$ rpki-client -vvf rpki.apnic.net/member_repository/A91F88F4/07AE77CC48CC11EAAEF50151C4F9AE02/sYTDX2rtv7hd2kET8nUuDInKOpA.mft File: sYTDX2rtv7hd2kET8nUuDInKOpA.mft (raw, json) Hash identifier: 5JPrM7etuNWfIgBubk8rfc7iyYnMwpzCU6uVbnBH8WI= Subject key identifier: EF:8F:A6:C0:1F:32:7B:3A:18:83:6F:8F:81:5E:E5:CE:4C:5B:9E:71 Authority key identifier: B1:84:C3:5F:6A:ED:BF:B8:5D:DA:41:13:F2:75:2E:0C:89:CA:3A:90 Certificate issuer: /CN=A91F88F4/serialNumber=B184C35F6AEDBFB85DDA4113F2752E0C89CA3A90 Certificate serial: 0B8E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sYTDX2rtv7hd2kET8nUuDInKOpA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F88F4/07AE77CC48CC11EAAEF50151C4F9AE02/sYTDX2rtv7hd2kET8nUuDInKOpA.mft Manifest number: 0B85 Signing time: Tue 24 Mar 2026 18:56:27 +0000 Manifest this update: Tue 24 Mar 2026 18:56:27 +0000 Manifest next update: Tue 31 Mar 2026 18:56:27 +0000 Files and hashes: 1: sYTDX2rtv7hd2kET8nUuDInKOpA.crl (hash: B3xWiX813vxc5JwRgquGnvzNE324raaKxmH/scgtFWw=) 2: F9D16F1CC7D811EDB42DFF20C4F9AE02.roa (hash: EzVOB6yND65vVPlC6Th54TO2UcRfGpLytU4kXAiilIU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F88F4/07AE77CC48CC11EAAEF50151C4F9AE02/sYTDX2rtv7hd2kET8nUuDInKOpA.crl rsync://rpki.apnic.net/member_repository/A91F88F4/07AE77CC48CC11EAAEF50151C4F9AE02/sYTDX2rtv7hd2kET8nUuDInKOpA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sYTDX2rtv7hd2kET8nUuDInKOpA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 18:56:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2958 (0xb8e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F88F4, serialNumber=B184C35F6AEDBFB85DDA4113F2752E0C89CA3A90 Validity Not Before: Mar 24 18:56:27 2026 GMT Not After : Mar 31 18:56:27 2026 GMT Subject: CN=69c2de5b-84ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:a1:93:0d:12:22:9d:c1:cd:59:23:ac:e2:29: da:8e:c3:d4:2a:62:af:89:18:45:e2:ad:9a:d9:bf: a4:cd:54:50:56:ba:79:cc:39:ce:88:f7:bb:a7:2e: d5:e7:a4:36:9c:63:20:ee:08:92:c2:0d:fe:0e:e8: 32:a0:6b:ce:5a:64:9e:1b:71:bb:41:ba:3e:64:e3: 45:a0:b3:64:95:4d:b2:6e:80:48:a2:f5:cd:f2:5f: 20:a8:28:1a:d7:01:e7:cb:3f:bc:42:68:b3:d0:94: d9:2c:07:4e:a4:2d:87:86:47:40:79:b0:79:a6:0e: 6f:91:f5:69:f5:76:09:01:bd:a5:e0:fc:a4:31:db: 70:2c:85:65:6e:07:3b:e0:8d:21:cd:3a:2e:42:50: 9e:12:0e:65:1c:39:db:8b:f5:78:f7:3b:6e:9c:7f: 68:8e:6a:e3:63:59:7c:32:66:b9:4d:31:e5:ea:45: 32:36:1f:46:42:39:3f:03:d0:65:25:b9:70:de:f3: 93:39:c8:b7:2f:1d:98:36:a8:a7:60:cb:fa:0b:30: 81:34:ba:82:c3:b5:7a:cc:8d:c0:4c:cc:b5:3c:11: ff:28:bb:81:f0:a5:e1:a0:a8:d4:64:a8:cf:72:26: c0:39:ff:1e:71:2a:37:f9:e3:b1:1f:0b:fa:71:db: c0:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:8F:A6:C0:1F:32:7B:3A:18:83:6F:8F:81:5E:E5:CE:4C:5B:9E:71 X509v3 Authority Key Identifier: keyid:B1:84:C3:5F:6A:ED:BF:B8:5D:DA:41:13:F2:75:2E:0C:89:CA:3A:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F88F4/07AE77CC48CC11EAAEF50151C4F9AE02/sYTDX2rtv7hd2kET8nUuDInKOpA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sYTDX2rtv7hd2kET8nUuDInKOpA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F88F4/07AE77CC48CC11EAAEF50151C4F9AE02/sYTDX2rtv7hd2kET8nUuDInKOpA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:14:9b:12:49:b5:bc:1f:44:07:e8:1d:f5:e4:cb:de:75:82: c9:c0:c2:36:94:37:06:41:32:97:3a:28:b0:ef:25:5c:8c:9a: 3b:9f:b9:e3:65:64:28:77:f6:c8:e4:c7:90:82:72:5b:a6:0a: 18:36:db:fe:c2:7f:93:5a:35:74:fe:5a:12:ad:60:36:6f:6f: 82:d7:e0:90:f2:db:a5:e3:1b:01:eb:02:ab:c7:30:df:ad:6a: 57:0f:42:19:60:c8:8d:f8:37:34:d4:21:8a:d0:f6:30:23:46: ef:04:2a:f0:3a:a8:a2:fc:2d:bc:c9:71:fe:54:a0:8e:80:85: ff:b9:94:d7:95:98:a0:9d:b3:5e:a1:af:99:92:90:4a:a5:3f: 0c:07:df:b3:f3:79:a5:67:1b:8e:40:83:4b:d8:e4:ae:ca:53: 0b:06:95:f7:f9:b6:11:d0:a5:f4:7f:09:31:02:f7:45:a2:30: 42:b4:c8:65:30:2b:56:a9:e6:6e:17:c0:3f:42:77:d2:ba:1e: ec:3b:1c:36:e6:6f:57:21:c5:94:b8:77:66:06:66:2e:9f:36: 53:ac:2e:df:c5:2b:ce:8c:8f:67:cd:ef:75:f0:b7:ab:b4:76: 9d:54:c2:21:89:e5:73:06:c0:73:d3:73:ba:3e:f9:e2:45:6c: 1a:7b:f9:34 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICC44wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjg4RjQxMTAvBgNVBAUTKEIxODRDMzVGNkFFREJGQjg1RERBNDExM0YyNzUyRTBD ODlDQTNBOTAwHhcNMjYwMzI0MTg1NjI3WhcNMjYwMzMxMTg1NjI3WjAYMRYwFAYD VQQDEw02OWMyZGU1Yi04NGFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjaGTDRIincHNWSOs4inajsPUKmKviRhF4q2a2b+kzVRQVrp5zDnOiPe7py7V 56Q2nGMg7giSwg3+DugyoGvOWmSeG3G7Qbo+ZONFoLNklU2yboBIovXN8l8gqCga 1wHnyz+8Qmiz0JTZLAdOpC2HhkdAebB5pg5vkfVp9XYJAb2l4PykMdtwLIVlbgc7 4I0hzTouQlCeEg5lHDnbi/V49ztunH9ojmrjY1l8Mma5TTHl6kUyNh9GQjk/A9Bl Jblw3vOTOci3Lx2YNqinYMv6CzCBNLqCw7V6zI3ATMy1PBH/KLuB8KXhoKjUZKjP cibAOf8ecSo3+eOxHwv6cdvA9wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFO+PpsAf Mns6GINvj4Fe5c5MW55xMB8GA1UdIwQYMBaAFLGEw19q7b+4XdpBE/J1LgyJyjqQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODhGNC8wN0FFNzdDQzQ4 Q0MxMUVBQUVGNTAxNTFDNEY5QUUwMi9zWVREWDJydHY3aGQya0VUOG5VdURJbktP cEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NZVERYMnJ0djdoZDJrRVQ4blV1REluS09wQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODhGNC8wN0FFNzdDQzQ4Q0MxMUVBQUVGNTAxNTFDNEY5QUUwMi9zWVREWDJydHY3 aGQya0VUOG5VdURJbktPcEEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAEBSbEkm1vB9EB+gd9eTL3nWCycDCNpQ3BkEylzoosO8lXIyaO5+542VkKHf2 yOTHkIJyW6YKGDbb/sJ/k1o1dP5aEq1gNm9vgtfgkPLbpeMbAesCq8cw361qVw9C GWDIjfg3NNQhitD2MCNG7wQq8DqoovwtvMlx/lSgjoCF/7mU15WYoJ2zXqGvmZKQ SqU/DAffs/N5pWcbjkCDS9jkrspTCwaV9/m2EdCl9H8JMQL3RaIwQrTIZTArVqnm bhfAP0J30roe7DscNuZvVyHFlLh3ZgZmLp82U6wu38UrzoyPZ83vdfC3q7R2nVTC IYnlcwbAc9Nzuj754kVsGnv5NA== -----END CERTIFICATE-----Generated at Thu Mar 26 11:54:34 2026 by rpki-client