$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFFCB/F5DB7A16420511F0BF7A8711C4F9AE02/y1McHsaSJfDcrkTOyl41mAzpwPI.mft File: y1McHsaSJfDcrkTOyl41mAzpwPI.mft (raw, json) Hash identifier: MZpnB944oTWSw4OpJfclqvGj7AO+wS31cXVnJxhqA14= Subject key identifier: AC:92:4C:F4:6C:A3:2B:7A:B9:A9:B1:35:19:F2:E1:E9:5F:DE:07:83 Authority key identifier: CB:53:1C:1E:C6:92:25:F0:DC:AE:44:CE:CA:5E:35:98:0C:E9:C0:F2 Certificate issuer: /CN=A91CFFCB/serialNumber=CB531C1EC69225F0DCAE44CECA5E35980CE9C0F2 Certificate serial: 9A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1McHsaSJfDcrkTOyl41mAzpwPI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFFCB/F5DB7A16420511F0BF7A8711C4F9AE02/y1McHsaSJfDcrkTOyl41mAzpwPI.mft Manifest number: 98 Signing time: Wed 25 Mar 2026 06:38:09 +0000 Manifest this update: Wed 25 Mar 2026 06:38:08 +0000 Manifest next update: Wed 01 Apr 2026 06:38:08 +0000 Files and hashes: 1: y1McHsaSJfDcrkTOyl41mAzpwPI.crl (hash: /4Z4X+J2CkNFu6dPeIdyHKQji/Pk3AGPw1FCbHp5ork=) 2: BB8F3118497B11F096DCA14EC4F9AE02.roa (hash: LZ1naTvUarjviQvh++Hnvfx//aqWYgS0zxraAu6o6Fk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFFCB/F5DB7A16420511F0BF7A8711C4F9AE02/y1McHsaSJfDcrkTOyl41mAzpwPI.crl rsync://rpki.apnic.net/member_repository/A91CFFCB/F5DB7A16420511F0BF7A8711C4F9AE02/y1McHsaSJfDcrkTOyl41mAzpwPI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1McHsaSJfDcrkTOyl41mAzpwPI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 06:38:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 154 (0x9a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFFCB, serialNumber=CB531C1EC69225F0DCAE44CECA5E35980CE9C0F2 Validity Not Before: Mar 25 06:38:08 2026 GMT Not After : Apr 1 06:38:08 2026 GMT Subject: CN=69c382d1-fb59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:dd:92:90:c0:9a:47:1c:da:e9:13:80:31:eb: 04:82:ed:06:7e:7a:04:cb:26:d8:a1:ed:51:d9:15: ac:ea:88:72:48:16:1c:8a:c5:41:bb:8c:c7:91:fe: dd:1d:05:0f:04:2b:a7:ae:bf:81:87:46:ba:9a:35: bf:28:e7:2a:24:c1:28:30:f7:c4:e8:6a:c4:40:7e: cf:58:da:25:fc:0d:0c:44:18:67:96:61:e9:78:86: 9e:30:42:ba:99:0e:95:06:f3:ae:f5:1a:4a:a2:8b: 9e:8b:1a:1e:1e:b2:ea:9e:ff:bd:3c:70:6f:63:17: 2b:05:85:8f:91:4e:9e:7b:a4:9a:e6:82:83:06:13: 5a:2d:4c:b3:44:84:eb:d8:7f:6b:d8:6f:b7:b8:6b: 12:6f:82:b1:18:2a:23:12:9d:50:70:2f:fc:c0:87: c2:04:ce:ff:cc:b2:c3:98:c8:57:13:94:77:6b:3b: da:4e:cb:0a:d7:4b:0f:2a:44:a6:23:88:ad:e4:27: 47:88:cb:5c:1c:e2:1d:7d:ec:67:7d:62:f6:ce:9d: eb:d4:4a:1c:98:03:ae:01:cb:01:70:3c:3c:a0:02: 26:94:60:79:aa:f6:07:a5:aa:9f:89:33:f5:f0:d6: db:bc:00:9d:3f:c8:e3:d3:af:f3:c0:4f:ea:79:34: b1:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:92:4C:F4:6C:A3:2B:7A:B9:A9:B1:35:19:F2:E1:E9:5F:DE:07:83 X509v3 Authority Key Identifier: keyid:CB:53:1C:1E:C6:92:25:F0:DC:AE:44:CE:CA:5E:35:98:0C:E9:C0:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFFCB/F5DB7A16420511F0BF7A8711C4F9AE02/y1McHsaSJfDcrkTOyl41mAzpwPI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1McHsaSJfDcrkTOyl41mAzpwPI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFFCB/F5DB7A16420511F0BF7A8711C4F9AE02/y1McHsaSJfDcrkTOyl41mAzpwPI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:ec:fe:42:c3:c2:74:c5:2d:66:56:08:3e:a9:b0:01:bb:a3: de:ff:9c:67:e6:a0:2e:3f:81:53:f3:19:96:ec:09:d2:72:30: 1d:94:96:9d:5a:5b:d1:75:fd:0c:dd:fa:e5:6d:07:5b:2f:27: aa:79:5f:73:f6:14:65:12:39:e3:53:d2:b6:99:32:0a:c9:67: f2:69:15:25:82:68:19:5d:0b:80:6a:5e:5f:17:98:b1:45:1f: ed:01:9c:b4:bc:93:dc:33:4d:de:9d:14:32:62:4b:a0:4a:4d: 29:2b:ba:d5:8d:e6:95:9c:2b:8b:15:16:ba:a3:bb:a9:70:ea: 96:b1:b4:93:e0:3d:e7:8b:0a:50:04:71:2c:6b:bf:7a:8f:8e: c4:25:db:d3:93:fd:9f:b4:86:cf:9e:ff:25:48:31:4a:1a:00: be:aa:7a:5a:65:ae:8c:54:39:7d:6e:19:66:de:f4:cf:96:9a: d7:23:fe:a9:fa:9a:88:21:41:8c:dd:a2:b3:28:3d:6c:3a:20: 0d:74:b1:5c:f6:c4:89:46:39:76:6d:c6:3e:d1:3a:fd:6d:63: 77:92:d9:0c:c0:b7:d9:06:48:d8:b5:49:9a:4d:b9:79:33:f9: 42:27:3f:ab:83:27:79:4b:cf:8f:4a:53:ad:64:6a:16:dd:92: 84:7b:d6:52 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAJowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZGQ0IxMTAvBgNVBAUTKENCNTMxQzFFQzY5MjI1RjBEQ0FFNDRDRUNBNUUzNTk4 MENFOUMwRjIwHhcNMjYwMzI1MDYzODA4WhcNMjYwNDAxMDYzODA4WjAYMRYwFAYD VQQDEw02OWMzODJkMS1mYjU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzd2SkMCaRxza6ROAMesEgu0GfnoEyybYoe1R2RWs6ohySBYcisVBu4zHkf7d HQUPBCunrr+Bh0a6mjW/KOcqJMEoMPfE6GrEQH7PWNol/A0MRBhnlmHpeIaeMEK6 mQ6VBvOu9RpKooueixoeHrLqnv+9PHBvYxcrBYWPkU6ee6Sa5oKDBhNaLUyzRITr 2H9r2G+3uGsSb4KxGCojEp1QcC/8wIfCBM7/zLLDmMhXE5R3azvaTssK10sPKkSm I4it5CdHiMtcHOIdfexnfWL2zp3r1EocmAOuAcsBcDw8oAImlGB5qvYHpaqfiTP1 8NbbvACdP8jj06/zwE/qeTSxDQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKySTPRs oyt6uamxNRny4elf3geDMB8GA1UdIwQYMBaAFMtTHB7GkiXw3K5EzspeNZgM6cDy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkZDQi9GNURCN0ExNjQy MDUxMUYwQkY3QTg3MTFDNEY5QUUwMi95MU1jSHNhU0pmRGNya1RPeWw0MW1BenB3 UEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3kxTWNIc2FTSmZEY3JrVE95bDQxbUF6cHdQSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkZDQi9GNURCN0ExNjQyMDUxMUYwQkY3QTg3MTFDNEY5QUUwMi95MU1jSHNhU0pm RGNya1RPeWw0MW1BenB3UEkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAnOz+QsPCdMUtZlYIPqmwAbuj3v+cZ+agLj+BU/MZluwJ0nIwHZSWnVpb0XX9 DN365W0HWy8nqnlfc/YUZRI541PStpkyCsln8mkVJYJoGV0LgGpeXxeYsUUf7QGc tLyT3DNN3p0UMmJLoEpNKSu61Y3mlZwrixUWuqO7qXDqlrG0k+A954sKUARxLGu/ eo+OxCXb05P9n7SGz57/JUgxShoAvqp6WmWujFQ5fW4ZZt70z5aa1yP+qfqaiCFB jN2isyg9bDogDXSxXPbEiUY5dm3GPtE6/W1jd5LZDMC32QZI2LVJmk25eTP5Qic/ q4MneUvPj0pTrWRqFt2ShHvWUg== -----END CERTIFICATE-----Generated at Thu Mar 26 02:19:51 2026 by rpki-client