$ rpki-client -vvf rpki.apnic.net/member_repository/A91479A7/8BA963D443F511EE9A8E4E16C4F9AE02/LyR3675WsNegrUTCcX21_ggNyug.mft File: LyR3675WsNegrUTCcX21_ggNyug.mft (raw, json) Hash identifier: tQSD/b5Skb7GvE2Tkzfi/z4ioYkeGwJvkt7JuZKV/9k= Subject key identifier: BA:4D:F2:1D:CA:0D:C0:94:CB:B7:70:79:9A:D9:96:1E:A4:12:BF:BF Authority key identifier: 2F:24:77:EB:BE:56:B0:D7:A0:AD:44:C2:71:7D:B5:FE:08:0D:CA:E8 Certificate issuer: /CN=A91479A7/serialNumber=2F2477EBBE56B0D7A0AD44C2717DB5FE080DCAE8 Certificate serial: 021F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LyR3675WsNegrUTCcX21_ggNyug.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91479A7/8BA963D443F511EE9A8E4E16C4F9AE02/LyR3675WsNegrUTCcX21_ggNyug.mft Manifest number: 0205 Signing time: Tue 17 Mar 2026 02:27:03 +0000 Manifest this update: Tue 17 Mar 2026 02:27:02 +0000 Manifest next update: Tue 24 Mar 2026 02:27:02 +0000 Files and hashes: 1: LyR3675WsNegrUTCcX21_ggNyug.crl (hash: QK3QmZ3RN6UVyg3CsZX/QiR/Uglssc2YPSQ/Hxll+vg=) 2: 7EF0B0AC4D9B11EEB019A31FC4F9AE02.roa (hash: 85ndJ25GkWksXdD2wkzQ2/smQ3lSHNtoozH+Avdk67k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91479A7/8BA963D443F511EE9A8E4E16C4F9AE02/LyR3675WsNegrUTCcX21_ggNyug.crl rsync://rpki.apnic.net/member_repository/A91479A7/8BA963D443F511EE9A8E4E16C4F9AE02/LyR3675WsNegrUTCcX21_ggNyug.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LyR3675WsNegrUTCcX21_ggNyug.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Mar 2026 02:27:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 543 (0x21f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91479A7, serialNumber=2F2477EBBE56B0D7A0AD44C2717DB5FE080DCAE8 Validity Not Before: Mar 17 02:27:02 2026 GMT Not After : Mar 24 02:27:02 2026 GMT Subject: CN=69b8bbf7-66f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:8a:0a:43:2b:e6:eb:97:d0:f7:14:f1:bf:26: 91:4c:33:d0:96:0c:f8:12:05:0c:7e:a2:60:e5:6e: c5:72:40:d1:66:ff:f4:8e:da:7f:2e:26:a8:c8:6b: a3:9f:3b:28:18:fb:ae:75:b6:e3:65:9b:4b:2a:68: 5e:ce:9e:aa:e0:aa:d8:5d:62:72:c6:c7:8a:dc:0b: 79:47:88:bf:f8:59:79:37:6c:a4:d9:02:e2:3d:32: f7:c0:51:92:8a:79:64:7d:94:55:a4:db:5e:8a:b0: 65:89:29:37:80:41:4f:38:2f:61:7f:93:16:fe:77: 14:48:21:30:05:6a:f6:14:ab:47:33:a5:a5:ee:e3: 50:28:f1:02:05:fe:b1:89:6b:0e:1f:c7:37:38:3b: 1c:2d:3d:d9:cb:99:29:35:73:56:05:df:cd:3b:c9: e4:9b:00:b0:05:19:f0:e1:91:c9:9c:15:07:94:36: 66:d1:f9:3a:12:d4:23:59:8f:8b:b7:56:6c:11:f3: 2f:ac:fa:a4:31:44:d0:af:6d:54:ca:63:a5:38:13: 40:fd:b2:ad:7c:30:f6:40:9e:16:36:e0:84:7d:ff: 47:17:90:e8:71:c1:01:88:99:11:c5:df:42:8c:0b: 10:50:b3:65:0d:2e:98:47:b1:65:66:ad:20:ea:49: a0:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:4D:F2:1D:CA:0D:C0:94:CB:B7:70:79:9A:D9:96:1E:A4:12:BF:BF X509v3 Authority Key Identifier: keyid:2F:24:77:EB:BE:56:B0:D7:A0:AD:44:C2:71:7D:B5:FE:08:0D:CA:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91479A7/8BA963D443F511EE9A8E4E16C4F9AE02/LyR3675WsNegrUTCcX21_ggNyug.