$ rpki-client -vvf rpki.apnic.net/member_repository/A9120FD4/809C24D2F55111E99D5B7D3DC4F9AE02/YsaxoLLDphTzy0P6uzG_gWFrVLQ.mft File: YsaxoLLDphTzy0P6uzG_gWFrVLQ.mft (raw, json) Hash identifier: 1VGWJfJwz5oiuOSbA6wfyJ37kV2AfeZuTf0y72fXVyU= Subject key identifier: 70:2C:5D:39:BC:C5:00:B9:58:18:9B:5A:B4:57:76:DE:EF:9A:00:3B Authority key identifier: 62:C6:B1:A0:B2:C3:A6:14:F3:CB:43:FA:BB:31:BF:81:61:6B:54:B4 Certificate issuer: /CN=A9120FD4/serialNumber=62C6B1A0B2C3A614F3CB43FABB31BF81616B54B4 Certificate serial: 0D3D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YsaxoLLDphTzy0P6uzG_gWFrVLQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120FD4/809C24D2F55111E99D5B7D3DC4F9AE02/YsaxoLLDphTzy0P6uzG_gWFrVLQ.mft Manifest number: 0D2E Signing time: Sat 28 Feb 2026 18:12:30 +0000 Manifest this update: Sat 28 Feb 2026 18:12:30 +0000 Manifest next update: Sat 07 Mar 2026 18:12:30 +0000 Files and hashes: 1: YsaxoLLDphTzy0P6uzG_gWFrVLQ.crl (hash: QapFzrNhesVJHZts/J9XN8Sc9BpXtVn1LP2JpM6tNBo=) 2: 4154E51AC91311EBA6226F45C4F9AE02.roa (hash: wB1sovbilxKTEjHlhwxxiGzC+zOOhC0FN6B3+See3J0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120FD4/809C24D2F55111E99D5B7D3DC4F9AE02/YsaxoLLDphTzy0P6uzG_gWFrVLQ.crl rsync://rpki.apnic.net/member_repository/A9120FD4/809C24D2F55111E99D5B7D3DC4F9AE02/YsaxoLLDphTzy0P6uzG_gWFrVLQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YsaxoLLDphTzy0P6uzG_gWFrVLQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 18:12:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3389 (0xd3d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120FD4, serialNumber=62C6B1A0B2C3A614F3CB43FABB31BF81616B54B4 Validity Not Before: Feb 28 18:12:30 2026 GMT Not After : Mar 7 18:12:30 2026 GMT Subject: CN=69a3300e-10ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:d7:73:c3:78:0e:29:55:e9:30:b1:c5:28:18: 4c:f5:d6:87:96:b5:a3:4c:ec:57:2e:48:dd:af:11: a2:f7:80:1f:30:6e:2b:3e:6e:aa:00:13:41:9c:d9: 11:9c:9a:02:2d:3a:8a:6a:87:ad:a9:99:d2:70:94: 65:4c:a2:92:64:2e:b3:23:aa:3a:09:51:d2:39:68: 63:5e:81:a9:39:f8:53:8c:4f:72:45:ef:e5:10:dc: fc:63:8b:0a:dc:cc:6e:ea:fa:d2:23:30:fd:2e:63: 46:1f:aa:c0:05:bf:c6:1c:1b:ba:a1:e5:45:3d:84: e5:13:1b:e4:36:94:58:03:62:f6:1d:ac:31:a5:a4: 24:b8:af:bc:89:89:2a:b8:46:75:21:60:fe:d5:4c: 02:30:80:bd:0d:d3:c9:55:5d:88:8c:6f:5d:12:54: 18:df:73:1e:c6:8b:62:a6:98:3b:68:62:bf:a5:be: 4e:00:6e:0a:76:5c:e4:84:82:1c:91:56:d7:94:91: bc:c0:b1:3b:e2:c0:02:b4:d4:69:c5:c8:9c:a1:fb: 19:bf:19:cb:c2:e2:57:d6:8f:6a:b4:13:84:06:2c: 0a:f3:fc:33:dd:52:3a:94:a2:88:70:d1:26:ac:d1: 33:db:7b:af:d9:f8:d5:72:34:ea:a6:3c:43:09:1e: 4d:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:2C:5D:39:BC:C5:00:B9:58:18:9B:5A:B4:57:76:DE:EF:9A:00:3B X509v3 Authority Key Identifier: keyid:62:C6:B1:A0:B2:C3:A6:14:F3:CB:43:FA:BB:31:BF:81:61:6B:54:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120FD4/809C24D2F55111E99D5B7D3DC4F9AE02/YsaxoLLDphTzy0P6uzG_gWFrVLQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YsaxoLLDphTzy0P6uzG_gWFrVLQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120FD4/809C24D2F55111E99D5B7D3DC4F9AE02/YsaxoLLDphTzy0P6uzG_gWFrVLQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:cf:a0:0d:ea:85:30:e1:00:3e:33:7a:04:c9:7b:de:17:c9: b3:f2:f8:e6:9c:24:01:0a:38:20:8b:59:36:9f:78:c5:66:2c: 5a:16:c7:0b:fb:9a:db:de:cf:8a:8c:41:96:dc:1c:f9:89:f3: 2e:3b:d5:f4:47:37:e3:e9:76:48:fe:b8:c1:3f:87:e9:2e:c6: a2:78:4f:37:10:98:d0:91:02:88:db:d9:c4:71:42:e5:75:b4: d9:5a:e6:82:51:a6:00:e3:39:99:a9:58:76:ba:44:25:09:b6: 66:3e:22:ec:ed:17:db:eb:a5:82:03:a8:27:2c:6c:c9:e7:d7: 1f:20:49:4f:25:8c:9a:35:e5:77:58:a6:37:7f:79:d5:3a:d3: 58:98:2b:6f:2e:22:af:de:7c:00:b6:93:f3:2b:3c:82:2d:44: 77:98:01:29:d6:f4:ef:78:57:b3:ce:09:3b:a9:73:10:0c:d4: ad:0b:eb:a1:69:94:b3:4a:99:40:d2:c4:31:2b:9e:b6:67:e5: ab:4e:09:3f:d7:2f:ba:64:93:92:d3:a0:79:9c:a1:74:c5:60: 3d:c4:69:3e:b9:ec:1e:4d:8d:fb:4e:a3:1b:61:39:31:5b:45: 0e:a6:99:3a:88:13:e9:4b:24:9a:3f:51:00:82:63:e8:7e:29: 0c:bd:2d:72 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDT0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBGRDQxMTAvBgNVBAUTKDYyQzZCMUEwQjJDM0E2MTRGM0NCNDNGQUJCMzFCRjgx NjE2QjU0QjQwHhcNMjYwMjI4MTgxMjMwWhcNMjYwMzA3MTgxMjMwWjAYMRYwFAYD VQQDDA02OWEzMzAwZS0xMGVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+Ndzw3gOKVXpMLHFKBhM9daHlrWjTOxXLkjdrxGi94AfMG4rPm6qABNBnNkR nJoCLTqKaoetqZnScJRlTKKSZC6zI6o6CVHSOWhjXoGpOfhTjE9yRe/lENz8Y4sK 3Mxu6vrSIzD9LmNGH6rABb/GHBu6oeVFPYTlExvkNpRYA2L2HawxpaQkuK+8iYkq uEZ1IWD+1UwCMIC9DdPJVV2IjG9dElQY33Mexotippg7aGK/pb5OAG4KdlzkhIIc kVbXlJG8wLE74sACtNRpxcicofsZvxnLwuJX1o9qtBOEBiwK8/wz3VI6lKKIcNEm rNEz23uv2fjVcjTqpjxDCR5NwwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHAsXTm8 xQC5WBibWrRXdt7vmgA7MB8GA1UdIwQYMBaAFGLGsaCyw6YU88tD+rsxv4Fha1S0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEZENC84MDlDMjREMkY1 NTExMUU5OUQ1QjdEM0RDNEY5QUUwMi9Zc2F4b0xMRHBoVHp5MFA2dXpHX2dXRnJW TFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lzYXhvTExEcGhUenkwUDZ1ekdfZ1dGclZMUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MEZENC84MDlDMjREMkY1NTExMUU5OUQ1QjdEM0RDNEY5QUUwMi9Zc2F4b0xMRHBo VHp5MFA2dXpHX2dXRnJWTFEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAjM+gDeqFMOEAPjN6BMl73hfJs/L45pwkAQo4IItZNp94xWYsWhbHC/ua297P ioxBltwc+YnzLjvV9Ec34+l2SP64wT+H6S7GonhPNxCY0JECiNvZxHFC5XW02Vrm glGmAOM5malYdrpEJQm2Zj4i7O0X2+ulggOoJyxsyefXHyBJTyWMmjXld1imN395 1TrTWJgrby4ir958ALaT8ys8gi1Ed5gBKdb073hXs84JO6lzEAzUrQvroWmUs0qZ QNLEMSuetmflq04JP9cvumSTktOgeZyhdMVgPcRpPrnsHk2N+06jG2E5MVtFDqaZ OogT6Uskmj9RAIJj6H4pDL0tcg== -----END CERTIFICATE-----Generated at Sun Mar 1 20:21:14 2026 by rpki-client