$ rpki-client -vvf rpki.apnic.net/member_repository/A91417B0/E1AC8210D88311EF954A3D70C4F9AE02/yil3R0MKG-s0C8o51iIv0mQZt9s.mft File: yil3R0MKG-s0C8o51iIv0mQZt9s.mft (raw, json) Hash identifier: C0sOsCHRRmKTdsdLPMWQQ+OZrl0UFx7WCjU2N7rUxt4= Subject key identifier: 92:52:D3:D8:E7:99:F0:6B:D4:74:4D:76:56:83:14:2D:E5:E8:93:D9 Authority key identifier: CA:29:77:47:43:0A:1B:EB:34:0B:CA:39:D6:22:2F:D2:64:19:B7:DB Certificate issuer: /CN=A91417B0/serialNumber=CA297747430A1BEB340BCA39D6222FD26419B7DB Certificate serial: D5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yil3R0MKG-s0C8o51iIv0mQZt9s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91417B0/E1AC8210D88311EF954A3D70C4F9AE02/yil3R0MKG-s0C8o51iIv0mQZt9s.mft Manifest number: D2 Signing time: Sun 01 Mar 2026 07:56:19 +0000 Manifest this update: Sun 01 Mar 2026 07:56:18 +0000 Manifest next update: Sun 08 Mar 2026 07:56:18 +0000 Files and hashes: 1: yil3R0MKG-s0C8o51iIv0mQZt9s.crl (hash: uxLJYhWcZ1EMWc9gFeFJKSt//T3f4HG6vKknZYl3t/k=) 2: 5909D86203DB11F0B7D5DD29C4F9AE02.roa (hash: XcWLcqq81azP3U6TBivGOyYKJ0IUJVaAPBiEqjAnhx8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91417B0/E1AC8210D88311EF954A3D70C4F9AE02/yil3R0MKG-s0C8o51iIv0mQZt9s.crl rsync://rpki.apnic.net/member_repository/A91417B0/E1AC8210D88311EF954A3D70C4F9AE02/yil3R0MKG-s0C8o51iIv0mQZt9s.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yil3R0MKG-s0C8o51iIv0mQZt9s.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 07:56:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 213 (0xd5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91417B0, serialNumber=CA297747430A1BEB340BCA39D6222FD26419B7DB Validity Not Before: Mar 1 07:56:18 2026 GMT Not After : Mar 8 07:56:18 2026 GMT Subject: CN=69a3f123-18dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:68:c6:2b:88:2f:94:4e:7d:77:30:a0:f6:72: 1a:00:80:0a:1d:f6:b2:a2:3e:47:b0:04:d4:3e:71: e4:f9:16:ac:e6:6b:72:c6:3a:c3:f0:36:28:56:c8: 42:50:02:e9:9d:fe:4e:f9:27:10:2b:4d:d6:91:96: d1:b2:88:d3:53:a8:0b:43:49:20:c7:e3:d5:ec:e6: de:34:4d:4d:b3:83:8b:b1:79:39:04:a7:8b:4e:e0: bb:43:67:3f:b0:cf:d7:c5:62:2e:67:e2:0e:54:f3: 0a:c2:c5:af:92:55:3b:76:bb:94:cf:3f:15:e9:cb: cb:1b:96:88:1a:b9:07:8d:20:d8:9a:f0:ab:9b:88: 82:16:84:f2:bc:2f:e1:bb:4e:b0:aa:7d:0e:39:f7: 9c:5b:72:8e:64:45:5f:95:9f:57:14:27:4c:01:ae: ce:23:a0:6e:60:fa:e5:e0:8f:e3:db:40:e1:b9:24: bd:10:3d:fb:16:aa:c1:b3:a3:b0:6b:fd:1b:92:2e: 8f:af:a4:6b:b6:92:00:77:40:db:e7:4d:9a:b5:76: e8:9c:dc:e3:5b:37:1a:98:0e:9b:4d:20:67:d9:03: d0:a1:00:60:37:2a:f0:ee:ca:81:8f:20:5c:17:b3: d9:14:21:2e:ba:00:80:02:99:28:13:25:0c:ed:20: a1:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:52:D3:D8:E7:99:F0:6B:D4:74:4D:76:56:83:14:2D:E5:E8:93:D9 X509v3 Authority Key Identifier: keyid:CA:29:77:47:43:0A:1B:EB:34:0B:CA:39:D6:22:2F:D2:64:19:B7:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91417B0/E1AC8210D88311EF954A3D70C4F9AE02/yil3R0MKG-s0C8o51iIv0mQZt9s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yil3R0MKG-s0C8o51iIv0mQZt9s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91417B0/E1AC8210D88311EF954A3D70C4F9AE02/yil3R0MKG-s0C8o51iIv0mQZt9s.