$ rpki-client -vvf rpki.apnic.net/member_repository/A91F428C/449BA5061DA011E2B6D8709108B02CD2/YyyN4CILjBC0H_Sb_4tDLPj_0lQ.mft File: YyyN4CILjBC0H_Sb_4tDLPj_0lQ.mft (raw, json) Hash identifier: TaBWfU4rrAaNe/aQm/yPpgydY+l2V4maEN8EfQctsJ0= Subject key identifier: F8:4E:92:CE:47:22:EB:9A:E7:88:79:E5:B8:1E:BD:86:50:3D:39:5F Authority key identifier: 63:2C:8D:E0:22:0B:8C:10:B4:1F:F4:9B:FF:8B:43:2C:F8:FF:D2:54 Certificate issuer: /CN=A91F428C/serialNumber=632C8DE0220B8C10B41FF49BFF8B432CF8FFD254 Certificate serial: 352C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YyyN4CILjBC0H_Sb_4tDLPj_0lQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F428C/449BA5061DA011E2B6D8709108B02CD2/YyyN4CILjBC0H_Sb_4tDLPj_0lQ.mft Manifest number: 3525 Signing time: Thu 26 Mar 2026 15:04:52 +0000 Manifest this update: Thu 26 Mar 2026 15:04:51 +0000 Manifest next update: Thu 02 Apr 2026 15:04:51 +0000 Files and hashes: 1: YyyN4CILjBC0H_Sb_4tDLPj_0lQ.crl (hash: LwTQkQ6y4pevWEgvmtLN9He0TaIGuBXNol6mqifIhyA=) 2: 8852DDDEBED411ECBA66025BC4F9AE02.roa (hash: oxiDTJi92uEmvEoDjgv/y1DqmarljGA90TImE98cgWs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F428C/449BA5061DA011E2B6D8709108B02CD2/YyyN4CILjBC0H_Sb_4tDLPj_0lQ.crl rsync://rpki.apnic.net/member_repository/A91F428C/449BA5061DA011E2B6D8709108B02CD2/YyyN4CILjBC0H_Sb_4tDLPj_0lQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YyyN4CILjBC0H_Sb_4tDLPj_0lQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 15:04:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13612 (0x352c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F428C, serialNumber=632C8DE0220B8C10B41FF49BFF8B432CF8FFD254 Validity Not Before: Mar 26 15:04:51 2026 GMT Not After : Apr 2 15:04:51 2026 GMT Subject: CN=69c54b14-d751 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:cd:42:d5:55:9c:7e:24:1a:e4:73:c0:60:3d: a7:60:14:08:88:3b:b4:1b:f4:ee:92:5b:4b:ad:44: 72:4b:2d:fe:54:99:49:08:7b:3c:66:ec:a3:e2:41: 06:ed:20:73:7a:70:95:4a:a7:89:96:d3:18:9f:65: 27:b1:2f:2b:78:7b:bd:3f:1f:bc:33:43:dc:ca:01: 0e:0c:20:d1:1e:a9:de:be:3b:47:23:3f:f1:f5:04: 17:07:39:88:76:4a:94:ae:11:cb:f9:4d:82:2a:1d: 47:12:44:ba:96:6a:6c:90:8e:a8:db:c4:87:cd:cd: b4:87:ba:77:c8:8b:ce:cd:d7:f7:14:9a:b6:1c:5e: 77:be:98:df:ff:c1:be:88:d0:21:2d:1b:5f:58:91: 30:26:c4:f9:31:22:46:7d:9c:68:8d:e3:1f:f0:57: 47:8b:e9:cd:13:80:10:4d:e6:c7:a4:23:86:e9:8e: 5b:0a:57:7b:62:b8:32:66:04:65:07:69:7f:63:45: 22:80:7c:b3:44:d8:83:e6:2d:cc:ea:4f:6d:aa:9c: a2:4e:ed:52:15:83:ff:b5:19:3a:9f:4a:30:6a:12: bd:17:12:ce:a8:55:1a:26:a6:fc:9e:77:d8:2d:da: 59:09:71:b8:c7:b4:9f:f1:02:6f:c2:23:61:8a:94: c8:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:4E:92:CE:47:22:EB:9A:E7:88:79:E5:B8:1E:BD:86:50:3D:39:5F X509v3 Authority Key Identifier: keyid:63:2C:8D:E0:22:0B:8C:10:B4:1F:F4:9B:FF:8B:43:2C:F8:FF:D2:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F428C/449BA5061DA011E2B6D8709108B02CD2/YyyN4CILjBC0H_Sb_4tDLPj_0lQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YyyN4CILjBC0H_Sb_4tDLPj_0lQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F428C/449BA5061DA011E2B6D8709108B02CD2/YyyN4CILjBC0H_Sb_4tDLPj_0lQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:0e:b5:ed:64:89:59:bd:cc:d2:86:d5:ee:fb:b7:86:d8:58: be:ce:29:67:2b:20:99:32:bf:2b:27:94:0c:8f:f7:af:ef:34: 71:5c:a1:03:af:39:2c:8d:7c:f0:3d:54:4a:55:fd:a1:7a:d7: 7b:ea:41:d2:7f:86:a7:c6:42:61:35:dd:28:47:65:0e:3c:9c: b7:7f:ee:bf:2e:e1:5b:9a:87:04:16:d7:b3:09:6d:0f:08:75: 13:60:29:a9:3f:e3:9a:0f:30:a9:92:1c:82:d9:8a:34:46:1c: fa:ae:f8:b1:1b:21:da:58:8c:0a:3f:2c:a2:c6:c9:a2:17:ba: fa:dc:a2:db:d9:85:7b:0c:9f:27:c5:8b:1f:1c:54:d6:3d:73: 80:ee:57:34:54:eb:c7:a5:7f:b6:6a:6d:a8:26:b7:8f:9f:b8: 67:3b:56:77:e1:e6:b6:28:00:fd:5f:27:51:68:97:57:e6:83: 13:67:0c:09:f8:07:ca:7a:da:bb:7d:fa:f9:d0:89:2e:2e:63: 4c:1d:5f:5e:e9:25:b7:1b:bb:b8:1f:25:c4:3a:25:71:09:77: f8:08:2c:e3:04:78:42:f8:44:37:15:ff:27:62:37:56:fe:88: cd:f1:cf:e5:0b:f8:58:11:aa:57:ca:4a:52:66:27:ce:3e:5e: 23:b3:ab:21 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNSwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjQyOEMxMTAvBgNVBAUTKDYzMkM4REUwMjIwQjhDMTBCNDFGRjQ5QkZGOEI0MzJD RjhGRkQyNTQwHhcNMjYwMzI2MTUwNDUxWhcNMjYwNDAyMTUwNDUxWjAYMRYwFAYD VQQDEw02OWM1NGIxNC1kNzUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwM1C1VWcfiQa5HPAYD2nYBQIiDu0G/TukltLrURySy3+VJlJCHs8Zuyj4kEG 7SBzenCVSqeJltMYn2UnsS8reHu9Px+8M0PcygEODCDRHqnevjtHIz/x9QQXBzmI dkqUrhHL+U2CKh1HEkS6lmpskI6o28SHzc20h7p3yIvOzdf3FJq2HF53vpjf/8G+ iNAhLRtfWJEwJsT5MSJGfZxojeMf8FdHi+nNE4AQTebHpCOG6Y5bCld7YrgyZgRl B2l/Y0UigHyzRNiD5i3M6k9tqpyiTu1SFYP/tRk6n0owahK9FxLOqFUaJqb8nnfY LdpZCXG4x7Sf8QJvwiNhipTI/wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPhOks5H Iuua54h55bgevYZQPTlfMB8GA1UdIwQYMBaAFGMsjeAiC4wQtB/0m/+LQyz4/9JU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNDI4Qy80NDlCQTUwNjFE QTAxMUUyQjZEODcwOTEwOEIwMkNEMi9ZeXlONENJTGpCQzBIX1NiXzR0RExQal8w bFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1l5eU40Q0lMakJDMEhfU2JfNHRETFBqXzBsUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NDI4Qy80NDlCQTUwNjFEQTAxMUUyQjZEODcwOTEwOEIwMkNEMi9ZeXlONENJTGpC QzBIX1NiXzR0RExQal8wbFEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAkw617WSJWb3M0obV7vu3hthYvs4pZysgmTK/KyeUDI/3r+80cVyhA685LI18 8D1USlX9oXrXe+pB0n+Gp8ZCYTXdKEdlDjyct3/uvy7hW5qHBBbXswltDwh1E2Ap qT/jmg8wqZIcgtmKNEYc+q74sRsh2liMCj8sosbJohe6+tyi29mFewyfJ8WLHxxU 1j1zgO5XNFTrx6V/tmptqCa3j5+4ZztWd+HmtigA/V8nUWiXV+aDE2cMCfgHynra u336+dCJLi5jTB1fXukltxu7uB8lxDolcQl3+Ags4wR4QvhENxX/J2I3Vv6IzfHP 5Qv4WBGqV8pKUmYnzj5eI7OrIQ== -----END CERTIFICATE-----Generated at Thu Mar 26 22:03:59 2026 by rpki-client