$ rpki-client -vvf rpki.apnic.net/member_repository/A91A822F/5842D304F7F011EE98C8C92BC4F9AE02/2YcsGT4Y3BUf4--eKa_oMSGyTRA.mft File: 2YcsGT4Y3BUf4--eKa_oMSGyTRA.mft (raw, json) Hash identifier: 52/zA/dfr3zu0u/MvxsEH2RA/u8ORyodt7/lenqaNaw= Subject key identifier: 59:B6:6C:49:61:D8:53:0A:5D:42:2A:D8:6E:33:B4:01:B4:26:A6:6A Authority key identifier: D9:87:2C:19:3E:18:DC:15:1F:E3:EF:9E:29:AF:E8:31:21:B2:4D:10 Certificate issuer: /CN=A91A822F/serialNumber=D9872C193E18DC151FE3EF9E29AFE83121B24D10 Certificate serial: 017E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2YcsGT4Y3BUf4--eKa_oMSGyTRA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A822F/5842D304F7F011EE98C8C92BC4F9AE02/2YcsGT4Y3BUf4--eKa_oMSGyTRA.mft Manifest number: 0170 Signing time: Fri 13 Mar 2026 03:52:01 +0000 Manifest this update: Fri 13 Mar 2026 03:52:01 +0000 Manifest next update: Fri 20 Mar 2026 03:52:01 +0000 Files and hashes: 1: 2YcsGT4Y3BUf4--eKa_oMSGyTRA.crl (hash: fTs3l69IhlnN1bdJaOkGqlv3X4uyikpt0MU9kUdO8AU=) 2: DAF8A746E01B11F097920A16646F56BC.roa (hash: LGOwTBglBUqnmp1uBsE0bwegkvn6MaHVF43SRoKPz84=) 3: E46DBE449E8811F0A343880AC4F9AE02.roa (hash: z7YrKVgCWycEYMHa7lXz+45oMrI/HtHuNAYNjecnk68=) 4: BAFD2318E01B11F088B1D0FE636F56BC.roa (hash: nFIjLEFtVNOTTMiweqb0gcEFYFfR+U3yovX2UqgW1o4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A822F/5842D304F7F011EE98C8C92BC4F9AE02/2YcsGT4Y3BUf4--eKa_oMSGyTRA.crl rsync://rpki.apnic.net/member_repository/A91A822F/5842D304F7F011EE98C8C92BC4F9AE02/2YcsGT4Y3BUf4--eKa_oMSGyTRA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2YcsGT4Y3BUf4--eKa_oMSGyTRA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Mar 2026 03:52:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 382 (0x17e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A822F, serialNumber=D9872C193E18DC151FE3EF9E29AFE83121B24D10 Validity Not Before: Mar 13 03:52:01 2026 GMT Not After : Mar 20 03:52:01 2026 GMT Subject: CN=69b389e1-f897 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:d2:e7:f1:bb:9d:1f:6b:2e:f0:c2:df:25:9d: 35:3c:69:62:0d:fb:b3:43:ef:58:e2:ce:27:c6:c9: 8e:79:84:f9:7f:c8:5a:9f:78:3a:0a:7d:e3:ae:65: b5:a9:96:27:e2:f2:91:0c:ea:44:35:d4:24:d8:ae: e1:24:e7:88:9c:c9:8b:63:e8:cf:6b:ef:f6:67:38: 01:2e:3f:9a:37:4f:57:ea:96:42:ea:2e:11:ac:e8: 7c:38:fc:9e:60:3c:f2:8c:f3:62:e6:5b:81:7d:50: 21:f9:99:09:2b:a9:1a:a2:d8:4b:aa:d9:e8:c2:6e: 16:de:22:78:d5:84:85:a0:d7:26:62:02:06:04:aa: 2b:62:0b:a8:ac:45:8b:c4:5d:b9:18:60:01:4d:e4: fc:eb:3a:1d:13:1c:0b:27:7c:a9:53:8d:2b:b3:74: 81:5f:c7:fc:5d:fa:db:4a:51:e6:13:62:1e:23:2b: fc:eb:ce:9b:80:10:23:ff:50:3d:7d:bb:5c:85:a0: 22:84:40:24:c4:0f:ad:4f:61:0c:94:fd:69:1c:f8: 38:b5:39:a5:be:e5:55:c5:75:66:47:61:f2:d9:ca: 95:53:a6:62:8e:91:d6:fa:d1:b9:16:b0:6a:8e:3c: 36:f9:fb:3e:c9:17:a9:74:9e:1b:bf:55:30:a0:3c: 5d:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:B6:6C:49:61:D8:53:0A:5D:42:2A:D8:6E:33:B4:01:B4:26:A6:6A