$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.mft File: YAa5ZYMT2GSZFhnWl5sPfgHktmg.mft (raw, json) Hash identifier: pefehzf3JnsvZgr9zebdxdmAIcbZnsmkTnpvxgow8pc= Subject key identifier: D7:4F:8D:49:B6:A0:B6:F9:69:14:CA:30:DA:2E:78:81:E4:D5:9A:C1 Authority key identifier: 60:06:B9:65:83:13:D8:64:99:16:19:D6:97:9B:0F:7E:01:E4:B6:68 Certificate issuer: /CN=A91E5A08/serialNumber=6006B9658313D864991619D6979B0F7E01E4B668 Certificate serial: 022B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YAa5ZYMT2GSZFhnWl5sPfgHktmg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.mft Manifest number: 0225 Signing time: Wed 25 Mar 2026 02:06:48 +0000 Manifest this update: Wed 25 Mar 2026 02:06:47 +0000 Manifest next update: Wed 01 Apr 2026 02:06:47 +0000 Files and hashes: 1: YAa5ZYMT2GSZFhnWl5sPfgHktmg.crl (hash: EUwfgRmf3ASibUf77PY/7mwwgkCyxtpojuC4JLGPszc=) 2: EC9A7C9EE26811EDBB19B85EC4F9AE02.roa (hash: kXMMTzpfUp5tzsj3ErSeWyi6kiUv6/A6nv/Z2vTJWmA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.crl rsync://rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YAa5ZYMT2GSZFhnWl5sPfgHktmg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 02:06:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 555 (0x22b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5A08, serialNumber=6006B9658313D864991619D6979B0F7E01E4B668 Validity Not Before: Mar 25 02:06:47 2026 GMT Not After : Apr 1 02:06:47 2026 GMT Subject: CN=69c34337-4fda Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:a9:49:a2:75:ac:79:f3:9d:f7:cc:e9:62:70: eb:d4:43:97:99:f9:da:b1:9e:40:49:30:80:5d:4c: 9e:9f:c5:45:7b:cc:b3:21:d1:f6:46:6e:10:17:c0: 01:d9:38:43:8d:71:5e:e6:bf:b5:8e:b2:a4:77:a6: 10:47:f8:6b:d9:9a:f8:db:d6:8a:52:02:77:6c:14: b6:20:aa:f7:53:6e:81:42:be:23:4d:fa:ce:2d:e0: 04:c7:99:aa:1a:79:5d:3a:55:d1:1b:2b:1b:82:4a: ed:d8:ea:15:bc:06:48:7b:21:92:d7:07:93:99:8f: ca:38:ca:15:ca:fe:63:01:a5:ed:57:c3:d5:6e:fc: d8:e2:f5:05:8a:b3:8b:bb:1f:2e:b0:09:3c:69:8d: 39:7e:d2:0f:02:3d:b8:62:f4:52:5e:58:b5:1f:a2: 26:70:7e:bf:b3:ea:02:f5:cc:00:cb:f6:8c:ee:ef: 81:54:b7:56:30:6b:91:b3:29:c3:d1:c7:d0:29:cd: 37:4c:91:f6:0f:79:8b:c6:83:b1:3c:cb:5a:30:36: b5:61:64:61:5b:69:77:32:57:d7:f8:b8:25:8c:d0: 42:2f:f4:a2:84:44:5e:18:9d:3d:70:7a:c7:ed:e1: 0f:56:5e:e6:ed:c5:ca:20:56:12:69:71:cd:0e:84: 65:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:4F:8D:49:B6:A0:B6:F9:69:14:CA:30:DA:2E:78:81:E4:D5:9A:C1 X509v3 Authority Key Identifier: keyid:60:06:B9:65:83:13:D8:64:99:16:19:D6:97:9B:0F:7E:01:E4:B6:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YAa5ZYMT2GSZFhnWl5sPfgHktmg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:05:c4:ac:5c:94:1f:f7:80:ad:23:6a:df:a1:78:27:e3:5e: c7:b9:5f:87:7d:75:49:0b:3f:e6:8c:dd:4b:2c:fd:83:d0:5f: 69:a7:a8:cf:87:0b:ab:8b:ed:66:f0:78:99:5c:22:1f:26:f5: 68:4a:36:3e:8b:30:fa:83:bf:4b:54:fd:60:0d:7d:56:8e:ec: e7:d0:5d:3e:4a:ed:7c:d6:db:f6:82:fd:f2:8f:59:04:d0:fc: 0a:ac:06:a0:ac:51:fc:ea:c0:7a:25:98:93:3c:86:5d:38:95: 69:b7:c6:70:e0:c3:40:0a:81:ea:23:18:1f:d1:93:94:05:fc: df:47:a6:02:54:67:6e:ac:a5:42:8b:65:45:c1:18:31:0f:c8: 45:05:81:c9:d3:68:01:2a:a7:7a:a3:80:31:6d:49:06:f1:06: 07:34:0a:f7:9a:8d:67:1e:e2:d3:e5:f6:c4:17:e7:54:66:3c: a4:d7:a5:74:20:58:af:ef:29:8b:6e:45:7e:89:90:8f:8c:75: d6:dc:e3:18:f5:a2:ed:78:da:71:33:d3:d0:a8:e6:29:82:e6: 6c:41:37:29:3a:f8:0d:fa:ca:b8:1d:0d:64:b3:07:40:10:39: 3e:24:bc:bb:7f:d4:e8:2e:53:94:5f:ba:fc:1c:aa:a4:b8:a9: 96:4a:d8:a7 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAiswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTVBMDgxMTAvBgNVBAUTKDYwMDZCOTY1ODMxM0Q4NjQ5OTE2MTlENjk3OUIwRjdF MDFFNEI2NjgwHhcNMjYwMzI1MDIwNjQ3WhcNMjYwNDAxMDIwNjQ3WjAYMRYwFAYD VQQDEw02OWMzNDMzNy00ZmRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvqlJonWsefOd98zpYnDr1EOXmfnasZ5ASTCAXUyen8VFe8yzIdH2Rm4QF8AB 2ThDjXFe5r+1jrKkd6YQR/hr2Zr429aKUgJ3bBS2IKr3U26BQr4jTfrOLeAEx5mq GnldOlXRGysbgkrt2OoVvAZIeyGS1weTmY/KOMoVyv5jAaXtV8PVbvzY4vUFirOL ux8usAk8aY05ftIPAj24YvRSXli1H6ImcH6/s+oC9cwAy/aM7u+BVLdWMGuRsynD 0cfQKc03TJH2D3mLxoOxPMtaMDa1YWRhW2l3MlfX+LgljNBCL/SihEReGJ09cHrH 7eEPVl7m7cXKIFYSaXHNDoRlLwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNdPjUm2 oLb5aRTKMNoueIHk1ZrBMB8GA1UdIwQYMBaAFGAGuWWDE9hkmRYZ1pebD34B5LZo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNUEwOC9CMDYwQ0M1NEUy NjUxMUVEODUwQ0RFNTRDNEY5QUUwMi9ZQWE1WllNVDJHU1pGaG5XbDVzUGZnSGt0 bWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lBYTVaWU1UMkdTWkZobldsNXNQZmdIa3RtZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NUEwOC9CMDYwQ0M1NEUyNjUxMUVEODUwQ0RFNTRDNEY5QUUwMi9ZQWE1WllNVDJH U1pGaG5XbDVzUGZnSGt0bWcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAIAXErFyUH/eArSNq36F4J+Nex7lfh311SQs/5ozdSyz9g9Bfaaeoz4cLq4vt ZvB4mVwiHyb1aEo2Posw+oO/S1T9YA19Vo7s59BdPkrtfNbb9oL98o9ZBND8CqwG oKxR/OrAeiWYkzyGXTiVabfGcODDQAqB6iMYH9GTlAX830emAlRnbqylQotlRcEY MQ/IRQWBydNoASqneqOAMW1JBvEGBzQK95qNZx7i0+X2xBfnVGY8pNeldCBYr+8p i25FfomQj4x11tzjGPWi7XjacTPT0KjmKYLmbEE3KTr4DfrKuB0NZLMHQBA5PiS8 u3/U6C5TlF+6/ByqpLiplkrYpw== -----END CERTIFICATE-----Generated at Thu Mar 26 00:55:43 2026 by rpki-client