$ rpki-client -vvf rpki.apnic.net/member_repository/A9158491/60DA53FADFA511EF8BD49F87C4F9AE02/YfjH66e1XnGy5rF3QJFCUdiM8KY.mft File: YfjH66e1XnGy5rF3QJFCUdiM8KY.mft (raw, json) Hash identifier: csNYtWFHr06FUYUxQlgfSmi3cRn+s40aIG9+ApAznSc= Subject key identifier: 51:C6:A8:2D:6E:80:D2:84:41:E4:71:8A:5F:10:07:6B:3E:3D:6F:03 Authority key identifier: 61:F8:C7:EB:A7:B5:5E:71:B2:E6:B1:77:40:91:42:51:D8:8C:F0:A6 Certificate issuer: /CN=A9158491/serialNumber=61F8C7EBA7B55E71B2E6B17740914251D88CF0A6 Certificate serial: E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YfjH66e1XnGy5rF3QJFCUdiM8KY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158491/60DA53FADFA511EF8BD49F87C4F9AE02/YfjH66e1XnGy5rF3QJFCUdiM8KY.mft Manifest number: D9 Signing time: Sun 01 Mar 2026 07:58:53 +0000 Manifest this update: Sun 01 Mar 2026 07:58:52 +0000 Manifest next update: Sun 08 Mar 2026 07:58:52 +0000 Files and hashes: 1: YfjH66e1XnGy5rF3QJFCUdiM8KY.crl (hash: dnaFxd+FtbG7cWBYY1EB/uaGYAIjSVxzigdy2BVJw4c=) 2: 5FDDEE1CE34211EF8EA0CA77C4F9AE02.roa (hash: xQ4+UwU/uXLAlZmzC1tCDRi2xKJ7zoOWklkv2QYkkeY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158491/60DA53FADFA511EF8BD49F87C4F9AE02/YfjH66e1XnGy5rF3QJFCUdiM8KY.crl rsync://rpki.apnic.net/member_repository/A9158491/60DA53FADFA511EF8BD49F87C4F9AE02/YfjH66e1XnGy5rF3QJFCUdiM8KY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YfjH66e1XnGy5rF3QJFCUdiM8KY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 07:58:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 227 (0xe3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158491, serialNumber=61F8C7EBA7B55E71B2E6B17740914251D88CF0A6 Validity Not Before: Mar 1 07:58:52 2026 GMT Not After : Mar 8 07:58:52 2026 GMT Subject: CN=69a3f1bd-d997 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:b6:fe:97:1f:c0:43:bc:8d:78:4e:42:87:8b: bf:59:1a:34:03:dc:06:c0:05:37:56:b7:e8:8b:c3: 0f:67:a2:39:85:b7:7f:fc:04:bc:61:7e:13:16:bb: de:ea:d2:00:28:7a:a3:45:c5:64:b5:94:66:b4:f7: ba:1e:fa:d6:0c:7c:48:cb:5b:f6:26:4c:bc:92:75: 63:ee:81:2c:67:40:a6:33:d2:6d:5c:d5:c8:47:ed: 1d:9c:00:14:82:68:19:44:af:7e:61:74:b5:3d:21: 14:04:c9:2b:c2:9e:42:cd:12:54:0a:e5:ce:ea:7d: 8b:c7:4c:62:7b:06:58:47:9a:e9:17:86:f9:96:75: 8a:ee:58:a1:be:14:7e:50:2b:8a:6d:40:a6:3e:cd: 64:9a:05:7f:c5:a1:f5:ae:cd:b6:74:f9:f8:d6:05: 2d:d7:ab:32:f4:27:fb:37:1c:20:51:85:7f:f0:3f: f6:9b:4b:cc:14:c9:f7:84:92:14:a6:4f:a2:f5:38: 2c:b1:25:57:d2:01:9e:de:0c:87:d0:4a:de:df:34: dd:31:4b:f4:e0:61:ce:6d:9b:75:8d:e2:8d:67:40: 92:e4:f4:c4:b7:b0:a6:6e:25:1f:8b:4d:5c:2c:17: fa:63:1f:16:09:9f:4c:fe:ea:18:17:72:5a:aa:d9: 92:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:C6:A8:2D:6E:80:D2:84:41:E4:71:8A:5F:10:07:6B:3E:3D:6F:03 X509v3 Authority Key Identifier: keyid:61:F8:C7:EB:A7:B5:5E:71:B2:E6:B1:77:40:91:42:51:D8:8C:F0:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158491/60DA53FADFA511EF8BD49F87C4F9AE02/YfjH66e1XnGy5rF3QJFCUdiM8KY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YfjH66e1XnGy5rF3QJFCUdiM8KY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158491/60DA53FADFA511EF8BD49F87C4F9AE02/YfjH66e1XnGy5rF3QJFCUdiM8KY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:17:40:1b:32:5c:bd:9e:eb:19:d3:ae:24:2d:1d:d3:79:4d: a2:9b:06:79:85:fb:14:29:19:de:73:93:14:13:5c:64:89:0e: 7f:fd:0c:ff:00:5c:98:55:ba:99:7e:f1:53:33:6d:3e:6a:44: 1f:56:60:8c:f2:1e:6f:77:02:b6:00:c0:11:3c:03:34:9d:39: 2c:80:97:72:41:40:ab:b9:10:aa:19:2c:d9:4f:a1:d2:db:63: 3a:ab:41:22:12:b1:bf:fe:6d:f2:84:be:ac:f6:b7:33:2c:45: db:55:83:6f:a6:18:22:7d:f6:8e:d1:1b:8e:4d:25:98:2e:43: e6:9d:48:a4:62:67:50:b4:2b:33:75:c0:ea:20:ab:73:df:46: 42:d9:74:75:83:a9:eb:02:4a:31:ed:90:7a:05:22:f9:2d:7a: 74:24:af:9d:35:da:bd:5c:68:68:80:44:ab:75:8e:f0:b1:a4: 4c:fa:9f:d5:91:11:23:07:c0:41:dc:cd:69:f7:79:70:4a:2c: 4f:34:93:96:c4:d2:62:20:c3:e5:be:f5:21:c6:c9:1b:84:73: 82:a4:b2:4a:c3:e2:c8:31:22:e4:7e:4b:30:ac:b6:d6:89:82: c6:4c:ea:e4:51:09:7b:3f:30:fb:c7:12:45:e7:75:72:55:40: 4b:4c:d1:21 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAOMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg0OTExMTAvBgNVBAUTKDYxRjhDN0VCQTdCNTVFNzFCMkU2QjE3NzQwOTE0MjUx RDg4Q0YwQTYwHhcNMjYwMzAxMDc1ODUyWhcNMjYwMzA4MDc1ODUyWjAYMRYwFAYD VQQDEw02OWEzZjFiZC1kOTk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqrb+lx/AQ7yNeE5Ch4u/WRo0A9wGwAU3Vrfoi8MPZ6I5hbd//AS8YX4TFrve 6tIAKHqjRcVktZRmtPe6HvrWDHxIy1v2Jky8knVj7oEsZ0CmM9JtXNXIR+0dnAAU gmgZRK9+YXS1PSEUBMkrwp5CzRJUCuXO6n2Lx0xiewZYR5rpF4b5lnWK7lihvhR+ UCuKbUCmPs1kmgV/xaH1rs22dPn41gUt16sy9Cf7NxwgUYV/8D/2m0vMFMn3hJIU pk+i9TgssSVX0gGe3gyH0Ere3zTdMUv04GHObZt1jeKNZ0CS5PTEt7CmbiUfi01c LBf6Yx8WCZ9M/uoYF3JaqtmS3QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFHGqC1u gNKEQeRxil8QB2s+PW8DMB8GA1UdIwQYMBaAFGH4x+untV5xsuaxd0CRQlHYjPCm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODQ5MS82MERBNTNGQURG QTUxMUVGOEJENDlGODdDNEY5QUUwMi9ZZmpINjZlMVhuR3k1ckYzUUpGQ1VkaU04 S1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lmakg2NmUxWG5HeTVyRjNRSkZDVWRpTThLWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODQ5MS82MERBNTNGQURGQTUxMUVGOEJENDlGODdDNEY5QUUwMi9ZZmpINjZlMVhu R3k1ckYzUUpGQ1VkaU04S1kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAChdAGzJcvZ7rGdOuJC0d03lNopsGeYX7FCkZ3nOTFBNcZIkOf/0M/wBcmFW6 mX7xUzNtPmpEH1ZgjPIeb3cCtgDAETwDNJ05LICXckFAq7kQqhks2U+h0ttjOqtB IhKxv/5t8oS+rPa3MyxF21WDb6YYIn32jtEbjk0lmC5D5p1IpGJnULQrM3XA6iCr c99GQtl0dYOp6wJKMe2QegUi+S16dCSvnTXavVxoaIBEq3WO8LGkTPqf1ZERIwfA QdzNafd5cEosTzSTlsTSYiDD5b71IcbJG4RzgqSySsPiyDEi5H5LMKy21omCxkzq 5FEJez8w+8cSRed1clVAS0zRIQ== -----END CERTIFICATE-----Generated at Mon Mar 2 03:55:39 2026 by rpki-client