X509v3 Authority Key Identifier: keyid:D9:87:2C:19:3E:18:DC:15:1F:E3:EF:9E:29:AF:E8:31:21:B2:4D:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A822F/5842D304F7F011EE98C8C92BC4F9AE02/2YcsGT4Y3BUf4--eKa_oMSGyTRA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2YcsGT4Y3BUf4--eKa_oMSGyTRA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A822F/5842D304F7F011EE98C8C92BC4F9AE02/2YcsGT4Y3BUf4--eKa_oMSGyTRA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:67:2b:76:ae:62:d1:34:83:7d:d4:46:c4:62:f6:e0:bb:3a: 79:14:f1:0d:a0:f2:49:f8:97:3b:66:b7:cc:42:3f:d4:cb:ba: de:60:d7:23:34:50:87:15:72:16:6f:e7:b1:02:85:98:a0:4a: 4f:23:6b:33:43:73:1d:e6:4c:aa:45:13:4a:0e:bd:b2:25:24: dd:37:7c:68:f6:93:68:10:60:c4:b5:c2:a6:be:15:c3:a6:71: 99:4d:0e:dd:56:e6:17:dc:3b:cb:50:e4:55:7a:3f:4f:4d:a1: 46:fa:e1:88:4b:eb:e5:e8:65:75:79:0f:db:56:43:ef:d7:8b: 6c:d4:5b:39:24:b3:2c:01:45:be:3a:44:88:c4:72:37:35:74: b8:94:49:fd:b6:ee:a2:46:9e:8c:fb:75:46:3e:8b:e9:5d:8d: 07:84:e7:7e:10:7c:a4:7d:8a:4a:50:2a:1d:5c:18:b9:43:6c: 7c:13:f3:91:8a:ae:72:d8:91:aa:bf:1c:16:c7:41:68:e0:ea: cf:22:9d:7e:38:ff:97:37:5b:d2:d2:69:42:db:4d:7e:85:2d: 9c:c1:db:e5:ad:72:b9:2a:23:44:a4:f5:77:b7:3a:5e:e8:58: 45:74:c2:79:50:ca:9b:6f:65:d6:73:4e:c4:5a:83:e2:b3:03: 1f:a1:12:cd -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAX4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTgyMkYxMTAvBgNVBAUTKEQ5ODcyQzE5M0UxOERDMTUxRkUzRUY5RTI5QUZFODMx MjFCMjREMTAwHhcNMjYwMzEzMDM1MjAxWhcNMjYwMzIwMDM1MjAxWjAYMRYwFAYD VQQDEw02OWIzODllMS1mODk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAudLn8budH2su8MLfJZ01PGliDfuzQ+9Y4s4nxsmOeYT5f8han3g6Cn3jrmW1 qZYn4vKRDOpENdQk2K7hJOeInMmLY+jPa+/2ZzgBLj+aN09X6pZC6i4RrOh8OPye YDzyjPNi5luBfVAh+ZkJK6kaothLqtnowm4W3iJ41YSFoNcmYgIGBKorYguorEWL xF25GGABTeT86zodExwLJ3ypU40rs3SBX8f8XfrbSlHmE2IeIyv8686bgBAj/1A9 fbtchaAihEAkxA+tT2EMlP1pHPg4tTmlvuVVxXVmR2Hy2cqVU6ZijpHW+tG5FrBq jjw2+fs+yRepdJ4bv1UwoDxdoQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFm2bElh 2FMKXUIq2G4ztAG0JqZqMB8GA1UdIwQYMBaAFNmHLBk+GNwVH+Pvnimv6DEhsk0Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODIyRi81ODQyRDMwNEY3 RjAxMUVFOThDOEM5MkJDNEY5QUUwMi8yWWNzR1Q0WTNCVWY0LS1lS2Ffb01TR3lU UkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJZY3NHVDRZM0JVZjQtLWVLYV9vTVNHeVRSQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB ODIyRi81ODQyRDMwNEY3RjAxMUVFOThDOEM5MkJDNEY5QUUwMi8yWWNzR1Q0WTNC VWY0LS1lS2Ffb01TR3lUUkEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAXGcrdq5i0TSDfdRGxGL24Ls6eRTxDaDySfiXO2a3zEI/1Mu63mDXIzRQhxVy Fm/nsQKFmKBKTyNrM0NzHeZMqkUTSg69siUk3Td8aPaTaBBgxLXCpr4Vw6ZxmU0O 3VbmF9w7y1DkVXo/T02hRvrhiEvr5ehldXkP21ZD79eLbNRbOSSzLAFFvjpEiMRy NzV0uJRJ/bbuokaejPt1Rj6L6V2NB4TnfhB8pH2KSlAqHVwYuUNsfBPzkYquctiR qr8cFsdBaODqzyKdfjj/lzdb0tJpQttNfoUtnMHb5a1yuSojRKT1d7c6XuhYRXTC eVDKm29l1nNOxFqD4rMDH6ESzQ== -----END CERTIFICATE-----Generated at Sat Mar 14 00:04:51 2026 by rpki-client