$ rpki-client -vvf rpki.apnic.net/member_repository/A9153675/915A28660EB311EF89CAD12CC4F9AE02/yiRYMQb7VJhMeBWJXj4Z7fecmL8.mft File: yiRYMQb7VJhMeBWJXj4Z7fecmL8.mft (raw, json) Hash identifier: 23qH4YcYiRZf0e4EurbU8Ipp8Uf6ouEaoFg7T+WBlio= Subject key identifier: E7:A6:B8:13:22:C7:B9:74:DE:82:02:AC:E3:82:27:E8:15:08:8F:92 Authority key identifier: CA:24:58:31:06:FB:54:98:4C:78:15:89:5E:3E:19:ED:F7:9C:98:BF Certificate issuer: /CN=A9153675/serialNumber=CA24583106FB54984C7815895E3E19EDF79C98BF Certificate serial: 0155 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yiRYMQb7VJhMeBWJXj4Z7fecmL8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153675/915A28660EB311EF89CAD12CC4F9AE02/yiRYMQb7VJhMeBWJXj4Z7fecmL8.mft Manifest number: 0153 Signing time: Sun 01 Mar 2026 06:04:58 +0000 Manifest this update: Sun 01 Mar 2026 06:04:58 +0000 Manifest next update: Sun 08 Mar 2026 06:04:58 +0000 Files and hashes: 1: yiRYMQb7VJhMeBWJXj4Z7fecmL8.crl (hash: jCXZ/BdcnjbZDZ0o9bMmn/PhqGMq7KNH77BP6V+XGIc=) 2: F8636CC60F9D11EFA1E14343C4F9AE02.roa (hash: tBki4iy/q8HliVYsXbIzEJgcPuIm2NjXgIYSPz8ugw8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153675/915A28660EB311EF89CAD12CC4F9AE02/yiRYMQb7VJhMeBWJXj4Z7fecmL8.crl rsync://rpki.apnic.net/member_repository/A9153675/915A28660EB311EF89CAD12CC4F9AE02/yiRYMQb7VJhMeBWJXj4Z7fecmL8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yiRYMQb7VJhMeBWJXj4Z7fecmL8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 06:04:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 341 (0x155) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153675, serialNumber=CA24583106FB54984C7815895E3E19EDF79C98BF Validity Not Before: Mar 1 06:04:58 2026 GMT Not After : Mar 8 06:04:58 2026 GMT Subject: CN=69a3d70a-1472 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:de:55:06:49:4e:67:63:ab:11:bb:e1:44:c5: c5:12:b6:75:1d:ac:ba:12:a0:16:6f:23:55:11:d7: cb:3f:6c:ad:a9:1f:d6:40:55:12:0f:94:51:d2:dd: 38:b8:6e:cd:0c:2e:79:7b:a8:79:46:b6:37:1b:da: 0e:d1:f7:40:30:87:19:66:48:4b:58:8b:e8:77:b5: 5b:5c:98:db:8d:d6:43:f6:ad:51:39:49:7a:6d:c9: fb:2c:0d:bb:30:3c:77:fd:c9:29:69:71:04:43:e6: 74:5e:2a:d4:9a:94:75:28:d9:10:c8:76:bb:26:dc: 59:cd:05:e1:90:ac:89:f0:14:98:69:18:1e:ad:5b: 63:87:c8:4a:20:d0:59:66:17:3f:a9:d3:c7:76:97: c6:7e:45:63:22:8f:83:c1:c0:b0:db:56:e1:bb:36: df:ab:c7:73:da:b5:43:33:85:4d:86:7c:0d:9f:bf: 50:0b:ad:47:92:32:33:03:cd:fa:6c:69:f2:0d:5f: 7c:3f:0c:be:c1:5c:c1:0d:56:c7:b2:d1:3e:f5:79: 8c:fe:60:1e:00:b6:57:18:2f:6a:21:13:8c:2f:6b: 92:a7:72:30:b6:15:6a:9a:c2:5f:69:17:41:99:30: e8:6d:49:18:60:e8:45:dd:ca:ee:35:bc:37:97:b7: e1:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:A6:B8:13:22:C7:B9:74:DE:82:02:AC:E3:82:27:E8:15:08:8F:92 X509v3 Authority Key Identifier: