$ rpki-client -vvf rpki.apnic.net/member_repository/A912B2EE/1F411F586C2111E9B76FA909C4F9AE02/yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.mft File: yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.mft (raw, json) Hash identifier: YUM8NT8OS9+v4VfyETabJ6juQelMWbEiTBqy6aTUGa4= Subject key identifier: 97:73:5E:23:55:EB:57:6B:7C:0B:6D:4A:B5:D8:0C:51:1B:FE:27:95 Authority key identifier: C8:24:34:74:25:BA:C8:AF:59:B4:E1:96:6B:C1:0D:BF:A8:BD:AB:82 Certificate issuer: /CN=A912B2EE/serialNumber=C824347425BAC8AF59B4E1966BC10DBFA8BDAB82 Certificate serial: 1009 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912B2EE/1F411F586C2111E9B76FA909C4F9AE02/yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.mft Manifest number: 0FF3 Signing time: Mon 02 Mar 2026 01:59:02 +0000 Manifest this update: Mon 02 Mar 2026 01:59:00 +0000 Manifest next update: Mon 09 Mar 2026 01:59:00 +0000 Files and hashes: 1: yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.crl (hash: 6yl92jbuL0hKtJPLPNRdWq3wM/E5Gpn7kvuZp5Wo9Ok=) 2: 05449490E17B11EC93AB7473C4F9AE02.roa (hash: b4RHmMbFBRWJFcnsmHpleiRHLLRNwyJ8lJiARBOoS8k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912B2EE/1F411F586C2111E9B76FA909C4F9AE02/yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.crl rsync://rpki.apnic.net/member_repository/A912B2EE/1F411F586C2111E9B76FA909C4F9AE02/yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:58:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4105 (0x1009) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912B2EE, serialNumber=C824347425BAC8AF59B4E1966BC10DBFA8BDAB82 Validity Not Before: Mar 2 01:59:00 2026 GMT Not After : Mar 9 01:59:00 2026 GMT Subject: CN=69a4eee6-61c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:b9:46:38:4b:3f:6d:c7:ec:48:55:9e:c8:31: 13:06:17:54:a5:63:58:b5:e4:cc:0f:8a:ab:84:69: db:52:69:40:21:7c:81:4f:5b:6d:52:86:4b:4b:e1: 93:04:59:1f:67:32:03:67:f2:29:e5:a9:bf:58:d5: ba:71:e9:13:34:fb:ca:f3:34:82:b4:eb:64:0d:43: db:44:db:54:d7:42:ea:32:38:46:1b:d3:7d:da:ab: fa:9a:de:6b:22:42:06:38:5e:10:7e:53:f6:ed:fa: 9f:ed:3e:63:2b:c0:af:69:13:f5:11:00:c4:7f:77: 1c:e4:0b:55:7b:39:f5:ca:43:55:9a:c2:1b:a5:2b: d7:d1:3d:b9:33:8f:1b:79:70:d5:5a:e3:64:c5:7c: 7d:06:20:57:21:d9:61:18:1f:9d:4d:2c:8d:ef:8d: 14:90:25:e2:a0:ea:1b:1e:f4:7d:fa:59:11:4d:7e: b4:bc:9a:86:b3:f2:c8:9f:ff:d3:dd:23:c3:7b:c6: 8b:ee:46:6f:f1:29:96:a9:b0:3e:63:dd:73:27:ce: 43:de:d0:5c:4b:49:15:03:a4:a5:83:23:1a:30:7f: 47:25:03:41:29:c6:1f:7d:fd:72:ac:57:93:10:dd: 24:d9:65:74:8b:81:c4:4b:e5:e8:ea:be:a9:3d:e3: fe:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:73:5E:23:55:EB:57:6B:7C:0B:6D:4A:B5:D8:0C:51:1B:FE:27:95 X509v3 Authority Key Identifier: keyid:C8:24:34:74:25:BA:C8:AF:59:B4:E1:96:6B:C1:0D:BF:A8:BD:AB:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912B2EE/1F411F586C2111E9B76FA909C4F9AE02/yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912B2EE/1F411F586C2111E9B76FA909C4F9AE02/yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:05:b6:a4:46:5e:c5:5d:b9:1f:25:9f:bf:1d:6f:81:07:9a: f6:36:ee:7b:29:24:95:d9:ea:bb:fb:26:5d:98:2a:8e:0a:cf: 69:02:2c:73:2e:1c:54:2b:09:6d:34:5c:ee:25:01:e5:d9:d3: c3:c5:87:49:f0:c8:f1:ce:dc:99:41:1f:fd:47:ed:f8:d0:aa: 2d:55:90:a0:3c:f1:b4:8a:24:ff:21:68:b7:8d:cd:86:6a:ad: 39:56:2e:4c:76:1c:62:5d:91:23:9e:7d:cd:44:54:a6:66:10: 2a:56:cc:39:29:16:47:1c:15:61:91:03:96:ac:1d:29:0a:3f: 60:85:b6:4c:78:20:76:94:fd:d7:4e:34:56:c1:99:94:7c:c1: 1d:69:b1:55:82:32:52:0a:a5:ad:3a:ff:7a:d1:66:69:cd:b6: 08:01:a9:a4:21:ae:c5:d9:af:67:1a:1d:46:07:40:a6:9f:00: 07:ea:3a:6f:be:be:65:31:8a:0f:bf:f5:c0:69:d7:bb:b9:66: d0:4b:3f:ec:6f:a8:16:66:30:35:83:b4:71:b1:ae:59:1d:b5: 5f:35:f2:49:6a:d8:a4:0b:be:e1:ed:b0:4b:a5:ed:0c:41:2e: 08:4f:70:24:30:a0:1e:6b:32:d7:6c:51:63:6a:70:68:50:6b: 8f:af:e4:2e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICEAkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkIyRUUxMTAvBgNVBAUTKEM4MjQzNDc0MjVCQUM4QUY1OUI0RTE5NjZCQzEwREJG QThCREFCODIwHhcNMjYwMzAyMDE1OTAwWhcNMjYwMzA5MDE1OTAwWjAYMRYwFAYD VQQDEw02OWE0ZWVlNi02MWM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvrlGOEs/bcfsSFWeyDETBhdUpWNYteTMD4qrhGnbUmlAIXyBT1ttUoZLS+GT BFkfZzIDZ/Ip5am/WNW6cekTNPvK8zSCtOtkDUPbRNtU10LqMjhGG9N92qv6mt5r IkIGOF4QflP27fqf7T5jK8CvaRP1EQDEf3cc5AtVezn1ykNVmsIbpSvX0T25M48b eXDVWuNkxXx9BiBXIdlhGB+dTSyN740UkCXioOobHvR9+lkRTX60vJqGs/LIn//T 3SPDe8aL7kZv8SmWqbA+Y91zJ85D3tBcS0kVA6SlgyMaMH9HJQNBKcYfff1yrFeT EN0k2WV0i4HES+Xo6r6pPeP+owIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJdzXiNV 61drfAttSrXYDFEb/ieVMB8GA1UdIwQYMBaAFMgkNHQlusivWbThlmvBDb+ovauC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQjJFRS8xRjQxMUY1ODZD MjExMUU5Qjc2RkE5MDlDNEY5QUUwMi95Q1EwZENXNnlLOVp0T0dXYThFTnY2aTlx NEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lDUTBkQ1c2eUs5WnRPR1dhOEVOdjZpOXE0SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QjJFRS8xRjQxMUY1ODZDMjExMUU5Qjc2RkE5MDlDNEY5QUUwMi95Q1EwZENXNnlL OVp0T0dXYThFTnY2aTlxNEkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEALgW2pEZexV25HyWfvx1vgQea9jbueykkldnqu/smXZgqjgrPaQIscy4cVCsJ bTRc7iUB5dnTw8WHSfDI8c7cmUEf/Uft+NCqLVWQoDzxtIok/yFot43NhmqtOVYu THYcYl2RI559zURUpmYQKlbMOSkWRxwVYZEDlqwdKQo/YIW2THggdpT91040VsGZ lHzBHWmxVYIyUgqlrTr/etFmac22CAGppCGuxdmvZxodRgdApp8AB+o6b76+ZTGK D7/1wGnXu7lm0Es/7G+oFmYwNYO0cbGuWR21XzXySWrYpAu+4e2wS6XtDEEuCE9w JDCgHmsy12xRY2pwaFBrj6/kLg== -----END CERTIFICATE-----Generated at Mon Mar 2 11:39:20 2026 by rpki-client