$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.mft File: yAcP0GGoUf-K7eDeDDYH7rmP9wE.mft (raw, json) Hash identifier: 48RLRG59/Ez7s2j/5YyTFqF2Z4nGR4NEcw9Yo1VnNV4= Subject key identifier: 10:2B:E5:58:A2:DB:AB:9D:71:84:4E:08:A6:1C:86:4F:AE:C6:8F:34 Authority key identifier: C8:07:0F:D0:61:A8:51:FF:8A:ED:E0:DE:0C:36:07:EE:B9:8F:F7:01 Certificate issuer: /CN=A91E4D3D/serialNumber=C8070FD061A851FF8AEDE0DE0C3607EEB98FF701 Certificate serial: 0683 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yAcP0GGoUf-K7eDeDDYH7rmP9wE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.mft Manifest number: 065B Signing time: Thu 26 Mar 2026 22:37:23 +0000 Manifest this update: Thu 26 Mar 2026 22:37:23 +0000 Manifest next update: Thu 02 Apr 2026 22:37:23 +0000 Files and hashes: 1: yAcP0GGoUf-K7eDeDDYH7rmP9wE.crl (hash: 0WjwDNvrfLs27XjvguKrZhoieTcEucTu/OFQ1A7fsig=) 2: 6954A6281D1811F1BB26F0200F3D8C67.roa (hash: 6kykLOl9r4HzpXuTyrWIkt0JckBYVmNudo4YO7qNUhU=) 3: 5FA1BF8802DD11EE86865A23C4F9AE02.roa (hash: GFfQfs1rBXk5RvNn/1eLrsagDcvE+KrBjwNFBGF3aQo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.crl rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yAcP0GGoUf-K7eDeDDYH7rmP9wE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 22:37:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1667 (0x683) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4D3D, serialNumber=C8070FD061A851FF8AEDE0DE0C3607EEB98FF701 Validity Not Before: Mar 26 22:37:23 2026 GMT Not After : Apr 2 22:37:23 2026 GMT Subject: CN=69c5b523-da8c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:59:92:66:b2:a8:f4:e8:68:99:9e:76:46:2b: be:0c:67:56:62:3c:2f:d7:d6:71:c0:b7:94:ad:2a: 48:11:f3:63:ce:e7:31:cd:ed:88:a4:4d:77:24:aa: 1e:6e:35:01:aa:4f:d8:ec:78:b1:a8:3a:bd:9d:ff: eb:92:e5:f7:c0:fd:5f:68:b4:f7:92:78:f2:5f:6c: e6:a9:a2:a9:b8:10:56:81:4b:00:4b:5a:9c:af:18: 6f:a6:fe:9d:11:03:e9:ad:06:1a:56:c4:d8:03:e5: 82:5c:11:a8:da:41:4e:e6:02:3a:02:54:aa:5e:b6: 1c:69:24:f6:90:6c:38:23:8d:3a:f8:f8:2e:20:d5: b2:fe:59:f2:47:5e:9e:8d:5a:09:bb:67:3c:98:3d: 73:54:75:33:3b:1c:be:e1:8d:1f:b3:58:9d:22:4f: 35:8b:8d:3a:60:73:15:0e:e9:b8:08:47:66:50:ac: ef:17:52:f8:41:da:c3:89:39:dd:8f:1f:b5:0f:ec: e3:31:6f:a8:a0:06:55:4a:97:6a:62:cc:4e:0e:f3: 92:20:87:3e:e5:d0:7b:a9:9e:46:39:2a:2e:6a:bb: f4:30:75:83:0d:83:23:d1:20:d3:47:67:7d:ca:19: f3:d6:18:0f:4d:b0:78:59:f1:a0:ad:6e:19:28:00: 00:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:2B:E5:58:A2:DB:AB:9D:71:84:4E:08:A6:1C:86:4F:AE:C6:8F:34 X509v3 Authority Key Identifier: keyid:C8:07:0F:D0:61:A8:51:FF:8A:ED:E0:DE:0C:36:07:EE:B9:8F:F7:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yAcP0GGoUf-K7eDeDDYH7rmP9wE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:cb:dd:43:a7:18:9b:9d:d7:95:da:e7:8d:e7:3b:5a:4c:38: 1b:a6:71:ec:38:40:39:97:cd:0a:21:a5:25:f6:e5:44:98:e9: 19:c3:ac:f2:79:ee:f5:bc:83:0b:68:f1:fc:6a:64:c3:21:4e: 2f:4d:3b:d6:09:d1:a6:29:36:4e:23:52:ea:5e:0b:bb:22:07: 8f:4f:a1:00:c4:21:57:eb:c1:c8:71:92:9b:d9:f5:ab:52:32: cf:4a:71:09:f0:d3:c7:2a:2f:ca:ff:80:e2:a5:a5:56:9d:07: 79:4a:18:6d:a5:b7:7e:b5:5b:7b:bf:5d:0c:7a:58:6e:fa:5f: be:f6:80:4f:ad:a1:08:54:30:7d:86:8c:13:9e:07:8f:f6:14: bf:bb:91:53:1c:23:70:30:0f:6e:af:a6:f2:78:c2:79:4a:06: 27:ec:e9:5c:44:22:fc:28:2d:1b:00:93:61:a6:4a:26:23:e0: ee:e9:a5:f5:6b:89:2f:46:96:85:a9:24:7e:4d:91:44:14:5b: 06:c2:07:4f:a2:84:28:74:d7:a2:31:71:1a:27:12:4b:e4:d7: 8a:ab:c0:5a:26:96:cd:27:23:a1:7b:ac:a1:88:a4:5b:74:2e: 2d:78:2c:fa:5d:de:f9:89:da:78:46:d0:6b:13:72:a2:ae:92: 62:6a:d4:9a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBoMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTREM0QxMTAvBgNVBAUTKEM4MDcwRkQwNjFBODUxRkY4QUVERTBERTBDMzYwN0VF Qjk4RkY3MDEwHhcNMjYwMzI2MjIzNzIzWhcNMjYwNDAyMjIzNzIzWjAYMRYwFAYD VQQDEw02OWM1YjUyMy1kYThjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr1mSZrKo9OhomZ52Riu+DGdWYjwv19ZxwLeUrSpIEfNjzucxze2IpE13JKoe bjUBqk/Y7HixqDq9nf/rkuX3wP1faLT3knjyX2zmqaKpuBBWgUsAS1qcrxhvpv6d EQPprQYaVsTYA+WCXBGo2kFO5gI6AlSqXrYcaST2kGw4I406+PguINWy/lnyR16e jVoJu2c8mD1zVHUzOxy+4Y0fs1idIk81i406YHMVDum4CEdmUKzvF1L4QdrDiTnd jx+1D+zjMW+ooAZVSpdqYsxODvOSIIc+5dB7qZ5GOSouarv0MHWDDYMj0SDTR2d9 yhnz1hgPTbB4WfGgrW4ZKAAA6wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBAr5Vii 26udcYROCKYchk+uxo80MB8GA1UdIwQYMBaAFMgHD9BhqFH/iu3g3gw2B+65j/cB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEQzRC9CMDIwMkQzMkQ4 QjkxMUVCQUJDMUY0ODVDNEY5QUUwMi95QWNQMEdHb1VmLUs3ZURlRERZSDdybVA5 d0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lBY1AwR0dvVWYtSzdlRGVERFlIN3JtUDl3RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NEQzRC9CMDIwMkQzMkQ4QjkxMUVCQUJDMUY0ODVDNEY5QUUwMi95QWNQMEdHb1Vm LUs3ZURlRERZSDdybVA5d0UubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEASsvdQ6cYm53Xldrnjec7Wkw4G6Zx7DhAOZfNCiGlJfblRJjpGcOs8nnu9byD C2jx/GpkwyFOL0071gnRpik2TiNS6l4LuyIHj0+hAMQhV+vByHGSm9n1q1Iyz0px CfDTxyovyv+A4qWlVp0HeUoYbaW3frVbe79dDHpYbvpfvvaAT62hCFQwfYaME54H j/YUv7uRUxwjcDAPbq+m8njCeUoGJ+zpXEQi/CgtGwCTYaZKJiPg7uml9WuJL0aW hakkfk2RRBRbBsIHT6KEKHTXojFxGicSS+TXiqvAWiaWzScjoXusoYikW3QuLXgs +l3e+YnaeEbQaxNyoq6SYmrUmg== -----END CERTIFICATE-----Generated at Fri Mar 27 01:28:23 2026 by rpki-client