$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.mft File: C-AoY1W14laYjORU35P8D8p_YEA.mft (raw, json) Hash identifier: 92FTBaebPBH37viHMiYvTewV7oNCkuf/qw9XNTvX0T0= Subject key identifier: 44:0C:CF:15:F9:14:AA:CA:54:0A:D9:7A:77:AB:99:AA:95:EB:CC:C1 Authority key identifier: 0B:E0:28:63:55:B5:E2:56:98:8C:E4:54:DF:93:FC:0F:CA:7F:60:40 Certificate issuer: /CN=A91A1D43/serialNumber=0BE0286355B5E256988CE454DF93FC0FCA7F6040 Certificate serial: 022E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C-AoY1W14laYjORU35P8D8p_YEA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.mft Manifest number: 0222 Signing time: Fri 27 Mar 2026 02:16:56 +0000 Manifest this update: Fri 27 Mar 2026 02:16:56 +0000 Manifest next update: Fri 03 Apr 2026 02:16:56 +0000 Files and hashes: 1: C-AoY1W14laYjORU35P8D8p_YEA.crl (hash: zchhbr9p/OU+56Z7LjXd9Z5dZp2aijppBjYg4WSxYj0=) 2: 8B1BDC14EA3911EDB91E190BC4F9AE02.roa (hash: IRQ+OR5t+v1uxAMW20q5TYiXjn6EFNEgE2VqHO9rI/w=) 3: 8BCB2CFAEA3911EDB91E190BC4F9AE02.roa (hash: QhSp+pceORKO5TeSj6aanaSrz92dgNngwmylNT95Bc4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.crl rsync://rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C-AoY1W14laYjORU35P8D8p_YEA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 02:16:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 558 (0x22e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1D43, serialNumber=0BE0286355B5E256988CE454DF93FC0FCA7F6040 Validity Not Before: Mar 27 02:16:56 2026 GMT Not After : Apr 3 02:16:56 2026 GMT Subject: CN=69c5e898-e855 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:4f:6b:e8:54:5a:4a:a7:d9:8d:52:23:a9:44: 19:ed:b1:ce:52:82:1a:6b:cd:80:a2:48:9d:05:0c: 7d:a2:ee:54:d1:38:5a:b8:44:0f:eb:03:dd:6d:c7: d2:08:c9:89:75:5d:c7:68:c9:47:06:1a:40:f2:ee: 9b:81:db:36:0a:5e:bd:e4:bf:3b:e4:40:93:69:f2: 76:76:d6:28:e3:6a:c6:a8:47:f6:59:c9:ba:19:1f: 47:9e:43:97:52:bf:86:79:49:8f:81:7a:44:28:62: de:5e:dc:ff:a5:8b:21:b0:9c:90:6d:e5:b8:8d:6c: 69:5e:8c:43:9d:68:2b:66:d5:ab:98:1c:0e:be:94: b3:64:13:69:2a:2b:1e:0b:ab:ed:6d:54:bb:d5:86: a1:44:53:68:e0:75:e9:ab:23:75:8c:c0:1e:13:6e: cb:7f:e3:55:20:51:0e:ba:76:96:f9:3f:e4:97:f3: 46:5c:6a:45:96:4c:5c:eb:92:3a:26:30:fa:4e:ca: 6e:6e:d0:68:3f:64:3d:48:8c:64:41:dc:d9:85:ba: 40:2b:32:26:ba:bb:03:d8:d7:48:c4:1b:63:88:ac: 8b:99:06:3a:ab:58:c9:45:ed:62:4b:d1:27:b5:97: 62:61:d8:ce:71:93:d9:dc:6a:00:8c:99:77:57:e7: e1:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:0C:CF:15:F9:14:AA:CA:54:0A:D9:7A:77:AB:99:AA:95:EB:CC:C1 X509v3 Authority Key Identifier: keyid:0B:E0:28:63:55:B5:E2:56:98:8C:E4:54:DF:93:FC:0F:CA:7F:60:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C-AoY1W14laYjORU35P8D8p_YEA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:53:5b:a4:b7:13:94:16:95:52:8f:f3:d1:d8:ab:85:88:a2: bf:77:65:e6:6e:88:d9:0a:b5:fd:2d:70:55:77:40:af:39:6f: 6c:f1:c4:66:e8:61:32:50:b7:dc:05:00:93:f8:7e:bf:e9:c6: 41:ed:fb:46:f9:08:d7:67:59:df:df:3b:46:57:38:87:72:ac: 97:5a:81:43:52:3b:a3:dc:3a:35:9c:29:b5:56:10:08:7c:56: 65:01:69:ba:0f:b9:58:9d:5a:33:c1:c4:2d:f7:2a:1b:8d:66: 31:40:0f:c8:dc:8b:8a:25:cc:a1:4e:a5:19:b8:4f:b7:14:60: 54:5f:56:f8:e1:a1:0f:f6:f7:bb:b7:fc:fb:48:f9:11:11:15: 44:3f:f6:33:9f:14:77:f5:83:8d:8c:96:03:0c:1a:d6:be:04: 04:2d:25:5c:06:35:cd:87:67:98:39:1d:be:15:49:0d:e2:20: 97:5c:2e:1d:67:6b:39:54:a9:25:03:98:cd:93:e2:42:fe:0d: 39:eb:18:da:9a:fd:06:80:80:b6:81:3d:0d:fb:55:ac:98:80: 3c:58:a6:c3:ed:20:c3:65:3c:6a:39:ce:eb:ca:6e:20:cd:d6: 49:c7:b5:03:59:4b:77:8f:b8:9e:00:dc:3a:83:c8:df:c1:f5: 1a:0d:4d:05 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAi4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTFENDMxMTAvBgNVBAUTKDBCRTAyODYzNTVCNUUyNTY5ODhDRTQ1NERGOTNGQzBG Q0E3RjYwNDAwHhcNMjYwMzI3MDIxNjU2WhcNMjYwNDAzMDIxNjU2WjAYMRYwFAYD VQQDEw02OWM1ZTg5OC1lODU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqE9r6FRaSqfZjVIjqUQZ7bHOUoIaa82AokidBQx9ou5U0ThauEQP6wPdbcfS CMmJdV3HaMlHBhpA8u6bgds2Cl695L875ECTafJ2dtYo42rGqEf2Wcm6GR9HnkOX Ur+GeUmPgXpEKGLeXtz/pYshsJyQbeW4jWxpXoxDnWgrZtWrmBwOvpSzZBNpKise C6vtbVS71YahRFNo4HXpqyN1jMAeE27Lf+NVIFEOunaW+T/kl/NGXGpFlkxc65I6 JjD6TspubtBoP2Q9SIxkQdzZhbpAKzImursD2NdIxBtjiKyLmQY6q1jJRe1iS9En tZdiYdjOcZPZ3GoAjJl3V+fh3wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEQMzxX5 FKrKVArZenermaqV68zBMB8GA1UdIwQYMBaAFAvgKGNVteJWmIzkVN+T/A/Kf2BA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMUQ0My84OTI5REZERUVB MjgxMUVEQjdERDAxMThDNEY5QUUwMi9DLUFvWTFXMTRsYVlqT1JVMzVQOEQ4cF9Z RUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0MtQW9ZMVcxNGxhWWpPUlUzNVA4RDhwX1lFQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MUQ0My84OTI5REZERUVBMjgxMUVEQjdERDAxMThDNEY5QUUwMi9DLUFvWTFXMTRs YVlqT1JVMzVQOEQ4cF9ZRUEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAj1NbpLcTlBaVUo/z0dirhYiiv3dl5m6I2Qq1/S1wVXdArzlvbPHEZuhhMlC3 3AUAk/h+v+nGQe37RvkI12dZ3987Rlc4h3Ksl1qBQ1I7o9w6NZwptVYQCHxWZQFp ug+5WJ1aM8HELfcqG41mMUAPyNyLiiXMoU6lGbhPtxRgVF9W+OGhD/b3u7f8+0j5 EREVRD/2M58Ud/WDjYyWAwwa1r4EBC0lXAY1zYdnmDkdvhVJDeIgl1wuHWdrOVSp JQOYzZPiQv4NOesY2pr9BoCAtoE9DftVrJiAPFimw+0gw2U8ajnO68puIM3WSce1 A1lLd4+4ngDcOoPI38H1Gg1NBQ== -----END CERTIFICATE-----Generated at Sat Mar 28 11:47:51 2026 by rpki-client