$ rpki-client -vvf rpki.apnic.net/member_repository/A919B5BB/44BBC14CFF0111E5B1CFB058C4F9AE02/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.mft File: ysRHjw_dmuQeJOn8Z_hR_0PDMwk.mft (raw, json) Hash identifier: c/xnHuQXSVpfPnHXOMIRCnokEdV6CQJOcL2MHuQEF4w= Subject key identifier: AE:DC:71:CE:EB:5D:94:AA:C2:BA:88:7F:05:97:78:25:FF:E9:C7:B6 Authority key identifier: CA:C4:47:8F:0F:DD:9A:E4:1E:24:E9:FC:67:F8:51:FF:43:C3:33:09 Certificate issuer: /CN=A919B5BB/serialNumber=CAC4478F0FDD9AE41E24E9FC67F851FF43C33309 Certificate serial: 2173 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919B5BB/44BBC14CFF0111E5B1CFB058C4F9AE02/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.mft Manifest number: 2165 Signing time: Tue 24 Mar 2026 15:51:13 +0000 Manifest this update: Tue 24 Mar 2026 15:51:12 +0000 Manifest next update: Tue 31 Mar 2026 15:51:12 +0000 Files and hashes: 1: ysRHjw_dmuQeJOn8Z_hR_0PDMwk.crl (hash: OqOW2wY//WQMgf5lTVJr9TaQC9B/gPQpo6/sUcViXlU=) 2: C49E2E22FF0111E591C15659C4F9AE02.roa (hash: HhQxUt8kfX+mJlXHn9AIcVCVvv1AbgL+l8SBK6m5XSw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919B5BB/44BBC14CFF0111E5B1CFB058C4F9AE02/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.crl rsync://rpki.apnic.net/member_repository/A919B5BB/44BBC14CFF0111E5B1CFB058C4F9AE02/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 15:51:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8563 (0x2173) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919B5BB, serialNumber=CAC4478F0FDD9AE41E24E9FC67F851FF43C33309 Validity Not Before: Mar 24 15:51:12 2026 GMT Not After : Mar 31 15:51:12 2026 GMT Subject: CN=69c2b2f1-9a0d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:dd:65:67:60:4c:44:1a:9a:e6:62:1f:8a:a4: b6:8a:ef:84:1b:da:63:86:96:82:71:e1:77:8b:8a: 32:c5:cf:80:35:26:f1:72:a0:ce:66:67:82:96:2c: e4:c9:29:7e:24:40:8f:78:0b:6d:47:7e:8f:7b:10: 6a:2d:5a:d1:20:9d:88:d9:75:32:8c:38:59:ef:5f: 0a:54:8b:23:30:d5:c0:f6:24:a5:1c:80:dd:84:3b: 8a:ef:07:d0:1f:5f:f0:58:74:c2:6e:0b:c2:4c:f9: e3:ce:2d:72:81:2a:ac:a1:57:3b:2c:c8:e3:ae:4e: f5:58:ce:38:da:ef:a0:83:81:2d:42:99:a9:8a:67: 5f:2e:a6:3c:00:f6:4f:0c:6c:e4:be:3c:72:a1:8d: da:be:17:75:8a:3c:00:74:8d:a9:89:9a:d8:d3:98: 1c:6f:88:d4:66:b4:b0:ed:0e:7b:8c:ab:15:7e:f3: bd:7a:df:1b:3d:a9:43:5f:e4:e5:79:11:fe:23:b3: 0e:aa:ed:1c:28:f7:ff:f6:ec:15:44:72:8b:78:0d: f4:56:b5:f7:a4:45:32:b0:bd:cf:79:fc:8a:c0:3a: dc:a8:6c:64:bc:d2:08:fe:c5:16:00:06:f8:2f:79: fe:b3:79:8c:ac:16:16:67:c3:94:ec:f1:a8:52:f5: 21:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:DC:71:CE:EB:5D:94:AA:C2:BA:88:7F:05:97:78:25:FF:E9:C7:B6 X509v3 Authority Key Identifier: keyid:CA:C4:47:8F:0F:DD:9A:E4:1E:24:E9:FC:67:F8:51:FF:43:C3:33:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919B5BB/44BBC14CFF0111E5B1CFB058C4F9AE02/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919B5BB/44BBC14CFF0111E5B1CFB058C4F9AE02/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:af:36:4d:2d:af:e2:3f:93:d3:a1:d6:98:69:78:0b:c2:3a: cf:46:dd:dd:de:12:ed:ae:3e:0a:9e:9a:51:ac:52:f6:3a:b0: c5:92:60:16:0b:cc:89:7d:cb:01:56:52:03:f6:14:43:d5:4b: 63:26:87:72:a4:9f:ea:1d:ec:51:5d:be:a7:14:6f:95:cc:3b: ca:16:90:c9:a4:26:fa:f5:1a:fa:a5:01:f5:4e:40:c0:1a:9e: 8a:db:2c:ae:7f:a8:9d:b5:6a:50:ad:8e:bb:ca:fb:65:25:92: e8:01:50:ae:fd:9b:4c:a8:d4:77:8f:e3:79:d4:35:61:94:83: 0b:2e:6a:f6:d7:d6:77:ef:23:bb:01:a7:a9:fd:fe:aa:ee:4b: 51:93:73:ae:8f:d7:26:27:fc:83:ae:8d:1f:de:17:51:64:df: ed:e5:ab:ee:9d:40:4b:6b:94:88:d3:9d:05:1f:bd:eb:6d:89: f3:70:c6:e0:0c:6a:1f:1e:0e:94:29:00:e3:0a:d7:8c:63:81: 75:79:9c:c4:de:2c:ff:3f:e2:60:cc:ab:aa:45:6e:a2:89:f5: 90:76:57:7b:ba:12:e8:4f:0d:07:66:d0:db:1c:8c:a8:2a:3c: 90:09:b6:31:53:ff:ac:99:ef:88:b1:46:b6:84:48:ea:8b:ab: f4:64:0e:8d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICIXMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUI1QkIxMTAvBgNVBAUTKENBQzQ0NzhGMEZERDlBRTQxRTI0RTlGQzY3Rjg1MUZG NDNDMzMzMDkwHhcNMjYwMzI0MTU1MTEyWhcNMjYwMzMxMTU1MTEyWjAYMRYwFAYD VQQDEw02OWMyYjJmMS05YTBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAj91lZ2BMRBqa5mIfiqS2iu+EG9pjhpaCceF3i4oyxc+ANSbxcqDOZmeClizk ySl+JECPeAttR36PexBqLVrRIJ2I2XUyjDhZ718KVIsjMNXA9iSlHIDdhDuK7wfQ H1/wWHTCbgvCTPnjzi1ygSqsoVc7LMjjrk71WM442u+gg4EtQpmpimdfLqY8APZP DGzkvjxyoY3avhd1ijwAdI2piZrY05gcb4jUZrSw7Q57jKsVfvO9et8bPalDX+Tl eRH+I7MOqu0cKPf/9uwVRHKLeA30VrX3pEUysL3PefyKwDrcqGxkvNII/sUWAAb4 L3n+s3mMrBYWZ8OU7PGoUvUhYwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFK7ccc7r XZSqwrqIfwWXeCX/6ce2MB8GA1UdIwQYMBaAFMrER48P3ZrkHiTp/Gf4Uf9DwzMJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QjVCQi80NEJCQzE0Q0ZG MDExMUU1QjFDRkIwNThDNEY5QUUwMi95c1JIandfZG11UWVKT244Wl9oUl8wUERN d2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lzUkhqd19kbXVRZUpPbjhaX2hSXzBQRE13ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QjVCQi80NEJCQzE0Q0ZGMDExMUU1QjFDRkIwNThDNEY5QUUwMi95c1JIandfZG11 UWVKT244Wl9oUl8wUERNd2subWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAR682TS2v4j+T06HWmGl4C8I6z0bd3d4S7a4+Cp6aUaxS9jqwxZJgFgvMiX3L AVZSA/YUQ9VLYyaHcqSf6h3sUV2+pxRvlcw7yhaQyaQm+vUa+qUB9U5AwBqeitss rn+onbVqUK2Ou8r7ZSWS6AFQrv2bTKjUd4/jedQ1YZSDCy5q9tfWd+8juwGnqf3+ qu5LUZNzro/XJif8g66NH94XUWTf7eWr7p1AS2uUiNOdBR+9622J83DG4AxqHx4O lCkA4wrXjGOBdXmcxN4s/z/iYMyrqkVuoon1kHZXe7oS6E8NB2bQ2xyMqCo8kAm2 MVP/rJnviLFGtoRI6our9GQOjQ== -----END CERTIFICATE-----Generated at Thu Mar 26 04:09:39 2026 by rpki-client