keyid:CA:24:58:31:06:FB:54:98:4C:78:15:89:5E:3E:19:ED:F7:9C:98:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153675/915A28660EB311EF89CAD12CC4F9AE02/yiRYMQb7VJhMeBWJXj4Z7fecmL8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yiRYMQb7VJhMeBWJXj4Z7fecmL8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153675/915A28660EB311EF89CAD12CC4F9AE02/yiRYMQb7VJhMeBWJXj4Z7fecmL8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:4d:1d:b6:05:70:7c:8e:41:82:d6:95:7c:1a:09:b3:b5:34: 14:1a:10:91:39:2a:77:de:45:04:8e:bb:93:15:ac:93:f3:e3: 2e:e2:54:35:98:04:55:f8:82:0f:80:f2:b2:90:84:4a:6a:fb: b2:70:e0:79:6d:fb:87:41:e5:c3:44:fb:d2:a8:e4:5e:49:fa: 46:6f:0b:32:c1:cb:27:da:81:e4:8c:9e:01:43:6e:ac:6b:75: a1:53:d0:eb:15:26:a8:3f:fa:f9:3e:e8:49:e5:f0:c6:67:82: 3b:a0:c9:53:37:a3:69:13:82:86:cb:bb:05:0b:65:e1:94:96: 04:e0:d2:8e:ca:73:7d:59:e5:3b:22:c1:07:44:c3:6e:d8:e4: 03:cf:4f:1f:68:3d:8b:bd:a0:14:9f:4b:57:7c:45:73:fb:80: 24:02:e1:79:ef:de:cf:9a:01:5b:d4:44:db:81:f1:78:af:6e: a0:76:b4:cb:c9:62:b3:f8:be:eb:4c:b9:1e:78:8a:86:f8:d4: b8:fd:d0:e7:0a:5a:7e:40:48:d1:36:a0:45:4f:75:07:42:0e: d2:fe:82:fa:ed:79:05:20:77:64:71:bf:c3:47:3f:72:5b:fe: a5:2e:18:6a:06:c6:6b:2a:dc:a0:a4:e2:25:4f:76:77:59:60: 34:a2:92:f8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAVUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTM2NzUxMTAvBgNVBAUTKENBMjQ1ODMxMDZGQjU0OTg0Qzc4MTU4OTVFM0UxOUVE Rjc5Qzk4QkYwHhcNMjYwMzAxMDYwNDU4WhcNMjYwMzA4MDYwNDU4WjAYMRYwFAYD VQQDEw02OWEzZDcwYS0xNDcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvd5VBklOZ2OrEbvhRMXFErZ1Hay6EqAWbyNVEdfLP2ytqR/WQFUSD5RR0t04 uG7NDC55e6h5RrY3G9oO0fdAMIcZZkhLWIvod7VbXJjbjdZD9q1ROUl6bcn7LA27 MDx3/ckpaXEEQ+Z0XirUmpR1KNkQyHa7JtxZzQXhkKyJ8BSYaRgerVtjh8hKINBZ Zhc/qdPHdpfGfkVjIo+DwcCw21bhuzbfq8dz2rVDM4VNhnwNn79QC61HkjIzA836 bGnyDV98Pwy+wVzBDVbHstE+9XmM/mAeALZXGC9qIROML2uSp3IwthVqmsJfaRdB mTDobUkYYOhF3cruNbw3l7fh+QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOemuBMi x7l03oICrOOCJ+gVCI+SMB8GA1UdIwQYMBaAFMokWDEG+1SYTHgViV4+Ge33nJi/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MzY3NS85MTVBMjg2NjBF QjMxMUVGODlDQUQxMkNDNEY5QUUwMi95aVJZTVFiN1ZKaE1lQldKWGo0WjdmZWNt TDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lpUllNUWI3VkpoTWVCV0pYajRaN2ZlY21MOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MzY3NS85MTVBMjg2NjBFQjMxMUVGODlDQUQxMkNDNEY5QUUwMi95aVJZTVFiN1ZK aE1lQldKWGo0WjdmZWNtTDgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAC00dtgVwfI5BgtaVfBoJs7U0FBoQkTkqd95FBI67kxWsk/PjLuJUNZgEVfiC D4DyspCESmr7snDgeW37h0Hlw0T70qjkXkn6Rm8LMsHLJ9qB5IyeAUNurGt1oVPQ 6xUmqD/6+T7oSeXwxmeCO6DJUzejaROChsu7BQtl4ZSWBODSjspzfVnlOyLBB0TD btjkA89PH2g9i72gFJ9LV3xFc/uAJALhee/ez5oBW9RE24HxeK9uoHa0y8lis/i+ 60y5HniKhvjUuP3Q5wpafkBI0TagRU91B0IO0v6C+u15BSB3ZHG/w0c/clv+pS4Y agbGayrcoKTiJU92d1lgNKKS+A== -----END CERTIFICATE-----Generated at Mon Mar 2 09:05:10 2026 by rpki-client