$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB6AC/D7E98A6E15D011EA93CA0E19C4F9AE02/y1IFTj13aOoWtrColMdzon3qkho.mft File: y1IFTj13aOoWtrColMdzon3qkho.mft (raw, json) Hash identifier: HKehGlVDiy+vvddaXUhtbJDGZe2oHNRx86AEcL29Ta4= Subject key identifier: 5C:09:34:7B:69:45:B8:52:FD:95:B1:F3:FA:A0:CA:2F:F0:B8:80:0E Authority key identifier: CB:52:05:4E:3D:77:68:EA:16:B6:B0:A8:94:C7:73:A2:7D:EA:92:1A Certificate issuer: /CN=A91EB6AC/serialNumber=CB52054E3D7768EA16B6B0A894C773A27DEA921A Certificate serial: 0CA1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1IFTj13aOoWtrColMdzon3qkho.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB6AC/D7E98A6E15D011EA93CA0E19C4F9AE02/y1IFTj13aOoWtrColMdzon3qkho.mft Manifest number: 0C91 Signing time: Mon 30 Mar 2026 18:32:26 +0000 Manifest this update: Mon 30 Mar 2026 18:32:26 +0000 Manifest next update: Mon 06 Apr 2026 18:32:26 +0000 Files and hashes: 1: y1IFTj13aOoWtrColMdzon3qkho.crl (hash: MB197O3UmVPr0vnG4KWFPUPvp0Yyhd+Tkg8q066aHgk=) 2: 12D352766D2911F0B26CB33BC4F9AE02.roa (hash: +veuE7uroMOvZaLX4YYQUXIUo7kDv0lS8n9ppMEUfBU=) 3: 9DA63F546D2811F09647053BC4F9AE02.roa (hash: RqF3cRBG8AaHKTEnB008C+GD7GzGFEY6SVWZ6TQ/56s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB6AC/D7E98A6E15D011EA93CA0E19C4F9AE02/y1IFTj13aOoWtrColMdzon3qkho.crl rsync://rpki.apnic.net/member_repository/A91EB6AC/D7E98A6E15D011EA93CA0E19C4F9AE02/y1IFTj13aOoWtrColMdzon3qkho.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1IFTj13aOoWtrColMdzon3qkho.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 Apr 2026 23:18:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3233 (0xca1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB6AC, serialNumber=CB52054E3D7768EA16B6B0A894C773A27DEA921A Validity Not Before: Mar 30 18:32:26 2026 GMT Not After : Apr 6 18:32:26 2026 GMT Subject: CN=69cac1ba-f93d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:57:2f:e6:98:f7:1f:7a:4f:06:d1:f0:a1:b1: 51:19:fa:7a:44:e3:31:9f:46:e7:e6:52:b8:51:dc: c8:c9:c2:5b:3a:1c:b8:ae:08:5f:8a:10:a8:94:e1: d1:75:47:c4:9e:9a:df:35:53:e3:81:0d:c9:e0:9c: 7f:eb:e5:80:de:29:0d:74:52:a1:91:40:ba:f3:28: a2:0e:0e:b9:26:fd:55:67:e1:9e:48:67:8f:9d:af: 01:0f:5f:cc:c4:3c:d6:e5:7c:55:ff:62:e0:b0:ec: e8:be:42:46:4c:89:7c:fc:6d:c5:55:18:5b:aa:4f: f9:2d:64:54:44:96:cd:63:10:18:85:75:6e:33:1d: 5c:c5:0d:b3:52:dc:50:36:95:09:86:20:2b:fd:3d: 1e:02:c1:fa:14:d9:f3:38:a0:7f:08:92:fb:d9:cb: 8a:bd:d0:5b:76:a6:64:47:4b:fb:30:67:11:d8:f8: af:74:e6:11:08:eb:2b:2f:b7:a8:18:e7:82:8c:e9: 7b:1a:39:4a:9d:ae:52:c7:ea:e9:8f:b1:81:68:e9: 21:1f:5d:55:09:6f:7e:ed:ef:0e:ba:56:94:17:5f: ac:b9:af:8a:b8:9d:ac:4f:a1:73:43:f3:e3:21:f1: d1:02:bc:d7:c3:b3:15:ed:ae:82:45:be:69:52:75: ab:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:09:34:7B:69:45:B8:52:FD:95:B1:F3:FA:A0:CA:2F:F0:B8:80:0E X509v3 Authority Key Identifier: keyid:CB:52:05:4E:3D:77:68:EA:16:B6:B0:A8:94:C7:73:A2:7D:EA:92:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB6AC/D7E98A6E15D011EA93CA0E19C4F9AE02/y1IFTj13aOoWtrColMdzon3qkho.