$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.mft File: 0ypa3AVCwugXwgK-a3KB6GnReJc.mft (raw, json) Hash identifier: e1Fa76JnPF/gXzxHWAUoDpenYocNhF0sl93glqsG0js= Subject key identifier: 34:50:4B:13:67:18:AD:A2:CE:61:4F:45:CF:0F:03:55:22:EB:4A:80 Authority key identifier: D3:2A:5A:DC:05:42:C2:E8:17:C2:02:BE:6B:72:81:E8:69:D1:78:97 Certificate issuer: /CN=A91E0855/serialNumber=D32A5ADC0542C2E817C202BE6B7281E869D17897 Certificate serial: 0156 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0ypa3AVCwugXwgK-a3KB6GnReJc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.mft Manifest number: 014A Signing time: Wed 25 Mar 2026 04:33:47 +0000 Manifest this update: Wed 25 Mar 2026 04:33:47 +0000 Manifest next update: Wed 01 Apr 2026 04:33:47 +0000 Files and hashes: 1: 0ypa3AVCwugXwgK-a3KB6GnReJc.crl (hash: O6Kp8RPfZQu7LITOhP2J5sOGV+uj9VGIgF6iiGANtzk=) 2: 6F723CC0830B11F0B82E836DC4F9AE02.roa (hash: kic2dalBDWVuSnTSKRWGlC83NcfnCjH4W7+pZUZCDAs=) 3: 77D3D4A0FEDA11F0AB7A7279726F56BC.roa (hash: FHfqmVc0DH5T6GrvyUSWpVxXHt1ddRfHNNOxDC51WEY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.crl rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0ypa3AVCwugXwgK-a3KB6GnReJc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:33:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 342 (0x156) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0855, serialNumber=D32A5ADC0542C2E817C202BE6B7281E869D17897 Validity Not Before: Mar 25 04:33:47 2026 GMT Not After : Apr 1 04:33:47 2026 GMT Subject: CN=69c365ab-78a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:32:21:d6:ab:4b:36:b2:b3:eb:c6:78:d4:ca: 95:9e:c7:b5:f6:b5:cc:9f:cf:66:40:33:bc:81:ed: 14:a5:11:0a:10:5b:52:3a:64:fa:18:ca:23:f5:fd: be:cb:b6:79:46:97:a6:ef:a8:b1:73:55:be:2c:89: 34:48:e9:b4:e5:f8:23:c8:91:a4:15:83:e6:8f:30: bd:21:62:92:64:cd:3b:da:6e:e4:b9:e1:35:e2:6f: cf:91:14:11:4e:ea:6d:d8:c6:0a:cf:91:22:3f:9a: 07:4c:5f:c4:e3:40:15:c1:0c:22:2f:dc:2c:00:79: 45:64:5d:b4:ae:9a:56:c6:15:ba:47:df:b8:c0:87: 33:b7:69:e2:97:60:06:21:76:9e:01:7d:3b:6e:42: 11:06:c3:02:ad:38:4a:e4:9a:d6:35:81:c1:fb:78: df:49:12:b6:87:79:d0:8b:2d:2d:b7:2b:75:aa:21: b2:ef:ed:eb:07:83:3f:f8:84:5d:4b:2d:f8:43:69: 14:b4:a2:28:98:48:a4:a8:57:f2:ed:ef:80:5e:19: a7:3b:48:af:43:ab:03:60:f6:5e:59:55:ac:cb:0f: e0:0d:e8:9a:4c:91:2a:ff:aa:ab:6d:59:d4:af:5d: e2:65:8c:31:46:61:cb:fb:53:41:b7:b8:6f:9d:b8: c0:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:50:4B:13:67:18:AD:A2:CE:61:4F:45:CF:0F:03:55:22:EB:4A:80 X509v3 Authority Key Identifier: