$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1CAA/8E275A1ECE4A11EE8DE9E51FC4F9AE02/YX8FTjzkUeDD5_RG3Qn3hkZStlY.mft File: YX8FTjzkUeDD5_RG3Qn3hkZStlY.mft (raw, json) Hash identifier: LTf+U7qAVrnBSTjlzoNaGFSMWXZKHyQSD/OYp55JRpY= Subject key identifier: 24:1E:9F:4C:5E:A2:FB:E7:02:B0:19:ED:C0:4C:91:D2:F1:FD:1B:81 Authority key identifier: 61:7F:05:4E:3C:E4:51:E0:C3:E7:F4:46:DD:09:F7:86:46:52:B6:56 Certificate issuer: /CN=A91A1CAA/serialNumber=617F054E3CE451E0C3E7F446DD09F7864652B656 Certificate serial: 0191 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YX8FTjzkUeDD5_RG3Qn3hkZStlY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1CAA/8E275A1ECE4A11EE8DE9E51FC4F9AE02/YX8FTjzkUeDD5_RG3Qn3hkZStlY.mft Manifest number: 018B Signing time: Fri 27 Mar 2026 03:55:25 +0000 Manifest this update: Fri 27 Mar 2026 03:55:25 +0000 Manifest next update: Fri 03 Apr 2026 03:55:25 +0000 Files and hashes: 1: YX8FTjzkUeDD5_RG3Qn3hkZStlY.crl (hash: JunTmtihHxI9z7FBzgwMew79HLeX4qi7aNCcBBxCshQ=) 2: E75FB4F0CE4A11EE95C15E20C4F9AE02.roa (hash: wb+19lWhB8XuO+HHRS9fDVwu5qwQutNSK2In4UHD9f8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1CAA/8E275A1ECE4A11EE8DE9E51FC4F9AE02/YX8FTjzkUeDD5_RG3Qn3hkZStlY.crl rsync://rpki.apnic.net/member_repository/A91A1CAA/8E275A1ECE4A11EE8DE9E51FC4F9AE02/YX8FTjzkUeDD5_RG3Qn3hkZStlY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YX8FTjzkUeDD5_RG3Qn3hkZStlY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 03:55:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 401 (0x191) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1CAA, serialNumber=617F054E3CE451E0C3E7F446DD09F7864652B656 Validity Not Before: Mar 27 03:55:25 2026 GMT Not After : Apr 3 03:55:25 2026 GMT Subject: CN=69c5ffad-8420 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:fe:31:06:5b:f8:19:f6:71:92:c5:1e:f5:33: 0b:05:0e:f1:05:2d:93:d6:d3:99:ac:eb:37:5d:01: a0:fa:05:bf:48:b8:36:57:d2:57:ec:30:38:5e:15: df:dd:e3:1c:01:cf:0e:3b:8c:f7:61:c0:e5:9c:ec: a2:74:29:1f:a1:6c:70:8c:c9:4f:ab:23:07:ba:4e: bc:37:2e:85:31:06:08:64:82:31:ca:ea:3e:a6:83: 33:f9:16:0b:83:6e:99:3b:78:57:fe:5b:99:90:b7: 87:3f:04:ac:a9:87:22:94:03:51:e6:07:1b:8c:0e: 3c:5c:90:42:b8:dd:6a:cc:19:2b:6d:65:56:3e:9b: d5:ea:ae:16:77:91:0c:86:b4:b8:1a:c0:b6:dd:69: 9c:bb:16:69:0a:dc:59:3b:46:27:a3:f3:c8:0b:99: 9f:a3:26:83:44:d0:11:6f:c7:b2:76:a7:3b:cf:43: 37:fd:81:91:3d:4b:ea:d0:06:66:19:4c:5c:e3:4b: 1a:dd:c7:f4:4c:1e:17:86:3c:34:de:67:b2:4e:7f: b0:5d:c1:bc:42:7e:4a:d1:37:84:9b:f9:b2:cd:89: 11:26:31:09:fe:78:ec:89:19:40:28:b5:fe:19:df: e5:27:fa:e9:09:d9:84:69:73:47:b2:cb:4e:9d:c7: c4:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:1E:9F:4C:5E:A2:FB:E7:02:B0:19:ED:C0:4C:91:D2:F1:FD:1B:81 X509v3 Authority Key Identifier: