:f9:0e: 1a:ef:26:9d:92:57:2c:65:cd:4e:4c:22:83:51:b2: 9b:62:1c:e0:9a:51:1c:85:fc:59:45:c4:6b:b1:d1: b2:4f:dd:42:5c:20:83:e3:b1:04:6e:47:3b:ea:c0: 8c:91:85:70:8e:8a:6c:a4:99:0b:8e:11:88:33:8d: 78:1b:f3:13:10:fd:ef:42:2a:ac:13:37:99:84:b2: d8:39:11:59:9c:13:45:2f:28:70:48:9a:af:74:57: 93:8f:ac:36:1a:97:60:da:ad:e5:58:9c:0b:cd:81: 62:89:ca:e2:1b:79:69:18:02:6c:a9:e1:79:ed:bf: e3:f7:5a:69:ba:fe:db:ac:61:21:3c:38:ae:d6:6f: ba:d5:df:d2:f3:da:83:18:0c:f9:56:ad:da:e1:f8: 89:ca:b5:8b:41:c4:a1:b2:fa:b6:25:78:6d:37:e8: 7d:98:56:96:42:88:7f:0f:f9:b8:72:ee:66:c1:08: ab:a7:a7:02:2a:db:21:34:1f:5f:65:d5:56:8c:35: a3:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:C5:BE:7B:6D:99:3E:90:53:5A:DA:52:1D:CE:34:CB:58:A0:25:F2 X509v3 Authority Key Identifier: keyid:CB:74:D5:61:3D:73:42:CF:B9:B7:F7:9D:EF:0C:9F:AD:88:5C:78:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917845B/97369B46217611EEB4F3AD6FC4F9AE02/y3TVYT1zQs-5t_ed7wyfrYhceCI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y3TVYT1zQs-5t_ed7wyfrYhceCI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917845B/97369B46217611EEB4F3AD6FC4F9AE02/y3TVYT1zQs-5t_ed7wyfrYhceCI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:2b:d1:fd:f7:0b:04:73:e1:16:ab:ae:7f:a8:c3:f7:64:05: d6:55:01:98:31:77:e7:cf:08:7e:e2:ae:83:95:89:b6:46:62: ac:de:d3:77:ac:0c:47:67:d1:20:a7:84:9d:1b:e6:e3:b7:79: bd:e4:7e:0d:04:09:f3:d6:d4:75:43:b6:40:60:a3:ae:ba:1e: f3:23:31:d7:4d:b5:1c:10:2e:77:5a:f4:39:09:ed:fc:8f:51: b5:1c:60:72:b5:55:33:5c:09:a8:db:ea:29:4a:f3:56:ad:3d: 82:c4:32:3c:31:e8:0b:e5:7d:cf:e5:2a:97:f1:ae:41:bc:56: 99:01:b8:dc:33:93:1e:73:cb:81:fd:d8:30:85:f1:b0:47:61: d6:8f:b7:03:bb:48:df:04:64:29:a7:6d:df:b0:cc:9a:5b:6c: f8:26:bb:ef:de:1e:d2:88:80:d7:fc:28:69:0d:cd:68:6e:5e: cf:0b:95:dc:ea:61:d7:5d:9c:0d:5f:85:37:d6:41:07:89:e4: db:98:39:b9:37:e5:b0:b6:03:de:21:05:98:8f:36:11:59:be: bc:0f:6d:34:48:46:7f:bf:46:35:1e:4b:92:a9:00:d6:7f:33: 17:a4:fd:3c:7b:52:de:12:02:94:42:e6:59:f2:ae:be:91:38: 07:fd:c9:30 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAf8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzg0NUIxMTAvBgNVBAUTKENCNzRENTYxM0Q3MzQyQ0ZCOUI3Rjc5REVGMEM5RkFE ODg1Qzc4MjIwHhcNMjYwMzI1MDIzMDI1WhcNMjYwNDAxMDIzMDI1WjAYMRYwFAYD VQQDEw02OWMzNDhjMS01MzY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsE+uSfd/2Js3FJJ2ox0/S4iK2R31E8Gx+G+mP5BLN0dndk943ffXWs+44FkW WQm669Iw8OjSeLPf+Q4a7yadklcsZc1OTCKDUbKbYhzgmlEchfxZRcRrsdGyT91C XCCD47EEbkc76sCMkYVwjopspJkLjhGIM414G/MTEP3vQiqsEzeZhLLYORFZnBNF LyhwSJqvdFeTj6w2Gpdg2q3lWJwLzYFiicriG3lpGAJsqeF57b/j91ppuv7brGEh PDiu1m+61d/S89qDGAz5Vq3a4fiJyrWLQcShsvq2JXhtN+h9mFaWQoh/D/m4cu5m wQirp6cCKtshNB9fZdVWjDWjfQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGTFvntt mT6QU1raUh3ONMtYoCXyMB8GA1UdIwQYMBaAFMt01WE9c0LPubf3ne8Mn62IXHgi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3ODQ1Qi85NzM2OUI0NjIx NzYxMUVFQjRGM0FENkZDNEY5QUUwMi95M1RWWVQxelFzLTV0X2VkN3d5ZnJZaGNl Q0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3kzVFZZVDF6UXMtNXRfZWQ3d3lmclloY2VDSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 ODQ1Qi85NzM2OUI0NjIxNzYxMUVFQjRGM0FENkZDNEY5QUUwMi95M1RWWVQxelFz LTV0X2VkN3d5ZnJZaGNlQ0kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEALivR/fcLBHPhFquuf6jD92QF1lUBmDF3588IfuKug5WJtkZirN7Td6wMR2fR IKeEnRvm47d5veR+DQQJ89bUdUO2QGCjrroe8yMx1021HBAud1r0OQnt/I9RtRxg crVVM1wJqNvqKUrzVq09gsQyPDHoC+V9z+Uql/GuQbxWmQG43DOTHnPLgf3YMIXx sEdh1o+3A7tI3wRkKadt37DMmlts+Ca7794e0oiA1/woaQ3NaG5ezwuV3Oph112c DV+FN9ZBB4nk25g5uTflsLYD3iEFmI82EVm+vA9tNEhGf79GNR5LkqkA1n8zF6T9 PHtS3hIClELmWfKuvpE4B/3JMA== -----END CERTIFICATE-----Generated at Thu Mar 26 15:29:13 2026 by rpki-client