$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5C25/687A10A6765A11E99D01E42EC4F9AE02/y_Kp2oisCPjVEG3svXLW-gnIGOk.mft File: y_Kp2oisCPjVEG3svXLW-gnIGOk.mft (raw, json) Hash identifier: cMmKbE/X0z6cFepOD5BWg53yna3RaujM1q5QpKoENyU= Subject key identifier: B9:10:65:64:0E:09:2E:60:E7:D6:C5:5C:88:14:AB:B6:8A:18:3A:6E Authority key identifier: CB:F2:A9:DA:88:AC:08:F8:D5:10:6D:EC:BD:72:D6:FA:09:C8:18:E9 Certificate issuer: /CN=A91D5C25/serialNumber=CBF2A9DA88AC08F8D5106DECBD72D6FA09C818E9 Certificate serial: 0FC6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y_Kp2oisCPjVEG3svXLW-gnIGOk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5C25/687A10A6765A11E99D01E42EC4F9AE02/y_Kp2oisCPjVEG3svXLW-gnIGOk.mft Manifest number: 0FB6 Signing time: Tue 24 Mar 2026 17:23:43 +0000 Manifest this update: Tue 24 Mar 2026 17:23:43 +0000 Manifest next update: Tue 31 Mar 2026 17:23:43 +0000 Files and hashes: 1: y_Kp2oisCPjVEG3svXLW-gnIGOk.crl (hash: FyYqF8kdBqNo2Ro7nptbLaQMUTqeJmlKjI3MdHX78iE=) 2: 4ECF0A4C765C11E9A01A6E34C4F9AE02.roa (hash: TTgnDZfqcx7ykCHCc5SaW91kxpbz+cLOZ7D9yI6DF3w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5C25/687A10A6765A11E99D01E42EC4F9AE02/y_Kp2oisCPjVEG3svXLW-gnIGOk.crl rsync://rpki.apnic.net/member_repository/A91D5C25/687A10A6765A11E99D01E42EC4F9AE02/y_Kp2oisCPjVEG3svXLW-gnIGOk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y_Kp2oisCPjVEG3svXLW-gnIGOk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 17:23:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4038 (0xfc6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5C25, serialNumber=CBF2A9DA88AC08F8D5106DECBD72D6FA09C818E9 Validity Not Before: Mar 24 17:23:43 2026 GMT Not After : Mar 31 17:23:43 2026 GMT Subject: CN=69c2c89f-d902 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:58:5a:47:3c:06:65:d8:c2:13:4d:c0:07:62: ff:d8:27:9b:0f:71:bf:55:33:d5:9a:8e:d3:34:0a: 17:e7:9d:50:55:4c:ff:63:3e:7b:2b:25:85:ca:da: b8:9c:b9:e5:8b:99:70:4a:d7:f0:2c:ab:6a:dc:63: 00:a8:16:27:39:a2:10:6d:36:f4:e7:c3:de:65:8e: 42:99:2b:e1:74:d4:a1:e0:b7:59:79:83:ac:e7:99: f5:c1:ed:54:30:bb:a0:bc:8e:36:67:84:42:52:4c: bd:77:3e:51:94:63:a6:84:b9:79:2d:ef:47:95:16: 69:a2:fc:91:4c:e1:92:94:53:c9:57:4f:3e:d2:3b: d0:c2:c2:4e:d5:9a:7c:67:0b:4e:79:e9:7a:c4:ec: f7:28:0e:0a:44:b3:f4:08:29:9c:87:56:7d:47:31: a1:fb:0c:65:db:9c:1e:60:63:22:c9:da:fc:91:a6: 13:0f:97:92:84:57:3a:15:cd:f7:2a:4a:c0:06:44: 53:7c:2d:75:e9:04:2b:d2:a6:2c:ea:5a:12:b1:bd: 2c:3b:98:f3:30:71:d6:50:15:51:bb:1d:53:76:1d: 54:24:ac:43:c3:03:e9:d9:aa:8d:15:35:d3:e4:1e: 35:bd:82:33:f4:bd:28:22:f5:e4:6f:f4:a2:52:35: 58:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:10:65:64:0E:09:2E:60:E7:D6:C5:5C:88:14:AB:B6:8A:18:3A:6E X509v3 Authority Key Identifier: