$ rpki-client -vvf rpki.apnic.net/member_repository/A919B5BB/44BBC14CFF0111E5B1CFB058C4F9AE02/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.mft File: ysRHjw_dmuQeJOn8Z_hR_0PDMwk.mft (raw, json) Hash identifier: Kc40XVrKRJXqSTCqZKCemYshbQIkUKFbSZhNbAtAz/4= Subject key identifier: D5:81:78:B6:B5:0B:51:63:92:EB:FC:0D:FD:21:61:30:55:96:C5:87 Authority key identifier: CA:C4:47:8F:0F:DD:9A:E4:1E:24:E9:FC:67:F8:51:FF:43:C3:33:09 Certificate issuer: /CN=A919B5BB/serialNumber=CAC4478F0FDD9AE41E24E9FC67F851FF43C33309 Certificate serial: 2163 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919B5BB/44BBC14CFF0111E5B1CFB058C4F9AE02/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.mft Manifest number: 2157 Signing time: Sat 28 Feb 2026 15:57:16 +0000 Manifest this update: Sat 28 Feb 2026 15:57:16 +0000 Manifest next update: Sat 07 Mar 2026 15:57:16 +0000 Files and hashes: 1: ysRHjw_dmuQeJOn8Z_hR_0PDMwk.crl (hash: L4PDhjBBUzt7Wrl2fOb5QGEdvDf5b0cPvyLMo34Ds70=) 2: C49E2E22FF0111E591C15659C4F9AE02.roa (hash: oBzh3F7vXr0+lbZGHQqiGoRJzyM9Q1R1dON0koDXQXQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919B5BB/44BBC14CFF0111E5B1CFB058C4F9AE02/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.crl rsync://rpki.apnic.net/member_repository/A919B5BB/44BBC14CFF0111E5B1CFB058C4F9AE02/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 15:57:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8547 (0x2163) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919B5BB, serialNumber=CAC4478F0FDD9AE41E24E9FC67F851FF43C33309 Validity Not Before: Feb 28 15:57:16 2026 GMT Not After : Mar 7 15:57:16 2026 GMT Subject: CN=69a3105c-f65a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:bf:f8:6c:b1:e7:1f:13:3c:39:f0:cf:be:21: 37:d7:9d:f2:66:83:83:15:e9:77:f9:e3:5a:a5:be: ae:c6:ce:ff:bb:dd:9a:f3:c8:59:1b:a3:5c:3f:06: e1:36:4e:e0:99:81:b1:34:84:56:66:6f:35:bf:78: ac:51:51:0c:3f:c8:df:c2:4e:39:e6:59:29:31:77: 0a:dc:8b:8d:6a:f9:04:d1:7e:29:14:e1:e0:5e:f9: c7:2d:ea:a3:93:d5:f8:82:32:7b:bb:a7:0b:50:3d: 71:a8:28:9e:9b:2a:cc:6e:9a:5f:e2:ef:ba:37:e9: 0d:82:1a:b1:d3:3c:aa:6a:0b:d4:0d:2c:15:f7:b9: aa:f5:01:de:c0:6b:4a:07:e5:63:7d:38:c3:30:25: 44:ef:da:f6:87:dd:87:d8:d2:0b:83:35:ab:f9:42: 33:fe:c5:b3:bb:93:73:b9:76:45:0e:57:83:e5:3a: 3a:9c:4f:e5:d2:cc:fb:58:d7:b2:cd:fc:ee:3b:24: c1:fa:e5:52:50:ec:28:c5:56:fd:e2:c4:55:6f:8f: a7:29:c2:03:ce:c8:e4:e4:78:8a:df:84:03:ac:dd: 8b:a7:83:66:b3:23:59:fe:6e:7f:7a:d5:ce:9d:5e: e5:96:e1:3e:9e:a1:5a:59:a8:df:e1:3f:21:97:b6: 15:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:81:78:B6:B5:0B:51:63:92:EB:FC:0D:FD:21:61:30:55:96:C5:87 X509v3 Authority Key Identifier: keyid:CA:C4:47:8F:0F:DD:9A:E4:1E:24:E9:FC:67:F8:51:FF:43:C3:33:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919B5BB/44BBC14CFF0111E5B1CFB058C4F9AE02/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919B5BB/44BBC14CFF0111E5B1CFB058C4F9AE02/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:89:4f:f5:24:fb:46:a6:15:c9:e7:56:58:61:17:30:ba:41: 5e:f1:f4:20:f1:0d:e0:62:84:e9:a7:e3:2e:be:dd:b0:4d:79: 07:0b:d3:8d:17:c8:de:70:77:5d:13:0e:27:0d:f3:75:34:79: 47:cd:14:3a:f3:48:de:cc:ef:aa:8b:0e:2d:f5:d3:28:81:df: f9:24:84:db:0d:77:d2:b1:8c:74:80:b6:0c:8a:3c:79:50:2f: 6f:cb:c1:44:f1:e7:39:49:a5:ef:6f:5d:fa:70:00:76:11:a8: bc:bf:42:5b:81:f9:65:0b:a1:81:6d:93:d0:73:92:72:bd:4d: 2d:6c:a1:f4:37:a7:f8:b9:fc:f2:ad:a8:12:bb:5d:81:34:9e: f4:58:ae:ec:6d:2b:79:e2:01:39:79:33:fb:36:77:52:82:86: 4e:05:8e:4b:0c:22:87:4e:7a:b3:f6:5d:0e:42:68:7b:5c:a3: 65:56:c7:92:20:e1:7d:e0:2b:34:5e:94:4e:06:bf:c2:ba:0c: d2:f6:dc:e0:45:af:6d:8f:a5:19:f6:d4:a1:a8:d3:f0:93:7c: 79:15:a2:6a:f7:63:ec:14:09:40:bf:bf:7f:3c:f0:04:2d:06: c5:c8:21:0a:c4:4c:34:de:c1:2f:11:97:fd:15:fc:b1:c8:e8: ec:cf:69:f3 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICIWMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUI1QkIxMTAvBgNVBAUTKENBQzQ0NzhGMEZERDlBRTQxRTI0RTlGQzY3Rjg1MUZG NDNDMzMzMDkwHhcNMjYwMjI4MTU1NzE2WhcNMjYwMzA3MTU1NzE2WjAYMRYwFAYD VQQDDA02OWEzMTA1Yy1mNjVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmb/4bLHnHxM8OfDPviE3153yZoODFel3+eNapb6uxs7/u92a88hZG6NcPwbh Nk7gmYGxNIRWZm81v3isUVEMP8jfwk455lkpMXcK3IuNavkE0X4pFOHgXvnHLeqj k9X4gjJ7u6cLUD1xqCiemyrMbppf4u+6N+kNghqx0zyqagvUDSwV97mq9QHewGtK B+VjfTjDMCVE79r2h92H2NILgzWr+UIz/sWzu5NzuXZFDleD5To6nE/l0sz7WNey zfzuOyTB+uVSUOwoxVb94sRVb4+nKcIDzsjk5HiK34QDrN2Lp4NmsyNZ/m5/etXO nV7lluE+nqFaWajf4T8hl7YVnwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNWBeLa1 C1Fjkuv8Df0hYTBVlsWHMB8GA1UdIwQYMBaAFMrER48P3ZrkHiTp/Gf4Uf9DwzMJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QjVCQi80NEJCQzE0Q0ZG MDExMUU1QjFDRkIwNThDNEY5QUUwMi95c1JIandfZG11UWVKT244Wl9oUl8wUERN d2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lzUkhqd19kbXVRZUpPbjhaX2hSXzBQRE13ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QjVCQi80NEJCQzE0Q0ZGMDExMUU1QjFDRkIwNThDNEY5QUUwMi95c1JIandfZG11 UWVKT244Wl9oUl8wUERNd2subWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAPolP9ST7RqYVyedWWGEXMLpBXvH0IPEN4GKE6afjLr7dsE15BwvTjRfI3nB3 XRMOJw3zdTR5R80UOvNI3szvqosOLfXTKIHf+SSE2w130rGMdIC2DIo8eVAvb8vB RPHnOUml729d+nAAdhGovL9CW4H5ZQuhgW2T0HOScr1NLWyh9Den+Ln88q2oErtd gTSe9Fiu7G0reeIBOXkz+zZ3UoKGTgWOSwwih056s/ZdDkJoe1yjZVbHkiDhfeAr NF6UTga/wroM0vbc4EWvbY+lGfbUoajT8JN8eRWiavdj7BQJQL+/fzzwBC0Gxcgh CsRMNN7BLxGX/RX8scjo7M9p8w== -----END CERTIFICATE-----Generated at Sun Mar 1 20:36:11 2026 by rpki-client