$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.mft File: yxZWgR0IRXmT6Ngbn5eY2tYWlxo.mft (raw, json) Hash identifier: mnEd0CBTQQQBU0s5Bp7HSyRfsa7nZEgbh+bE6vfSD90= Subject key identifier: C9:4A:81:71:77:D3:55:30:D1:AA:CB:C8:76:A8:3B:0A:18:1C:9C:36 Authority key identifier: CB:16:56:81:1D:08:45:79:93:E8:D8:1B:9F:97:98:DA:D6:16:97:1A Certificate issuer: /CN=A91B4357/serialNumber=CB1656811D08457993E8D81B9F9798DAD616971A Certificate serial: 053F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.mft Manifest number: 0514 Signing time: Tue 24 Mar 2026 23:18:01 +0000 Manifest this update: Tue 24 Mar 2026 23:18:00 +0000 Manifest next update: Tue 31 Mar 2026 23:18:00 +0000 Files and hashes: 1: yxZWgR0IRXmT6Ngbn5eY2tYWlxo.crl (hash: aFcziJL/8OFi18L84/T37oKPVtNtdhJDH9YUnyZheuE=) 2: 351AC73E45AE11ECB857890EC4F9AE02.roa (hash: 1fMszEVclnRMOM/POK57IbuTqKPaZ6i1HdvWDw7RSC4=) 3: 52B98FDA46AF11ECB113AA4BC4F9AE02.roa (hash: xY/esRTHmVcSEnmni9qKfYB8APe7aNUaqGzW5UYshQs=) 4: 9896BA2EB6DE11EC8DB17172C4F9AE02.roa (hash: dG9p093s1Ue0rrA4RBzIOjl2As439gOH8sz6VM6eiUQ=) 5: CA888654D0E011EC9E5ACC1CC4F9AE02.roa (hash: bcqqVj2cPJZljPqgNexbPZepdU+xtAEAALfwJxCXrw4=) 6: 346A2B4045AE11ECB857890EC4F9AE02.roa (hash: YheXK0UgGEB7Z/3VeNqFrG7TEedt8nnqAV/x4ZuFjYw=) 7: 35A2418C45AE11ECB857890EC4F9AE02.roa (hash: 1S4BYpNOabN3d/LnYoJIPgaMIRT82AJo33zkA94dJ9s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.crl rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 23:17:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1343 (0x53f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4357, serialNumber=CB1656811D08457993E8D81B9F9798DAD616971A Validity Not Before: Mar 24 23:18:00 2026 GMT Not After : Mar 31 23:18:00 2026 GMT Subject: CN=69c31ba9-8ace Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:aa:85:66:50:19:d4:f1:04:c6:fc:c5:d1:a4: 8d:37:cb:e8:5f:60:fa:b0:01:1f:5f:cb:a4:96:7c: f2:25:1e:f7:a6:7f:32:f9:96:3b:74:d6:94:19:10: 90:87:ca:b7:54:5b:5a:55:53:3c:d1:5f:18:f2:41: d5:0d:8e:2e:77:d8:f3:47:d6:df:97:31:1b:3a:50: af:4e:cb:7f:5e:5b:8a:c1:51:4b:68:02:68:31:27: 0f:92:45:d0:ca:4e:b8:65:75:e3:2e:27:22:c7:4e: 2b:6b:f2:b1:20:40:ae:f9:52:57:9b:b4:5c:ed:2a: fd:03:4e:31:65:37:bc:59:90:18:c6:d3:cb:98:73: 7c:06:71:c7:f7:ec:ec:5d:c5:80:39:50:89:9d:67: b8:96:de:29:bf:aa:d8:e1:c5:a4:7c:b6:fa:e7:8e: 02:89:f5:35:b2:a2:84:37:6a:7c:9e:5f:0b:77:bc: af:f4:be:d4:ce:d7:5e:59:f3:5a:1c:f7:c4:fb:eb: 98:ea:52:bc:aa:67:11:a5:c3:63:68:ec:dc:63:c5: f8:f5:d6:eb:cf:a2:4a:45:eb:a9:ff:db:19:46:32: 20:4e:43:90:78:a7:c0:87:3e:30:4c:d7:22:ff:5b: d6:33:16:f1:6a:da:8c:50:78:79:bd:5e:a1:23:20: b1:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:4A:81:71:77:D3:55:30:D1:AA:CB:C8:76:A8:3B:0A:18:1C:9C:36 X509v3 Authority Key Identifier: keyid:CB:16:56:81:1D:08:45:79:93:E8:D8:1B:9F:97:98:DA:D6:16:97:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:e8:f1:e3:74:cf:81:70:eb:0d:ec:b9:e0:91:7b:17:b0:7a: 9b:b9:68:ff:3e:1a:e5:d6:bf:c3:ba:47:c2:8d:0a:cf:c5:0e: c6:68:73:c4:83:3b:0c:21:52:e1:77:27:22:72:d0:00:f9:5e: aa:41:d6:12:04:ad:10:ac:a5:ef:ee:f7:1d:a1:1d:e6:5b:63: df:be:93:44:2e:43:b7:8e:1d:9c:5a:d7:9d:70:f1:e7:dc:10: e1:04:85:97:49:bb:cd:bf:08:a3:67:84:33:4b:ad:fc:8e:70: 8a:49:4a:31:17:67:24:86:62:74:d6:76:6a:5b:b8:f3:ee:0b: 07:dc:da:3b:6d:7d:5a:a0:46:37:18:2a:59:60:86:fe:ed:79: fd:9f:ad:62:c5:53:eb:b9:c0:a0:c9:a0:72:b4:74:17:91:25: 96:68:e9:4d:8a:8e:d8:57:10:22:77:9e:4b:7a:30:f6:de:fc: 05:ff:71:d0:7a:eb:b1:12:eb:08:40:b9:37:ef:f3:8e:2f:f4: 94:50:4c:0d:6c:c1:92:92:c5:13:35:2e:8c:91:13:60:03:6e: b6:ff:20:35:7f:c1:93:3d:d8:4b:16:c1:d6:bd:d2:60:54:a4: 5f:76:72:1d:b7:94:b7:99:ed:3f:04:ab:51:3e:1a:ce:a1:34: 32:04:6f:1c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBT8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQzNTcxMTAvBgNVBAUTKENCMTY1NjgxMUQwODQ1Nzk5M0U4RDgxQjlGOTc5OERB RDYxNjk3MUEwHhcNMjYwMzI0MjMxODAwWhcNMjYwMzMxMjMxODAwWjAYMRYwFAYD VQQDEw02OWMzMWJhOS04YWNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz6qFZlAZ1PEExvzF0aSNN8voX2D6sAEfX8uklnzyJR73pn8y+ZY7dNaUGRCQ h8q3VFtaVVM80V8Y8kHVDY4ud9jzR9bflzEbOlCvTst/XluKwVFLaAJoMScPkkXQ yk64ZXXjLicix04ra/KxIECu+VJXm7Rc7Sr9A04xZTe8WZAYxtPLmHN8BnHH9+zs XcWAOVCJnWe4lt4pv6rY4cWkfLb6544CifU1sqKEN2p8nl8Ld7yv9L7UztdeWfNa HPfE++uY6lK8qmcRpcNjaOzcY8X49dbrz6JKReup/9sZRjIgTkOQeKfAhz4wTNci /1vWMxbxatqMUHh5vV6hIyCxcwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMlKgXF3 01Uw0arLyHaoOwoYHJw2MB8GA1UdIwQYMBaAFMsWVoEdCEV5k+jYG5+XmNrWFpca MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDM1Ny9CODRCMTBFQzQ1 QTgxMUVDOEIxNDA1NThDNEY5QUUwMi95eFpXZ1IwSVJYbVQ2TmdibjVlWTJ0WVds eG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3l4WldnUjBJUlhtVDZOZ2JuNWVZMnRZV2x4by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDM1Ny9CODRCMTBFQzQ1QTgxMUVDOEIxNDA1NThDNEY5QUUwMi95eFpXZ1IwSVJY bVQ2TmdibjVlWTJ0WVdseG8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAIejx43TPgXDrDey54JF7F7B6m7lo/z4a5da/w7pHwo0Kz8UOxmhzxIM7DCFS 4XcnInLQAPleqkHWEgStEKyl7+73HaEd5ltj376TRC5Dt44dnFrXnXDx59wQ4QSF l0m7zb8Io2eEM0ut/I5wiklKMRdnJIZidNZ2alu48+4LB9zaO219WqBGNxgqWWCG /u15/Z+tYsVT67nAoMmgcrR0F5EllmjpTYqO2FcQIneeS3ow9t78Bf9x0HrrsRLr CEC5N+/zji/0lFBMDWzBkpLFEzUujJETYANutv8gNX/Bkz3YSxbB1r3SYFSkX3Zy HbeUt5ntPwSrUT4azqE0MgRvHA== -----END CERTIFICATE-----Generated at Thu Mar 26 16:58:40 2026 by rpki-client