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:4e:e8:c5:f7:d8:74:30:01:b1:0a:22:22:7e:ff:3d:84:61: 21:c4:b6:6e:af:2b:cf:d1:63:5d:90:e9:18:ab:72:95:45:8f: b7:fb:d3:60:07:53:da:26:97:ab:c3:56:75:6d:1d:84:4e:7e: 66:d8:86:a9:0d:af:b9:a9:77:ee:6c:e9:c2:09:26:ab:5f:60: 3c:5e:09:34:ef:2e:e3:c9:91:f1:d2:58:65:91:9e:9a:5a:98: e5:8a:3d:bb:e2:94:3e:48:04:de:17:62:95:4b:47:a1:a7:83: 94:3d:4a:1e:4c:20:2f:25:fb:27:e6:77:f5:67:05:9e:42:99: 5e:fd:f9:aa:87:55:e5:79:ae:73:fa:dc:22:ae:d5:4b:43:34: 98:a6:ec:68:04:2e:8c:a9:49:ac:60:ce:29:ec:cc:f9:f1:ab: 68:75:5b:21:ae:60:ca:5d:9a:0f:88:0e:f8:34:f5:ff:be:70: 69:c3:76:32:28:89:6c:4a:f1:0a:cc:49:9e:fa:c7:7f:49:ba: 11:7a:33:32:98:cc:f7:b4:79:02:76:d8:04:b0:74:e0:e8:ba: 9c:5c:1f:f4:49:6e:d6:2a:fc:93:0c:2b:44:50:12:7d:89:74: a1:88:53:0d:b0:7d:55:1f:c5:c5:33:44:3d:78:0f:99:b1:4f: b5:fe:0b:bc -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICANUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDE3QjAxMTAvBgNVBAUTKENBMjk3NzQ3NDMwQTFCRUIzNDBCQ0EzOUQ2MjIyRkQy NjQxOUI3REIwHhcNMjYwMzAxMDc1NjE4WhcNMjYwMzA4MDc1NjE4WjAYMRYwFAYD VQQDEw02OWEzZjEyMy0xOGRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxGjGK4gvlE59dzCg9nIaAIAKHfayoj5HsATUPnHk+Ras5mtyxjrD8DYoVshC UALpnf5O+ScQK03WkZbRsojTU6gLQ0kgx+PV7ObeNE1Ns4OLsXk5BKeLTuC7Q2c/ sM/XxWIuZ+IOVPMKwsWvklU7druUzz8V6cvLG5aIGrkHjSDYmvCrm4iCFoTyvC/h u06wqn0OOfecW3KOZEVflZ9XFCdMAa7OI6BuYPrl4I/j20DhuSS9ED37FqrBs6Ow a/0bki6Pr6RrtpIAd0Db502atXbonNzjWzcamA6bTSBn2QPQoQBgNyrw7sqBjyBc F7PZFCEuugCAApkoEyUM7SChGQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJJS09jn mfBr1HRNdlaDFC3l6JPZMB8GA1UdIwQYMBaAFMopd0dDChvrNAvKOdYiL9JkGbfb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MTdCMC9FMUFDODIxMEQ4 ODMxMUVGOTU0QTNENzBDNEY5QUUwMi95aWwzUjBNS0ctczBDOG81MWlJdjBtUVp0 OXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3lpbDNSME1LRy1zMEM4bzUxaUl2MG1RWnQ5cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MTdCMC9FMUFDODIxMEQ4ODMxMUVGOTU0QTNENzBDNEY5QUUwMi95aWwzUjBNS0ct czBDOG81MWlJdjBtUVp0OXMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAaE7oxffYdDABsQoiIn7/PYRhIcS2bq8rz9FjXZDpGKtylUWPt/vTYAdT2iaX q8NWdW0dhE5+ZtiGqQ2vual37mzpwgkmq19gPF4JNO8u48mR8dJYZZGemlqY5Yo9 u+KUPkgE3hdilUtHoaeDlD1KHkwgLyX7J+Z39WcFnkKZXv35qodV5Xmuc/rcIq7V S0M0mKbsaAQujKlJrGDOKezM+fGraHVbIa5gyl2aD4gO+DT1/75wacN2MiiJbErx CsxJnvrHf0m6EXozMpjM97R5AnbYBLB04Oi6nFwf9Elu1ir8kwwrRFASfYl0oYhT DbB9VR/FxTNEPXgPmbFPtf4LvA== -----END CERTIFICATE-----Generated at Mon Mar 2 15:34:29 2026 by rpki-client