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LyR3675WsNegrUTCcX21_ggNyug.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91479A7/8BA963D443F511EE9A8E4E16C4F9AE02/LyR3675WsNegrUTCcX21_ggNyug.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:be:44:d8:e2:19:27:6a:aa:9b:62:58:54:57:59:2d:00:67: 60:96:8d:fd:23:30:e1:42:77:0e:d9:43:e8:8f:c6:fe:2d:af: a4:83:36:73:11:a4:f7:42:1c:a9:1a:99:b3:9f:b8:4f:10:93: 83:13:8a:59:58:d9:a6:a4:1a:b9:64:d9:c6:41:6e:42:fe:1b: f3:f7:5e:2b:11:1f:1d:a3:6d:91:af:0a:06:7d:ef:6a:98:f8: aa:85:60:b7:a6:b1:fd:06:63:db:ee:15:9b:93:b4:5a:d5:f9: fd:4c:41:b5:0a:95:24:9a:5f:d6:42:c9:5d:d9:1b:81:8d:25: c3:2d:db:23:4a:b0:d3:31:71:a2:14:80:a3:cc:84:79:42:06: 2b:61:88:87:ce:d0:bf:51:77:76:2b:6a:67:21:c7:c6:70:47: f9:22:aa:3c:50:c3:63:29:99:5e:99:78:f8:42:6f:19:b4:3b: 73:86:f1:d9:c9:4d:d8:bb:90:5e:0c:54:e6:57:1f:f6:a6:8a: 42:1a:eb:28:cd:80:e5:0f:52:12:28:6a:bc:71:86:06:a4:04: fc:95:25:8e:4d:f2:93:21:e0:1f:f1:17:ee:45:4d:ca:63:9b: 1a:ed:0d:69:d7:b3:63:e7:24:aa:77:3b:18:39:74:b7:aa:52: 89:a1:dc:18 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAh8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDc5QTcxMTAvBgNVBAUTKDJGMjQ3N0VCQkU1NkIwRDdBMEFENDRDMjcxN0RCNUZF MDgwRENBRTgwHhcNMjYwMzE3MDIyNzAyWhcNMjYwMzI0MDIyNzAyWjAYMRYwFAYD VQQDEw02OWI4YmJmNy02NmY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA34oKQyvm65fQ9xTxvyaRTDPQlgz4EgUMfqJg5W7FckDRZv/0jtp/LiaoyGuj nzsoGPuudbbjZZtLKmhezp6q4KrYXWJyxseK3At5R4i/+Fl5N2yk2QLiPTL3wFGS inlkfZRVpNteirBliSk3gEFPOC9hf5MW/ncUSCEwBWr2FKtHM6Wl7uNQKPECBf6x iWsOH8c3ODscLT3Zy5kpNXNWBd/NO8nkmwCwBRnw4ZHJnBUHlDZm0fk6EtQjWY+L t1ZsEfMvrPqkMUTQr21UymOlOBNA/bKtfDD2QJ4WNuCEff9HF5DoccEBiJkRxd9C jAsQULNlDS6YR7FlZq0g6kmgFQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLpN8h3K DcCUy7dweZrZlh6kEr+/MB8GA1UdIwQYMBaAFC8kd+u+VrDXoK1EwnF9tf4IDcro MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzlBNy84QkE5NjNENDQz RjUxMUVFOUE4RTRFMTZDNEY5QUUwMi9MeVIzNjc1V3NOZWdyVVRDY1gyMV9nZ055 dWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0x5UjM2NzVXc05lZ3JVVENjWDIxX2dnTnl1Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NzlBNy84QkE5NjNENDQzRjUxMUVFOUE4RTRFMTZDNEY5QUUwMi9MeVIzNjc1V3NO ZWdyVVRDY1gyMV9nZ055dWcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAr75E2OIZJ2qqm2JYVFdZLQBnYJaN/SMw4UJ3DtlD6I/G/i2vpIM2cxGk90Ic qRqZs5+4TxCTgxOKWVjZpqQauWTZxkFuQv4b8/deKxEfHaNtka8KBn3vapj4qoVg t6ax/QZj2+4Vm5O0WtX5/UxBtQqVJJpf1kLJXdkbgY0lwy3bI0qw0zFxohSAo8yE eUIGK2GIh87Qv1F3ditqZyHHxnBH+SKqPFDDYymZXpl4+EJvGbQ7c4bx2clN2LuQ XgxU5lcf9qaKQhrrKM2A5Q9SEihqvHGGBqQE/JUljk3ykyHgH/EX7kVNymObGu0N adezY+ckqnc7GDl0t6pSiaHcGA== -----END CERTIFICATE-----Generated at Wed Mar 18 11:04:45 2026 by rpki-client