$ rpki-client -vvf rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.mft File: PykJw_UywAsCV7klbHbroxTc0A8.mft (raw, json) Hash identifier: 0OoroRuyOTcSnHLNmlyWUBEUurEZItkr26FGDAx12lI= Subject key identifier: C9:91:B5:1F:E5:FA:2D:AB:91:5B:31:51:21:7D:EC:31:CE:E9:FB:BC Authority key identifier: 3F:29:09:C3:F5:32:C0:0B:02:57:B9:25:6C:76:EB:A3:14:DC:D0:0F Certificate issuer: /CN=A91C71A5/serialNumber=3F2909C3F532C00B0257B9256C76EBA314DCD00F Certificate serial: 0332 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PykJw_UywAsCV7klbHbroxTc0A8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.mft Manifest number: 0322 Signing time: Fri 27 Mar 2026 00:53:44 +0000 Manifest this update: Fri 27 Mar 2026 00:53:44 +0000 Manifest next update: Fri 03 Apr 2026 00:53:44 +0000 Files and hashes: 1: PykJw_UywAsCV7klbHbroxTc0A8.crl (hash: oG1uGD7TogAdLjxyUbVWkAH2Vpy4htXv+H6lbfAwWEI=) 2: 99A7637060B311EEBA329E54C4F9AE02.roa (hash: O3Ls+9YBYFMKkyDDzAoAnYOjitWoJ58mnyLKpWOVBLM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.crl rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PykJw_UywAsCV7klbHbroxTc0A8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 00:53:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 818 (0x332) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C71A5, serialNumber=3F2909C3F532C00B0257B9256C76EBA314DCD00F Validity Not Before: Mar 27 00:53:44 2026 GMT Not After : Apr 3 00:53:44 2026 GMT Subject: CN=69c5d518-b420 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:b6:af:d6:d3:8f:53:99:01:25:de:ab:f4:2e: de:04:8e:ae:ac:f6:a8:7a:42:eb:d4:03:8e:d2:a7: 15:57:42:cb:d4:7d:e0:af:9d:66:f4:40:4e:90:fc: d2:ce:0b:2c:f4:65:ae:63:12:49:67:57:f5:76:48: 30:d4:a2:99:98:1e:94:1c:94:54:11:85:06:86:01: d4:18:d6:9b:ef:f0:dd:29:27:01:cd:e1:03:6a:35: 15:cb:7c:c8:c1:f4:b9:04:12:3a:f4:87:d9:76:49: b2:84:81:32:83:1a:62:42:38:3a:68:11:cf:68:ec: c5:18:95:4e:65:70:ea:32:fd:42:c0:fb:6a:7c:d5: 46:8b:0b:c6:b5:6c:70:31:03:f8:4f:75:2c:35:da: 05:56:7c:23:45:7f:e2:14:28:40:19:cb:e2:b5:66: 6a:66:7f:f7:2a:aa:ac:d5:19:29:3a:78:5a:9e:ae: 8c:8e:5e:61:bc:8b:e1:26:b0:15:22:6a:d2:16:9e: 72:67:dd:44:ec:e1:78:2d:60:16:1c:31:27:cb:61: b0:87:df:d0:bc:d3:1a:53:58:38:30:8f:95:77:96: 87:00:a1:13:33:2d:b0:c0:7b:ab:c6:d1:d3:94:77: a3:76:7e:65:4e:f4:e5:e2:45:e1:2a:26:96:25:aa: 2f:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:91:B5:1F:E5:FA:2D:AB:91:5B:31:51:21:7D:EC:31:CE:E9:FB:BC X509v3 Authority Key Identifier: