$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.mft File: yAcP0GGoUf-K7eDeDDYH7rmP9wE.mft (raw, json) Hash identifier: kB+jSoOyNA7TghgpAwhFAMynghH5S3z5f3hoVpU44xo= Subject key identifier: 8E:C0:5D:B4:B8:ED:36:91:2E:37:CE:E1:3F:1D:59:69:29:A2:64:6F Authority key identifier: C8:07:0F:D0:61:A8:51:FF:8A:ED:E0:DE:0C:36:07:EE:B9:8F:F7:01 Certificate issuer: /CN=A91E4D3D/serialNumber=C8070FD061A851FF8AEDE0DE0C3607EEB98FF701 Certificate serial: 0684 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yAcP0GGoUf-K7eDeDDYH7rmP9wE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.mft Manifest number: 065C Signing time: Sat 28 Mar 2026 22:39:45 +0000 Manifest this update: Sat 28 Mar 2026 22:39:45 +0000 Manifest next update: Sat 04 Apr 2026 22:39:45 +0000 Files and hashes: 1: yAcP0GGoUf-K7eDeDDYH7rmP9wE.crl (hash: 9mmjpuHO41z7KUW7+L0Yrwx7tYHDYiMzASupPB+AKwY=) 2: 6954A6281D1811F1BB26F0200F3D8C67.roa (hash: 6kykLOl9r4HzpXuTyrWIkt0JckBYVmNudo4YO7qNUhU=) 3: 5FA1BF8802DD11EE86865A23C4F9AE02.roa (hash: GFfQfs1rBXk5RvNn/1eLrsagDcvE+KrBjwNFBGF3aQo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.crl rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yAcP0GGoUf-K7eDeDDYH7rmP9wE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 Apr 2026 22:39:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1668 (0x684) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4D3D, serialNumber=C8070FD061A851FF8AEDE0DE0C3607EEB98FF701 Validity Not Before: Mar 28 22:39:45 2026 GMT Not After : Apr 4 22:39:45 2026 GMT Subject: CN=69c858b1-e89b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:1c:e5:7b:28:28:4e:a1:9b:f4:b7:07:1a:1d: 12:a3:09:25:da:1e:4b:9d:04:60:95:95:18:66:fd: 98:25:be:bc:43:38:72:79:3c:89:87:6c:08:af:e0: 66:a2:c0:d5:fd:7e:23:e8:24:7e:11:e4:db:09:4a: 59:04:b4:0a:34:ef:d2:25:4a:df:13:40:ac:3e:fc: fc:0e:f9:32:e9:8a:0d:b3:a1:a2:b7:11:06:41:10: ca:11:6d:fa:bc:3b:4f:3d:f8:e6:d2:7b:f7:36:8a: 5a:14:d0:79:7e:04:30:01:dc:3b:6b:d3:e1:37:ec: 1d:c4:f8:37:00:c0:62:76:2d:25:4f:f2:e7:39:14: d8:82:e2:0f:bf:9f:80:c4:90:1b:31:cc:e0:db:fc: 8e:2e:e3:c2:b9:37:36:17:66:a5:3a:00:57:0c:e6: 0f:1b:c0:9e:2e:0c:32:dc:0f:47:19:aa:37:5b:1f: 1f:2c:51:16:5e:09:d0:2f:61:52:df:d1:54:3b:93: 40:3e:c0:16:00:d3:5c:26:d3:bf:d8:7f:48:09:49: 89:5f:de:65:a0:4b:c7:b7:d9:1c:53:3b:55:de:ec: 22:87:3a:83:61:5a:83:d4:26:44:86:53:7a:5c:74: 35:3e:01:27:1d:72:74:89:9c:15:2e:7c:48:67:00: a0:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:C0:5D:B4:B8:ED:36:91:2E:37:CE:E1:3F:1D:59:69:29:A2:64:6F X509v3 Authority Key Identifier: keyid:C8:07:0F:D0:61:A8:51:FF:8A:ED:E0:DE:0C:36:07:EE:B9:8F:F7:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yAcP0GGoUf-K7eDeDDYH7rmP9wE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:c0:bf:fd:dd:c3:26:dd:83:ce:e7:e6:11:c5:17:39:20:f6: 21:dc:75:f4:be:1b:35:2c:0c:a3:30:9b:83:49:42:19:bf:f5: 72:47:80:fe:54:5c:22:48:e6:95:d0:92:56:3e:17:ae:ba:05: 3a:af:0c:1d:4d:12:0e:51:ff:d8:24:55:c4:5a:75:90:ac:23: 8c:99:97:3d:32:28:96:44:8f:b9:00:4f:91:36:59:91:7c:61: 3c:50:55:5f:ad:77:a1:06:34:5c:08:00:33:72:0e:7c:84:15: b7:9f:eb:14:94:3a:cb:29:af:33:0a:44:ff:8b:27:a9:95:02: dc:11:7a:ce:b3:f5:4c:22:b0:67:98:64:fe:fb:aa:c1:b5:fd: 5f:4b:1d:a1:8e:39:33:e7:f8:cd:d9:32:ce:2b:2b:c2:3e:27: b0:19:3c:ae:d7:08:ba:fe:26:c6:da:41:94:8e:2d:d9:30:8c: 5b:fc:32:ae:6b:1a:d9:0d:0c:38:51:dc:6c:71:51:4a:a9:9f: aa:36:0d:bd:5f:97:c5:17:ce:36:6d:0c:89:65:cc:55:9c:e9: f0:f5:90:65:ba:21:9f:4d:61:f5:c7:c8:8d:70:62:2c:71:cf: 6b:a8:7f:ea:87:82:a8:d7:6a:72:4d:6c:70:0f:d9:34:61:90: 9c:40:d0:cd -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBoQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTREM0QxMTAvBgNVBAUTKEM4MDcwRkQwNjFBODUxRkY4QUVERTBERTBDMzYwN0VF Qjk4RkY3MDEwHhcNMjYwMzI4MjIzOTQ1WhcNMjYwNDA0MjIzOTQ1WjAYMRYwFAYD VQQDEw02OWM4NThiMS1lODliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwhzleygoTqGb9LcHGh0Sowkl2h5LnQRglZUYZv2YJb68QzhyeTyJh2wIr+Bm osDV/X4j6CR+EeTbCUpZBLQKNO/SJUrfE0CsPvz8Dvky6YoNs6GitxEGQRDKEW36 vDtPPfjm0nv3NopaFNB5fgQwAdw7a9PhN+wdxPg3AMBidi0lT/LnORTYguIPv5+A xJAbMczg2/yOLuPCuTc2F2alOgBXDOYPG8CeLgwy3A9HGao3Wx8fLFEWXgnQL2FS 39FUO5NAPsAWANNcJtO/2H9ICUmJX95loEvHt9kcUztV3uwihzqDYVqD1CZEhlN6 XHQ1PgEnHXJ0iZwVLnxIZwCg0wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFI7AXbS4 7TaRLjfO4T8dWWkpomRvMB8GA1UdIwQYMBaAFMgHD9BhqFH/iu3g3gw2B+65j/cB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEQzRC9CMDIwMkQzMkQ4 QjkxMUVCQUJDMUY0ODVDNEY5QUUwMi95QWNQMEdHb1VmLUs3ZURlRERZSDdybVA5 d0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lBY1AwR0dvVWYtSzdlRGVERFlIN3JtUDl3RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NEQzRC9CMDIwMkQzMkQ4QjkxMUVCQUJDMUY0ODVDNEY5QUUwMi95QWNQMEdHb1Vm LUs3ZURlRERZSDdybVA5d0UubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAVMC//d3DJt2DzufmEcUXOSD2Idx19L4bNSwMozCbg0lCGb/1ckeA/lRcIkjm ldCSVj4XrroFOq8MHU0SDlH/2CRVxFp1kKwjjJmXPTIolkSPuQBPkTZZkXxhPFBV X613oQY0XAgAM3IOfIQVt5/rFJQ6yymvMwpE/4snqZUC3BF6zrP1TCKwZ5hk/vuq wbX9X0sdoY45M+f4zdkyzisrwj4nsBk8rtcIuv4mxtpBlI4t2TCMW/wyrmsa2Q0M OFHcbHFRSqmfqjYNvV+XxRfONm0MiWXMVZzp8PWQZbohn01h9cfIjXBiLHHPa6h/ 6oeCqNdqck1scA/ZNGGQnEDQzQ== -----END CERTIFICATE-----Generated at Sun Mar 29 23:42:36 2026 by rpki-client