$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.mft File: yxZWgR0IRXmT6Ngbn5eY2tYWlxo.mft (raw, json) Hash identifier: FF/dDZbzZ/auOczHNzuRrdwf91GcMGWAI6Bnl9SweEM= Subject key identifier: 42:DB:76:D5:68:CC:A7:D5:78:12:EF:73:4D:C0:0D:EA:71:0F:6F:0D Authority key identifier: CB:16:56:81:1D:08:45:79:93:E8:D8:1B:9F:97:98:DA:D6:16:97:1A Certificate issuer: /CN=A91B4357/serialNumber=CB1656811D08457993E8D81B9F9798DAD616971A Certificate serial: 0534 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.mft Manifest number: 0509 Signing time: Mon 02 Mar 2026 23:43:24 +0000 Manifest this update: Mon 02 Mar 2026 23:43:24 +0000 Manifest next update: Mon 09 Mar 2026 23:43:24 +0000 Files and hashes: 1: yxZWgR0IRXmT6Ngbn5eY2tYWlxo.crl (hash: y1RZXfxXFp+Bwgnzx6jVNH4L/DE/Wct1VWsyBbYKe7w=) 2: 35A2418C45AE11ECB857890EC4F9AE02.roa (hash: 1S4BYpNOabN3d/LnYoJIPgaMIRT82AJo33zkA94dJ9s=) 3: 346A2B4045AE11ECB857890EC4F9AE02.roa (hash: YheXK0UgGEB7Z/3VeNqFrG7TEedt8nnqAV/x4ZuFjYw=) 4: CA888654D0E011EC9E5ACC1CC4F9AE02.roa (hash: bcqqVj2cPJZljPqgNexbPZepdU+xtAEAALfwJxCXrw4=) 5: 52B98FDA46AF11ECB113AA4BC4F9AE02.roa (hash: xY/esRTHmVcSEnmni9qKfYB8APe7aNUaqGzW5UYshQs=) 6: 9896BA2EB6DE11EC8DB17172C4F9AE02.roa (hash: dG9p093s1Ue0rrA4RBzIOjl2As439gOH8sz6VM6eiUQ=) 7: 351AC73E45AE11ECB857890EC4F9AE02.roa (hash: 1fMszEVclnRMOM/POK57IbuTqKPaZ6i1HdvWDw7RSC4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.crl rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 23:43:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1332 (0x534) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4357, serialNumber=CB1656811D08457993E8D81B9F9798DAD616971A Validity Not Before: Mar 2 23:43:24 2026 GMT Not After : Mar 9 23:43:24 2026 GMT Subject: CN=69a6209c-5990 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:44:16:2b:f2:c7:d7:21:fb:92:64:30:0a:d6: 51:cb:65:a3:91:e3:2f:45:43:fb:21:bb:19:00:de: 0e:e5:f9:6d:ed:79:e1:37:77:5a:db:d7:77:88:8b: e2:8a:c9:af:99:e9:d3:38:b6:ce:c3:82:f2:8b:f9: e7:0e:a1:6a:de:88:17:44:c0:34:0f:b3:a8:56:c1: 6e:02:f3:67:9a:f3:5a:e1:b6:fd:46:62:6c:da:b7: 13:57:74:f1:a9:f2:a2:e7:22:23:7c:01:a1:90:70: 08:06:28:a3:d7:8e:fe:bc:46:89:9d:1e:da:18:69: 7f:03:a4:78:c3:62:ff:63:5f:71:24:26:9f:af:08: 0d:85:c4:96:49:ea:d1:5f:93:01:51:e9:19:eb:19: 8b:89:9a:13:e6:5f:2f:37:b2:63:8e:42:25:2d:be: 38:e2:c6:04:45:b9:84:99:48:c7:ca:2e:65:2a:60: 06:ee:4f:d4:18:8b:5d:5a:0c:f0:e2:33:b5:aa:d8: 58:ab:35:e4:2f:2d:81:cd:da:b8:42:0a:cb:3c:fb: b7:61:c5:40:19:6d:41:5a:ec:10:48:5f:1b:0d:ae: 29:91:6a:81:ed:02:53:0e:38:fc:b3:9b:85:f2:51: 98:41:4d:f1:75:f7:2a:d6:f4:cf:93:cd:84:a7:5f: bd:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:DB:76:D5:68:CC:A7:D5:78:12:EF:73:4D:C0:0D:EA:71:0F:6F:0D X509v3 Authority Key Identifier: keyid:CB:16:56:81:1D:08:45:79:93:E8:D8:1B:9F:97:98:DA:D6:16:97:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:da:36:89:ed:b3:ae:8b:20:69:21:73:d4:c1:8d:cd:78:6c: fc:e5:62:58:ec:c6:35:5b:fe:14:27:35:89:2b:cf:79:65:1d: e4:e4:eb:6c:c0:3d:16:c9:f1:79:f1:f8:9d:33:f1:ba:74:52: 52:eb:a3:17:e6:73:8e:bc:44:d9:f6:ca:1e:58:3f:ec:d4:bb: c3:76:c1:19:d2:81:94:a2:7e:cd:2c:b8:3f:f4:56:62:ea:67: 7f:ed:8d:d3:ba:86:ce:0a:a8:16:ce:a8:55:98:81:0c:c3:ba: 67:96:25:dd:98:09:98:a8:00:52:f8:67:b1:88:c8:bb:ab:b0: 4c:14:be:dd:cf:8f:3e:ef:9c:be:30:e6:1c:ea:0f:6f:ff:37: 73:c4:6f:ef:05:2f:c5:cb:30:3e:13:77:47:b6:18:94:3b:77: ec:5c:83:df:b5:77:f3:16:d9:42:ee:9b:df:c6:60:3a:9e:3d: bd:aa:e7:5a:62:ef:b6:4b:0b:7e:b3:81:14:ad:11:ef:71:5e: 61:93:34:48:61:e7:fd:d7:ae:76:ac:53:ea:2b:3e:3e:98:35: 14:49:0b:15:05:72:79:15:4e:d0:cf:e1:47:f6:34:8f:50:f4: df:51:14:b2:b0:9e:f4:65:75:ad:c3:7b:cf:05:63:14:c4:7a: 38:6f:10:78 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBTQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQzNTcxMTAvBgNVBAUTKENCMTY1NjgxMUQwODQ1Nzk5M0U4RDgxQjlGOTc5OERB RDYxNjk3MUEwHhcNMjYwMzAyMjM0MzI0WhcNMjYwMzA5MjM0MzI0WjAYMRYwFAYD VQQDEw02OWE2MjA5Yy01OTkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApUQWK/LH1yH7kmQwCtZRy2WjkeMvRUP7IbsZAN4O5flt7XnhN3da29d3iIvi ismvmenTOLbOw4Lyi/nnDqFq3ogXRMA0D7OoVsFuAvNnmvNa4bb9RmJs2rcTV3Tx qfKi5yIjfAGhkHAIBiij147+vEaJnR7aGGl/A6R4w2L/Y19xJCafrwgNhcSWSerR X5MBUekZ6xmLiZoT5l8vN7JjjkIlLb444sYERbmEmUjHyi5lKmAG7k/UGItdWgzw 4jO1qthYqzXkLy2Bzdq4QgrLPPu3YcVAGW1BWuwQSF8bDa4pkWqB7QJTDjj8s5uF 8lGYQU3xdfcq1vTPk82Ep1+9pwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFELbdtVo zKfVeBLvc03ADepxD28NMB8GA1UdIwQYMBaAFMsWVoEdCEV5k+jYG5+XmNrWFpca MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDM1Ny9CODRCMTBFQzQ1 QTgxMUVDOEIxNDA1NThDNEY5QUUwMi95eFpXZ1IwSVJYbVQ2TmdibjVlWTJ0WVds eG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3l4WldnUjBJUlhtVDZOZ2JuNWVZMnRZV2x4by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDM1Ny9CODRCMTBFQzQ1QTgxMUVDOEIxNDA1NThDNEY5QUUwMi95eFpXZ1IwSVJY bVQ2TmdibjVlWTJ0WVdseG8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAMto2ie2zrosgaSFz1MGNzXhs/OViWOzGNVv+FCc1iSvPeWUd5OTrbMA9Fsnx efH4nTPxunRSUuujF+ZzjrxE2fbKHlg/7NS7w3bBGdKBlKJ+zSy4P/RWYupnf+2N 07qGzgqoFs6oVZiBDMO6Z5Yl3ZgJmKgAUvhnsYjIu6uwTBS+3c+PPu+cvjDmHOoP b/83c8Rv7wUvxcswPhN3R7YYlDt37FyD37V38xbZQu6b38ZgOp49varnWmLvtksL frOBFK0R73FeYZM0SGHn/deudqxT6is+Ppg1FEkLFQVyeRVO0M/hR/Y0j1D031EU srCe9GV1rcN7zwVjFMR6OG8QeA== -----END CERTIFICATE-----Generated at Wed Mar 4 16:07:21 2026 by rpki-client