$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.mft File: 2YRcGequkJIocqDK_QUfFmFPhK8.mft (raw, json) Hash identifier: N2qYxZhUkY/Tb7E7Y/lJuvSCc7XuPZB2kvTiGxp+/Kk= Subject key identifier: BB:95:BB:63:69:70:48:78:DF:DE:D9:67:47:F1:66:FD:50:8C:B5:BA Authority key identifier: D9:84:5C:19:EA:AE:90:92:28:72:A0:CA:FD:05:1F:16:61:4F:84:AF Certificate issuer: /CN=A91C6BF0/serialNumber=D9845C19EAAE90922872A0CAFD051F16614F84AF Certificate serial: 0EB2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2YRcGequkJIocqDK_QUfFmFPhK8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.mft Manifest number: 10D5 Signing time: Tue 24 Mar 2026 17:35:43 +0000 Manifest this update: Tue 24 Mar 2026 17:35:43 +0000 Manifest next update: Tue 31 Mar 2026 17:35:43 +0000 Files and hashes: 1: 2YRcGequkJIocqDK_QUfFmFPhK8.crl (hash: /fxtC8JSDuRbxmopYkuPJYKQAjTkFP844fRWkZGCGcM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.crl rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2YRcGequkJIocqDK_QUfFmFPhK8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 17:35:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3762 (0xeb2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6BF0, serialNumber=D9845C19EAAE90922872A0CAFD051F16614F84AF Validity Not Before: Mar 24 17:35:43 2026 GMT Not After : Mar 31 17:35:43 2026 GMT Subject: CN=69c2cb6f-9803 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:86:13:cf:25:f3:70:fd:17:79:3b:a1:72:94:32: 17:35:3d:55:d9:81:a0:b7:39:0c:27:91:3f:39:da: bc:99:86:fb:08:63:c2:17:55:1b:b9:c6:1b:b8:a4: b9:db:d4:e6:a7:9d:ab:21:ef:e4:3e:13:ba:21:64: e5:44:1e:55:0f:b9:db:53:75:df:7a:17:17:6a:68: 64:0f:b7:25:be:a6:d0:4e:9b:99:f9:14:ba:b4:34: 90:86:9c:ae:6c:67:d6:55:56:cd:60:79:df:ab:97: 69:4c:85:ed:26:7d:57:23:4a:f2:ab:3d:a5:79:43: e2:70:d7:46:4a:72:5c:73:cf:4f:cd:30:55:9f:6e: 89:9d:06:bf:52:fb:38:82:60:1c:7e:cc:dd:b1:42: f9:14:a0:93:74:d6:b2:1d:c4:b1:70:42:44:13:79: 09:11:50:57:e3:0a:3b:ad:a0:bb:10:93:b7:2a:d8: e1:20:32:04:f1:a1:91:c3:a9:86:88:80:46:c0:04: fa:b3:40:a9:0a:aa:33:21:8a:1e:cc:0b:d3:75:3f: db:75:f2:7a:9f:80:a5:45:77:8d:b0:99:8d:c8:b7: 7a:a0:44:48:61:ad:68:c6:82:0e:0d:6e:03:61:2f: 4d:6a:72:4d:74:46:c2:76:cc:1c:81:78:1e:5e:66: 0b:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:95:BB:63:69:70:48:78:DF:DE:D9:67:47:F1:66:FD:50:8C:B5:BA X509v3 Authority Key Identifier: keyid:D9:84:5C:19:EA:AE:90:92:28:72:A0:CA:FD:05:1F:16:61:4F:84:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2YRcGequkJIocqDK_QUfFmFPhK8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:47:39:ae:43:78:72:48:c1:af:92:30:52:7e:8c:82:ca:6a: 