$ rpki-client -vvf rpki.apnic.net/member_repository/A91118FA/9842449C40EA11EABB01BD42C4F9AE02/YDUU_FCDUUDwM--oQ87pOWOWol0.mft File: YDUU_FCDUUDwM--oQ87pOWOWol0.mft (raw, json) Hash identifier: zlAFaAbNg708W/63ru0Rk2pdaExIfnmty7PabuBYe+0= Subject key identifier: 59:C2:28:AF:96:FF:E6:D2:D3:5B:42:A4:2F:22:A6:3E:DA:8A:76:3F Authority key identifier: 60:35:14:FC:50:83:51:40:F0:33:EF:A8:43:CE:E9:39:63:96:A2:5D Certificate issuer: /CN=A91118FA/serialNumber=603514FC50835140F033EFA843CEE9396396A25D Certificate serial: 0BA7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YDUU_FCDUUDwM--oQ87pOWOWol0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91118FA/9842449C40EA11EABB01BD42C4F9AE02/YDUU_FCDUUDwM--oQ87pOWOWol0.mft Manifest number: 0B9E Signing time: Sun 01 Mar 2026 23:52:58 +0000 Manifest this update: Sun 01 Mar 2026 23:52:57 +0000 Manifest next update: Sun 08 Mar 2026 23:52:57 +0000 Files and hashes: 1: YDUU_FCDUUDwM--oQ87pOWOWol0.crl (hash: U/PXP/FnYfB67leWN1LPtwbmRgSmZ4Z6YJdROrNqQB0=) 2: 42EE36A240EC11EA875BC545C4F9AE02.roa (hash: gQrDZPWymcXjV4zcyfSy0wB6zarHZABhbBU74ZyT7bM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91118FA/9842449C40EA11EABB01BD42C4F9AE02/YDUU_FCDUUDwM--oQ87pOWOWol0.crl rsync://rpki.apnic.net/member_repository/A91118FA/9842449C40EA11EABB01BD42C4F9AE02/YDUU_FCDUUDwM--oQ87pOWOWol0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YDUU_FCDUUDwM--oQ87pOWOWol0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:52:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2983 (0xba7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91118FA, serialNumber=603514FC50835140F033EFA843CEE9396396A25D Validity Not Before: Mar 1 23:52:57 2026 GMT Not After : Mar 8 23:52:57 2026 GMT Subject: CN=69a4d159-11fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:59:cd:fd:8e:51:38:03:05:71:4f:64:c2:d3: a2:9c:ef:3c:2d:c1:4d:a5:27:e9:4e:ae:31:04:03: 26:05:c3:f5:b5:db:aa:1b:d8:c8:e3:3c:73:04:81: 0c:b7:be:94:25:9b:2e:c8:ea:44:cd:0e:12:e6:17: a1:3c:79:af:26:a7:c3:d0:6f:12:1b:e7:80:e3:ca: 7e:9a:9a:ae:b7:8e:39:9f:b0:00:3e:ab:26:17:c6: 08:8a:dc:cd:2f:2a:76:1a:d9:9e:46:32:bf:75:75: 70:b9:29:75:04:73:a0:77:cc:d4:70:a3:75:36:65: e9:67:85:55:79:67:2f:44:9c:df:7e:f7:03:e4:55: df:d6:55:7d:89:8f:c2:04:fc:9b:51:dd:d6:9f:42: f7:61:e8:84:28:7c:1b:f9:99:b7:90:e1:04:f6:8f: 62:1f:ab:ca:51:61:aa:ec:99:69:71:05:ad:43:6b: bd:ac:13:25:5e:17:df:a8:38:cc:dc:c0:e3:7f:a0: fe:b8:eb:12:38:84:0e:49:3e:8c:77:bb:3d:c2:44: 54:3e:72:ad:77:90:19:69:9d:74:14:30:29:56:2b: 82:7a:df:7b:66:e1:cd:70:a2:8c:e2:4d:a1:cd:82: b2:51:98:1b:ad:84:6e:4b:b0:b6:27:74:c3:d0:db: 76:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:C2:28:AF:96:FF:E6:D2:D3:5B:42:A4:2F:22:A6:3E:DA:8A:76:3F X509v3 Authority Key Identifier: