$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.mft File: yCFQSaXsETZftnQLghcGdiaArRc.mft (raw, json) Hash identifier: parglyTJpY5KiE3D1caCwzknGeN3nzZpNgy06XZCvKI= Subject key identifier: 43:E0:54:AA:F7:BA:44:CC:09:24:6A:30:79:CE:D5:3F:CF:D2:3B:5F Authority key identifier: C8:21:50:49:A5:EC:11:36:5F:B6:74:0B:82:17:06:76:26:80:AD:17 Certificate issuer: /CN=A91DC459/serialNumber=C8215049A5EC11365FB6740B821706762680AD17 Certificate serial: 0173 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCFQSaXsETZftnQLghcGdiaArRc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.mft Manifest number: 016E Signing time: Wed 25 Mar 2026 04:01:29 +0000 Manifest this update: Wed 25 Mar 2026 04:01:28 +0000 Manifest next update: Wed 01 Apr 2026 04:01:28 +0000 Files and hashes: 1: yCFQSaXsETZftnQLghcGdiaArRc.crl (hash: pjkPNBh3/6RSKPj5jUhrCUPqpKqEAH2RcYFl+pd3DjM=) 2: 264C45FAFA3F11EE8A884F09C4F9AE02.roa (hash: DhtcaUMqqCMW/cXHm6qDVJ4p8jBXsfCnZxdH4xPuRuE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.crl rsync://rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCFQSaXsETZftnQLghcGdiaArRc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:01:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 371 (0x173) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC459, serialNumber=C8215049A5EC11365FB6740B821706762680AD17 Validity Not Before: Mar 25 04:01:28 2026 GMT Not After : Apr 1 04:01:28 2026 GMT Subject: CN=69c35e19-c74b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:35:a4:2a:35:f8:76:98:9d:73:c9:0f:ea:b1: c3:4c:7a:72:32:5d:42:b7:1d:b1:78:e2:aa:fc:64: a2:cb:7f:62:67:21:e0:75:b6:52:38:2d:0a:de:20: bc:b3:a0:4b:02:72:ff:91:b6:2e:8e:c1:f8:3b:d8: fb:17:ec:a3:fb:18:93:cd:a9:9f:6c:a8:98:50:7a: e0:df:09:eb:5e:a0:59:3d:8a:cc:5b:1e:f2:7b:db: 39:a1:45:97:10:fc:ea:01:d0:e6:36:45:e5:cd:2e: 76:21:3d:64:d7:7d:66:9d:70:e4:1e:b3:95:5b:74: 75:98:94:01:8f:cc:9b:eb:fa:80:e7:b4:51:a8:f4: 25:17:10:e8:3f:0e:9e:94:1c:e0:26:62:29:4e:eb: 00:02:0d:30:00:b0:2b:3f:39:e9:68:fd:3a:48:88: a4:15:98:be:37:87:30:10:7e:ad:e9:5a:8d:1e:4f: 2f:f5:81:b5:99:c2:7c:f1:e3:2f:0f:13:03:46:4d: 1f:cc:32:b6:fa:84:06:5e:d9:47:6b:13:a5:d5:d7: cd:0b:20:82:af:4f:82:5d:d4:4e:73:6a:95:c4:e5: fe:bf:5a:2c:22:3a:38:f9:bf:bd:b5:a1:3d:15:b6: e4:81:60:5a:8c:ba:73:aa:c9:7e:b0:82:80:d9:3d: c3:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:E0:54:AA:F7:BA:44:CC:09:24:6A:30:79:CE:D5:3F:CF:D2:3B:5F X509v3 Authority Key Identifier: keyid:C8:21:50:49:A5:EC:11:36:5F:B6:74:0B:82:17:06:76:26:80:AD:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCFQSaXsETZftnQLghcGdiaArRc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:ea:00:de:68:c0:22:cf:6b:74:99:59:25:71:7f:74:08:06: f0:9d:38:a8:12:00:34:14:a0:78:59:7e:72:9c:bd:7c:f1:86: bd:69:54:cb:99:d9:bb:ac:9c:3c:bb:96:01:99:cb:e7:7e:aa: de:94:11:75:72:9d:61:97:be:62:4d:a4:a6:5d:82:99:9f:00: be:47:1f:d8:fb:c4:a8:ef:5e:46:c9:24:2c:d7:6b:3f:bc:db: 12:40:f2:b9:bb:dd:99:5e:60:da:c9:8a:20:99:6c:e0:c2:f9: 33:16:bd:08:35:f1:21:95:e3:a3:ce:98:40:28:cc:a7:39:37: 00:73:f1:d0:08:89:45:09:32:36:6a:53:e6:d1:93:e1:1b:09: 31:3b:eb:ea:a5:8c:97:97:30:40:bb:9a:12:6c:37:ab:02:cd: dc:d3:60:68:c7:6f:a1:94:35:63:78:cd:39:f2:f7:ff:6f:8a: fb:7e:3e:2a:b2:3a:dc:7e:dd:bc:f8:48:e7:c8:ad:f2:fd:d3: 46:98:38:1a:0b:aa:08:44:5d:f1:33:f5:c5:71:08:f5:fe:c8: 0a:37:e8:89:13:51:90:e8:6a:92:0a:88:06:ea:48:87:c9:49: 5c:12:0a:a5:6d:97:20:ef:2b:e7:30:f5:c5:21:68:45:7f:f4: dd:57:f1:94 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAXMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM0NTkxMTAvBgNVBAUTKEM4MjE1MDQ5QTVFQzExMzY1RkI2NzQwQjgyMTcwNjc2 MjY4MEFEMTcwHhcNMjYwMzI1MDQwMTI4WhcNMjYwNDAxMDQwMTI4WjAYMRYwFAYD VQQDEw02OWMzNWUxOS1jNzRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2DWkKjX4dpidc8kP6rHDTHpyMl1Ctx2xeOKq/GSiy39iZyHgdbZSOC0K3iC8 s6BLAnL/kbYujsH4O9j7F+yj+xiTzamfbKiYUHrg3wnrXqBZPYrMWx7ye9s5oUWX EPzqAdDmNkXlzS52IT1k131mnXDkHrOVW3R1mJQBj8yb6/qA57RRqPQlFxDoPw6e lBzgJmIpTusAAg0wALArPznpaP06SIikFZi+N4cwEH6t6VqNHk8v9YG1mcJ88eMv DxMDRk0fzDK2+oQGXtlHaxOl1dfNCyCCr0+CXdROc2qVxOX+v1osIjo4+b+9taE9 FbbkgWBajLpzqsl+sIKA2T3DmQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEPgVKr3 ukTMCSRqMHnO1T/P0jtfMB8GA1UdIwQYMBaAFMghUEml7BE2X7Z0C4IXBnYmgK0X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzQ1OS9BOTM1MDdCQ0Y2 RDUxMUVFQjg3ODNDMUVDNEY5QUUwMi95Q0ZRU2FYc0VUWmZ0blFMZ2hjR2RpYUFy UmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lDRlFTYVhzRVRaZnRuUUxnaGNHZGlhQXJSYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzQ1OS9BOTM1MDdCQ0Y2RDUxMUVFQjg3ODNDMUVDNEY5QUUwMi95Q0ZRU2FYc0VU WmZ0blFMZ2hjR2RpYUFyUmMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAlOoA3mjAIs9rdJlZJXF/dAgG8J04qBIANBSgeFl+cpy9fPGGvWlUy5nZu6yc PLuWAZnL536q3pQRdXKdYZe+Yk2kpl2CmZ8Avkcf2PvEqO9eRskkLNdrP7zbEkDy ubvdmV5g2smKIJls4ML5Mxa9CDXxIZXjo86YQCjMpzk3AHPx0AiJRQkyNmpT5tGT 4RsJMTvr6qWMl5cwQLuaEmw3qwLN3NNgaMdvoZQ1Y3jNOfL3/2+K+34+KrI63H7d vPhI58it8v3TRpg4GguqCERd8TP1xXEI9f7ICjfoiRNRkOhqkgqIBupIh8lJXBIK pW2XIO8r5zD1xSFoRX/03VfxlA== -----END CERTIFICATE-----Generated at Thu Mar 26 07:09:35 2026 by rpki-client