$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.mft File: yoXhM8HiOWFMnFd4ARi9swlSjnY.mft (raw, json) Hash identifier: pAzcSPVA18kZysUgSRBb7TZytlvetrMDU8kjQiSyb2g= Subject key identifier: F6:20:59:EB:14:EC:54:96:2C:A3:A6:0E:C7:1C:F6:F6:BF:5F:24:94 Authority key identifier: CA:85:E1:33:C1:E2:39:61:4C:9C:57:78:01:18:BD:B3:09:52:8E:76 Certificate issuer: /CN=A91DC42E/serialNumber=CA85E133C1E239614C9C57780118BDB309528E76 Certificate serial: 0831 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yoXhM8HiOWFMnFd4ARi9swlSjnY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.mft Manifest number: 0828 Signing time: Tue 24 Mar 2026 20:43:14 +0000 Manifest this update: Tue 24 Mar 2026 20:43:14 +0000 Manifest next update: Tue 31 Mar 2026 20:43:14 +0000 Files and hashes: 1: yoXhM8HiOWFMnFd4ARi9swlSjnY.crl (hash: ht9vQP4BcmDtmCRc/RZuVB3zcxzJh1HhF/m4pAqtKuM=) 2: 4AAD8CFE0D1E11EB83C9B637C4F9AE02.roa (hash: 1FYTa+b4b7Loa31EgzeXR7TOb6YS6HpedmRkzfbLWn0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.crl rsync://rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yoXhM8HiOWFMnFd4ARi9swlSjnY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 20:43:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2097 (0x831) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC42E, serialNumber=CA85E133C1E239614C9C57780118BDB309528E76 Validity Not Before: Mar 24 20:43:14 2026 GMT Not After : Mar 31 20:43:14 2026 GMT Subject: CN=69c2f762-a953 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:8c:ce:48:39:bf:5f:e2:43:3d:94:d4:a9:47: f2:ce:36:7d:fe:05:ec:d0:15:6c:06:55:3c:16:b8: 4c:8b:84:d5:7a:d4:d3:fa:44:f7:05:28:9e:fb:c5: 00:4f:9c:57:60:56:99:e8:30:9b:fd:13:93:30:59: bd:b5:0f:8f:41:00:98:8d:ba:a5:2f:70:59:4b:88: 52:d2:5b:2c:7f:96:88:48:a6:04:67:e0:a4:f3:03: 7a:d8:36:8c:43:e4:46:01:5f:14:4b:85:10:d8:bd: fb:91:63:8f:29:a8:42:cf:c6:d9:a3:7b:ec:f4:00: fa:13:4e:62:08:ae:50:75:0c:50:6b:54:df:d0:de: 6f:f8:22:97:86:16:2b:00:50:c5:da:45:f1:bc:3f: c9:2a:77:c4:e0:b4:ce:95:4d:37:d7:88:1c:2f:86: 2b:41:79:2b:a7:2c:45:dc:c1:e4:c9:14:42:04:9c: 1f:37:91:79:f0:30:22:ee:a5:9b:26:a6:18:55:c6: ce:6e:9d:fb:b2:d4:42:66:47:1d:9c:9f:53:96:66: de:31:64:a9:c1:27:b6:c5:81:36:fd:0a:8a:54:7b: ae:20:90:bc:a1:e4:21:52:3b:43:c6:cd:34:c2:a8: ed:3b:65:58:d2:31:82:76:78:e7:61:87:5a:53:ff: f5:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:20:59:EB:14:EC:54:96:2C:A3:A6:0E:C7:1C:F6:F6:BF:5F:24:94 X509v3 Authority Key Identifier: keyid:CA:85:E1:33:C1:E2:39:61:4C:9C:57:78:01:18:BD:B3:09:52:8E:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yoXhM8HiOWFMnFd4ARi9swlSjnY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:29:84:5b:92:9d:8e:71:c3:6a:57:7e:87:ad:22:fb:c6:e4: e4:c5:1a:fb:ec:8d:e8:93:8a:b1:1f:e7:1f:b1:5d:71:0c:97: f8:ba:59:3b:40:b1:38:f7:d8:79:74:6a:90:2c:32:ae:85:de: 6e:28:a9:89:37:ce:83:dc:06:8a:ad:8e:d1:e6:a4:1f:8c:92: cb:aa:36:bf:c2:5f:46:85:fa:ef:c8:a3:28:58:c8:0b:45:ae: 4c:4a:6f:fa:18:89:31:89:52:5d:a1:bb:11:fd:b3:13:68:7f: a7:05:40:30:fe:8d:85:be:ce:ee:8b:2e:d4:fe:e3:cf:f2:ed: d9:82:39:7f:48:f2:15:14:6a:2f:81:c7:1e:03:4e:25:3e:6d: d6:7f:59:bb:5f:cc:44:53:e5:0e:5d:80:83:5d:3f:97:87:72: 00:b2:2a:e6:64:61:d4:64:9c:41:3a:e4:1a:ca:fc:ef:cc:55: a4:5f:02:2f:23:bc:91:61:c6:2e:a2:4b:e3:ab:b6:28:d0:02: 1d:5b:a3:57:e4:ac:07:68:44:56:bc:55:e3:d7:fb:a0:64:80: dc:fb:9f:1e:96:0c:52:8d:0c:f6:de:69:3a:d6:33:4c:a9:5e: f9:7b:ab:27:95:10:d5:a3:18:5d:d3:bb:ac:f5:28:cb:e9:43: 54:f9:79:df -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCDEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM0MkUxMTAvBgNVBAUTKENBODVFMTMzQzFFMjM5NjE0QzlDNTc3ODAxMThCREIz MDk1MjhFNzYwHhcNMjYwMzI0MjA0MzE0WhcNMjYwMzMxMjA0MzE0WjAYMRYwFAYD VQQDEw02OWMyZjc2Mi1hOTUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsYzOSDm/X+JDPZTUqUfyzjZ9/gXs0BVsBlU8FrhMi4TVetTT+kT3BSie+8UA T5xXYFaZ6DCb/ROTMFm9tQ+PQQCYjbqlL3BZS4hS0lssf5aISKYEZ+Ck8wN62DaM Q+RGAV8US4UQ2L37kWOPKahCz8bZo3vs9AD6E05iCK5QdQxQa1Tf0N5v+CKXhhYr AFDF2kXxvD/JKnfE4LTOlU0314gcL4YrQXkrpyxF3MHkyRRCBJwfN5F58DAi7qWb JqYYVcbObp37stRCZkcdnJ9TlmbeMWSpwSe2xYE2/QqKVHuuIJC8oeQhUjtDxs00 wqjtO2VY0jGCdnjnYYdaU//14QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPYgWesU 7FSWLKOmDscc9va/XySUMB8GA1UdIwQYMBaAFMqF4TPB4jlhTJxXeAEYvbMJUo52 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzQyRS9ENkE3RkY0ODBE MTcxMUVCQTc0MUE1MEFDNEY5QUUwMi95b1hoTThIaU9XRk1uRmQ0QVJpOXN3bFNq blkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lvWGhNOEhpT1dGTW5GZDRBUmk5c3dsU2puWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzQyRS9ENkE3RkY0ODBEMTcxMUVCQTc0MUE1MEFDNEY5QUUwMi95b1hoTThIaU9X Rk1uRmQ0QVJpOXN3bFNqblkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAZymEW5KdjnHDald+h60i+8bk5MUa++yN6JOKsR/nH7FdcQyX+LpZO0CxOPfY eXRqkCwyroXebiipiTfOg9wGiq2O0eakH4ySy6o2v8JfRoX678ijKFjIC0WuTEpv +hiJMYlSXaG7Ef2zE2h/pwVAMP6Nhb7O7osu1P7jz/Lt2YI5f0jyFRRqL4HHHgNO JT5t1n9Zu1/MRFPlDl2Ag10/l4dyALIq5mRh1GScQTrkGsr878xVpF8CLyO8kWHG LqJL46u2KNACHVujV+SsB2hEVrxV49f7oGSA3PufHpYMUo0M9t5pOtYzTKle+Xur J5UQ1aMYXdO7rPUoy+lDVPl53w== -----END CERTIFICATE-----Generated at Thu Mar 26 07:17:54 2026 by rpki-client