$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF3C6/631CC160F33811EAA63D4154C4F9AE02/YG7oXcPEZ_xGSolO1HqfG9MhtEE.mft File: YG7oXcPEZ_xGSolO1HqfG9MhtEE.mft (raw, json) Hash identifier: a1rBp4IPaTy2iwVXSQnw//x8sHhbspHm3AXFRptl7Ko= Subject key identifier: B7:F2:59:16:D3:EC:BE:CB:B4:CE:0E:39:7E:42:5C:60:03:99:95:71 Authority key identifier: 60:6E:E8:5D:C3:C4:67:FC:46:4A:89:4E:D4:7A:9F:1B:D3:21:B4:41 Certificate issuer: /CN=A91AF3C6/serialNumber=606EE85DC3C467FC464A894ED47A9F1BD321B441 Certificate serial: 088B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YG7oXcPEZ_xGSolO1HqfG9MhtEE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF3C6/631CC160F33811EAA63D4154C4F9AE02/YG7oXcPEZ_xGSolO1HqfG9MhtEE.mft Manifest number: 087C Signing time: Thu 26 Mar 2026 20:34:25 +0000 Manifest this update: Thu 26 Mar 2026 20:34:24 +0000 Manifest next update: Thu 02 Apr 2026 20:34:24 +0000 Files and hashes: 1: YG7oXcPEZ_xGSolO1HqfG9MhtEE.crl (hash: VjDFLZHchEgalxgwi78KB+G50HOh99pzInXLFxaMw08=) 2: 3983EA66217E11F18ECE80E5073D8C67.roa (hash: /mxloS7ClCcaj5x0floJR4T78S/qjwGI70YG2UCZk8Q=) 3: F7F2D20ABCE911EFB7786B63C4F9AE02.roa (hash: dQd4m5byeKJORC74YKFJB4r+c7cujg4OEtxCIHvr0lM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF3C6/631CC160F33811EAA63D4154C4F9AE02/YG7oXcPEZ_xGSolO1HqfG9MhtEE.crl rsync://rpki.apnic.net/member_repository/A91AF3C6/631CC160F33811EAA63D4154C4F9AE02/YG7oXcPEZ_xGSolO1HqfG9MhtEE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YG7oXcPEZ_xGSolO1HqfG9MhtEE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 20:34:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2187 (0x88b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF3C6, serialNumber=606EE85DC3C467FC464A894ED47A9F1BD321B441 Validity Not Before: Mar 26 20:34:24 2026 GMT Not After : Apr 2 20:34:24 2026 GMT Subject: CN=69c59851-3407 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:96:12:d5:6c:a2:8d:b9:a3:6f:01:56:fa:33: 66:e5:d6:a7:2d:17:06:0c:52:da:0e:c6:30:8e:fb: 05:91:f3:ff:6d:93:07:35:31:cc:5c:ec:84:e7:69: ae:a3:8f:0e:cb:d9:ea:fe:fa:05:7c:1b:b1:35:11: 14:e9:0c:6c:46:81:fb:e7:9f:be:8f:b6:9d:29:ac: f8:94:96:f2:30:26:e2:25:d0:9a:47:e9:02:5f:f1: c8:62:d9:61:0e:9d:3b:f4:13:e7:5a:f2:7e:fa:3b: 56:0c:6f:4a:84:00:e9:35:37:c5:70:48:1c:d7:b3: 0a:b2:b2:51:6f:3d:ab:ab:3e:66:a9:a3:ad:66:d2: 55:b4:97:a8:69:5f:5d:5b:9f:f5:bd:32:3a:65:74: 95:e6:c4:ab:72:27:f7:d1:aa:20:14:54:d1:9b:fd: 06:9a:09:ac:cf:c4:0f:96:9d:2f:30:dc:6f:84:69: a5:4e:9f:d6:8a:11:0c:f6:ba:2e:db:21:d6:8e:fc: 14:83:be:e8:e2:95:fd:17:73:ad:25:7d:7a:86:16: cf:0a:3f:5f:28:39:9d:61:79:46:ac:6a:58:e0:ff: 56:2c:1d:1b:8c:4e:31:b1:a2:50:7c:e5:22:ae:69: 63:3d:ab:f8:84:2d:1c:ed:1e:a2:8b:06:61:45:2d: 5a:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:F2:59:16:D3:EC:BE:CB:B4:CE:0E:39:7E:42:5C:60:03:99:95:71 X509v3 Authority Key Identifier: keyid:60:6E:E8:5D:C3:C4:67:FC:46:4A:89:4E:D4:7A:9F:1B:D3:21:B4:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF3C6/631CC160F33811EAA63D4154C4F9AE02/YG7oXcPEZ_xGSolO1HqfG9MhtEE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YG7oXcPEZ_xGSolO1HqfG9MhtEE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF3C6/631CC160F33811EAA63D4154C4F9AE02/YG7oXcPEZ_xGSolO1HqfG9MhtEE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:b2:8c:5f:c1:91:29:d5:41:b7:e9:c9:2a:09:b2:f9:ac:6a: 00:b1:68:e8:03:32:9a:00:6d:04:ae:2a:b8:b6:a0:3b:77:03: 10:7e:7f:ec:0b:62:93:f4:a3:12:58:e0:62:c7:39:32:c8:50: 7b:88:22:d7:23:3e:cc:aa:37:74:32:2a:0f:db:58:0d:50:56: 8d:08:84:2b:4d:2c:96:11:a8:12:b1:98:a1:44:70:e8:5b:46: 61:8c:09:ae:2d:1a:04:af:fb:67:a7:65:a5:a1:8a:bf:da:78: 8a:d2:ab:be:42:02:20:b6:d9:6a:75:09:ad:ab:15:41:f8:e0: b3:2a:df:0c:b8:d7:99:11:4d:7e:4d:38:eb:0c:b2:c7:2a:23: 37:a5:81:9d:17:eb:71:7d:ae:f2:0f:03:2c:7f:42:07:04:27: 8d:4e:ba:f4:e6:b1:09:d7:0e:53:39:91:1a:88:67:76:6e:fd: 22:75:6a:11:58:c6:79:1d:d7:62:c2:f7:86:25:86:27:76:e9: 6a:9e:37:be:ef:6f:f6:cd:a6:b8:69:99:8d:21:c0:38:bd:c2: 06:91:4a:32:1a:ee:41:32:b2:5a:34:c3:73:14:8b:61:c6:08: 32:e4:4d:ce:eb:ce:4b:b7:f6:a0:81:a8:30:8e:f7:3e:ac:80: dd:4a:89:74 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCIswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUYzQzYxMTAvBgNVBAUTKDYwNkVFODVEQzNDNDY3RkM0NjRBODk0RUQ0N0E5RjFC RDMyMUI0NDEwHhcNMjYwMzI2MjAzNDI0WhcNMjYwNDAyMjAzNDI0WjAYMRYwFAYD VQQDEw02OWM1OTg1MS0zNDA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyJYS1WyijbmjbwFW+jNm5danLRcGDFLaDsYwjvsFkfP/bZMHNTHMXOyE52mu o48Oy9nq/voFfBuxNREU6QxsRoH755++j7adKaz4lJbyMCbiJdCaR+kCX/HIYtlh Dp079BPnWvJ++jtWDG9KhADpNTfFcEgc17MKsrJRbz2rqz5mqaOtZtJVtJeoaV9d W5/1vTI6ZXSV5sSrcif30aogFFTRm/0Gmgmsz8QPlp0vMNxvhGmlTp/WihEM9rou 2yHWjvwUg77o4pX9F3OtJX16hhbPCj9fKDmdYXlGrGpY4P9WLB0bjE4xsaJQfOUi rmljPav4hC0c7R6iiwZhRS1abwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLfyWRbT 7L7LtM4OOX5CXGADmZVxMB8GA1UdIwQYMBaAFGBu6F3DxGf8RkqJTtR6nxvTIbRB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjNDNi82MzFDQzE2MEYz MzgxMUVBQTYzRDQxNTRDNEY5QUUwMi9ZRzdvWGNQRVpfeEdTb2xPMUhxZkc5TWh0 RUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lHN29YY1BFWl94R1NvbE8xSHFmRzlNaHRFRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RjNDNi82MzFDQzE2MEYzMzgxMUVBQTYzRDQxNTRDNEY5QUUwMi9ZRzdvWGNQRVpf eEdTb2xPMUhxZkc5TWh0RUUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAO7KMX8GRKdVBt+nJKgmy+axqALFo6AMymgBtBK4quLagO3cDEH5/7Atik/Sj EljgYsc5MshQe4gi1yM+zKo3dDIqD9tYDVBWjQiEK00slhGoErGYoURw6FtGYYwJ ri0aBK/7Z6dlpaGKv9p4itKrvkICILbZanUJrasVQfjgsyrfDLjXmRFNfk046wyy xyojN6WBnRfrcX2u8g8DLH9CBwQnjU669OaxCdcOUzmRGohndm79InVqEVjGeR3X YsL3hiWGJ3bpap43vu9v9s2muGmZjSHAOL3CBpFKMhruQTKyWjTDcxSLYcYIMuRN zuvOS7f2oIGoMI73PqyA3UqJdA== -----END CERTIFICATE-----Generated at Sat Mar 28 10:41:07 2026 by rpki-client