$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC01A/0F85014CD11D11EC81696363C4F9AE02/YFvaPXrcwC2sc4auORR6ZGWTqJ0.mft File: YFvaPXrcwC2sc4auORR6ZGWTqJ0.mft (raw, json) Hash identifier: yMbR4nbaBH3hplWTgTR6dEeSVHS4X+a104zO++OFOlw= Subject key identifier: 80:D4:23:B2:AB:AD:B7:84:06:31:66:56:89:7B:BB:B8:4F:C8:3E:A3 Authority key identifier: 60:5B:DA:3D:7A:DC:C0:2D:AC:73:86:AE:39:14:7A:64:65:93:A8:9D Certificate issuer: /CN=A91FC01A/serialNumber=605BDA3D7ADCC02DAC7386AE39147A646593A89D Certificate serial: 03B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YFvaPXrcwC2sc4auORR6ZGWTqJ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC01A/0F85014CD11D11EC81696363C4F9AE02/YFvaPXrcwC2sc4auORR6ZGWTqJ0.mft Manifest number: 03AE Signing time: Wed 25 Mar 2026 00:22:28 +0000 Manifest this update: Wed 25 Mar 2026 00:22:27 +0000 Manifest next update: Wed 01 Apr 2026 00:22:27 +0000 Files and hashes: 1: YFvaPXrcwC2sc4auORR6ZGWTqJ0.crl (hash: FN9kCwdU/4wPyhXEn4Mz1gvdjgHm+OqRJLWPU0kUnUo=) 2: 426D5CEAD12111ECBBAC1B7DC4F9AE02.roa (hash: Cjy/SWLQH86e7gQzB7H8gnQKLtLg5bLdlkR56jFW4Ls=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC01A/0F85014CD11D11EC81696363C4F9AE02/YFvaPXrcwC2sc4auORR6ZGWTqJ0.crl rsync://rpki.apnic.net/member_repository/A91FC01A/0F85014CD11D11EC81696363C4F9AE02/YFvaPXrcwC2sc4auORR6ZGWTqJ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YFvaPXrcwC2sc4auORR6ZGWTqJ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 00:22:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 949 (0x3b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC01A, serialNumber=605BDA3D7ADCC02DAC7386AE39147A646593A89D Validity Not Before: Mar 25 00:22:27 2026 GMT Not After : Apr 1 00:22:27 2026 GMT Subject: CN=69c32ac4-42e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:69:ba:79:28:9e:f7:44:cd:d3:57:36:ff:b8: f9:df:1e:f1:d6:4f:2e:f0:57:17:c1:cf:9f:a8:97: 54:5f:1b:9b:15:49:4e:2a:f2:87:1c:2d:54:e8:d0: 1c:e1:5d:81:86:e5:45:db:59:a0:78:73:2f:58:2e: 17:6d:38:94:49:3d:6a:f5:93:9d:ee:d7:0e:b7:f4: b0:54:2e:ce:20:6a:e6:72:53:fc:92:c2:3a:fd:34: bf:9a:d1:a2:2b:4d:2a:22:9c:50:7b:cb:8b:d1:07: 51:a7:cb:1f:fc:7a:b3:2b:7f:f2:2e:30:2d:96:ff: cc:1a:3a:5b:17:c9:10:74:56:b7:71:99:f9:1a:02: fd:10:c9:ca:1c:ab:5e:a2:e6:ec:48:52:87:f4:50: 56:be:36:ae:77:fb:4d:d2:d1:e9:75:9f:df:8a:d1: 87:76:96:4e:91:4e:1b:3b:83:b6:23:30:53:ed:c2: 53:7c:04:ca:fd:9a:1c:ba:3f:5e:70:1c:21:2a:a1: 5a:ac:19:d5:07:96:86:8b:c0:f6:69:ae:c5:f8:67: 98:a2:a9:e1:7e:00:c6:25:b2:14:c3:31:be:f6:d1: c9:12:38:bb:f7:e0:9c:a7:70:82:0e:15:6d:c1:5f: 57:6c:3d:31:d7:66:f4:3e:07:94:a3:ec:fb:63:d2: 4b:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:D4:23:B2:AB:AD:B7:84:06:31:66:56:89:7B:BB:B8:4F:C8:3E:A3 X509v3 Authority Key Identifier: keyid:60:5B:DA:3D:7A:DC:C0:2D:AC:73:86:AE:39:14:7A:64:65:93:A8:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC01A/0F85014CD11D11EC81696363C4F9AE02/YFvaPXrcwC2sc4auORR6ZGWTqJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YFvaPXrcwC2sc4auORR6ZGWTqJ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC01A/0F85014CD11D11EC81696363C4F9AE02/YFvaPXrcwC2sc4auORR6ZGWTqJ0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:63:09:7d:a6:ff:89:4f:35:a5:f8:98:e9:63:02:90:b3:5e: 45:54:cc:43:cd:59:51:65:08:24:28:29:6a:e8:ed:b2:52:cd: d6:73:9f:4b:94:55:61:b4:22:ed:d1:8c:76:ed:4b:07:66:b0: 80:6d:5b:ed:79:bb:20:b2:1c:8a:68:80:85:ed:ea:22:11:d8: 3d:9c:23:92:f0:bd:1a:25:c6:90:d8:68:de:8c:ce:d9:44:96: c1:fb:3a:ab:49:2d:97:2f:7b:bc:db:0c:6c:42:49:41:91:ec: 5f:d9:9b:b2:04:cb:df:75:26:61:29:df:a4:b3:c8:49:e9:28: c5:cb:f4:23:16:6c:6b:92:9e:f6:f6:ad:b3:6e:ae:67:8a:d0: cb:c9:39:e3:08:02:3e:46:ba:b1:41:a3:2b:0e:98:77:e6:de: c5:3f:a7:46:69:89:e9:30:8c:e4:41:ba:ae:d4:a0:59:03:64: 1e:81:56:8f:2c:c9:57:6e:64:58:7d:59:f2:dc:d8:f6:d2:a6: 06:48:8e:0a:83:38:3a:13:c2:5c:40:a0:37:9b:12:d8:7a:6b: f0:64:a7:52:0c:59:45:4a:3c:80:df:df:b0:8d:1a:32:2d:a7: 6d:ef:c9:56:28:52:ac:24:8d:16:05:bf:d0:35:5c:1e:5d:46: 7c:70:e6:3f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA7UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkMwMUExMTAvBgNVBAUTKDYwNUJEQTNEN0FEQ0MwMkRBQzczODZBRTM5MTQ3QTY0 NjU5M0E4OUQwHhcNMjYwMzI1MDAyMjI3WhcNMjYwNDAxMDAyMjI3WjAYMRYwFAYD VQQDEw02OWMzMmFjNC00MmUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwGm6eSie90TN01c2/7j53x7x1k8u8FcXwc+fqJdUXxubFUlOKvKHHC1U6NAc 4V2BhuVF21mgeHMvWC4XbTiUST1q9ZOd7tcOt/SwVC7OIGrmclP8ksI6/TS/mtGi K00qIpxQe8uL0QdRp8sf/HqzK3/yLjAtlv/MGjpbF8kQdFa3cZn5GgL9EMnKHKte oubsSFKH9FBWvjaud/tN0tHpdZ/fitGHdpZOkU4bO4O2IzBT7cJTfATK/Zocuj9e cBwhKqFarBnVB5aGi8D2aa7F+GeYoqnhfgDGJbIUwzG+9tHJEji79+Ccp3CCDhVt wV9XbD0x12b0PgeUo+z7Y9JLvwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIDUI7Kr rbeEBjFmVol7u7hPyD6jMB8GA1UdIwQYMBaAFGBb2j163MAtrHOGrjkUemRlk6id MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQzAxQS8wRjg1MDE0Q0Qx MUQxMUVDODE2OTYzNjNDNEY5QUUwMi9ZRnZhUFhyY3dDMnNjNGF1T1JSNlpHV1Rx SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lGdmFQWHJjd0Myc2M0YXVPUlI2WkdXVHFKMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QzAxQS8wRjg1MDE0Q0QxMUQxMUVDODE2OTYzNjNDNEY5QUUwMi9ZRnZhUFhyY3dD MnNjNGF1T1JSNlpHV1RxSjAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAG2MJfab/iU81pfiY6WMCkLNeRVTMQ81ZUWUIJCgpaujtslLN1nOfS5RVYbQi 7dGMdu1LB2awgG1b7Xm7ILIcimiAhe3qIhHYPZwjkvC9GiXGkNho3ozO2USWwfs6 q0ktly97vNsMbEJJQZHsX9mbsgTL33UmYSnfpLPISekoxcv0IxZsa5Ke9vats26u Z4rQy8k54wgCPka6sUGjKw6Yd+bexT+nRmmJ6TCM5EG6rtSgWQNkHoFWjyzJV25k WH1Z8tzY9tKmBkiOCoM4OhPCXECgN5sS2Hpr8GSnUgxZRUo8gN/fsI0aMi2nbe/J VihSrCSNFgW/0DVcHl1GfHDmPw== -----END CERTIFICATE-----Generated at Thu Mar 26 02:25:34 2026 by rpki-client