keyid:3F:29:09:C3:F5:32:C0:0B:02:57:B9:25:6C:76:EB:A3:14:DC:D0:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PykJw_UywAsCV7klbHbroxTc0A8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:46:66:11:63:93:19:1d:01:9b:75:55:8f:59:7d:dd:28:f0: 4e:28:70:68:3e:36:93:56:88:e4:74:7c:d1:8a:6b:ec:6b:ed: 61:30:cd:6e:39:b5:dc:f6:a1:11:3d:4c:aa:51:36:89:4f:9f: d4:f1:f2:e4:c1:bb:a5:d1:a5:f9:31:d8:7a:16:05:6a:4e:dc: 1a:74:69:8c:fd:92:a6:9e:b1:cf:bc:86:f9:12:42:c4:f7:3f: 4c:0b:5f:c4:29:2d:84:f2:c1:eb:d1:2d:f7:30:7e:21:63:09: 30:a5:7a:83:c2:a2:cb:c3:36:1b:83:a6:e7:53:0f:a5:18:46: b5:ed:4e:bb:36:cc:42:ba:0b:63:03:00:9c:d8:b8:58:06:d2: 62:42:e7:5c:41:44:9d:ed:8c:d6:20:28:94:88:7b:e5:34:66: d9:cd:58:48:10:39:0f:ed:d1:b9:9a:5c:a6:d9:cc:4f:13:36: 33:a0:3d:a9:e3:49:31:4b:1a:08:28:89:7e:20:fb:67:2e:69: ce:d7:e3:86:9a:b7:fb:50:98:0f:2a:81:4d:b8:6e:cd:67:b2: 97:d1:61:dc:40:6a:0e:27:7d:2f:ad:47:18:a6:2e:e4:12:52: 53:93:09:14:60:c9:44:0e:97:71:99:7b:ad:89:cc:f2:a4:e4: e5:57:c3:80 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAzIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzcxQTUxMTAvBgNVBAUTKDNGMjkwOUMzRjUzMkMwMEIwMjU3QjkyNTZDNzZFQkEz MTREQ0QwMEYwHhcNMjYwMzI3MDA1MzQ0WhcNMjYwNDAzMDA1MzQ0WjAYMRYwFAYD VQQDEw02OWM1ZDUxOC1iNDIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA67av1tOPU5kBJd6r9C7eBI6urPaoekLr1AOO0qcVV0LL1H3gr51m9EBOkPzS zgss9GWuYxJJZ1f1dkgw1KKZmB6UHJRUEYUGhgHUGNab7/DdKScBzeEDajUVy3zI wfS5BBI69IfZdkmyhIEygxpiQjg6aBHPaOzFGJVOZXDqMv1CwPtqfNVGiwvGtWxw MQP4T3UsNdoFVnwjRX/iFChAGcvitWZqZn/3Kqqs1RkpOnhanq6Mjl5hvIvhJrAV ImrSFp5yZ91E7OF4LWAWHDEny2Gwh9/QvNMaU1g4MI+Vd5aHAKETMy2wwHurxtHT lHejdn5lTvTl4kXhKiaWJaovNwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMmRtR/l +i2rkVsxUSF97DHO6fu8MB8GA1UdIwQYMBaAFD8pCcP1MsALAle5JWx266MU3NAP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzFBNS8zQkZBMjgzNDBB ODMxMUVEOEQ2RDgzMkFDNEY5QUUwMi9QeWtKd19VeXdBc0NWN2tsYkhicm94VGMw QTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1B5a0p3X1V5d0FzQ1Y3a2xiSGJyb3hUYzBBOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NzFBNS8zQkZBMjgzNDBBODMxMUVEOEQ2RDgzMkFDNEY5QUUwMi9QeWtKd19VeXdB c0NWN2tsYkhicm94VGMwQTgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAGkZmEWOTGR0Bm3VVj1l93SjwTihwaD42k1aI5HR80Ypr7GvtYTDNbjm13Pah ET1MqlE2iU+f1PHy5MG7pdGl+THYehYFak7cGnRpjP2Spp6xz7yG+RJCxPc/TAtf xCkthPLB69Et9zB+IWMJMKV6g8Kiy8M2G4Om51MPpRhGte1OuzbMQroLYwMAnNi4 WAbSYkLnXEFEne2M1iAolIh75TRm2c1YSBA5D+3RuZpcptnMTxM2M6A9qeNJMUsa CCiJfiD7Zy5pztfjhpq3+1CYDyqBTbhuzWeyl9Fh3EBqDid9L61HGKYu5BJSU5MJ FGDJRA6XcZl7rYnM8qTk5VfDgA== -----END CERTIFICATE-----Generated at Sat Mar 28 12:09:38 2026 by rpki-client