$ rpki-client -vvf rpki.apnic.net/member_repository/A917EB96/64D6BDCC1C2911EE9D06F90AC4F9AE02/yCt7N51v7So8MMRTfg-HzLYIIus.mft File: yCt7N51v7So8MMRTfg-HzLYIIus.mft (raw, json) Hash identifier: IgoLZUfi1u1FTaRwy0gAj4TdrfjAVbYyufwcLDHTm4c= Subject key identifier: C7:6A:10:A5:F5:A1:59:CD:0E:82:34:16:7C:B7:56:AA:07:CA:EB:FC Authority key identifier: C8:2B:7B:37:9D:6F:ED:2A:3C:30:C4:53:7E:0F:87:CC:B6:08:22:EB Certificate issuer: /CN=A917EB96/serialNumber=C82B7B379D6FED2A3C30C4537E0F87CCB60822EB Certificate serial: 01FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCt7N51v7So8MMRTfg-HzLYIIus.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917EB96/64D6BDCC1C2911EE9D06F90AC4F9AE02/yCt7N51v7So8MMRTfg-HzLYIIus.mft Manifest number: 01F4 Signing time: Mon 02 Mar 2026 00:05:19 +0000 Manifest this update: Mon 02 Mar 2026 00:05:19 +0000 Manifest next update: Mon 09 Mar 2026 00:05:19 +0000 Files and hashes: 1: yCt7N51v7So8MMRTfg-HzLYIIus.crl (hash: +SbS/xikcABUrbz+IHb8u07POnJ/FzFrOgipbcWUw6k=) 2: 348BAEE41C2D11EEB362491FC4F9AE02.roa (hash: yocmNFy5AmrqEw3U7DjRD1ZXBRbgklEi4nFkGSGg5fE=) 3: B50ECD32A57E11EEB4533738C4F9AE02.roa (hash: Z9dMHKPPJ4AwtBBzPO0B7QfeY06QQPe693ePWyaMLDg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917EB96/64D6BDCC1C2911EE9D06F90AC4F9AE02/yCt7N51v7So8MMRTfg-HzLYIIus.crl rsync://rpki.apnic.net/member_repository/A917EB96/64D6BDCC1C2911EE9D06F90AC4F9AE02/yCt7N51v7So8MMRTfg-HzLYIIus.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCt7N51v7So8MMRTfg-HzLYIIus.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:05:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 510 (0x1fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917EB96, serialNumber=C82B7B379D6FED2A3C30C4537E0F87CCB60822EB Validity Not Before: Mar 2 00:05:19 2026 GMT Not After : Mar 9 00:05:19 2026 GMT Subject: CN=69a4d43f-003d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:54:cc:b5:ca:77:b9:a6:91:a3:e3:95:ef:cd: b9:3e:6e:c5:2f:40:2a:bf:74:ad:61:f9:60:7a:77: d5:13:ce:90:fe:ac:82:0a:a9:12:ac:ae:ab:ea:6d: 7b:35:7b:c5:b7:01:61:89:e0:7d:df:49:bc:8d:34: 15:c2:62:14:3a:71:63:50:d2:0d:08:b4:85:5c:10: 5e:67:52:e2:c0:bb:3c:4f:17:cd:31:53:b1:14:28: a3:76:46:c3:91:b0:ad:9a:0d:31:24:24:20:f3:38: df:40:1f:1d:de:e6:7d:75:e8:1b:5f:94:b3:1b:65: 02:ee:0a:aa:eb:94:4e:a2:4f:fa:56:8b:52:ae:4d: 96:ae:e9:46:ac:db:8c:ef:b1:06:da:d8:8c:1c:6e: b8:d4:08:5c:8f:83:ba:20:1d:84:e8:2f:4c:e0:d1: 8e:03:eb:b1:76:a6:78:31:5c:35:1e:ed:95:f2:1d: 59:ce:d8:ff:52:58:19:48:09:00:6e:6f:79:86:39: c9:3a:a0:0a:b3:e6:9f:5e:42:15:a6:d3:09:89:10: ae:b3:0e:40:af:e7:17:39:ea:ab:e3:5f:4c:40:ae: aa:60:fc:bc:75:ac:41:f1:f3:a8:96:16:9b:89:38: 3a:f9:0b:8a:65:cf:d4:3a:63:83:75:d3:0c:5d:0c: 2e:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:6A:10:A5:F5:A1:59:CD:0E:82:34:16:7C:B7:56:AA:07:CA:EB:FC X509v3 Authority Key Identifier: keyid:C8:2B:7B:37:9D:6F:ED:2A:3C:30:C4:53:7E:0F:87:CC:B6:08:22:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917EB96/64D6BDCC1C2911EE9D06F90AC4F9AE02/yCt7N51v7So8MMRTfg-HzLYIIus.