keyid:CB:F2:A9:DA:88:AC:08:F8:D5:10:6D:EC:BD:72:D6:FA:09:C8:18:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5C25/687A10A6765A11E99D01E42EC4F9AE02/y_Kp2oisCPjVEG3svXLW-gnIGOk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y_Kp2oisCPjVEG3svXLW-gnIGOk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5C25/687A10A6765A11E99D01E42EC4F9AE02/y_Kp2oisCPjVEG3svXLW-gnIGOk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:25:6c:4a:7a:f4:13:f4:dd:39:b2:25:eb:ff:4f:9d:53:78: 40:60:84:10:22:56:af:cc:4d:2c:a0:a0:52:36:71:45:e3:95: 94:76:18:7f:3f:00:12:d5:8c:3d:00:ca:46:d0:2b:56:c7:f9: db:2f:1a:fb:d6:8b:db:59:f7:bb:04:8d:5f:68:aa:1b:7a:3b: 59:3b:09:a2:95:29:18:a8:23:2f:e0:cf:03:0f:a2:1b:9a:a1: 8c:ac:29:c7:34:f9:c0:4f:36:be:a9:74:33:e7:c0:2a:0c:0d: 9d:6e:7d:37:c2:e6:82:a9:04:67:d7:b0:30:8a:b3:56:70:d3: d6:a1:99:a0:ee:a8:a0:4e:bb:b9:f1:2b:c1:61:98:b5:91:e1: 28:05:f2:74:8f:87:9a:01:63:1c:14:06:f9:db:7e:c6:10:79: 5e:82:6c:bf:d5:3f:cd:83:61:9a:8b:41:20:d7:cc:f3:2d:09: 65:84:b2:96:17:16:1a:bc:86:3e:d9:3d:54:28:21:db:02:d9: 51:39:12:15:35:56:26:e8:28:cb:ee:f7:f7:94:24:c0:73:1a: 74:d8:2d:40:60:37:2b:05:4d:13:27:76:1c:e2:e7:63:61:78: 21:43:25:4c:89:ca:55:56:3f:fa:65:d5:89:db:cf:18:a7:15: a4:f6:97:92 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICD8YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDVDMjUxMTAvBgNVBAUTKENCRjJBOURBODhBQzA4RjhENTEwNkRFQ0JENzJENkZB MDlDODE4RTkwHhcNMjYwMzI0MTcyMzQzWhcNMjYwMzMxMTcyMzQzWjAYMRYwFAYD VQQDEw02OWMyYzg5Zi1kOTAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx1haRzwGZdjCE03AB2L/2CebD3G/VTPVmo7TNAoX551QVUz/Yz57KyWFytq4 nLnli5lwStfwLKtq3GMAqBYnOaIQbTb058PeZY5CmSvhdNSh4LdZeYOs55n1we1U MLugvI42Z4RCUky9dz5RlGOmhLl5Le9HlRZpovyRTOGSlFPJV08+0jvQwsJO1Zp8 ZwtOeel6xOz3KA4KRLP0CCmch1Z9RzGh+wxl25weYGMiydr8kaYTD5eShFc6Fc33 KkrABkRTfC116QQr0qYs6loSsb0sO5jzMHHWUBVRux1Tdh1UJKxDwwPp2aqNFTXT 5B41vYIz9L0oIvXkb/SiUjVY5QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLkQZWQO CS5g59bFXIgUq7aKGDpuMB8GA1UdIwQYMBaAFMvyqdqIrAj41RBt7L1y1voJyBjp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENUMyNS82ODdBMTBBNjc2 NUExMUU5OUQwMUU0MkVDNEY5QUUwMi95X0twMm9pc0NQalZFRzNzdlhMVy1nbklH T2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lfS3Ayb2lzQ1BqVkVHM3N2WExXLWduSUdPay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NUMyNS82ODdBMTBBNjc2NUExMUU5OUQwMUU0MkVDNEY5QUUwMi95X0twMm9pc0NQ alZFRzNzdlhMVy1nbklHT2subWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEABCVsSnr0E/TdObIl6/9PnVN4QGCEECJWr8xNLKCgUjZxReOVlHYYfz8AEtWM PQDKRtArVsf52y8a+9aL21n3uwSNX2iqG3o7WTsJopUpGKgjL+DPAw+iG5qhjKwp xzT5wE82vql0M+fAKgwNnW59N8LmgqkEZ9ewMIqzVnDT1qGZoO6ooE67ufErwWGY tZHhKAXydI+HmgFjHBQG+dt+xhB5XoJsv9U/zYNhmotBINfM8y0JZYSylhcWGryG Ptk9VCgh2wLZUTkSFTVWJugoy+7395QkwHMadNgtQGA3KwVNEyd2HOLnY2F4IUMl TInKVVY/+mXVidvPGKcVpPaXkg== -----END CERTIFICATE-----Generated at Thu Mar 26 15:29:15 2026 by rpki-client