$ rpki-client -vvf rpki.apnic.net/member_repository/A91A935D/F500F7288AB811EB8707E11AC4F9AE02/Y1kwnvSbRF9utTMb3wqUxcbvw3s.mft File: Y1kwnvSbRF9utTMb3wqUxcbvw3s.mft (raw, json) Hash identifier: BWFdkpCmHwKXIzemo+MaJ0O1hgZR4FQMb6AOI2x6j4g= Subject key identifier: B9:71:D8:B9:96:41:31:A0:92:DB:57:B4:90:0C:AA:8A:DD:7F:E4:A1 Authority key identifier: 63:59:30:9E:F4:9B:44:5F:6E:B5:33:1B:DF:0A:94:C5:C6:EF:C3:7B Certificate issuer: /CN=A91A935D/serialNumber=6359309EF49B445F6EB5331BDF0A94C5C6EFC37B Certificate serial: 06F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y1kwnvSbRF9utTMb3wqUxcbvw3s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A935D/F500F7288AB811EB8707E11AC4F9AE02/Y1kwnvSbRF9utTMb3wqUxcbvw3s.mft Manifest number: 06E8 Signing time: Thu 26 Mar 2026 21:57:43 +0000 Manifest this update: Thu 26 Mar 2026 21:57:43 +0000 Manifest next update: Thu 02 Apr 2026 21:57:43 +0000 Files and hashes: 1: Y1kwnvSbRF9utTMb3wqUxcbvw3s.crl (hash: vy2Fx+FWqIcDz2i1B0zpPFJBTKsjkyVExWOKa0rSEWU=) 2: 47EB76428ABA11EB8A85C01BC4F9AE02.roa (hash: GddQF0kXZAYcATo7qq+gH7xwi2gME5La/lz+podnzrI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A935D/F500F7288AB811EB8707E11AC4F9AE02/Y1kwnvSbRF9utTMb3wqUxcbvw3s.crl rsync://rpki.apnic.net/member_repository/A91A935D/F500F7288AB811EB8707E11AC4F9AE02/Y1kwnvSbRF9utTMb3wqUxcbvw3s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y1kwnvSbRF9utTMb3wqUxcbvw3s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 21:57:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1778 (0x6f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A935D, serialNumber=6359309EF49B445F6EB5331BDF0A94C5C6EFC37B Validity Not Before: Mar 26 21:57:43 2026 GMT Not After : Apr 2 21:57:43 2026 GMT Subject: CN=69c5abd7-5d15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:2f:3d:0b:88:92:99:76:8d:58:03:0c:c4:29: 4b:12:20:c7:b2:65:3b:08:92:fc:cd:33:a3:19:62: 3b:5a:d4:b6:2d:4c:af:bd:c5:94:f8:0b:0f:39:e2: fb:23:fd:2b:66:06:f3:4e:38:c6:b3:b1:c3:18:0a: 21:56:19:dd:5b:c2:39:11:f1:d2:5c:e2:71:76:0b: 04:f2:b7:78:c6:c4:49:b1:17:d0:54:6e:0c:b3:1a: c4:49:de:ed:92:c1:6e:3d:c2:ec:da:f6:6b:ed:28: 2d:3f:1d:3c:9a:a7:ae:f8:8f:71:8e:14:b4:e2:f3: 95:ba:1d:e2:7e:6e:26:5b:72:28:e0:01:31:ff:b9: 1e:50:4e:64:bd:3b:bf:09:75:ca:62:42:82:fd:9b: 6b:3b:d4:40:91:14:ba:20:e5:2d:d7:65:74:56:b3: 5d:ad:ba:ce:77:0c:72:ed:a9:63:05:94:b3:7a:89: 42:fe:a3:c2:cd:96:89:72:f5:70:8b:ef:18:69:62: 16:5c:89:ce:03:c0:06:07:6c:75:d9:f6:c2:46:67: a9:3a:6b:62:df:02:4b:5d:00:e5:c3:c1:7b:0a:63: 2e:e1:c1:6a:03:af:e3:ee:50:39:b2:f3:cb:5e:16: 10:8f:c6:9d:df:30:55:3f:90:a3:3a:ec:a1:42:f9: a0:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:71:D8:B9:96:41:31:A0:92:DB:57:B4:90:0C:AA:8A:DD:7F:E4:A1 X509v3 Authority Key Identifier: keyid:63:59:30:9E:F4:9B:44:5F:6E:B5:33:1B:DF:0A:94:C5:C6:EF:C3:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A935D/F500F7288AB811EB8707E11AC4F9AE02/Y1kwnvSbRF9utTMb3wqUxcbvw3s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y1kwnvSbRF9utTMb3wqUxcbvw3s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A935D/F500F7288AB811EB8707E11AC4F9AE02/Y1kwnvSbRF9utTMb3wqUxcbvw3s.