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCt7N51v7So8MMRTfg-HzLYIIus.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917EB96/64D6BDCC1C2911EE9D06F90AC4F9AE02/yCt7N51v7So8MMRTfg-HzLYIIus.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:88:ed:99:54:d6:cf:e5:74:00:7c:17:b3:da:7d:70:33:48: 11:a9:7b:53:3c:c7:36:8a:02:ff:14:2c:1c:a9:f9:d8:85:3e: 7b:98:47:d5:56:df:f8:19:c2:05:d5:e9:67:52:c1:1f:1d:5a: b4:74:0d:b2:7a:3f:18:a8:40:63:1a:16:4a:ca:35:79:58:45: e1:6c:a8:9c:c2:1d:37:5a:62:40:94:61:58:25:6d:13:1a:0a: c2:87:eb:ef:53:3e:3e:c1:69:30:8f:9d:12:05:dc:1b:02:5e: 4b:e5:28:c7:08:99:65:a5:b9:a3:ec:28:cd:0e:a0:ec:9d:ce: b8:74:34:0c:dc:22:fd:9a:8e:e4:4d:51:a7:a8:0c:e1:04:94: 4c:37:66:e8:e3:23:92:ab:46:5d:97:c7:60:91:41:16:6b:17: 18:7b:c6:ed:8c:7b:a6:3d:aa:27:2e:c7:8c:1d:fa:79:3f:b5: 86:b8:a7:db:5a:87:11:59:2c:55:29:80:31:cb:e3:ec:04:1c: 61:48:05:bd:ee:66:e5:d3:b6:a9:dc:bf:b6:60:97:8c:99:10: 1d:db:07:30:94:86:7f:28:14:65:89:2e:3e:3f:f5:4a:70:23: 99:ff:f7:35:31:d0:da:6d:2d:99:8a:70:9e:a7:0b:39:59:db: 68:db:42:90 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAf4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VCOTYxMTAvBgNVBAUTKEM4MkI3QjM3OUQ2RkVEMkEzQzMwQzQ1MzdFMEY4N0ND QjYwODIyRUIwHhcNMjYwMzAyMDAwNTE5WhcNMjYwMzA5MDAwNTE5WjAYMRYwFAYD VQQDEw02OWE0ZDQzZi0wMDNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3VTMtcp3uaaRo+OV7825Pm7FL0Aqv3StYflgenfVE86Q/qyCCqkSrK6r6m17 NXvFtwFhieB930m8jTQVwmIUOnFjUNINCLSFXBBeZ1LiwLs8TxfNMVOxFCijdkbD kbCtmg0xJCQg8zjfQB8d3uZ9degbX5SzG2UC7gqq65ROok/6VotSrk2WrulGrNuM 77EG2tiMHG641Ahcj4O6IB2E6C9M4NGOA+uxdqZ4MVw1Hu2V8h1Zztj/UlgZSAkA bm95hjnJOqAKs+afXkIVptMJiRCusw5Ar+cXOeqr419MQK6qYPy8daxB8fOolhab iTg6+QuKZc/UOmODddMMXQwu5QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMdqEKX1 oVnNDoI0Fny3VqoHyuv8MB8GA1UdIwQYMBaAFMgrezedb+0qPDDEU34Ph8y2CCLr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUI5Ni82NEQ2QkRDQzFD MjkxMUVFOUQwNkY5MEFDNEY5QUUwMi95Q3Q3TjUxdjdTbzhNTVJUZmctSHpMWUlJ dXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lDdDdONTF2N1NvOE1NUlRmZy1IekxZSUl1cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RUI5Ni82NEQ2QkRDQzFDMjkxMUVFOUQwNkY5MEFDNEY5QUUwMi95Q3Q3TjUxdjdT bzhNTVJUZmctSHpMWUlJdXMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAl4jtmVTWz+V0AHwXs9p9cDNIEal7UzzHNooC/xQsHKn52IU+e5hH1Vbf+BnC BdXpZ1LBHx1atHQNsno/GKhAYxoWSso1eVhF4WyonMIdN1piQJRhWCVtExoKwofr 71M+PsFpMI+dEgXcGwJeS+UoxwiZZaW5o+wozQ6g7J3OuHQ0DNwi/ZqO5E1Rp6gM 4QSUTDdm6OMjkqtGXZfHYJFBFmsXGHvG7Yx7pj2qJy7HjB36eT+1hrin21qHEVks VSmAMcvj7AQcYUgFve5m5dO2qdy/tmCXjJkQHdsHMJSGfygUZYkuPj/1SnAjmf/3 NTHQ2m0tmYpwnqcLOVnbaNtCkA== -----END CERTIFICATE-----Generated at Mon Mar 2 14:21:03 2026 by rpki-client