$ rpki-client -vvf rpki.apnic.net/member_repository/A91597E8/7A0FE7FA1D9211E2B5BC74F508B02CD2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.mft File: ycKPmQtidBLJfC3Ox8kG5hrTJaw.mft (raw, json) Hash identifier: 5689wC2IwEfPZy3lEMaGa0NYjZzN5nQ6ciEOd9i43Q4= Subject key identifier: 5B:93:8B:54:0C:97:4E:F1:CF:6F:57:27:6F:8A:90:2B:31:52:80:8C Authority key identifier: C9:C2:8F:99:0B:62:74:12:C9:7C:2D:CE:C7:C9:06:E6:1A:D3:25:AC Certificate issuer: /CN=A91597E8/serialNumber=C9C28F990B627412C97C2DCEC7C906E61AD325AC Certificate serial: 354C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91597E8/7A0FE7FA1D9211E2B5BC74F508B02CD2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.mft Manifest number: 353A Signing time: Sat 28 Mar 2026 14:44:09 +0000 Manifest this update: Sat 28 Mar 2026 14:44:09 +0000 Manifest next update: Sat 04 Apr 2026 14:44:09 +0000 Files and hashes: 1: ycKPmQtidBLJfC3Ox8kG5hrTJaw.crl (hash: 5p+uAjnO/5qpprZ6KHXFvrKs7AgcgfoSR68cPGJtWEk=) 2: 4821776AD9A211F092913C6268D3641D.roa (hash: Sy1HvppFOycihdTszz/358rIRt69yzzeT9izOzy0CC4=) 3: 67AAC7161D1411F1B0E2BAD80C3D8C67.roa (hash: CHdRjKAYDzl4mARbLMEIedXV1bESXGd76YlTxW4AhVo=) 4: 929D25381D1711F1981A78170E3D8C67.roa (hash: i9GKuEAC1w7Uzsve2QE3rzgfDee7AvdLIQUdi85I8+s=) 5: 5D8B2B06D90B11F0A960BEC67CD3641D.roa (hash: yOZ7NWihMQh2xMOicbiIAZG+/dVYwm+tNO5GsESSJA4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91597E8/7A0FE7FA1D9211E2B5BC74F508B02CD2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.crl rsync://rpki.apnic.net/member_repository/A91597E8/7A0FE7FA1D9211E2B5BC74F508B02CD2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 Apr 2026 14:44:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13644 (0x354c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91597E8, serialNumber=C9C28F990B627412C97C2DCEC7C906E61AD325AC Validity Not Before: Mar 28 14:44:09 2026 GMT Not After : Apr 4 14:44:09 2026 GMT Subject: CN=69c7e939-4dbb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:e9:aa:81:d5:f9:45:04:65:05:76:b2:8b:7e: e1:8b:24:06:cb:3f:ab:44:a0:89:88:4d:dd:2e:e3: af:ee:4c:d5:89:a9:39:37:6b:36:6d:b9:78:49:07: 57:92:40:19:87:75:fd:d2:82:a5:c5:49:d4:76:5d: bd:76:4f:b2:bf:86:f2:3b:26:22:fd:35:0e:12:9e: 94:86:f9:ff:80:62:a9:4b:02:6b:cd:1d:3b:5a:7d: f2:ab:2b:c4:91:11:18:26:8a:74:ac:84:d2:69:6d: c6:a2:c8:fb:87:6a:33:86:25:f9:60:82:c4:ab:d4: c5:e2:59:79:27:00:b3:97:22:72:0d:29:3c:1d:bf: f6:31:23:de:dc:e1:35:81:a1:e4:32:25:a4:0c:d9: a5:b4:d0:38:73:d8:fe:92:c8:2d:ba:fe:22:c6:84: 7b:c9:ea:91:4c:47:48:bf:99:41:0c:26:20:0b:76: e9:4f:dc:fe:8c:0f:85:68:36:ec:1f:6d:40:8d:87: 72:e8:52:2a:3d:ff:05:fe:1b:c2:46:ce:6f:f6:25: 92:62:86:c1:06:a5:70:56:a0:a5:d8:11:61:f5:a7: af:f8:9f:1d:9c:d2:6a:35:18:58:0c:8e:56:e9:41: 34:50:2e:86:f1:43:69:29:2d:9b:db:1a:f8:05:f3: 20:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:93:8B:54:0C:97:4E:F1:CF:6F:57:27:6F:8A:90:2B:31:52:80:8C X509v3 Authority Key Identifier: keyid:C9:C2:8F:99:0B:62:74:12:C9:7C:2D:CE:C7:C9:06:E6:1A:D3:25:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91597E8/7A0FE7FA1D9211E2B5BC74F508B02CD2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91597E8/7A0FE7FA1D9211E2B5BC74F508B02CD2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:c8:6e:af:4c:6e:45:5a:42:71:31:c6:00:ff:07:6c:6c:19: 4c:54:9e:6b:48:cb:dd:b5:78:b0:03:a1:61:48:1e:a0:75:fe: be:bd:db:1b:e6:cf:ae:29:a5:2f:8f:d6:44:be:00:05:77:e4: dc:f4:c8:1a:b9:f0:15:24:8d:26:66:0e:aa:5e:cc:bf:3a:60: 5f:2b:73:6e:59:13:cb:81:42:71:7e:23:fe:e8:9a:98:c6:e5: f2:4d:77:15:6b:50:44:13:c6:1c:ce:e0:4e:c5:45:28:ed:f3: e7:1b:31:51:e9:48:ef:d3:57:a9:45:98:d3:75:39:ca:94:94: 95:9f:9b:fa:0f:2d:27:68:74:d9:61:2e:2c:06:31:29:0a:50: 48:4e:34:96:4f:00:af:14:c1:ff:41:eb:eb:36:0a:e6:7a:05: e5:8b:40:8f:6a:8c:4f:92:db:b5:f7:6c:a1:7c:ad:f0:2b:2d: e8:26:35:56:df:be:e9:c4:24:ff:17:3d:18:ee:76:e8:a5:97: 47:8b:7f:b4:7e:89:04:30:98:3a:7a:f7:9c:1f:4d:b2:ef:d9: 61:3e:a0:a2:81:95:74:52:a0:31:7e:67:8a:84:af:8e:c2:5f: 1b:da:12:5d:5d:1f:8f:39:e9:43:75:18:94:22:c3:94:c6:f0: 44:9d:c9:69 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNUwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTk3RTgxMTAvBgNVBAUTKEM5QzI4Rjk5MEI2Mjc0MTJDOTdDMkRDRUM3QzkwNkU2 MUFEMzI1QUMwHhcNMjYwMzI4MTQ0NDA5WhcNMjYwNDA0MTQ0NDA5WjAYMRYwFAYD VQQDEw02OWM3ZTkzOS00ZGJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmemqgdX5RQRlBXayi37hiyQGyz+rRKCJiE3dLuOv7kzViak5N2s2bbl4SQdX kkAZh3X90oKlxUnUdl29dk+yv4byOyYi/TUOEp6Uhvn/gGKpSwJrzR07Wn3yqyvE kREYJop0rITSaW3Gosj7h2ozhiX5YILEq9TF4ll5JwCzlyJyDSk8Hb/2MSPe3OE1 gaHkMiWkDNmltNA4c9j+ksgtuv4ixoR7yeqRTEdIv5lBDCYgC3bpT9z+jA+FaDbs H21AjYdy6FIqPf8F/hvCRs5v9iWSYobBBqVwVqCl2BFh9aev+J8dnNJqNRhYDI5W 6UE0UC6G8UNpKS2b2xr4BfMg6wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFuTi1QM l07xz29XJ2+KkCsxUoCMMB8GA1UdIwQYMBaAFMnCj5kLYnQSyXwtzsfJBuYa0yWs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OTdFOC83QTBGRTdGQTFE OTIxMUUyQjVCQzc0RjUwOEIwMkNEMi95Y0tQbVF0aWRCTEpmQzNPeDhrRzVoclRK YXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ljS1BtUXRpZEJMSmZDM094OGtHNWhyVEphdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OTdFOC83QTBGRTdGQTFEOTIxMUUyQjVCQzc0RjUwOEIwMkNEMi95Y0tQbVF0aWRC TEpmQzNPeDhrRzVoclRKYXcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAD8hur0xuRVpCcTHGAP8HbGwZTFSea0jL3bV4sAOhYUgeoHX+vr3bG+bPriml L4/WRL4ABXfk3PTIGrnwFSSNJmYOql7MvzpgXytzblkTy4FCcX4j/uiamMbl8k13 FWtQRBPGHM7gTsVFKO3z5xsxUelI79NXqUWY03U5ypSUlZ+b+g8tJ2h02WEuLAYx KQpQSE40lk8ArxTB/0Hr6zYK5noF5YtAj2qMT5LbtfdsoXyt8Cst6CY1Vt++6cQk /xc9GO526KWXR4t/tH6JBDCYOnr3nB9Nsu/ZYT6gooGVdFKgMX5nioSvjsJfG9oS XV0fjznpQ3UYlCLDlMbwRJ3JaQ== -----END CERTIFICATE-----Generated at Mon Mar 30 15:34:49 2026 by rpki-client