$ rpki-client -vvf rpki.apnic.net/member_repository/A91597E8/7A0FE7FA1D9211E2B5BC74F508B02CD2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.mft File: ycKPmQtidBLJfC3Ox8kG5hrTJaw.mft (raw, json) Hash identifier: hE9LadP3G+8yxoFlR1YSF6hIC0MqTOAchmkncecmKDM= Subject key identifier: 2D:00:27:B3:27:A7:FE:0E:B5:A1:9B:4D:33:26:E1:C4:8F:73:D0:3C Authority key identifier: C9:C2:8F:99:0B:62:74:12:C9:7C:2D:CE:C7:C9:06:E6:1A:D3:25:AC Certificate issuer: /CN=A91597E8/serialNumber=C9C28F990B627412C97C2DCEC7C906E61AD325AC Certificate serial: 352C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91597E8/7A0FE7FA1D9211E2B5BC74F508B02CD2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.mft Manifest number: 3523 Signing time: Mon 02 Mar 2026 02:48:18 +0000 Manifest this update: Mon 02 Mar 2026 02:48:16 +0000 Manifest next update: Mon 09 Mar 2026 02:48:16 +0000 Files and hashes: 1: ycKPmQtidBLJfC3Ox8kG5hrTJaw.crl (hash: qBOSMREVi9pdTIssqeKD1cJC1cfokexpYNFFf9h1qtU=) 2: 4731AAD2D9A211F092913C6268D3641D.roa (hash: 7ujJoXI0vF5Kto6AQ0I3mCuMBIGkk51OHDBueTnRv+0=) 3: 4821776AD9A211F092913C6268D3641D.roa (hash: Sy1HvppFOycihdTszz/358rIRt69yzzeT9izOzy0CC4=) 4: 5D8B2B06D90B11F0A960BEC67CD3641D.roa (hash: yOZ7NWihMQh2xMOicbiIAZG+/dVYwm+tNO5GsESSJA4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91597E8/7A0FE7FA1D9211E2B5BC74F508B02CD2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.crl rsync://rpki.apnic.net/member_repository/A91597E8/7A0FE7FA1D9211E2B5BC74F508B02CD2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:48:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13612 (0x352c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91597E8, serialNumber=C9C28F990B627412C97C2DCEC7C906E61AD325AC Validity Not Before: Mar 2 02:48:16 2026 GMT Not After : Mar 9 02:48:16 2026 GMT Subject: CN=69a4fa71-1d9f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:ec:45:a5:53:cf:66:db:ee:c7:66:94:73:0f: 8f:34:92:8c:6e:ed:d9:c4:1d:46:ca:44:21:eb:18: d7:a1:7b:7c:19:d3:cc:f5:ae:49:0d:8e:ba:8f:72: 4f:7c:4a:92:3e:78:31:d7:3e:df:4e:49:31:e0:04: 47:99:f0:37:a2:2a:7d:5e:77:3f:d3:5b:2e:41:20: 47:0e:22:bb:cd:4f:eb:8e:16:29:8a:98:8e:84:51: 28:1f:d1:f5:66:36:a0:e0:ad:00:45:5d:46:44:fc: 60:af:96:50:48:54:b7:30:cd:b2:a0:1f:8f:af:bf: 4c:e7:f6:a4:5c:05:cc:40:6b:54:ec:e1:21:a8:aa: 80:e9:67:88:1f:99:03:c5:e0:1e:e2:59:f0:21:6c: 11:86:42:f4:2c:a7:b5:01:8f:06:10:19:dd:45:83: 47:85:b1:4e:23:c9:be:87:1a:3e:9b:df:c3:06:b9: 85:f6:74:1a:01:b9:24:97:7f:56:b5:60:36:00:ea: 60:fa:a4:0b:cf:33:15:3f:9e:fa:a5:f8:14:e5:c1: d1:27:b1:ff:33:d2:d5:32:7a:93:a1:25:01:28:7d: f2:2f:44:a3:c1:2a:89:50:cf:47:25:de:15:96:fe: 0c:17:96:40:fc:f2:d0:04:a8:57:e9:72:e0:c2:40: 77:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:00:27:B3:27:A7:FE:0E:B5:A1:9B:4D:33:26:E1:C4:8F:73:D0:3C