$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5AAA/8B2824529FF711E2AD9CEDEE2F5A7754/8YaDAEWuVIbpCXNDfanSB6VmhpE.mft File: 8YaDAEWuVIbpCXNDfanSB6VmhpE.mft (raw, json) Hash identifier: LcckXEZ4m9U3Dl88bVWsiu7Py0ryjKzB2+pR/zcu4WY= Subject key identifier: 2C:A4:A9:D0:87:8F:38:EA:9B:58:70:16:A6:9A:7C:3E:52:90:24:0E Authority key identifier: F1:86:83:00:45:AE:54:86:E9:09:73:43:7D:A9:D2:07:A5:66:86:91 Certificate issuer: /CN=A91F5AAA/serialNumber=F186830045AE5486E90973437DA9D207A5668691 Certificate serial: 3288 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8YaDAEWuVIbpCXNDfanSB6VmhpE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5AAA/8B2824529FF711E2AD9CEDEE2F5A7754/8YaDAEWuVIbpCXNDfanSB6VmhpE.mft Manifest number: 3288 Signing time: Tue 24 Mar 2026 15:22:45 +0000 Manifest this update: Tue 24 Mar 2026 15:22:44 +0000 Manifest next update: Tue 31 Mar 2026 15:22:44 +0000 Files and hashes: 1: 8YaDAEWuVIbpCXNDfanSB6VmhpE.crl (hash: mn7uln5hHIQy2KO47Y9DZ8XX/C2gv2vxaEaFr7+CYLE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5AAA/8B2824529FF711E2AD9CEDEE2F5A7754/8YaDAEWuVIbpCXNDfanSB6VmhpE.crl rsync://rpki.apnic.net/member_repository/A91F5AAA/8B2824529FF711E2AD9CEDEE2F5A7754/8YaDAEWuVIbpCXNDfanSB6VmhpE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8YaDAEWuVIbpCXNDfanSB6VmhpE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 15:22:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12936 (0x3288) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5AAA, serialNumber=F186830045AE5486E90973437DA9D207A5668691 Validity Not Before: Mar 24 15:22:44 2026 GMT Not After : Mar 31 15:22:44 2026 GMT Subject: CN=69c2ac45-024c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:0f:85:7e:23:c2:45:38:3c:37:82:17:61:c3: 29:3f:f4:65:b0:b2:13:d6:8e:50:54:71:b1:7c:84: 15:70:69:6b:2b:1b:5c:c4:af:1a:19:dc:31:c9:14: dd:3e:5a:ab:65:f7:35:10:4d:54:74:9f:0a:e9:e1: 6c:d6:08:b7:c7:ae:ae:ec:35:f8:fa:97:bd:64:8b: 63:d4:32:b3:f3:c4:7b:f1:1b:5b:fc:0a:b0:18:42: 4a:7f:fc:ed:82:d5:f5:97:8a:e7:29:e6:1f:90:b8: db:e5:d3:07:bd:e4:c6:5d:c1:10:c6:1b:95:fd:f9: ac:3f:a1:c6:51:ef:02:9a:28:cb:55:d3:19:af:e5: c1:d7:62:5e:67:bf:a8:83:0b:70:c5:e0:b3:df:24: ee:f5:09:b7:04:40:26:7b:b2:99:fc:22:f6:c8:86: eb:eb:f9:d6:f0:e1:83:cc:a4:89:31:ef:5a:88:16: a0:7a:aa:29:b9:65:7f:64:fe:c3:99:38:56:86:5a: 14:0b:e2:55:12:dd:08:ed:f3:ac:2b:98:b8:e2:ea: 35:f5:f1:eb:18:f9:45:c2:f4:1d:e7:64:42:92:6c: 4f:38:6f:f8:b8:a6:ad:c1:57:75:a4:78:66:d6:e5: 95:5c:c3:4f:44:1d:ad:de:e5:e6:8d:42:89:39:d5: 27:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:A4:A9:D0:87:8F:38:EA:9B:58:70:16:A6:9A:7C:3E:52:90:24:0E X509v3 Authority Key Identifier: keyid:F1:86:83:00:45:AE:54:86:E9:09:73:43:7D:A9:D2:07:A5:66:86:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5AAA/8B2824529FF711E2AD9CEDEE2F5A7754/8YaDAEWuVIbpCXNDfanSB6VmhpE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8YaDAEWuVIbpCXNDfanSB6VmhpE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5AAA/8B2824529FF711E2AD9CEDEE2F5A7754/8YaDAEWuVIbpCXNDfanSB6VmhpE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:08:2c:c9:6d:9f:96:50:6e:44:02:78:df:33:9f:01:06:1f: dd:89:6d:26:f1:f4:65:c8:2f:dc:d3:6e:1b:b0:6f:d3:90:33: 0b:a0:03:72:65:a0:00:46:99:3a:8a:c4:bd:af:14:f2:0f:05: 23:54:f0:d5:04:80:2d:7d:df:ac:b8:72:f7:59:27:76:ac:b9: 1b:ca:77:58:50:67:13:48:dd:16:ee:8f:df:91:8e:4f:98:ef: ef:a6:84:6f:fc:fd:7b:b5:df:eb:7f:89:44:5d:91:a9:8e:f5: 8c:17:3b:7a:d6:b8:30:7f:73:35:6f:06:db:99:8b:78:da:35: eb:82:bb:3d:db:4f:0a:e6:a8:7f:3a:72:82:33:6e:43:c7:16: 1b:dc:dd:03:83:94:df:96:81:84:75:64:41:c8:e9:d1:89:c8: d8:a6:42:fc:6e:2b:db:77:38:2f:cb:f1:3c:bb:f7:fe:17:08: 8c:59:4b:05:61:b4:91:8c:b9:f8:d4:33:98:a7:24:4a:36:70: af:91:4f:af:72:0b:43:ee:46:47:b4:f8:7e:ab:84:5b:ef:14: 65:76:e2:c2:34:9c:29:c3:70:c8:ee:09:50:4a:71:a7:16:75: 79:5f:0e:5d:4b:e8:86:fe:dc:5b:69:b8:77:eb:5d:e2:8f:bc: 8c:71:dd:0d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICMogwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjVBQUExMTAvBgNVBAUTKEYxODY4MzAwNDVBRTU0ODZFOTA5NzM0MzdEQTlEMjA3 QTU2Njg2OTEwHhcNMjYwMzI0MTUyMjQ0WhcNMjYwMzMxMTUyMjQ0WjAYMRYwFAYD VQQDEw02OWMyYWM0NS0wMjRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmQ+FfiPCRTg8N4IXYcMpP/RlsLIT1o5QVHGxfIQVcGlrKxtcxK8aGdwxyRTd PlqrZfc1EE1UdJ8K6eFs1gi3x66u7DX4+pe9ZItj1DKz88R78Rtb/AqwGEJKf/zt gtX1l4rnKeYfkLjb5dMHveTGXcEQxhuV/fmsP6HGUe8CmijLVdMZr+XB12JeZ7+o gwtwxeCz3yTu9Qm3BEAme7KZ/CL2yIbr6/nW8OGDzKSJMe9aiBageqopuWV/ZP7D mThWhloUC+JVEt0I7fOsK5i44uo19fHrGPlFwvQd52RCkmxPOG/4uKatwVd1pHhm 1uWVXMNPRB2t3uXmjUKJOdUnOwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCykqdCH jzjqm1hwFqaafD5SkCQOMB8GA1UdIwQYMBaAFPGGgwBFrlSG6QlzQ32p0gelZoaR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNUFBQS84QjI4MjQ1MjlG RjcxMUUyQUQ5Q0VERUUyRjVBNzc1NC84WWFEQUVXdVZJYnBDWE5EZmFuU0I2Vm1o cEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhZYURBRVd1VklicENYTkRmYW5TQjZWbWhwRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NUFBQS84QjI4MjQ1MjlGRjcxMUUyQUQ5Q0VERUUyRjVBNzc1NC84WWFEQUVXdVZJ YnBDWE5EZmFuU0I2Vm1ocEUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAWggsyW2fllBuRAJ43zOfAQYf3YltJvH0Zcgv3NNuG7Bv05AzC6ADcmWgAEaZ OorEva8U8g8FI1Tw1QSALX3frLhy91kndqy5G8p3WFBnE0jdFu6P35GOT5jv76aE b/z9e7Xf63+JRF2RqY71jBc7eta4MH9zNW8G25mLeNo164K7PdtPCuaofzpygjNu Q8cWG9zdA4OU35aBhHVkQcjp0YnI2KZC/G4r23c4L8vxPLv3/hcIjFlLBWG0kYy5 +NQzmKckSjZwr5FPr3ILQ+5GR7T4fquEW+8UZXbiwjScKcNwyO4JUEpxpxZ1eV8O XUvohv7cW2m4d+td4o+8jHHdDQ== -----END CERTIFICATE-----Generated at Thu Mar 26 09:10:58 2026 by rpki-client