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1IFTj13aOoWtrColMdzon3qkho.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB6AC/D7E98A6E15D011EA93CA0E19C4F9AE02/y1IFTj13aOoWtrColMdzon3qkho.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:1b:84:20:9c:cf:4d:87:5d:4c:de:80:19:0e:c6:98:29:5a: 8e:5f:f1:15:69:51:49:43:39:cf:a8:b0:1b:eb:64:af:39:c9: e4:08:48:1d:0d:a8:69:77:dd:ee:2a:08:4b:8b:cf:7a:5c:2c: 3a:bd:a4:57:2a:09:ca:7f:ec:3a:9b:2c:25:10:48:b1:03:f9: 33:67:dd:6a:c9:71:5a:09:08:a5:f6:61:6f:2d:6a:f5:90:46: eb:31:43:d0:6a:d7:2b:fe:7c:9e:8f:56:af:72:87:80:a3:a0: 50:61:c4:f6:a6:49:80:9a:83:e0:e1:3d:61:80:fe:9e:7e:82: b9:a8:0c:30:89:b8:b0:cf:eb:e9:eb:dd:3b:4c:d0:a9:c8:70: 1e:7a:bd:f1:ce:5d:ec:4c:97:9f:1e:21:dd:77:59:87:ce:fe: 96:2d:d0:ca:4c:21:ba:ca:e7:3a:a6:92:fe:10:10:f0:4b:5b: 9d:0b:dd:03:d3:7b:fc:d0:8a:f0:b4:af:ba:92:d5:fd:ba:3b: f4:f6:7f:e6:ab:63:3d:ab:8c:a8:69:a9:c4:47:6d:8b:82:8d: ca:73:62:38:0f:80:ca:74:48:05:47:2e:d6:3e:57:ca:b8:e7: 69:91:e0:32:f0:40:65:62:a0:0b:fc:e0:86:4d:e8:fe:36:c6: 5c:14:9c:b8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDKEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUI2QUMxMTAvBgNVBAUTKENCNTIwNTRFM0Q3NzY4RUExNkI2QjBBODk0Qzc3M0Ey N0RFQTkyMUEwHhcNMjYwMzMwMTgzMjI2WhcNMjYwNDA2MTgzMjI2WjAYMRYwFAYD VQQDEw02OWNhYzFiYS1mOTNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjVcv5pj3H3pPBtHwobFRGfp6ROMxn0bn5lK4UdzIycJbOhy4rghfihColOHR dUfEnprfNVPjgQ3J4Jx/6+WA3ikNdFKhkUC68yiiDg65Jv1VZ+GeSGePna8BD1/M xDzW5XxV/2LgsOzovkJGTIl8/G3FVRhbqk/5LWRURJbNYxAYhXVuMx1cxQ2zUtxQ NpUJhiAr/T0eAsH6FNnzOKB/CJL72cuKvdBbdqZkR0v7MGcR2PivdOYRCOsrL7eo GOeCjOl7GjlKna5Sx+rpj7GBaOkhH11VCW9+7e8OulaUF1+sua+KuJ2sT6FzQ/Pj IfHRArzXw7MV7a6CRb5pUnWrUQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFwJNHtp RbhS/ZWx8/qgyi/wuIAOMB8GA1UdIwQYMBaAFMtSBU49d2jqFrawqJTHc6J96pIa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjZBQy9EN0U5OEE2RTE1 RDAxMUVBOTNDQTBFMTlDNEY5QUUwMi95MUlGVGoxM2FPb1d0ckNvbE1kem9uM3Fr aG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3kxSUZUajEzYU9vV3RyQ29sTWR6b24zcWtoby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QjZBQy9EN0U5OEE2RTE1RDAxMUVBOTNDQTBFMTlDNEY5QUUwMi95MUlGVGoxM2FP b1d0ckNvbE1kem9uM3FraG8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEANBuEIJzPTYddTN6AGQ7GmClajl/xFWlRSUM5z6iwG+tkrznJ5AhIHQ2oaXfd 7ioIS4vPelwsOr2kVyoJyn/sOpssJRBIsQP5M2fdaslxWgkIpfZhby1q9ZBG6zFD 0GrXK/58no9Wr3KHgKOgUGHE9qZJgJqD4OE9YYD+nn6CuagMMIm4sM/r6evdO0zQ qchwHnq98c5d7EyXnx4h3XdZh87+li3QykwhusrnOqaS/hAQ8EtbnQvdA9N7/NCK 8LSvupLV/bo79PZ/5qtjPauMqGmpxEdti4KNynNiOA+AynRIBUcu1j5XyrjnaZHg MvBAZWKgC/zghk3o/jbGXBScuA== -----END CERTIFICATE-----Generated at Mon Mar 30 22:48:15 2026 by rpki-client