$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF8B6/40E7FABA3AA611EAAC8F1875C4F9AE02/rYT0vL6zyTZfKCcVO6ac7SqZEuI.mft File: rYT0vL6zyTZfKCcVO6ac7SqZEuI.mft (raw, json) Hash identifier: cwnWKfrZQmYTreL2sC9GD0M/5IPpoo9Yvlm0Gkif3DM= Subject key identifier: 84:11:47:5A:5B:F6:D4:05:9B:CB:61:E6:55:0C:86:1B:85:C4:9D:84 Authority key identifier: AD:84:F4:BC:BE:B3:C9:36:5F:28:27:15:3B:A6:9C:ED:2A:99:12:E2 Certificate issuer: /CN=A91EF8B6/serialNumber=AD84F4BCBEB3C9365F2827153BA69CED2A9912E2 Certificate serial: 0BE1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rYT0vL6zyTZfKCcVO6ac7SqZEuI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF8B6/40E7FABA3AA611EAAC8F1875C4F9AE02/rYT0vL6zyTZfKCcVO6ac7SqZEuI.mft Manifest number: 0BD3 Signing time: Tue 24 Mar 2026 18:44:48 +0000 Manifest this update: Tue 24 Mar 2026 18:44:47 +0000 Manifest next update: Tue 31 Mar 2026 18:44:47 +0000 Files and hashes: 1: rYT0vL6zyTZfKCcVO6ac7SqZEuI.crl (hash: MTQ0wbYgeXXpYRBZwo+Ng2NjdymHccrusKilBYNbIr4=) 2: FB6D5292263C11EEB9F5DB43C4F9AE02.roa (hash: 9vfMSvXUgFAWrMwGngY+4Eec7WyIf24UFnNt67nkKsk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF8B6/40E7FABA3AA611EAAC8F1875C4F9AE02/rYT0vL6zyTZfKCcVO6ac7SqZEuI.crl rsync://rpki.apnic.net/member_repository/A91EF8B6/40E7FABA3AA611EAAC8F1875C4F9AE02/rYT0vL6zyTZfKCcVO6ac7SqZEuI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rYT0vL6zyTZfKCcVO6ac7SqZEuI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 18:44:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3041 (0xbe1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF8B6, serialNumber=AD84F4BCBEB3C9365F2827153BA69CED2A9912E2 Validity Not Before: Mar 24 18:44:47 2026 GMT Not After : Mar 31 18:44:47 2026 GMT Subject: CN=69c2dba0-bd2e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:b1:57:63:7f:46:43:37:04:b2:a7:fe:1b:37: e1:d8:ff:84:d7:6c:0b:23:e2:e4:87:2d:70:02:4c: 60:3b:1c:5f:9a:8a:c3:7d:a3:26:77:31:d1:8e:4b: e3:5b:52:e2:a8:c4:1a:1a:1e:80:0b:57:9c:3a:c2: 8e:98:05:35:3d:56:37:82:5c:e8:97:51:07:f2:35: 5f:3a:33:ff:30:5b:ee:82:9b:23:39:14:2d:8e:de: 9d:7b:b0:be:2e:54:df:fa:50:36:03:c3:5f:0f:fc: 19:88:46:d8:41:ef:f1:59:01:b6:a4:79:24:28:61: a3:e0:65:50:ef:95:3f:86:39:d8:5d:d4:08:b7:59: 79:9c:60:e6:0a:c6:2b:b4:a2:3f:80:66:c6:aa:04: 68:f2:9d:97:c6:77:89:e5:92:46:af:c7:e1:c7:b6: 34:41:05:d1:76:11:b8:a2:77:6b:9f:b6:fc:a7:d9: e7:d4:07:9d:ff:8d:0d:e8:ab:60:37:67:be:64:d2: 7d:90:b0:32:ad:5c:4e:f7:37:60:bc:95:76:34:78: 26:db:9d:1e:78:36:73:66:34:64:70:c4:ae:3d:b4: 9c:e7:a6:7d:e2:a1:fd:93:be:af:07:83:45:11:80: 01:9b:90:cb:36:d0:a6:e4:9b:f7:66:94:de:8b:18: 5e:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:11:47:5A:5B:F6:D4:05:9B:CB:61:E6:55:0C:86:1B:85:C4:9D:84 X509v3 Authority Key Identifier: