$ rpki-client -vvf rpki.apnic.net/member_repository/A91FABEF/C0764572CB1911EE815FAB68C4F9AE02/YZBA6DW609z1wgE5bYVxmVp6zFA.mft File: YZBA6DW609z1wgE5bYVxmVp6zFA.mft (raw, json) Hash identifier: etXGUx76642TLqD3LPrmkwzI/vnq5I7Qx9byobFjeU0= Subject key identifier: 71:E9:13:F3:3C:F2:1A:7C:E8:BD:28:43:44:16:6F:7F:00:56:EA:51 Authority key identifier: 61:90:40:E8:35:BA:D3:DC:F5:C2:01:39:6D:85:71:99:5A:7A:CC:50 Certificate issuer: /CN=A91FABEF/serialNumber=619040E835BAD3DCF5C201396D8571995A7ACC50 Certificate serial: 0198 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YZBA6DW609z1wgE5bYVxmVp6zFA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FABEF/C0764572CB1911EE815FAB68C4F9AE02/YZBA6DW609z1wgE5bYVxmVp6zFA.mft Manifest number: 0190 Signing time: Wed 25 Mar 2026 03:43:24 +0000 Manifest this update: Wed 25 Mar 2026 03:43:24 +0000 Manifest next update: Wed 01 Apr 2026 03:43:24 +0000 Files and hashes: 1: YZBA6DW609z1wgE5bYVxmVp6zFA.crl (hash: rC+Rp7vPFrenCW5bsmVakoL3qsB4nG9gqCuB+I6f+rc=) 2: 8045E9A4CEEC11EEAFFC5E36C4F9AE02.roa (hash: 26WEtM895FnGR/kXovwY20hCbFpq6hJQTsJq8LOOA8g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FABEF/C0764572CB1911EE815FAB68C4F9AE02/YZBA6DW609z1wgE5bYVxmVp6zFA.crl rsync://rpki.apnic.net/member_repository/A91FABEF/C0764572CB1911EE815FAB68C4F9AE02/YZBA6DW609z1wgE5bYVxmVp6zFA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YZBA6DW609z1wgE5bYVxmVp6zFA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 03:43:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 408 (0x198) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FABEF, serialNumber=619040E835BAD3DCF5C201396D8571995A7ACC50 Validity Not Before: Mar 25 03:43:24 2026 GMT Not After : Apr 1 03:43:24 2026 GMT Subject: CN=69c359dc-8022 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:43:d6:0f:9c:56:3c:3c:eb:82:43:3e:f3:9e: e3:3b:81:29:ad:07:f6:4f:34:f1:fb:d6:ac:fe:b6: b4:52:e5:35:e7:03:a2:58:61:51:59:7b:a7:19:f3: 38:18:a1:a7:43:a7:2a:aa:77:87:98:5e:f2:1a:6a: dc:1e:5d:8b:cd:4c:31:fb:dd:d9:5a:b1:5c:5c:52: cc:d8:41:7a:e9:36:6e:61:7d:26:c2:bc:c6:fc:8b: f3:ae:46:99:51:0d:e7:e9:02:58:ff:47:4c:d7:9e: 9e:da:2b:e0:e2:cc:2c:f0:f8:01:b8:13:1d:4e:f9: f6:fa:41:eb:7a:8f:36:3f:65:75:a8:cd:ce:01:9f: f6:45:de:1d:07:ad:11:78:33:8b:c8:9e:1c:56:45: 8e:55:6a:ef:fb:b6:98:75:93:3f:78:5e:94:74:b0: bd:ec:54:96:94:9f:a7:01:e5:a5:45:ff:f5:02:d2: 2d:16:70:5b:37:38:a0:28:0c:68:36:6d:21:5d:4d: ed:3b:80:7d:39:14:35:35:e7:c2:33:79:4d:a0:c6: 49:a1:7e:96:fe:34:1c:bf:87:7b:ea:62:08:39:86: 6b:c8:ce:c5:73:ea:38:92:60:b0:ee:38:28:39:a2: 21:31:59:bc:e3:7d:04:e8:b7:7b:23:c0:ed:cf:f1: f3:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:E9:13:F3:3C:F2:1A:7C:E8:BD:28:43:44:16:6F:7F:00:56:EA:51 X509v3 Authority Key Identifier: keyid:61:90:40:E8:35:BA:D3:DC:F5:C2:01:39:6D:85:71:99:5A:7A:CC:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FABEF/C0764572CB1911EE815FAB68C4F9AE02/YZBA6DW609z1wgE5bYVxmVp6zFA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YZBA6DW609z1wgE5bYVxmVp6zFA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FABEF/C0764572CB1911EE815FAB68C4F9AE02/YZBA6DW609z1wgE5bYVxmVp6zFA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:44:12:f7:e7:9f:fb:45:d5:fc:7b:f1:df:a0:b8:25:ed:5f: 28:cd:ac:5e:d0:15:e5:91:b7:c1:cf:ac:f9:db:54:91:55:9b: 8c:cf:37:c0:6f:c1:c7:fe:10:c0:b5:e9:3e:81:44:94:26:25: 91:c7:a7:be:fe:68:05:e5:8d:f9:20:6a:a1:bf:6b:81:49:bc: e7:d2:4e:36:1a:26:07:34:d2:50:7c:7c:b5:7b:9f:ae:f2:f9: a1:2c:f1:57:8d:15:1c:f2:1e:a8:d3:3d:45:c1:cf:0a:d4:58: 3c:fa:ca:e0:20:b3:8b:28:7d:a9:ca:4d:66:bc:fd:fa:50:6e: cb:21:bd:ee:bc:03:3f:9d:51:a2:75:55:d7:c2:13:cc:1e:01: f0:c7:e8:17:93:20:42:41:e1:02:98:a2:43:ed:2f:8d:d2:ee: 22:67:9e:c8:8c:78:0b:f4:d7:e7:74:c8:c7:33:ac:f1:77:14: 83:24:a6:7f:1e:44:2f:d7:6b:af:14:fe:67:1f:4f:0a:b8:3a: 8a:1a:be:cf:10:7b:c1:b1:03:de:af:2e:fc:ad:36:19:88:fb: f2:62:71:77:d8:b1:38:a3:1e:f7:6c:16:d0:b3:73:c4:18:61: 5b:da:52:4b:8b:ec:57:65:61:94:24:2c:01:fd:c4:7a:2c:f5: 7e:a1:5d:20 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAZgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkFCRUYxMTAvBgNVBAUTKDYxOTA0MEU4MzVCQUQzRENGNUMyMDEzOTZEODU3MTk5 NUE3QUNDNTAwHhcNMjYwMzI1MDM0MzI0WhcNMjYwNDAxMDM0MzI0WjAYMRYwFAYD VQQDEw02OWMzNTlkYy04MDIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm0PWD5xWPDzrgkM+857jO4EprQf2TzTx+9as/ra0UuU15wOiWGFRWXunGfM4 GKGnQ6cqqneHmF7yGmrcHl2LzUwx+93ZWrFcXFLM2EF66TZuYX0mwrzG/IvzrkaZ UQ3n6QJY/0dM156e2ivg4sws8PgBuBMdTvn2+kHreo82P2V1qM3OAZ/2Rd4dB60R eDOLyJ4cVkWOVWrv+7aYdZM/eF6UdLC97FSWlJ+nAeWlRf/1AtItFnBbNzigKAxo Nm0hXU3tO4B9ORQ1NefCM3lNoMZJoX6W/jQcv4d76mIIOYZryM7Fc+o4kmCw7jgo OaIhMVm8430E6Ld7I8Dtz/HzsQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHHpE/M8 8hp86L0oQ0QWb38AVupRMB8GA1UdIwQYMBaAFGGQQOg1utPc9cIBOW2FcZlaesxQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQUJFRi9DMDc2NDU3MkNC MTkxMUVFODE1RkFCNjhDNEY5QUUwMi9ZWkJBNkRXNjA5ejF3Z0U1YllWeG1WcDZ6 RkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1laQkE2RFc2MDl6MXdnRTViWVZ4bVZwNnpGQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QUJFRi9DMDc2NDU3MkNCMTkxMUVFODE1RkFCNjhDNEY5QUUwMi9ZWkJBNkRXNjA5 ejF3Z0U1YllWeG1WcDZ6RkEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAV0QS9+ef+0XV/Hvx36C4Je1fKM2sXtAV5ZG3wc+s+dtUkVWbjM83wG/Bx/4Q wLXpPoFElCYlkcenvv5oBeWN+SBqob9rgUm859JONhomBzTSUHx8tXufrvL5oSzx V40VHPIeqNM9RcHPCtRYPPrK4CCziyh9qcpNZrz9+lBuyyG97rwDP51RonVV18IT zB4B8MfoF5MgQkHhApiiQ+0vjdLuImeeyIx4C/TX53TIxzOs8XcUgySmfx5EL9dr rxT+Zx9PCrg6ihq+zxB7wbED3q8u/K02GYj78mJxd9ixOKMe92wW0LNzxBhhW9pS S4vsV2VhlCQsAf3Eeiz1fqFdIA== -----END CERTIFICATE-----Generated at Thu Mar 26 20:38:29 2026 by rpki-client