$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.mft File: ySTN5BVFl0tvV4MubGA7zIlm2eA.mft (raw, json) Hash identifier: r7pnrStoJZyLfkGHsXstBfpJaXN109mTvctFwopRE9U= Subject key identifier: E5:D2:67:27:F9:71:25:EA:6D:5A:56:5E:69:82:8B:AB:5F:BA:4C:9A Authority key identifier: C9:24:CD:E4:15:45:97:4B:6F:57:83:2E:6C:60:3B:CC:89:66:D9:E0 Certificate issuer: /CN=A91F2DDD/serialNumber=C924CDE41545974B6F57832E6C603BCC8966D9E0 Certificate serial: 03B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ySTN5BVFl0tvV4MubGA7zIlm2eA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.mft Manifest number: 1293 Signing time: Tue 24 Mar 2026 17:30:04 +0000 Manifest this update: Tue 24 Mar 2026 17:30:03 +0000 Manifest next update: Tue 31 Mar 2026 17:30:03 +0000 Files and hashes: 1: ySTN5BVFl0tvV4MubGA7zIlm2eA.crl (hash: z36yd7VfQyEA0VG2ya7eknuuqIFDCGIfpyfRbGA5aZg=) 2: 2FBEB0B0D5B011EC90A8A031C4F9AE02.roa (hash: +CMTAtAhA5A3bcW+qweztRhJOEGADprPEZzn/dd78sw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.crl rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ySTN5BVFl0tvV4MubGA7zIlm2eA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 17:30:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 946 (0x3b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2DDD, serialNumber=C924CDE41545974B6F57832E6C603BCC8966D9E0 Validity Not Before: Mar 24 17:30:03 2026 GMT Not After : Mar 31 17:30:03 2026 GMT Subject: CN=69c2ca1c-5228 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:fb:29:6b:af:f0:68:c1:8a:2c:a9:7b:ef:0c: 28:76:cd:56:d7:17:98:20:3e:9f:ff:7c:68:6d:b1: 62:b8:c1:08:e6:92:53:ef:88:2b:9a:0e:9e:6e:fa: a0:c3:51:42:aa:9e:fc:eb:6a:f5:4c:1d:f5:6c:9f: d8:2b:56:62:3f:55:df:a6:ad:bc:13:54:24:1a:f6: 7a:2d:b8:8d:ac:d8:8d:48:2e:43:d6:78:a2:15:1e: a8:59:3a:fd:2e:6f:23:6d:18:e5:35:fb:f1:5a:9c: d2:29:e9:34:14:8a:1a:31:6d:0f:42:1a:34:3a:58: b5:aa:24:19:d3:7b:17:d3:a8:b7:28:1b:e8:c3:65: 58:a1:5d:2a:c1:3d:e1:95:8c:2c:8e:7a:4c:49:65: a1:f8:68:22:8c:8a:d5:da:cb:09:41:7f:73:22:a5: e6:91:99:c8:90:2b:c1:14:53:72:f7:bb:d8:28:da: 0a:22:79:d5:b0:22:d5:0a:df:df:c7:95:56:59:3c: a5:ec:6d:c1:ac:65:d9:31:96:45:84:7d:56:47:27: 46:dc:6c:17:f0:3c:d1:7e:4c:28:c6:a7:dd:95:f2: 7a:fb:f6:44:0f:c6:fe:b9:5e:76:5d:ab:d6:b8:26: 23:a7:65:62:37:06:93:9f:98:45:37:58:14:ba:d3: 4b:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:D2:67:27:F9:71:25:EA:6D:5A:56:5E:69:82:8B:AB:5F:BA:4C:9A X509v3 Authority Key Identifier: keyid:C9:24:CD:E4:15:45:97:4B:6F:57:83:2E:6C:60:3B:CC:89:66:D9:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ySTN5BVFl0tvV4MubGA7zIlm2eA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:c0:31:2f:d9:a5:10:21:91:f4:7e:3b:a6:49:e1:3f:ac:31: e9:b1:6d:c9:5a:25:2f:0e:ba:49:79:a5:cf:aa:a3:29:0f:de: ec:0b:df:6c:a6:a7:65:08:9f:72:b2:f7:62:ee:bb:34:99:a1: 88:54:b4:6d:62:0a:94:9f:d2:fa:5c:4a:2f:3e:40:f3:43:41: 7e:fb:29:fa:4c:3e:d9:bc:88:ae:72:f9:c7:c9:0b:09:94:d5: d7:b0:cc:19:47:a7:43:91:34:30:95:7e:5a:36:d6:05:96:6a: 6e:62:58:e7:c2:a0:41:15:53:9a:d8:37:41:f8:75:18:44:a1: be:15:6f:35:8c:2f:42:ab:8f:80:a1:53:d3:20:d3:2c:69:2d: 88:58:80:e8:74:9b:5a:ce:2b:ba:30:b6:4c:a2:f2:c7:22:70: 56:80:9f:ec:92:c3:a3:2a:d9:4c:f2:0c:f8:8d:d7:2b:4e:b4: c1:9b:08:1c:3d:27:5b:f3:e2:71:82:8f:43:27:00:27:78:07: 3d:4b:26:3e:03:a8:ab:35:16:72:f2:12:cd:30:14:a6:37:53: 5b:9a:d3:54:20:f2:ba:5b:8d:7a:9c:2d:1b:4d:a9:40:bf:48: 1d:98:fe:90:b5:3b:47:98:b5:a4:59:c4:c6:29:a8:2d:fa:fd: 09:da:85:4a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA7IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjJEREQxMTAvBgNVBAUTKEM5MjRDREU0MTU0NTk3NEI2RjU3ODMyRTZDNjAzQkND ODk2NkQ5RTAwHhcNMjYwMzI0MTczMDAzWhcNMjYwMzMxMTczMDAzWjAYMRYwFAYD VQQDEw02OWMyY2ExYy01MjI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApfspa6/waMGKLKl77wwods1W1xeYID6f/3xobbFiuMEI5pJT74grmg6ebvqg w1FCqp7862r1TB31bJ/YK1ZiP1Xfpq28E1QkGvZ6LbiNrNiNSC5D1niiFR6oWTr9 Lm8jbRjlNfvxWpzSKek0FIoaMW0PQho0Oli1qiQZ03sX06i3KBvow2VYoV0qwT3h lYwsjnpMSWWh+GgijIrV2ssJQX9zIqXmkZnIkCvBFFNy97vYKNoKInnVsCLVCt/f x5VWWTyl7G3BrGXZMZZFhH1WRydG3GwX8DzRfkwoxqfdlfJ6+/ZED8b+uV52XavW uCYjp2ViNwaTn5hFN1gUutNLlwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOXSZyf5 cSXqbVpWXmmCi6tfukyaMB8GA1UdIwQYMBaAFMkkzeQVRZdLb1eDLmxgO8yJZtng MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMkRERC9CNEEyODM2MjlF MUIxMUU5OEUxRTRFNUVDNEY5QUUwMi95U1RONUJWRmwwdHZWNE11YkdBN3pJbG0y ZUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lTVE41QlZGbDB0dlY0TXViR0E3eklsbTJlQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MkRERC9CNEEyODM2MjlFMUIxMUU5OEUxRTRFNUVDNEY5QUUwMi95U1RONUJWRmww dHZWNE11YkdBN3pJbG0yZUEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAQ8AxL9mlECGR9H47pknhP6wx6bFtyVolLw66SXmlz6qjKQ/e7AvfbKanZQif crL3Yu67NJmhiFS0bWIKlJ/S+lxKLz5A80NBfvsp+kw+2byIrnL5x8kLCZTV17DM GUenQ5E0MJV+WjbWBZZqbmJY58KgQRVTmtg3Qfh1GEShvhVvNYwvQquPgKFT0yDT LGktiFiA6HSbWs4rujC2TKLyxyJwVoCf7JLDoyrZTPIM+I3XK060wZsIHD0nW/Pi cYKPQycAJ3gHPUsmPgOoqzUWcvISzTAUpjdTW5rTVCDyuluNepwtG02pQL9IHZj+ kLU7R5i1pFnEximoLfr9CdqFSg== -----END CERTIFICATE-----Generated at Thu Mar 26 04:09:14 2026 by rpki-client