keyid:61:7F:05:4E:3C:E4:51:E0:C3:E7:F4:46:DD:09:F7:86:46:52:B6:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1CAA/8E275A1ECE4A11EE8DE9E51FC4F9AE02/YX8FTjzkUeDD5_RG3Qn3hkZStlY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YX8FTjzkUeDD5_RG3Qn3hkZStlY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1CAA/8E275A1ECE4A11EE8DE9E51FC4F9AE02/YX8FTjzkUeDD5_RG3Qn3hkZStlY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:ae:ac:31:8f:ff:56:29:06:bc:45:af:ec:30:52:d8:8e:ae: be:63:b2:05:3a:ec:bf:1c:91:1a:fc:e7:6a:a8:bd:ca:57:14: a1:b2:39:04:79:a5:4c:b2:17:a6:89:74:c8:d1:b5:99:ee:58: 3e:9c:13:f8:fb:ed:96:e1:21:ed:ae:e6:a4:3a:6a:00:be:e1: a8:86:dd:82:0d:dc:70:95:16:9c:67:1b:12:a0:c0:0c:4d:c2: 13:79:21:f1:81:13:a9:2c:94:8f:a0:23:a7:02:bd:5b:73:7c: 66:d4:e4:0c:c8:a8:88:3c:78:ee:25:1b:ff:36:c5:e6:60:5b: 8b:db:90:6d:66:43:23:21:06:6d:73:e4:11:d7:c2:41:c1:6f: a2:09:e6:21:e9:52:93:e3:de:8b:6b:39:b9:79:f8:62:0a:e8: ef:0f:29:4e:8e:45:ac:d7:51:c3:ea:54:62:29:65:46:aa:a0: 27:d7:c5:ba:ac:51:df:ea:01:8d:85:79:f3:5f:0c:2c:1d:f5: 53:e6:18:e4:ce:a5:4c:d3:84:1f:7b:91:7d:37:59:91:4d:c8: 76:e9:06:30:d4:db:78:b8:5c:d3:81:ac:11:88:80:c6:42:36: d0:f9:95:ad:a0:ef:73:6f:16:64:02:6b:61:fb:8f:cd:8d:9b: 5d:26:6c:a0 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAZEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTFDQUExMTAvBgNVBAUTKDYxN0YwNTRFM0NFNDUxRTBDM0U3RjQ0NkREMDlGNzg2 NDY1MkI2NTYwHhcNMjYwMzI3MDM1NTI1WhcNMjYwNDAzMDM1NTI1WjAYMRYwFAYD VQQDEw02OWM1ZmZhZC04NDIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwP4xBlv4GfZxksUe9TMLBQ7xBS2T1tOZrOs3XQGg+gW/SLg2V9JX7DA4XhXf 3eMcAc8OO4z3YcDlnOyidCkfoWxwjMlPqyMHuk68Ny6FMQYIZIIxyuo+poMz+RYL g26ZO3hX/luZkLeHPwSsqYcilANR5gcbjA48XJBCuN1qzBkrbWVWPpvV6q4Wd5EM hrS4GsC23WmcuxZpCtxZO0Yno/PIC5mfoyaDRNARb8eydqc7z0M3/YGRPUvq0AZm GUxc40sa3cf0TB4Xhjw03meyTn+wXcG8Qn5K0TeEm/myzYkRJjEJ/njsiRlAKLX+ Gd/lJ/rpCdmEaXNHsstOncfExQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCQen0xe ovvnArAZ7cBMkdLx/RuBMB8GA1UdIwQYMBaAFGF/BU485FHgw+f0Rt0J94ZGUrZW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMUNBQS84RTI3NUExRUNF NEExMUVFOERFOUU1MUZDNEY5QUUwMi9ZWDhGVGp6a1VlREQ1X1JHM1FuM2hrWlN0 bFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lYOEZUanprVWVERDVfUkczUW4zaGtaU3RsWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MUNBQS84RTI3NUExRUNFNEExMUVFOERFOUU1MUZDNEY5QUUwMi9ZWDhGVGp6a1Vl REQ1X1JHM1FuM2hrWlN0bFkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAgq6sMY//VikGvEWv7DBS2I6uvmOyBTrsvxyRGvznaqi9ylcUobI5BHmlTLIX pol0yNG1me5YPpwT+PvtluEh7a7mpDpqAL7hqIbdgg3ccJUWnGcbEqDADE3CE3kh 8YETqSyUj6AjpwK9W3N8ZtTkDMioiDx47iUb/zbF5mBbi9uQbWZDIyEGbXPkEdfC QcFvognmIelSk+Pei2s5uXn4Ygro7w8pTo5FrNdRw+pUYillRqqgJ9fFuqxR3+oB jYV5818MLB31U+YY5M6lTNOEH3uRfTdZkU3IdukGMNTbeLhc04GsEYiAxkI20PmV raDvc28WZAJrYfuPzY2bXSZsoA== -----END CERTIFICATE-----Generated at Sat Mar 28 12:16:29 2026 by rpki-client