keyid:D3:2A:5A:DC:05:42:C2:E8:17:C2:02:BE:6B:72:81:E8:69:D1:78:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0ypa3AVCwugXwgK-a3KB6GnReJc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:36:e9:3f:0d:a1:d6:4c:83:71:f3:d4:20:d6:46:f8:4d:56: 69:50:4f:fb:bc:b9:ed:dc:a2:51:96:06:ce:42:3c:ce:91:1b: c2:c4:f8:31:db:29:8b:bb:ff:62:41:83:be:b0:ed:e9:f2:29: 5c:44:1b:ca:12:36:fd:bf:d9:f8:48:82:98:d0:38:69:37:a8: 11:d5:14:d6:b7:38:83:ee:1a:ef:d7:40:47:8b:82:2e:45:a2: be:2f:f1:25:5f:a6:49:4e:a1:c1:67:2e:3c:9b:ea:42:c7:01: 75:d6:79:92:89:95:27:86:d1:12:ec:de:2d:ba:fb:d0:9d:ec: 89:4f:cb:ee:ad:b3:51:fd:a1:4c:fd:f0:bd:67:7c:51:b5:88: 0c:46:15:42:61:1b:ad:b3:7e:84:6b:b6:67:0a:32:be:96:53: da:c0:cf:62:cd:27:54:bb:83:da:a5:e2:9f:c5:1d:c8:b0:61: 76:ad:4d:ce:06:1e:0d:aa:81:d7:fc:2d:71:05:8c:68:88:5a: 95:24:31:a4:59:40:d4:36:c9:ab:b6:ea:1f:90:80:1a:8e:c2: ff:91:76:a4:9c:10:e1:33:fc:6d:72:1a:b1:6b:21:a0:aa:1b: 37:d7:c3:3c:8a:86:4a:e9:56:99:cc:65:13:76:94:15:f5:3e: fd:2f:11:ac -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAVYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTA4NTUxMTAvBgNVBAUTKEQzMkE1QURDMDU0MkMyRTgxN0MyMDJCRTZCNzI4MUU4 NjlEMTc4OTcwHhcNMjYwMzI1MDQzMzQ3WhcNMjYwNDAxMDQzMzQ3WjAYMRYwFAYD VQQDEw02OWMzNjVhYi03OGE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnDIh1qtLNrKz68Z41MqVnse19rXMn89mQDO8ge0UpREKEFtSOmT6GMoj9f2+ y7Z5Rpem76ixc1W+LIk0SOm05fgjyJGkFYPmjzC9IWKSZM072m7kueE14m/PkRQR Tupt2MYKz5EiP5oHTF/E40AVwQwiL9wsAHlFZF20rppWxhW6R9+4wIczt2nil2AG IXaeAX07bkIRBsMCrThK5JrWNYHB+3jfSRK2h3nQiy0ttyt1qiGy7+3rB4M/+IRd Sy34Q2kUtKIomEikqFfy7e+AXhmnO0ivQ6sDYPZeWVWsyw/gDeiaTJEq/6qrbVnU r13iZYwxRmHL+1NBt7hvnbjAbwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDRQSxNn GK2izmFPRc8PA1Ui60qAMB8GA1UdIwQYMBaAFNMqWtwFQsLoF8ICvmtygehp0XiX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMDg1NS81MDRDRkZFMjQ0 OTYxMUVGOEU4NEU2M0RDNEY5QUUwMi8weXBhM0FWQ3d1Z1h3Z0stYTNLQjZHblJl SmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzB5cGEzQVZDd3VnWHdnSy1hM0tCNkduUmVKYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MDg1NS81MDRDRkZFMjQ0OTYxMUVGOEU4NEU2M0RDNEY5QUUwMi8weXBhM0FWQ3d1 Z1h3Z0stYTNLQjZHblJlSmMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAQTbpPw2h1kyDcfPUINZG+E1WaVBP+7y57dyiUZYGzkI8zpEbwsT4Mdspi7v/ YkGDvrDt6fIpXEQbyhI2/b/Z+EiCmNA4aTeoEdUU1rc4g+4a79dAR4uCLkWivi/x JV+mSU6hwWcuPJvqQscBddZ5komVJ4bREuzeLbr70J3siU/L7q2zUf2hTP3wvWd8 UbWIDEYVQmEbrbN+hGu2ZwoyvpZT2sDPYs0nVLuD2qXin8UdyLBhdq1NzgYeDaqB 1/wtcQWMaIhalSQxpFlA1DbJq7bqH5CAGo7C/5F2pJwQ4TP8bXIasWshoKobN9fD PIqGSulWmcxlE3aUFfU+/S8RrA== -----END CERTIFICATE-----Generated at Thu Mar 26 22:05:09 2026 by rpki-client