73:ee:71:16:3f:70:8f:71:d6:99:11:98:19:94:f2:c5:ce:33: 89:5f:2e:65:6d:c8:43:d3:3e:4c:1e:2f:18:f5:07:61:37:25: 90:67:96:00:85:fc:7a:3f:d3:6c:80:e7:c1:c4:0a:8a:04:57: f1:63:80:49:d8:17:ee:5a:cc:0b:96:bc:12:a5:8f:b5:e1:fc: e3:f5:44:80:81:03:a1:95:d1:2e:45:f6:4c:24:b6:72:c5:12: 61:bf:05:14:01:74:46:b0:da:c2:43:f9:dc:a5:a7:a1:0f:7f: f3:ed:a7:80:f2:f8:d8:31:8c:1c:98:4e:12:9a:67:f1:36:6a: 79:d6:56:65:b5:41:ac:4d:42:03:f8:64:ce:5c:14:80:46:59: 0b:9d:a1:b1:ee:18:04:ed:00:45:d1:79:70:10:cf:c8:4d:11: 69:76:36:dd:92:84:35:a7:08:5c:cb:d4:1c:c9:7a:83:d9:57: 92:c7:d7:5d:5e:8c:14:73:46:c0:32:66:b3:3e:3b:7a:ae:e3: 75:8c:f7:66:3b:f8:f3:88:cb:b1:04:12:0c:49:ca:41:9d:bd: 9e:c9:95:69:dc:65:0c:e8:c6:18:17:d2:2f:d4:31:92:2b:04: 85:22:4a:e3 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDrIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzZCRjAxMTAvBgNVBAUTKEQ5ODQ1QzE5RUFBRTkwOTIyODcyQTBDQUZEMDUxRjE2 NjE0Rjg0QUYwHhcNMjYwMzI0MTczNTQzWhcNMjYwMzMxMTczNTQzWjAYMRYwFAYD VQQDEw02OWMyY2I2Zi05ODAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAhhPPJfNw/Rd5O6FylDIXNT1V2YGgtzkMJ5E/Odq8mYb7CGPCF1UbucYbuKS5 29Tmp52rIe/kPhO6IWTlRB5VD7nbU3XfehcXamhkD7clvqbQTpuZ+RS6tDSQhpyu bGfWVVbNYHnfq5dpTIXtJn1XI0ryqz2leUPicNdGSnJcc89PzTBVn26JnQa/Uvs4 gmAcfszdsUL5FKCTdNayHcSxcEJEE3kJEVBX4wo7raC7EJO3KtjhIDIE8aGRw6mG iIBGwAT6s0CpCqozIYoezAvTdT/bdfJ6n4ClRXeNsJmNyLd6oERIYa1oxoIODW4D YS9NanJNdEbCdswcgXgeXmYLTwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLuVu2Np cEh4397ZZ0fxZv1QjLW6MB8GA1UdIwQYMBaAFNmEXBnqrpCSKHKgyv0FHxZhT4Sv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNkJGMC8xNDkxOTc0QUFF QkIxMUU5OEEzOTBCNTlDNEY5QUUwMi8yWVJjR2VxdWtKSW9jcURLX1FVZkZtRlBo SzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJZUmNHZXF1a0pJb2NxREtfUVVmRm1GUGhLOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NkJGMC8xNDkxOTc0QUFFQkIxMUU5OEEzOTBCNTlDNEY5QUUwMi8yWVJjR2VxdWtK SW9jcURLX1FVZkZtRlBoSzgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAkEc5rkN4ckjBr5IwUn6Mgspqc+5xFj9wj3HWmRGYGZTyxc4ziV8uZW3IQ9M+ TB4vGPUHYTclkGeWAIX8ej/TbIDnwcQKigRX8WOASdgX7lrMC5a8EqWPteH84/VE gIEDoZXRLkX2TCS2csUSYb8FFAF0RrDawkP53KWnoQ9/8+2ngPL42DGMHJhOEppn 8TZqedZWZbVBrE1CA/hkzlwUgEZZC52hse4YBO0ARdF5cBDPyE0RaXY23ZKENacI XMvUHMl6g9lXksfXXV6MFHNGwDJmsz47eq7jdYz3Zjv484jLsQQSDEnKQZ29nsmV adxlDOjGGBfSL9QxkisEhSJK4w== -----END CERTIFICATE-----Generated at Thu Mar 26 15:32:04 2026 by rpki-client