X509v3 Authority Key Identifier: keyid:C9:C2:8F:99:0B:62:74:12:C9:7C:2D:CE:C7:C9:06:E6:1A:D3:25:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91597E8/7A0FE7FA1D9211E2B5BC74F508B02CD2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91597E8/7A0FE7FA1D9211E2B5BC74F508B02CD2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:6e:0f:59:dc:fc:2c:fd:18:24:69:22:52:7c:5b:62:9d:38: 60:36:b8:ec:a4:f2:57:3e:e3:16:9f:97:c2:ba:47:d6:2e:ea: ba:f8:26:a2:fc:37:9e:f2:c6:d3:9a:b2:ac:39:ec:32:ea:7f: ae:df:94:b6:be:40:f0:83:63:9e:bd:96:71:dc:18:1e:2c:20: f5:8c:04:60:12:bf:74:77:3d:94:b2:ac:2f:9f:6d:6f:ee:61: 86:57:0d:c8:5d:6d:9f:4f:f1:2e:f2:59:05:d7:3c:3e:62:25: be:23:5c:b5:1c:a7:b2:63:2d:9b:14:57:39:5c:20:f5:d0:6f: 49:c2:ed:ea:f8:ba:cd:f9:cf:10:09:47:63:6a:b9:66:60:f6: 77:58:cf:a3:7d:87:1e:67:13:fd:3e:dc:20:78:33:dc:9d:8c: cc:b2:7b:61:95:d8:0b:43:67:ae:ae:2e:9d:be:72:42:de:39: 64:09:00:7f:f5:3a:ad:94:88:32:d5:63:b9:26:1f:3e:cc:25: a1:1d:37:aa:ba:f7:24:f8:0a:0d:1d:70:b8:5a:34:32:f4:6c: 4a:01:4d:8f:e6:72:94:03:8d:f5:62:9a:a2:62:a6:97:d6:76: a7:0e:36:ad:82:31:1d:b5:a3:99:84:16:d9:4f:28:e6:ec:c8: 9b:02:d8:db -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNSwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTk3RTgxMTAvBgNVBAUTKEM5QzI4Rjk5MEI2Mjc0MTJDOTdDMkRDRUM3QzkwNkU2 MUFEMzI1QUMwHhcNMjYwMzAyMDI0ODE2WhcNMjYwMzA5MDI0ODE2WjAYMRYwFAYD VQQDEw02OWE0ZmE3MS0xZDlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3OxFpVPPZtvux2aUcw+PNJKMbu3ZxB1GykQh6xjXoXt8GdPM9a5JDY66j3JP fEqSPngx1z7fTkkx4ARHmfA3oip9Xnc/01suQSBHDiK7zU/rjhYpipiOhFEoH9H1 Zjag4K0ARV1GRPxgr5ZQSFS3MM2yoB+Pr79M5/akXAXMQGtU7OEhqKqA6WeIH5kD xeAe4lnwIWwRhkL0LKe1AY8GEBndRYNHhbFOI8m+hxo+m9/DBrmF9nQaAbkkl39W tWA2AOpg+qQLzzMVP576pfgU5cHRJ7H/M9LVMnqToSUBKH3yL0SjwSqJUM9HJd4V lv4MF5ZA/PLQBKhX6XLgwkB3rQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFC0AJ7Mn p/4OtaGbTTMm4cSPc9A8MB8GA1UdIwQYMBaAFMnCj5kLYnQSyXwtzsfJBuYa0yWs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OTdFOC83QTBGRTdGQTFE OTIxMUUyQjVCQzc0RjUwOEIwMkNEMi95Y0tQbVF0aWRCTEpmQzNPeDhrRzVoclRK YXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ljS1BtUXRpZEJMSmZDM094OGtHNWhyVEphdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OTdFOC83QTBGRTdGQTFEOTIxMUUyQjVCQzc0RjUwOEIwMkNEMi95Y0tQbVF0aWRC TEpmQzNPeDhrRzVoclRKYXcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAY24PWdz8LP0YJGkiUnxbYp04YDa47KTyVz7jFp+XwrpH1i7quvgmovw3nvLG 05qyrDnsMup/rt+Utr5A8INjnr2WcdwYHiwg9YwEYBK/dHc9lLKsL59tb+5hhlcN yF1tn0/xLvJZBdc8PmIlviNctRynsmMtmxRXOVwg9dBvScLt6vi6zfnPEAlHY2q5 ZmD2d1jPo32HHmcT/T7cIHgz3J2MzLJ7YZXYC0Nnrq4unb5yQt45ZAkAf/U6rZSI MtVjuSYfPswloR03qrr3JPgKDR1wuFo0MvRsSgFNj+ZylAON9WKaomKml9Z2pw42 rYIxHbWjmYQW2U8o5uzImwLY2w== -----END CERTIFICATE-----Generated at Mon Mar 2 09:48:03 2026 by rpki-client