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:b7:6f:da:78:e8:74:2f:04:5e:9b:39:0c:96:d5:7b:1d:9c: c8:f2:77:40:8a:45:d9:fb:a0:7d:17:1e:46:cb:91:dd:14:37: 2a:a3:99:e5:c9:7a:78:fa:d2:2b:eb:67:70:4c:a4:26:73:f2: d2:9d:37:74:7a:6b:8b:b7:39:69:0a:b9:6d:07:ba:9a:c4:5e: 79:45:54:17:da:9d:eb:0a:ab:e5:d0:74:46:e0:76:83:f8:50: b7:49:9d:fa:dd:de:8b:94:44:34:30:40:58:9b:fd:41:40:23: 6f:00:c7:64:5e:d9:99:f1:82:e2:6d:a8:2c:4d:5f:0f:31:d0: 0a:be:a4:01:35:b7:a7:16:e1:03:39:dd:0a:0b:d1:12:78:1a: bc:b4:bb:5d:67:e1:43:bd:24:9b:77:c8:c4:e9:90:87:b5:30: 95:45:c1:d0:de:1a:d4:8a:92:2b:cd:9e:8b:ac:55:19:30:1e: 47:f4:84:8f:f5:4c:82:82:2a:14:be:2c:f8:82:be:d7:cb:7f: 99:c6:88:81:b0:78:85:c5:61:d9:b6:f3:bb:c0:1a:c5:06:a1: 1d:06:6c:69:e2:ec:ca:2e:e8:35:cd:2f:87:92:98:a7:c6:31: 8d:ac:46:27:a8:87:e8:92:d3:4a:4c:ed:b9:1a:bc:01:db:bf: df:f3:2d:85 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBvIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTkzNUQxMTAvBgNVBAUTKDYzNTkzMDlFRjQ5QjQ0NUY2RUI1MzMxQkRGMEE5NEM1 QzZFRkMzN0IwHhcNMjYwMzI2MjE1NzQzWhcNMjYwNDAyMjE1NzQzWjAYMRYwFAYD VQQDEw02OWM1YWJkNy01ZDE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsC89C4iSmXaNWAMMxClLEiDHsmU7CJL8zTOjGWI7WtS2LUyvvcWU+AsPOeL7 I/0rZgbzTjjGs7HDGAohVhndW8I5EfHSXOJxdgsE8rd4xsRJsRfQVG4MsxrESd7t ksFuPcLs2vZr7SgtPx08mqeu+I9xjhS04vOVuh3ifm4mW3Io4AEx/7keUE5kvTu/ CXXKYkKC/ZtrO9RAkRS6IOUt12V0VrNdrbrOdwxy7aljBZSzeolC/qPCzZaJcvVw i+8YaWIWXInOA8AGB2x12fbCRmepOmti3wJLXQDlw8F7CmMu4cFqA6/j7lA5svPL XhYQj8ad3zBVP5CjOuyhQvmg1QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLlx2LmW QTGgkttXtJAMqordf+ShMB8GA1UdIwQYMBaAFGNZMJ70m0RfbrUzG98KlMXG78N7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOTM1RC9GNTAwRjcyODhB QjgxMUVCODcwN0UxMUFDNEY5QUUwMi9ZMWt3bnZTYlJGOXV0VE1iM3dxVXhjYnZ3 M3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1kxa3dudlNiUkY5dXRUTWIzd3FVeGNidnczcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OTM1RC9GNTAwRjcyODhBQjgxMUVCODcwN0UxMUFDNEY5QUUwMi9ZMWt3bnZTYlJG OXV0VE1iM3dxVXhjYnZ3M3MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEApbdv2njodC8EXps5DJbVex2cyPJ3QIpF2fugfRceRsuR3RQ3KqOZ5cl6ePrS K+tncEykJnPy0p03dHpri7c5aQq5bQe6msReeUVUF9qd6wqr5dB0RuB2g/hQt0md +t3ei5RENDBAWJv9QUAjbwDHZF7ZmfGC4m2oLE1fDzHQCr6kATW3pxbhAzndCgvR EngavLS7XWfhQ70km3fIxOmQh7UwlUXB0N4a1IqSK82ei6xVGTAeR/SEj/VMgoIq FL4s+IK+18t/mcaIgbB4hcVh2bbzu8AaxQahHQZsaeLsyi7oNc0vh5KYp8YxjaxG J6iH6JLTSkztuRq8Adu/3/MthQ== -----END CERTIFICATE-----Generated at Sat Mar 28 12:20:15 2026 by rpki-client