$ rpki-client -vvf rpki.apnic.net/member_repository/A91DCB25/2C60DFD8FDA511E88859C06BC4F9AE02/YcuQhfAv-PpF5zL1gDQPQkngDKI.mft File: YcuQhfAv-PpF5zL1gDQPQkngDKI.mft (raw, json) Hash identifier: W0D4hlJjJCzl1QPUncqTNMxYz6TsMmkEi39bSPOC9lk= Subject key identifier: 33:8C:7B:8B:64:C7:EB:13:73:D9:A4:BE:E1:75:68:28:5B:29:8B:52 Authority key identifier: 61:CB:90:85:F0:2F:F8:FA:45:E7:32:F5:80:34:0F:42:49:E0:0C:A2 Certificate issuer: /CN=A91DCB25/serialNumber=61CB9085F02FF8FA45E732F580340F4249E00CA2 Certificate serial: 1225 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YcuQhfAv-PpF5zL1gDQPQkngDKI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DCB25/2C60DFD8FDA511E88859C06BC4F9AE02/YcuQhfAv-PpF5zL1gDQPQkngDKI.mft Manifest number: 1219 Signing time: Tue 24 Mar 2026 17:01:40 +0000 Manifest this update: Tue 24 Mar 2026 17:01:39 +0000 Manifest next update: Tue 31 Mar 2026 17:01:39 +0000 Files and hashes: 1: YcuQhfAv-PpF5zL1gDQPQkngDKI.crl (hash: k0RIJxO506vAXFn6E5F3keH01QGUCtTVXixROg3M6kQ=) 2: BDC1AB0AFDA611E88FA5E26DC4F9AE02.roa (hash: wLzSSsb1W3A2MYP49E/fklCTD0d/JRiMl3Lul9XwiIg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DCB25/2C60DFD8FDA511E88859C06BC4F9AE02/YcuQhfAv-PpF5zL1gDQPQkngDKI.crl rsync://rpki.apnic.net/member_repository/A91DCB25/2C60DFD8FDA511E88859C06BC4F9AE02/YcuQhfAv-PpF5zL1gDQPQkngDKI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YcuQhfAv-PpF5zL1gDQPQkngDKI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 17:01:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4645 (0x1225) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DCB25, serialNumber=61CB9085F02FF8FA45E732F580340F4249E00CA2 Validity Not Before: Mar 24 17:01:39 2026 GMT Not After : Mar 31 17:01:39 2026 GMT Subject: CN=69c2c374-3255 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:54:8c:b6:5a:ec:54:0f:ff:4c:ca:b3:3c:c8: 48:c5:16:81:42:ba:66:13:90:f7:6c:93:1f:44:a5: 27:9f:cf:7c:93:de:d5:6c:9d:e1:07:04:a6:9a:7c: 24:ee:98:bd:98:61:fc:6c:b4:d5:f5:0e:dd:bb:5f: 82:0a:f0:a6:cb:a6:9c:91:6e:99:31:aa:95:2d:07: 49:c9:14:65:de:05:b3:56:3b:05:50:2f:fd:fe:a4: 99:30:88:d5:10:a3:6f:45:69:b2:bc:37:31:45:30: 0c:37:6b:ed:d7:a6:62:79:d5:5a:a5:b4:45:04:90: 68:a9:21:11:64:87:bd:22:9b:ba:a0:4d:47:e6:69: 26:5f:3d:2f:94:18:cc:ca:14:f6:6f:dd:05:22:42: a6:1c:91:e7:8a:68:df:a3:cb:02:b2:8c:36:33:96: e2:02:9b:a1:54:b4:72:33:24:d0:c5:f8:d8:7a:dd: 5d:7a:6b:13:98:35:56:e0:35:59:fe:a2:1a:60:8f: e3:f1:a4:1b:cf:65:9c:0f:46:b1:b1:55:df:27:fe: 72:cf:d3:f6:13:26:d8:4f:a5:1a:de:e4:1f:e8:b8: 45:eb:8e:cc:cf:07:08:ef:a7:d6:e9:a8:70:0a:ba: 57:b5:51:84:67:a0:4a:39:a3:25:81:d2:e0:56:8a: 61:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:8C:7B:8B:64:C7:EB:13:73:D9:A4:BE:E1:75:68:28:5B:29:8B:52 X509v3 Authority Key Identifier: keyid:61:CB:90:85:F0:2F:F8:FA:45:E7:32:F5:80:34:0F:42:49:E0:0C:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DCB25/2C60DFD8FDA511E88859C06BC4F9AE02/YcuQhfAv-PpF5zL1gDQPQkngDKI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YcuQhfAv-PpF5zL1gDQPQkngDKI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DCB25/2C60DFD8FDA511E88859C06BC4F9AE02/YcuQhfAv-PpF5zL1gDQPQkngDKI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:22:0e:45:96:ee:3e:c9:82:79:c6:53:cf:ce:b9:79:99:e8: 3a:3c:51:93:88:77:4c:26:20:66:b3:33:31:8e:64:c2:33:bd: a8:8b:d5:7c:dd:cf:98:53:25:73:6f:5c:b3:c6:a5:22:4e:4d: a4:3f:00:39:1c:5c:b1:ca:c3:d4:d4:11:8e:da:64:29:81:ed: 92:62:54:ef:21:c7:e2:37:f8:af:57:2a:22:bf:4c:c1:e2:ab: a7:b2:d5:ab:f3:c6:19:73:19:46:c1:0c:0a:d6:63:a8:98:ca: cf:9c:61:4e:50:9d:75:95:7f:74:bd:b5:ee:a8:ac:73:3d:de: 31:2c:03:28:1b:3d:90:ac:e4:34:ae:cd:c0:0c:00:89:25:71: ec:02:fc:c1:ab:ef:8b:ee:4d:4b:59:6e:59:39:d0:4a:a8:e5: e3:c9:3f:de:46:a1:12:fb:05:a7:be:f4:17:9f:23:21:7f:bb: 0c:39:55:0c:c7:c7:04:35:4e:87:48:c1:1e:15:68:03:3a:0b: bb:e3:e8:c9:06:bd:5d:2d:10:f5:50:b6:53:bb:af:bf:16:d5: 50:06:dc:e2:e9:af:aa:c3:81:0c:3a:99:74:d9:f2:36:c9:6a: 60:ae:1c:da:f3:7a:27:45:13:f2:62:ee:67:ea:67:1b:e0:2a: f1:09:f3:9a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICEiUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RENCMjUxMTAvBgNVBAUTKDYxQ0I5MDg1RjAyRkY4RkE0NUU3MzJGNTgwMzQwRjQy NDlFMDBDQTIwHhcNMjYwMzI0MTcwMTM5WhcNMjYwMzMxMTcwMTM5WjAYMRYwFAYD VQQDEw02OWMyYzM3NC0zMjU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv1SMtlrsVA//TMqzPMhIxRaBQrpmE5D3bJMfRKUnn898k97VbJ3hBwSmmnwk 7pi9mGH8bLTV9Q7du1+CCvCmy6ackW6ZMaqVLQdJyRRl3gWzVjsFUC/9/qSZMIjV EKNvRWmyvDcxRTAMN2vt16ZiedVapbRFBJBoqSERZIe9Ipu6oE1H5mkmXz0vlBjM yhT2b90FIkKmHJHnimjfo8sCsow2M5biApuhVLRyMyTQxfjYet1demsTmDVW4DVZ /qIaYI/j8aQbz2WcD0axsVXfJ/5yz9P2EybYT6Ua3uQf6LhF647MzwcI76fW6ahw CrpXtVGEZ6BKOaMlgdLgVophIwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDOMe4tk x+sTc9mkvuF1aChbKYtSMB8GA1UdIwQYMBaAFGHLkIXwL/j6Recy9YA0D0JJ4Ayi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQ0IyNS8yQzYwREZEOEZE QTUxMUU4ODg1OUMwNkJDNEY5QUUwMi9ZY3VRaGZBdi1QcEY1ekwxZ0RRUFFrbmdE S0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ljdVFoZkF2LVBwRjV6TDFnRFFQUWtuZ0RLSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE Q0IyNS8yQzYwREZEOEZEQTUxMUU4ODg1OUMwNkJDNEY5QUUwMi9ZY3VRaGZBdi1Q cEY1ekwxZ0RRUFFrbmdES0kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAZiIORZbuPsmCecZTz865eZnoOjxRk4h3TCYgZrMzMY5kwjO9qIvVfN3PmFMl c29cs8alIk5NpD8AORxcscrD1NQRjtpkKYHtkmJU7yHH4jf4r1cqIr9MweKrp7LV q/PGGXMZRsEMCtZjqJjKz5xhTlCddZV/dL217qiscz3eMSwDKBs9kKzkNK7NwAwA iSVx7AL8wavvi+5NS1luWTnQSqjl48k/3kahEvsFp770F58jIX+7DDlVDMfHBDVO h0jBHhVoAzoLu+PoyQa9XS0Q9VC2U7uvvxbVUAbc4umvqsOBDDqZdNnyNslqYK4c 2vN6J0UT8mLuZ+pnG+Aq8Qnzmg== -----END CERTIFICATE-----Generated at Thu Mar 26 02:30:07 2026 by rpki-client