$ rpki-client -vvf rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft File: ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft (raw, json) Hash identifier: rcR3t/mTR2gql00H7hCrx99ZOkcgfoak9B5eygX0DG8= Subject key identifier: AB:F5:33:9B:7F:EE:90:7C:13:77:80:07:6F:9E:70:4A:3C:79:45:54 Authority key identifier: C9:ED:4B:76:76:E3:F5:A5:B1:F8:A6:A0:DD:7E:22:1B:63:E5:34:AB Certificate issuer: /CN=A91D2ACF/serialNumber=C9ED4B7676E3F5A5B1F8A6A0DD7E221B63E534AB Certificate serial: 0AB8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft Manifest number: 0AA2 Signing time: Tue 10 Mar 2026 19:12:48 +0000 Manifest this update: Tue 10 Mar 2026 19:12:48 +0000 Manifest next update: Tue 17 Mar 2026 19:12:48 +0000 Files and hashes: 1: ye1Ldnbj9aWx-Kag3X4iG2PlNKs.crl (hash: pKPoEluLnQASXIVDrWa6fT27j2isI7eGtqf3c4kgjRk=) 2: F22D283A9B3B11EBA5C76B80C4F9AE02.roa (hash: 9jHgiW6B1sqLvSJnd17xl6prg5mUxXRdfL0P2w6JRHY=) 3: 3A851EE273E411EA9572F76EC4F9AE02.roa (hash: B7PIpT06o5yz5X0ICfGhNE1RjQ8ofk6sdiEjNK1EArU=) 4: 55D7D802475A11F0B3C02112C4F9AE02.roa (hash: 1ct6ERLfD4y94EVh8sazQBKiN2tsb/2UaNvWuVl4I30=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.crl rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 17 Mar 2026 19:12:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2744 (0xab8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D2ACF, serialNumber=C9ED4B7676E3F5A5B1F8A6A0DD7E221B63E534AB Validity Not Before: Mar 10 19:12:48 2026 GMT Not After : Mar 17 19:12:48 2026 GMT Subject: CN=69b06d30-46a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:e7:2b:d6:1e:76:84:8d:24:bc:e2:00:d4:89: 20:5d:2a:c0:b0:58:a0:0a:b4:66:8f:45:77:fb:ad: f3:a3:e1:5f:e9:78:c1:f4:3b:a5:99:99:6f:4d:28: cd:16:3c:67:b6:98:dd:ff:cb:63:e1:b8:25:bf:59: 2e:e1:8c:f3:72:40:ee:fc:79:f9:df:c6:8a:27:21: ba:fb:ce:4f:16:de:94:8d:1f:6d:b0:63:4f:f8:5f: 5c:af:90:07:c8:58:0c:ce:38:b6:80:68:b6:d7:67: 36:a5:b6:94:f8:20:4c:db:90:2c:a7:1d:25:cc:f1: 69:f6:1e:ed:1c:6d:3c:95:77:ab:ab:79:d1:55:a6: ad:a2:32:2d:f0:ef:d6:99:cd:c2:a8:7c:7b:af:91: 89:30:94:12:5a:9d:6c:4d:b3:9e:9b:bf:b2:cf:89: 1a:89:de:34:7e:72:9e:ad:b9:e9:bf:f1:0e:9c:f8: 80:00:e5:c6:0a:e6:da:a2:c7:5e:5c:dc:e1:5c:80: e1:7e:8c:07:c7:ad:c5:35:33:dc:25:75:7e:70:f9: 77:ca:f0:ed:6c:cd:1c:84:f5:a5:d6:81:5d:cb:26: 41:d2:e4:11:0b:c5:66:c5:38:f9:9c:b7:0b:ea:7d: 35:82:f2:9d:0e:e8:25:e1:5a:84:6c:76:0a:35:2c: df:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:F5:33:9B:7F:EE:90:7C:13:77:80:07:6F:9E:70:4A:3C:79:45:54 X509v3 Authority Key Identifier: keyid:C9:ED:4B:76:76:E3:F5:A5:B1:F8:A6:A0:DD:7E:22:1B:63:E5:34:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:5d:34:23:f0:e3:6f:fa:fc:e8:1c:de:ea:7f:83:bd:4b:ad: 23:97:11:32:77:dc:8f:9f:8b:50:4d:78:b3:80:dc:1b:94:3a: 7c:b9:1a:09:8a:54:de:27:29:6c:e8:39:00:45:50:76:c3:07: e9:a7:e6:14:4a:54:83:89:66:45:71:97:82:12:6b:b7:dd:5c: b9:65:ff:cd:cd:b2:d5:a2:a3:4b:4f:4c:ad:cb:a2:e8:3c:be: 38:37:89:fe:aa:8b:73:f2:44:d2:ce:cb:49:f1:b6:16:5c:36: 6f:bc:01:48:98:ad:2f:fd:af:ca:f3:48:44:26:2b:29:c5:0c: 78:a8:2d:45:14:4a:01:fb:59:d0:fa:cf:a8:7c:14:1e:a8:ee: f4:ee:08:ef:bf:9c:17:13:70:97:5c:61:da:3f:ef:30:cf:7e: fd:47:f1:12:d3:b7:bc:9d:38:6a:8e:4e:9f:a6:09:09:95:1b: ff:b9:ac:4c:36:d6:50:d6:9b:66:1a:ec:4f:de:33:ca:fd:2b: a4:06:67:31:d4:e2:16:7b:d7:ce:0c:6f:f0:41:00:0f:96:67: 72:9b:b6:b2:87:79:98:12:8b:36:6a:d0:01:d4:d5:8a:71:f5: 4a:26:a3:ed:82:3f:00:08:df:bb:f7:64:42:c6:1f:19:dc:de: 6a:ff:35:03 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCrgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDJBQ0YxMTAvBgNVBAUTKEM5RUQ0Qjc2NzZFM0Y1QTVCMUY4QTZBMEREN0UyMjFC NjNFNTM0QUIwHhcNMjYwMzEwMTkxMjQ4WhcNMjYwMzE3MTkxMjQ4WjAYMRYwFAYD VQQDEw02OWIwNmQzMC00NmExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtecr1h52hI0kvOIA1IkgXSrAsFigCrRmj0V3+63zo+Ff6XjB9DulmZlvTSjN Fjxntpjd/8tj4bglv1ku4YzzckDu/Hn538aKJyG6+85PFt6UjR9tsGNP+F9cr5AH yFgMzji2gGi212c2pbaU+CBM25Aspx0lzPFp9h7tHG08lXerq3nRVaatojIt8O/W mc3CqHx7r5GJMJQSWp1sTbOem7+yz4kaid40fnKerbnpv/EOnPiAAOXGCubaosde XNzhXIDhfowHx63FNTPcJXV+cPl3yvDtbM0chPWl1oFdyyZB0uQRC8VmxTj5nLcL 6n01gvKdDugl4VqEbHYKNSzfjwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKv1M5t/ 7pB8E3eAB2+ecEo8eUVUMB8GA1UdIwQYMBaAFMntS3Z24/WlsfimoN1+Ihtj5TSr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMkFDRi81QUM2MkIyQTcz RTMxMUVBOUI1OTQzNkVDNEY5QUUwMi95ZTFMZG5iajlhV3gtS2FnM1g0aUcyUGxO S3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3llMUxkbmJqOWFXeC1LYWczWDRpRzJQbE5Lcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MkFDRi81QUM2MkIyQTczRTMxMUVBOUI1OTQzNkVDNEY5QUUwMi95ZTFMZG5iajlh V3gtS2FnM1g0aUcyUGxOS3MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAMl00I/Djb/r86Bze6n+DvUutI5cRMnfcj5+LUE14s4DcG5Q6fLkaCYpU3icp bOg5AEVQdsMH6afmFEpUg4lmRXGXghJrt91cuWX/zc2y1aKjS09Mrcui6Dy+ODeJ /qqLc/JE0s7LSfG2Flw2b7wBSJitL/2vyvNIRCYrKcUMeKgtRRRKAftZ0PrPqHwU Hqju9O4I77+cFxNwl1xh2j/vMM9+/UfxEtO3vJ04ao5On6YJCZUb/7msTDbWUNab ZhrsT94zyv0rpAZnMdTiFnvXzgxv8EEAD5Zncpu2sod5mBKLNmrQAdTVinH1Siaj 7YI/AAjfu/dkQsYfGdzeav81Aw== -----END CERTIFICATE-----Generated at Thu Mar 12 15:14:38 2026 by rpki-client