keyid:60:35:14:FC:50:83:51:40:F0:33:EF:A8:43:CE:E9:39:63:96:A2:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91118FA/9842449C40EA11EABB01BD42C4F9AE02/YDUU_FCDUUDwM--oQ87pOWOWol0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YDUU_FCDUUDwM--oQ87pOWOWol0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91118FA/9842449C40EA11EABB01BD42C4F9AE02/YDUU_FCDUUDwM--oQ87pOWOWol0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:8b:3f:f5:e7:47:13:2b:8a:c2:59:92:bb:dc:60:2d:03:7e: e2:3a:c2:e0:3b:2d:14:90:2f:c3:b5:91:4c:39:72:45:da:d0: 16:7e:37:40:ff:99:2c:8c:8b:bb:aa:95:01:49:0b:0e:8b:0d: 0c:b0:b6:bf:74:d2:53:48:84:3d:ab:91:fa:82:f7:3f:83:0a: e3:76:82:09:71:c4:d4:4c:88:ff:bb:a6:9d:37:7d:a5:4c:7b: 3f:1e:36:77:cb:bf:b7:db:fe:43:ec:e1:53:2c:c5:fd:fa:41: 4f:99:a7:14:69:d8:f5:8b:b3:84:6f:fc:f2:08:49:62:f8:ce: 10:5c:04:4e:af:6d:09:fb:10:85:ca:c6:cc:34:c0:a2:9c:02: 26:24:9e:0d:34:09:11:f7:ed:b9:5c:8a:f7:77:ca:7a:a0:ba: 0b:36:11:6f:7c:99:c0:16:1b:c9:17:36:dd:15:62:b2:1c:29: 96:ca:fb:01:c3:27:b5:28:1d:cb:1b:de:00:3c:ac:f1:60:e2: a4:5f:6d:92:2f:3a:7e:bb:3b:4f:f4:3e:b7:87:40:04:a7:b5: a4:95:65:55:1f:f7:d5:f5:13:05:50:22:38:39:dd:40:55:77: c4:42:e3:51:11:1f:98:87:1f:4c:18:86:5a:dc:d3:39:50:c6: 39:d0:1f:88 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICC6cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTE4RkExMTAvBgNVBAUTKDYwMzUxNEZDNTA4MzUxNDBGMDMzRUZBODQzQ0VFOTM5 NjM5NkEyNUQwHhcNMjYwMzAxMjM1MjU3WhcNMjYwMzA4MjM1MjU3WjAYMRYwFAYD VQQDEw02OWE0ZDE1OS0xMWZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAolnN/Y5ROAMFcU9kwtOinO88LcFNpSfpTq4xBAMmBcP1tduqG9jI4zxzBIEM t76UJZsuyOpEzQ4S5hehPHmvJqfD0G8SG+eA48p+mpqut445n7AAPqsmF8YIitzN Lyp2GtmeRjK/dXVwuSl1BHOgd8zUcKN1NmXpZ4VVeWcvRJzffvcD5FXf1lV9iY/C BPybUd3Wn0L3YeiEKHwb+Zm3kOEE9o9iH6vKUWGq7JlpcQWtQ2u9rBMlXhffqDjM 3MDjf6D+uOsSOIQOST6Md7s9wkRUPnKtd5AZaZ10FDApViuCet97ZuHNcKKM4k2h zYKyUZgbrYRuS7C2J3TD0Nt2ewIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFnCKK+W /+bS01tCpC8ipj7ainY/MB8GA1UdIwQYMBaAFGA1FPxQg1FA8DPvqEPO6TljlqJd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMThGQS85ODQyNDQ5QzQw RUExMUVBQkIwMUJENDJDNEY5QUUwMi9ZRFVVX0ZDRFVVRHdNLS1vUTg3cE9XT1dv bDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lEVVVfRkNEVVVEd00tLW9RODdwT1dPV29sMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MThGQS85ODQyNDQ5QzQwRUExMUVBQkIwMUJENDJDNEY5QUUwMi9ZRFVVX0ZDRFVV RHdNLS1vUTg3cE9XT1dvbDAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAIos/9edHEyuKwlmSu9xgLQN+4jrC4DstFJAvw7WRTDlyRdrQFn43QP+ZLIyL u6qVAUkLDosNDLC2v3TSU0iEPauR+oL3P4MK43aCCXHE1EyI/7umnTd9pUx7Px42 d8u/t9v+Q+zhUyzF/fpBT5mnFGnY9YuzhG/88ghJYvjOEFwETq9tCfsQhcrGzDTA opwCJiSeDTQJEfftuVyK93fKeqC6CzYRb3yZwBYbyRc23RVishwplsr7AcMntSgd yxveADys8WDipF9tki86frs7T/Q+t4dABKe1pJVlVR/31fUTBVAiODndQFV3xELj UREfmIcfTBiGWtzTOVDGOdAfiA== -----END CERTIFICATE-----Generated at Mon Mar 2 14:07:28 2026 by rpki-client