$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.mft File: yOBZHn5RfUGc_IYXHNyp_eYm6PU.mft (raw, json) Hash identifier: jpNCFjn2EIor+uWqMZB0IlEgpCSk6B5jwrZHK5xD2IY= Subject key identifier: 9C:09:96:E6:4C:5D:D4:5B:D0:E2:68:F4:15:3B:6C:86:85:37:52:CC Authority key identifier: C8:E0:59:1E:7E:51:7D:41:9C:FC:86:17:1C:DC:A9:FD:E6:26:E8:F5 Certificate issuer: /CN=A91AB3E3/serialNumber=C8E0591E7E517D419CFC86171CDCA9FDE626E8F5 Certificate serial: 0257 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yOBZHn5RfUGc_IYXHNyp_eYm6PU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.mft Manifest number: 0252 Signing time: Wed 25 Mar 2026 01:42:27 +0000 Manifest this update: Wed 25 Mar 2026 01:42:27 +0000 Manifest next update: Wed 01 Apr 2026 01:42:27 +0000 Files and hashes: 1: yOBZHn5RfUGc_IYXHNyp_eYm6PU.crl (hash: i3kBrlxlJLRIrvEZ/FJp7yQWfNC6kLjSgeW60zQlXys=) 2: 1E7B7BB4996C11EDA107E666C4F9AE02.roa (hash: 0zxYrdPrMBfjgPj6RJV7ZvcXItqtU0NYSlHoSwv7daw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.crl rsync://rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yOBZHn5RfUGc_IYXHNyp_eYm6PU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 01:42:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 599 (0x257) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB3E3, serialNumber=C8E0591E7E517D419CFC86171CDCA9FDE626E8F5 Validity Not Before: Mar 25 01:42:27 2026 GMT Not After : Apr 1 01:42:27 2026 GMT Subject: CN=69c33d83-a57b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:03:09:5f:6a:b8:c1:6c:10:cc:d8:69:f0:c2: 75:70:95:ef:50:e3:3f:89:3f:f3:6f:32:53:68:f1: 3b:2a:75:93:de:61:3e:e1:8e:b7:ce:c1:57:f5:5a: d2:2d:7b:62:47:d0:ef:02:40:f2:5d:ee:91:28:41: d9:cf:4f:6d:98:82:7c:a2:a5:d6:fa:99:b6:9b:6e: c7:eb:f1:79:91:8a:fe:0a:08:2f:5e:ca:13:b1:ee: 1a:3f:7d:a6:9e:ea:4b:90:73:df:10:7b:88:c7:27: ff:b5:c2:f9:f6:fc:a9:19:25:dc:d9:6e:e1:6c:80: 2a:62:3a:2e:0f:fe:00:e6:50:3c:b0:6c:44:0d:94: 22:b7:75:f9:ea:a4:41:79:d9:f1:a6:e2:6e:a6:f4: 13:23:76:47:2f:d8:ff:c2:ff:16:ba:94:20:bf:f0: 0c:dd:02:37:d0:c0:e1:19:d7:ce:c3:a9:ac:69:ca: 78:da:9a:91:42:92:04:cc:3e:af:06:3c:26:26:b2: 23:38:98:50:bc:ff:46:97:10:91:f4:60:bd:cc:b4: 24:f9:82:a6:a9:e2:18:54:e1:e2:1c:8d:7f:59:1c: 7f:80:be:5f:79:97:a5:89:7f:f5:df:8b:d1:05:20: e1:e2:e3:bf:7f:85:fe:bf:bd:6c:33:78:33:13:d8: df:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:09:96:E6:4C:5D:D4:5B:D0:E2:68:F4:15:3B:6C:86:85:37:52:CC X509v3 Authority Key Identifier: keyid:C8:E0:59:1E:7E:51:7D:41:9C:FC:86:17:1C:DC:A9:FD:E6:26:E8:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yOBZHn5RfUGc_IYXHNyp_eYm6PU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:de:24:d7:f5:c5:27:ee:ea:1e:20:29:22:61:ba:ae:94:13: 17:6e:53:1c:92:f3:e3:bd:58:5a:50:ab:39:63:dc:2f:69:4c: 93:57:4f:6a:36:88:58:49:d6:6f:0c:1e:be:29:c8:c7:37:2f: 56:d6:6d:81:a2:dc:35:90:60:62:4a:a4:e9:08:ea:e4:ac:54: 95:28:3c:a3:40:a2:6a:f9:0e:22:4f:78:21:42:cb:4e:b9:fd: bb:a4:78:d4:5e:17:c0:13:19:be:14:2e:89:26:79:8c:63:2e: 72:47:c8:b3:5a:8c:16:97:72:b4:ad:62:b2:8a:15:d5:33:0c: ab:01:71:a1:fb:85:b2:4e:54:21:63:51:56:de:93:80:bf:f1: 96:25:ef:09:31:56:ac:00:1f:95:b8:ba:d5:1a:54:26:52:9d: b6:93:0f:3f:df:29:6d:d5:9f:2f:b0:7e:74:88:69:54:2b:25: 31:33:fc:8e:d3:e1:0a:24:9a:d4:db:f8:7c:a7:c8:17:5f:52: a3:dd:27:7d:b3:7c:64:98:b5:ba:93:ff:7d:a3:bd:26:35:30: 57:4b:49:8a:02:8f:fd:27:ff:28:b7:a9:1d:c9:37:e2:5d:c7: a1:e5:4b:2c:c3:2a:94:62:71:dc:37:74:f7:f7:60:7d:3d:9f: f9:95:c3:8e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAlcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUIzRTMxMTAvBgNVBAUTKEM4RTA1OTFFN0U1MTdENDE5Q0ZDODYxNzFDRENBOUZE RTYyNkU4RjUwHhcNMjYwMzI1MDE0MjI3WhcNMjYwNDAxMDE0MjI3WjAYMRYwFAYD VQQDEw02OWMzM2Q4My1hNTdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxAMJX2q4wWwQzNhp8MJ1cJXvUOM/iT/zbzJTaPE7KnWT3mE+4Y63zsFX9VrS LXtiR9DvAkDyXe6RKEHZz09tmIJ8oqXW+pm2m27H6/F5kYr+CggvXsoTse4aP32m nupLkHPfEHuIxyf/tcL59vypGSXc2W7hbIAqYjouD/4A5lA8sGxEDZQit3X56qRB ednxpuJupvQTI3ZHL9j/wv8WupQgv/AM3QI30MDhGdfOw6msacp42pqRQpIEzD6v BjwmJrIjOJhQvP9GlxCR9GC9zLQk+YKmqeIYVOHiHI1/WRx/gL5feZeliX/134vR BSDh4uO/f4X+v71sM3gzE9jfSwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJwJluZM XdRb0OJo9BU7bIaFN1LMMB8GA1UdIwQYMBaAFMjgWR5+UX1BnPyGFxzcqf3mJuj1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjNFMy9BOTQ2MjRCNDk5 NjgxMUVEQjE2MkY4NjFDNEY5QUUwMi95T0JaSG41UmZVR2NfSVlYSE55cF9lWW02 UFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lPQlpIbjVSZlVHY19JWVhITnlwX2VZbTZQVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjNFMy9BOTQ2MjRCNDk5NjgxMUVEQjE2MkY4NjFDNEY5QUUwMi95T0JaSG41UmZV R2NfSVlYSE55cF9lWW02UFUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAIN4k1/XFJ+7qHiApImG6rpQTF25THJLz471YWlCrOWPcL2lMk1dPajaIWEnW bwwevinIxzcvVtZtgaLcNZBgYkqk6Qjq5KxUlSg8o0CiavkOIk94IULLTrn9u6R4 1F4XwBMZvhQuiSZ5jGMuckfIs1qMFpdytK1isooV1TMMqwFxofuFsk5UIWNRVt6T gL/xliXvCTFWrAAflbi61RpUJlKdtpMPP98pbdWfL7B+dIhpVCslMTP8jtPhCiSa 1Nv4fKfIF19So90nfbN8ZJi1upP/faO9JjUwV0tJigKP/Sf/KLepHck34l3HoeVL LMMqlGJx3Dd09/dgfT2f+ZXDjg== -----END CERTIFICATE-----Generated at Fri Mar 27 00:09:43 2026 by rpki-client