$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.mft File: Yt3ChdqLPiCesA6qNnGEXaps8oY.mft (raw, json) Hash identifier: e8Kz1LlnuZyk0JSNwfdPX84GVhWEwFkEDMb3AV8SVlw= Subject key identifier: 01:D0:01:BC:C0:EB:D4:9E:B6:B7:B8:89:41:DC:D5:4A:EF:E3:08:2C Authority key identifier: 62:DD:C2:85:DA:8B:3E:20:9E:B0:0E:AA:36:71:84:5D:AA:6C:F2:86 Certificate issuer: /CN=A91CE5A6/serialNumber=62DDC285DA8B3E209EB00EAA3671845DAA6CF286 Certificate serial: 01E0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yt3ChdqLPiCesA6qNnGEXaps8oY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.mft Manifest number: 01D8 Signing time: Wed 25 Mar 2026 02:53:13 +0000 Manifest this update: Wed 25 Mar 2026 02:53:13 +0000 Manifest next update: Wed 01 Apr 2026 02:53:13 +0000 Files and hashes: 1: Yt3ChdqLPiCesA6qNnGEXaps8oY.crl (hash: Q5ZnbqCl2XU1r0qrKzTXl4hWm0hliE0levqmeu557ak=) 2: 3B8DEFBCB2CD11EFBEB6A532C4F9AE02.roa (hash: yOJh/+loOwxOssiA6T+NoUiDgUYuEN8uooTJYRzMykM=) 3: 64120230B2C211EFA43BF057C4F9AE02.roa (hash: 5jFDM5lX5s3urFXGb48BjZ0r/kJ99WCsk252JXd/sdo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.crl rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yt3ChdqLPiCesA6qNnGEXaps8oY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 02:53:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 480 (0x1e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE5A6, serialNumber=62DDC285DA8B3E209EB00EAA3671845DAA6CF286 Validity Not Before: Mar 25 02:53:13 2026 GMT Not After : Apr 1 02:53:13 2026 GMT Subject: CN=69c34e19-f622 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:16:ca:aa:f1:e9:45:2f:6e:08:19:75:76:38: bc:61:59:18:3a:66:eb:7d:26:6a:de:e1:eb:30:5c: 59:60:ca:c4:2c:f0:75:e6:78:33:c1:5e:80:6d:0a: ec:06:68:ea:f6:77:6c:e9:ae:55:14:10:25:8e:60: 16:43:2f:38:0d:62:c8:c2:57:28:d9:51:e0:fb:80: bb:97:22:95:65:66:4a:16:25:da:d1:2b:dd:d8:0c: 5d:f7:aa:e3:e1:a7:f6:3b:e5:d4:f9:cd:93:bc:96: 71:1c:c1:4f:64:22:cc:13:0f:65:25:1f:ff:0f:a8: dd:be:d9:d2:0f:42:11:5b:25:02:e7:d9:54:0b:eb: 1a:ad:29:6b:c7:f3:b7:9f:91:48:f8:11:c1:8e:fa: 45:94:52:8c:cb:d3:42:cc:a7:76:c9:81:af:cc:1a: c3:80:b5:98:ce:bc:3a:ec:19:f6:00:32:66:64:9f: 6d:77:06:78:1b:df:46:63:49:b5:3a:01:63:73:5e: 11:73:ac:bc:ae:35:51:d1:34:74:33:e8:c3:50:f1: db:5e:3b:e5:3f:29:e5:2d:39:ef:25:83:87:82:65: b5:1a:2c:db:52:37:a5:8d:ad:65:5f:a3:11:48:93: cb:74:f3:9b:ae:cd:f8:4c:32:9e:38:32:8d:e2:7e: 3b:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:D0:01:BC:C0:EB:D4:9E:B6:B7:B8:89:41:DC:D5:4A:EF:E3:08:2C X509v3 Authority Key Identifier: keyid:62:DD:C2:85:DA:8B:3E:20:9E:B0:0E:AA:36:71:84:5D:AA:6C:F2:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yt3ChdqLPiCesA6qNnGEXaps8oY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:a7:97:6f:56:fa:80:d5:6d:ed:04:4a:fc:11:fb:5b:42:7b: 36:02:48:e2:8a:7d:fc:ac:d4:37:7f:38:94:29:60:c8:f7:bb: 4a:45:df:f1:23:93:1d:ed:68:30:4b:b8:c7:63:2b:b8:2d:ca: ae:81:bd:ec:72:89:e6:80:e5:a8:d7:d2:1d:97:4e:6e:ba:e6: 06:f3:ca:97:54:57:69:80:37:15:ea:89:9a:0f:d9:07:b6:7b: b4:e2:85:13:f4:db:ed:98:6c:7b:e9:88:d2:31:76:35:34:1c: fc:9f:7a:24:52:ea:cd:e0:da:40:8d:fc:a4:d6:fb:fe:a3:e5: 52:41:54:dd:a4:0d:62:44:f3:19:0f:11:2e:28:68:9c:44:d0: 45:1c:7a:5d:3b:5a:04:25:c5:7e:ff:2b:c4:a2:75:c6:a1:59: f1:9d:e6:bf:65:fb:17:44:7c:93:71:eb:86:f9:fb:2d:fa:6b: 04:d1:04:88:41:80:54:28:1a:1b:c5:11:36:e2:3e:ef:5a:df: 25:3a:9f:43:12:55:52:9a:46:ad:1d:16:d1:60:b6:b0:6e:26: 39:a5:99:26:1a:a7:17:bd:47:7d:0d:d1:8f:6e:2e:d5:8a:20: 97:d9:88:c6:33:58:9d:cd:bb:31:ab:ff:f5:21:18:93:1b:f1: 98:83:c9:af -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAeAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U1QTYxMTAvBgNVBAUTKDYyRERDMjg1REE4QjNFMjA5RUIwMEVBQTM2NzE4NDVE QUE2Q0YyODYwHhcNMjYwMzI1MDI1MzEzWhcNMjYwNDAxMDI1MzEzWjAYMRYwFAYD VQQDEw02OWMzNGUxOS1mNjIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwRbKqvHpRS9uCBl1dji8YVkYOmbrfSZq3uHrMFxZYMrELPB15ngzwV6AbQrs Bmjq9nds6a5VFBAljmAWQy84DWLIwlco2VHg+4C7lyKVZWZKFiXa0Svd2Axd96rj 4af2O+XU+c2TvJZxHMFPZCLMEw9lJR//D6jdvtnSD0IRWyUC59lUC+sarSlrx/O3 n5FI+BHBjvpFlFKMy9NCzKd2yYGvzBrDgLWYzrw67Bn2ADJmZJ9tdwZ4G99GY0m1 OgFjc14Rc6y8rjVR0TR0M+jDUPHbXjvlPynlLTnvJYOHgmW1GizbUjelja1lX6MR SJPLdPObrs34TDKeODKN4n472QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAHQAbzA 69Setre4iUHc1Urv4wgsMB8GA1UdIwQYMBaAFGLdwoXaiz4gnrAOqjZxhF2qbPKG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTVBNi9BQUIzM0U0QzVC M0YxMUVFOEYxRDNENkVDNEY5QUUwMi9ZdDNDaGRxTFBpQ2VzQTZxTm5HRVhhcHM4 b1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1l0M0NoZHFMUGlDZXNBNnFObkdFWGFwczhvWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTVBNi9BQUIzM0U0QzVCM0YxMUVFOEYxRDNENkVDNEY5QUUwMi9ZdDNDaGRxTFBp Q2VzQTZxTm5HRVhhcHM4b1kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAhaeXb1b6gNVt7QRK/BH7W0J7NgJI4op9/KzUN384lClgyPe7SkXf8SOTHe1o MEu4x2MruC3KroG97HKJ5oDlqNfSHZdObrrmBvPKl1RXaYA3FeqJmg/ZB7Z7tOKF E/Tb7Zhse+mI0jF2NTQc/J96JFLqzeDaQI38pNb7/qPlUkFU3aQNYkTzGQ8RLiho nETQRRx6XTtaBCXFfv8rxKJ1xqFZ8Z3mv2X7F0R8k3Hrhvn7LfprBNEEiEGAVCga G8URNuI+71rfJTqfQxJVUppGrR0W0WC2sG4mOaWZJhqnF71HfQ3Rj24u1Yogl9mI xjNYnc27Mav/9SEYkxvxmIPJrw== -----END CERTIFICATE-----Generated at Thu Mar 26 14:11:08 2026 by rpki-client