keyid:AD:84:F4:BC:BE:B3:C9:36:5F:28:27:15:3B:A6:9C:ED:2A:99:12:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF8B6/40E7FABA3AA611EAAC8F1875C4F9AE02/rYT0vL6zyTZfKCcVO6ac7SqZEuI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rYT0vL6zyTZfKCcVO6ac7SqZEuI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF8B6/40E7FABA3AA611EAAC8F1875C4F9AE02/rYT0vL6zyTZfKCcVO6ac7SqZEuI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:a9:0e:5b:59:ef:03:b0:ea:88:18:76:1e:49:b1:28:f0:a2: de:40:85:14:0d:a3:7b:a0:52:c5:8b:0d:98:2b:4b:0e:d1:2d: 62:a1:4d:c2:9f:d9:c0:d5:e7:45:15:b4:59:ee:6c:76:93:04: cb:c5:f8:eb:92:ac:74:af:31:b0:36:95:c7:42:c2:29:f2:f6: 27:08:20:84:80:dc:c9:06:91:65:4d:3b:52:a0:98:f2:27:fa: d3:1d:a7:b9:c5:28:1c:44:9d:cf:fb:d0:76:fe:12:96:59:f3: aa:bc:f8:a0:58:b2:05:6d:fe:7c:81:41:2f:06:b8:11:f6:68: d3:92:37:34:93:7a:79:ee:58:a4:2e:bd:bc:f1:bd:eb:72:5f: b1:01:1f:b3:91:81:0d:a5:d9:5d:7f:ce:ae:c7:69:3f:13:8f: 04:7e:26:d9:2f:f2:c5:bf:8c:87:06:06:b2:05:c9:dd:2f:2e: 89:c9:d4:81:c3:f3:dc:18:e3:13:23:f0:be:3c:1c:30:05:08: 0f:4e:6b:3b:e2:09:4a:08:78:a8:f7:a8:53:6a:ea:93:a1:7c: c7:90:aa:8c:1f:9b:69:94:19:e5:39:0f:0d:3e:0a:7c:99:0e: 96:dc:98:02:ae:63:6d:3b:c0:27:e8:26:6b:fc:26:e4:ff:73: a5:7d:f3:91 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICC+EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUY4QjYxMTAvBgNVBAUTKEFEODRGNEJDQkVCM0M5MzY1RjI4MjcxNTNCQTY5Q0VE MkE5OTEyRTIwHhcNMjYwMzI0MTg0NDQ3WhcNMjYwMzMxMTg0NDQ3WjAYMRYwFAYD VQQDEw02OWMyZGJhMC1iZDJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmbFXY39GQzcEsqf+Gzfh2P+E12wLI+Lkhy1wAkxgOxxfmorDfaMmdzHRjkvj W1LiqMQaGh6AC1ecOsKOmAU1PVY3glzol1EH8jVfOjP/MFvugpsjORQtjt6de7C+ LlTf+lA2A8NfD/wZiEbYQe/xWQG2pHkkKGGj4GVQ75U/hjnYXdQIt1l5nGDmCsYr tKI/gGbGqgRo8p2XxneJ5ZJGr8fhx7Y0QQXRdhG4ondrn7b8p9nn1Aed/40N6Ktg N2e+ZNJ9kLAyrVxO9zdgvJV2NHgm250eeDZzZjRkcMSuPbSc56Z94qH9k76vB4NF EYABm5DLNtCm5Jv3ZpTeixheRQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIQRR1pb 9tQFm8th5lUMhhuFxJ2EMB8GA1UdIwQYMBaAFK2E9Ly+s8k2XygnFTumnO0qmRLi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRjhCNi80MEU3RkFCQTNB QTYxMUVBQUM4RjE4NzVDNEY5QUUwMi9yWVQwdkw2enlUWmZLQ2NWTzZhYzdTcVpF dUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JZVDB2TDZ6eVRaZktDY1ZPNmFjN1NxWkV1SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RjhCNi80MEU3RkFCQTNBQTYxMUVBQUM4RjE4NzVDNEY5QUUwMi9yWVQwdkw2enlU WmZLQ2NWTzZhYzdTcVpFdUkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAW6kOW1nvA7DqiBh2HkmxKPCi3kCFFA2je6BSxYsNmCtLDtEtYqFNwp/ZwNXn RRW0We5sdpMEy8X465KsdK8xsDaVx0LCKfL2JwgghIDcyQaRZU07UqCY8if60x2n ucUoHESdz/vQdv4Sllnzqrz4oFiyBW3+fIFBLwa4EfZo05I3NJN6ee5YpC69vPG9 63JfsQEfs5GBDaXZXX/OrsdpPxOPBH4m2S/yxb+MhwYGsgXJ3S8uicnUgcPz3Bjj EyPwvjwcMAUID05rO+IJSgh4qPeoU2rqk6F8x5CqjB+baZQZ5TkPDT4KfJkOltyY Aq5jbTvAJ+gma/wm5P9zpX3zkQ== -----END CERTIFICATE-----Generated at Thu Mar 26 06:25:48 2026 by rpki-client