$ rpki-client -vvf rpki.apnic.net/member_repository/A91AA053/8720305E449911EFBAC67153C4F9AE02/yod6eu8duwRWSH9h_uaZNjdUHl0.mft File: yod6eu8duwRWSH9h_uaZNjdUHl0.mft (raw, json) Hash identifier: wJIfxYiosmaxJO6wKQoAmagsN5zNCCYX54pG5E+7/xE= Subject key identifier: 34:9F:25:D8:10:4A:CB:C0:14:9E:A1:4E:6A:67:76:13:CF:CE:90:C4 Authority key identifier: CA:87:7A:7A:EF:1D:BB:04:56:48:7F:61:FE:E6:99:36:37:54:1E:5D Certificate issuer: /CN=A91AA053/serialNumber=CA877A7AEF1DBB0456487F61FEE6993637541E5D Certificate serial: 0145 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yod6eu8duwRWSH9h_uaZNjdUHl0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AA053/8720305E449911EFBAC67153C4F9AE02/yod6eu8duwRWSH9h_uaZNjdUHl0.mft Manifest number: 0141 Signing time: Tue 24 Mar 2026 21:07:12 +0000 Manifest this update: Tue 24 Mar 2026 21:07:12 +0000 Manifest next update: Tue 31 Mar 2026 21:07:12 +0000 Files and hashes: 1: yod6eu8duwRWSH9h_uaZNjdUHl0.crl (hash: WL+lKwyqJ5sLqkwAGJlFv7QTxsG6VrhR9ApdIKawuEs=) 2: E098BB864FA311F0B96FBA3DC4F9AE02.roa (hash: OPdh+VvdJ8rvY5Hnhte8AjyqGibUOoE1fm+ikF6YCWY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AA053/8720305E449911EFBAC67153C4F9AE02/yod6eu8duwRWSH9h_uaZNjdUHl0.crl rsync://rpki.apnic.net/member_repository/A91AA053/8720305E449911EFBAC67153C4F9AE02/yod6eu8duwRWSH9h_uaZNjdUHl0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yod6eu8duwRWSH9h_uaZNjdUHl0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 21:07:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 325 (0x145) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AA053, serialNumber=CA877A7AEF1DBB0456487F61FEE6993637541E5D Validity Not Before: Mar 24 21:07:12 2026 GMT Not After : Mar 31 21:07:12 2026 GMT Subject: CN=69c2fd00-6a75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:8f:21:74:43:5a:d6:d6:20:d7:85:95:21:6e: cb:10:20:98:e0:27:de:03:b1:46:6c:f0:e7:07:f1: a4:d4:ea:11:71:4d:07:e3:87:f0:8a:1b:1d:03:f2: c2:8a:be:27:e7:fe:9c:2e:8c:db:f2:f3:2c:eb:41: 6c:f2:a7:dc:ee:48:17:b0:e7:13:68:b3:e2:24:05: 4c:d9:ee:74:7a:2c:07:38:f3:75:07:66:ff:26:79: e8:a4:9b:0c:39:1f:45:13:5f:6c:33:81:55:98:45: 61:0c:57:f7:19:0a:7a:d7:cc:b4:8e:b6:96:3f:21: f2:d3:1b:01:6c:e2:cc:46:b1:43:1b:ca:0d:60:a6: 42:a3:76:89:3d:e5:9a:f1:23:36:db:d0:d2:ff:ee: 77:75:75:49:d2:7c:b5:5a:13:8f:89:bb:0f:9b:ce: 45:43:f5:00:d6:3c:3e:66:fc:7c:a4:4b:ba:0c:5e: 2c:89:d5:bc:a1:e8:fb:df:28:75:12:65:ac:1a:f9: 95:ea:b9:4a:07:24:a7:58:6d:18:8c:ff:03:95:ef: 2f:94:38:25:23:4c:ee:54:a6:0e:0b:4e:90:eb:68: f7:46:dc:b7:0f:81:b2:fa:1a:2f:34:15:d2:3c:9f: e4:f6:b3:1a:da:00:17:45:b3:bb:01:b0:2f:c1:57: 84:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:9F:25:D8:10:4A:CB:C0:14:9E:A1:4E:6A:67:76:13:CF:CE:90:C4 X509v3 Authority Key Identifier: keyid:CA:87:7A:7A:EF:1D:BB:04:56:48:7F:61:FE:E6:99:36:37:54:1E:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AA053/8720305E449911EFBAC67153C4F9AE02/yod6eu8duwRWSH9h_uaZNjdUHl0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yod6eu8duwRWSH9h_uaZNjdUHl0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AA053/8720305E449911EFBAC67153C4F9AE02/yod6eu8duwRWSH9h_uaZNjdUHl0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:dc:2e:f1:cb:73:eb:7b:4d:4e:a9:20:6e:92:01:89:d0:39: 5b:a0:a5:8a:6d:02:c7:78:8c:74:05:e5:d1:08:b4:5f:01:d7: 9a:59:02:55:e2:b5:c8:f5:38:dc:8f:70:e4:7b:31:0f:4c:47: 19:14:b2:31:25:6f:e5:cd:9e:76:7d:b3:1e:82:3a:12:43:e2: c7:a9:9a:b8:a4:06:dc:08:38:e7:6c:4e:a6:5b:51:41:a7:13: 0d:a6:5e:e3:f5:a9:a4:be:8d:49:18:1d:df:09:c1:8e:a9:db: 6e:f6:e6:71:3b:4d:b9:e6:5a:78:17:4a:c6:b4:dd:02:5f:87: 80:ac:c7:a8:08:97:1e:8d:a0:db:b3:a3:94:4a:d1:83:2c:66: 84:3f:bb:bb:bc:ea:87:3d:51:e9:2e:52:01:d5:5b:c1:4e:9f: f5:ac:2d:14:fa:66:fe:b7:32:c6:7f:df:d2:bc:14:fc:9e:de: c8:79:0c:de:5c:cc:91:2c:32:40:cd:36:07:de:55:1d:50:f3: 8c:75:12:eb:7e:4d:fe:d1:43:14:5d:9b:b7:9c:4b:1c:af:57: a7:45:2f:87:3b:a2:18:31:e1:55:0b:cf:b9:b0:19:b2:1f:b6: b5:90:09:df:d4:54:70:a8:6f:c7:99:31:5f:1d:27:aa:f7:7a: 86:ac:a6:9d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAUUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUEwNTMxMTAvBgNVBAUTKENBODc3QTdBRUYxREJCMDQ1NjQ4N0Y2MUZFRTY5OTM2 Mzc1NDFFNUQwHhcNMjYwMzI0MjEwNzEyWhcNMjYwMzMxMjEwNzEyWjAYMRYwFAYD VQQDEw02OWMyZmQwMC02YTc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwI8hdENa1tYg14WVIW7LECCY4CfeA7FGbPDnB/Gk1OoRcU0H44fwihsdA/LC ir4n5/6cLozb8vMs60Fs8qfc7kgXsOcTaLPiJAVM2e50eiwHOPN1B2b/JnnopJsM OR9FE19sM4FVmEVhDFf3GQp618y0jraWPyHy0xsBbOLMRrFDG8oNYKZCo3aJPeWa 8SM229DS/+53dXVJ0ny1WhOPibsPm85FQ/UA1jw+Zvx8pEu6DF4sidW8oej73yh1 EmWsGvmV6rlKBySnWG0YjP8Dle8vlDglI0zuVKYOC06Q62j3Rty3D4Gy+hovNBXS PJ/k9rMa2gAXRbO7AbAvwVeEbQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDSfJdgQ SsvAFJ6hTmpndhPPzpDEMB8GA1UdIwQYMBaAFMqHenrvHbsEVkh/Yf7mmTY3VB5d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQTA1My84NzIwMzA1RTQ0 OTkxMUVGQkFDNjcxNTNDNEY5QUUwMi95b2Q2ZXU4ZHV3UldTSDloX3VhWk5qZFVI bDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3lvZDZldThkdXdSV1NIOWhfdWFaTmpkVUhsMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QTA1My84NzIwMzA1RTQ0OTkxMUVGQkFDNjcxNTNDNEY5QUUwMi95b2Q2ZXU4ZHV3 UldTSDloX3VhWk5qZFVIbDAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEApNwu8ctz63tNTqkgbpIBidA5W6Clim0Cx3iMdAXl0Qi0XwHXmlkCVeK1yPU4 3I9w5HsxD0xHGRSyMSVv5c2edn2zHoI6EkPix6mauKQG3Ag452xOpltRQacTDaZe 4/WppL6NSRgd3wnBjqnbbvbmcTtNueZaeBdKxrTdAl+HgKzHqAiXHo2g27OjlErR gyxmhD+7u7zqhz1R6S5SAdVbwU6f9awtFPpm/rcyxn/f0rwU/J7eyHkM3lzMkSwy QM02B95VHVDzjHUS635N/tFDFF2bt5xLHK9Xp0UvhzuiGDHhVQvPubAZsh+2tZAJ 39RUcKhvx5kxXx0nqvd6hqymnQ== -----END CERTIFICATE-----Generated at Thu Mar 26 16:32:07 2026 by rpki-client