$ rpki-client -vvf rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft File: ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft (raw, json) Hash identifier: MsCzEj/xKMHHz0UKoPglteOtHld/wE05D/hjpOHIlgs= Subject key identifier: A5:62:CC:20:4D:72:24:93:2E:D8:84:1B:75:DA:AF:C4:ED:1B:49:5A Authority key identifier: C9:ED:4B:76:76:E3:F5:A5:B1:F8:A6:A0:DD:7E:22:1B:63:E5:34:AB Certificate issuer: /CN=A91D2ACF/serialNumber=C9ED4B7676E3F5A5B1F8A6A0DD7E221B63E534AB Certificate serial: 0ABF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft Manifest number: 0AA9 Signing time: Tue 24 Mar 2026 19:17:53 +0000 Manifest this update: Tue 24 Mar 2026 19:17:53 +0000 Manifest next update: Tue 31 Mar 2026 19:17:53 +0000 Files and hashes: 1: ye1Ldnbj9aWx-Kag3X4iG2PlNKs.crl (hash: zvF1p0BGHd+EEZjgY20IAoRnkZXmu6S3BhTnkcGcOhQ=) 2: 55D7D802475A11F0B3C02112C4F9AE02.roa (hash: 1ct6ERLfD4y94EVh8sazQBKiN2tsb/2UaNvWuVl4I30=) 3: F22D283A9B3B11EBA5C76B80C4F9AE02.roa (hash: 9jHgiW6B1sqLvSJnd17xl6prg5mUxXRdfL0P2w6JRHY=) 4: 3A851EE273E411EA9572F76EC4F9AE02.roa (hash: B7PIpT06o5yz5X0ICfGhNE1RjQ8ofk6sdiEjNK1EArU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.crl rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 19:17:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2751 (0xabf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D2ACF, serialNumber=C9ED4B7676E3F5A5B1F8A6A0DD7E221B63E534AB Validity Not Before: Mar 24 19:17:53 2026 GMT Not After : Mar 31 19:17:53 2026 GMT Subject: CN=69c2e361-8103 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:22:b6:df:36:48:d0:48:a8:f9:61:58:5f:89: 4f:ff:ec:12:d0:37:84:69:55:f3:4b:b3:27:af:d7: 7d:82:2f:f5:14:03:36:93:51:69:c2:88:25:e1:3e: 97:49:bb:48:dc:65:c3:e7:9e:12:5c:82:00:ec:11: 64:d0:ad:91:ed:5a:bc:21:ec:db:84:16:b8:71:ca: eb:a1:6c:5f:7d:24:36:0f:1a:9e:66:0b:04:8e:af: aa:3d:35:10:ab:50:f5:ff:cd:4a:cf:13:0d:e8:5e: d0:24:3a:f8:25:4a:8a:39:84:d4:34:7f:e3:80:e7: b6:3d:44:e4:df:46:cd:80:af:69:6c:ae:ff:40:80: de:b9:b4:14:78:30:bd:c8:be:6f:e5:e0:c0:20:83: 6a:16:f5:44:84:46:cc:89:7f:90:e9:11:0c:c4:fe: 2a:2d:64:d1:13:0f:92:81:e9:35:1e:6e:e7:b0:35: b8:6f:bb:84:11:19:15:2a:cd:e1:22:63:a7:eb:ad: 14:8f:89:91:24:dc:b7:9c:98:0b:d9:16:52:8a:cb: 37:29:81:40:b5:60:60:65:97:6c:8e:92:f7:78:97: a4:d8:cf:95:5e:e3:97:ea:3d:93:b2:17:b4:99:f3: ec:6a:93:73:b9:1e:51:61:8a:ee:8f:2b:ee:74:77: f5:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:62:CC:20:4D:72:24:93:2E:D8:84:1B:75:DA:AF:C4:ED:1B:49:5A X509v3 Authority Key Identifier: keyid:C9:ED:4B:76:76:E3:F5:A5:B1:F8:A6:A0:DD:7E:22:1B:63:E5:34:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:91:e2:73:b4:c1:f6:48:86:79:86:db:fd:5d:90:5e:1c:95: f0:85:68:c0:ef:39:67:89:9a:d5:a2:3e:c7:9e:92:c9:32:f6: 5c:7e:46:14:64:a3:4d:ac:6a:a8:48:c3:54:18:ba:36:ff:51: e1:a1:b2:c5:14:77:16:8c:3e:45:30:5b:75:e9:0f:fe:dc:a0: 62:d2:97:77:33:db:17:f7:2f:fe:7a:e9:a4:bb:17:90:ed:64: 41:eb:1f:4c:71:55:45:5a:da:52:6a:79:02:11:ba:3a:5d:a2: d5:f8:05:8d:e2:d2:81:82:93:1a:b1:3a:34:84:28:7b:38:da: 56:f7:66:b7:c5:8c:03:07:92:84:6b:45:2e:59:b6:56:ee:07: bb:1b:e0:1b:c3:fe:78:90:8f:83:78:6f:f1:44:e5:b6:9a:a2: 5f:cb:fd:79:96:a4:37:a1:56:33:30:84:06:fb:79:70:4e:b2: ff:b5:98:a2:99:b6:0b:a5:ee:5e:f5:c3:12:9a:54:97:f7:18: 5a:20:ff:b0:f0:a8:af:fa:ed:89:71:ea:0c:00:c8:92:fd:ec: 1c:c2:4d:2e:74:5b:32:68:32:73:8d:87:e4:db:52:a8:59:6b: 8d:5a:92:d0:d4:95:59:44:91:9c:98:3e:9d:72:1a:f4:70:06: 2a:6d:73:27 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCr8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDJBQ0YxMTAvBgNVBAUTKEM5RUQ0Qjc2NzZFM0Y1QTVCMUY4QTZBMEREN0UyMjFC NjNFNTM0QUIwHhcNMjYwMzI0MTkxNzUzWhcNMjYwMzMxMTkxNzUzWjAYMRYwFAYD VQQDEw02OWMyZTM2MS04MTAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqCK23zZI0Eio+WFYX4lP/+wS0DeEaVXzS7Mnr9d9gi/1FAM2k1Fpwogl4T6X SbtI3GXD554SXIIA7BFk0K2R7Vq8IezbhBa4ccrroWxffSQ2DxqeZgsEjq+qPTUQ q1D1/81KzxMN6F7QJDr4JUqKOYTUNH/jgOe2PUTk30bNgK9pbK7/QIDeubQUeDC9 yL5v5eDAIINqFvVEhEbMiX+Q6REMxP4qLWTREw+Sgek1Hm7nsDW4b7uEERkVKs3h ImOn660Uj4mRJNy3nJgL2RZSiss3KYFAtWBgZZdsjpL3eJek2M+VXuOX6j2Tshe0 mfPsapNzuR5RYYrujyvudHf18wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKVizCBN ciSTLtiEG3Xar8TtG0laMB8GA1UdIwQYMBaAFMntS3Z24/WlsfimoN1+Ihtj5TSr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMkFDRi81QUM2MkIyQTcz RTMxMUVBOUI1OTQzNkVDNEY5QUUwMi95ZTFMZG5iajlhV3gtS2FnM1g0aUcyUGxO S3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3llMUxkbmJqOWFXeC1LYWczWDRpRzJQbE5Lcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MkFDRi81QUM2MkIyQTczRTMxMUVBOUI1OTQzNkVDNEY5QUUwMi95ZTFMZG5iajlh V3gtS2FnM1g0aUcyUGxOS3MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAS5Hic7TB9kiGeYbb/V2QXhyV8IVowO85Z4ma1aI+x56SyTL2XH5GFGSjTaxq qEjDVBi6Nv9R4aGyxRR3Fow+RTBbdekP/tygYtKXdzPbF/cv/nrppLsXkO1kQesf THFVRVraUmp5AhG6Ol2i1fgFjeLSgYKTGrE6NIQoezjaVvdmt8WMAweShGtFLlm2 Vu4HuxvgG8P+eJCPg3hv8UTltpqiX8v9eZakN6FWMzCEBvt5cE6y/7WYopm2C6Xu XvXDEppUl/cYWiD/sPCor/rtiXHqDADIkv3sHMJNLnRbMmgyc42H5NtSqFlrjVqS 0NSVWUSRnJg+nXIa9HAGKm1zJw== -----END CERTIFICATE-----Generated at Thu Mar 26 13:07:35 2026 by rpki-client