$ rpki-client -vvf rpki.apnic.net/member_repository/A913A839/C0E03CF46C2F11EA8CEC946EC4F9AE02/YKs8_6uIpRNCuBbwWQGfBz6VAKo.mft File: YKs8_6uIpRNCuBbwWQGfBz6VAKo.mft (raw, json) Hash identifier: gKbyaBXTpaGnXe9Z/lKDIGJWxKwyv8PywW40kOCWQAc= Subject key identifier: B7:C3:89:CF:0B:F6:C5:17:F9:2B:E5:03:0E:85:C7:9E:F4:2C:CF:69 Authority key identifier: 60:AB:3C:FF:AB:88:A5:13:42:B8:16:F0:59:01:9F:07:3E:95:00:AA Certificate issuer: /CN=A913A839/serialNumber=60AB3CFFAB88A51342B816F059019F073E9500AA Certificate serial: 0ACB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YKs8_6uIpRNCuBbwWQGfBz6VAKo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913A839/C0E03CF46C2F11EA8CEC946EC4F9AE02/YKs8_6uIpRNCuBbwWQGfBz6VAKo.mft Manifest number: 0AC2 Signing time: Sun 01 Mar 2026 22:21:33 +0000 Manifest this update: Sun 01 Mar 2026 22:21:32 +0000 Manifest next update: Sun 08 Mar 2026 22:21:32 +0000 Files and hashes: 1: YKs8_6uIpRNCuBbwWQGfBz6VAKo.crl (hash: 2ym2w1DoyFEfTjTH4GztvSgJT6rWGlhUwJkf0Loph5Y=) 2: 0DCB1BDC6C3111EA8F4E9B70C4F9AE02.roa (hash: OzzisHqp9aMxr1INfPGQv4pLf3uDSdbaDwDpJkSYQh8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913A839/C0E03CF46C2F11EA8CEC946EC4F9AE02/YKs8_6uIpRNCuBbwWQGfBz6VAKo.crl rsync://rpki.apnic.net/member_repository/A913A839/C0E03CF46C2F11EA8CEC946EC4F9AE02/YKs8_6uIpRNCuBbwWQGfBz6VAKo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YKs8_6uIpRNCuBbwWQGfBz6VAKo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 22:21:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2763 (0xacb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913A839, serialNumber=60AB3CFFAB88A51342B816F059019F073E9500AA Validity Not Before: Mar 1 22:21:32 2026 GMT Not After : Mar 8 22:21:32 2026 GMT Subject: CN=69a4bbed-b96a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:9c:40:38:33:fa:d9:bb:3d:58:0b:9f:97:ed: c5:ad:56:d5:b1:44:e9:77:21:f4:0a:b0:fb:2b:ce: 59:a7:05:3f:4a:0c:16:fc:a0:4f:2b:d3:43:16:92: b8:a2:97:b0:08:0a:1f:bd:b9:d1:22:4b:d0:1a:f6: 38:c4:e2:63:84:69:e9:dc:8d:06:41:62:45:45:e0: 1f:f1:e4:33:98:b0:68:3a:ad:90:d1:56:cd:22:12: c8:c7:68:c8:84:68:68:92:d6:3c:0b:8c:96:8a:d3: 34:f8:4c:3c:0e:37:93:c2:d0:21:fd:be:f9:6a:ac: ef:c0:c1:01:89:2a:4b:72:8f:be:82:f3:91:17:62: 75:f6:d9:3f:c5:dc:ba:c2:d5:44:a2:92:be:08:70: d0:f9:d9:23:34:65:73:90:d3:d5:0b:8b:08:08:8a: 65:69:ee:61:1d:ed:eb:d3:94:74:80:0f:f3:4a:11: 85:df:4f:49:a8:2a:d8:32:b4:4e:22:b3:65:32:95: 29:7c:61:a2:f6:5a:02:19:5e:9a:a7:44:f8:fc:b6: 75:d2:de:db:b7:c9:f3:04:81:8e:70:d6:05:26:62: 66:f2:e5:76:2f:0d:d3:29:93:c5:9f:a5:6d:c3:37: 34:c3:95:d7:5f:bf:80:48:d1:3c:d8:65:60:81:e8: 75:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:C3:89:CF:0B:F6:C5:17:F9:2B:E5:03:0E:85:C7:9E:F4:2C:CF:69 X509v3 Authority Key Identifier: keyid:60:AB:3C:FF:AB:88:A5:13:42:B8:16:F0:59:01:9F:07:3E:95:00:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913A839/C0E03CF46C2F11EA8CEC946EC4F9AE02/YKs8_6uIpRNCuBbwWQGfBz6VAKo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YKs8_6uIpRNCuBbwWQGfBz6VAKo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913A839/C0E03CF46C2F11EA8CEC946EC4F9AE02/YKs8_6uIpRNCuBbwWQGfBz6VAKo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:04:23:13:5e:8d:2a:23:92:d1:e2:cb:be:30:9d:7a:69:78: ea:ef:f2:f2:49:75:65:ae:4b:d1:fa:6f:ab:9f:73:ee:de:f2: 4d:42:92:1a:47:d4:4d:bc:f7:28:6b:31:69:03:78:64:64:36: 4f:15:32:b8:8e:97:67:dd:8d:48:ab:13:66:36:12:73:c9:13: a2:16:4e:00:47:1b:a9:8a:47:5a:ff:99:1e:04:2b:d5:a6:0f: 5a:82:71:70:37:80:e3:59:ae:bb:81:d2:be:c6:7f:00:8b:83: 56:b8:7b:20:3a:7e:54:61:91:ac:20:74:11:43:1f:57:96:c5: 32:57:57:71:fe:e8:80:40:a9:1e:f5:c8:eb:ec:fa:ea:4f:50: c1:63:b6:c6:6f:41:6c:d4:f8:19:c1:05:24:80:a1:29:66:b9: 0e:86:c4:80:d6:a8:7b:aa:04:7b:ae:e4:fc:0a:02:c7:21:79: 5e:08:7d:3a:7e:f2:df:f8:8c:70:19:b6:fa:25:af:9a:a3:4c: d1:31:08:31:e6:44:8b:8f:a3:bf:fa:64:ba:44:d9:3a:85:d0: 84:14:8b:94:f2:46:8b:ca:d4:c1:e8:40:44:6f:32:06:4a:b7: 74:03:32:95:32:3a:ff:92:0a:80:6f:b4:db:87:1a:3d:23:d3: b3:4f:9a:d1 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCsswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0E4MzkxMTAvBgNVBAUTKDYwQUIzQ0ZGQUI4OEE1MTM0MkI4MTZGMDU5MDE5RjA3 M0U5NTAwQUEwHhcNMjYwMzAxMjIyMTMyWhcNMjYwMzA4MjIyMTMyWjAYMRYwFAYD VQQDEw02OWE0YmJlZC1iOTZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0pxAODP62bs9WAufl+3FrVbVsUTpdyH0CrD7K85ZpwU/SgwW/KBPK9NDFpK4 opewCAofvbnRIkvQGvY4xOJjhGnp3I0GQWJFReAf8eQzmLBoOq2Q0VbNIhLIx2jI hGhoktY8C4yWitM0+Ew8DjeTwtAh/b75aqzvwMEBiSpLco++gvORF2J19tk/xdy6 wtVEopK+CHDQ+dkjNGVzkNPVC4sICIplae5hHe3r05R0gA/zShGF309JqCrYMrRO IrNlMpUpfGGi9loCGV6ap0T4/LZ10t7bt8nzBIGOcNYFJmJm8uV2Lw3TKZPFn6Vt wzc0w5XXX7+ASNE82GVggeh12QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLfDic8L 9sUX+SvlAw6Fx570LM9pMB8GA1UdIwQYMBaAFGCrPP+riKUTQrgW8FkBnwc+lQCq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQTgzOS9DMEUwM0NGNDZD MkYxMUVBOENFQzk0NkVDNEY5QUUwMi9ZS3M4XzZ1SXBSTkN1QmJ3V1FHZkJ6NlZB S28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lLczhfNnVJcFJOQ3VCYndXUUdmQno2VkFLby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QTgzOS9DMEUwM0NGNDZDMkYxMUVBOENFQzk0NkVDNEY5QUUwMi9ZS3M4XzZ1SXBS TkN1QmJ3V1FHZkJ6NlZBS28ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEApAQjE16NKiOS0eLLvjCdeml46u/y8kl1Za5L0fpvq59z7t7yTUKSGkfUTbz3 KGsxaQN4ZGQ2TxUyuI6XZ92NSKsTZjYSc8kTohZOAEcbqYpHWv+ZHgQr1aYPWoJx cDeA41muu4HSvsZ/AIuDVrh7IDp+VGGRrCB0EUMfV5bFMldXcf7ogECpHvXI6+z6 6k9QwWO2xm9BbNT4GcEFJIChKWa5DobEgNaoe6oEe67k/AoCxyF5Xgh9On7y3/iM cBm2+iWvmqNM0TEIMeZEi4+jv/pkukTZOoXQhBSLlPJGi8rUwehARG8yBkq3dAMy lTI6/5IKgG+024caPSPTs0+a0Q== -----END CERTIFICATE-----Generated at Mon Mar 2 15:34:25 2026 by rpki-client