$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1CAA/8E275A1ECE4A11EE8DE9E51FC4F9AE02/YX8FTjzkUeDD5_RG3Qn3hkZStlY.mft File: YX8FTjzkUeDD5_RG3Qn3hkZStlY.mft (raw, json) Hash identifier: NgaVcDndCOlZzWBbvRjnOi2K/J1o06gw/1pVFj7Nuqo= Subject key identifier: DC:E5:7A:72:11:4F:05:1B:6E:0B:BE:9A:55:DD:66:97:22:03:B5:C6 Authority key identifier: 61:7F:05:4E:3C:E4:51:E0:C3:E7:F4:46:DD:09:F7:86:46:52:B6:56 Certificate issuer: /CN=A91A1CAA/serialNumber=617F054E3CE451E0C3E7F446DD09F7864652B656 Certificate serial: 017F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YX8FTjzkUeDD5_RG3Qn3hkZStlY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1CAA/8E275A1ECE4A11EE8DE9E51FC4F9AE02/YX8FTjzkUeDD5_RG3Qn3hkZStlY.mft Manifest number: 017C Signing time: Sun 01 Mar 2026 05:34:58 +0000 Manifest this update: Sun 01 Mar 2026 05:34:58 +0000 Manifest next update: Sun 08 Mar 2026 05:34:58 +0000 Files and hashes: 1: YX8FTjzkUeDD5_RG3Qn3hkZStlY.crl (hash: eXjctw1GbGXSOUZ0SaP1fv4rOSKHETAn+PFfel1s8JY=) 2: E75FB4F0CE4A11EE95C15E20C4F9AE02.roa (hash: utq11zi2cO+ldR8mXOv++lb25ZgD5tUSUW03iRiwBL0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1CAA/8E275A1ECE4A11EE8DE9E51FC4F9AE02/YX8FTjzkUeDD5_RG3Qn3hkZStlY.crl rsync://rpki.apnic.net/member_repository/A91A1CAA/8E275A1ECE4A11EE8DE9E51FC4F9AE02/YX8FTjzkUeDD5_RG3Qn3hkZStlY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YX8FTjzkUeDD5_RG3Qn3hkZStlY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 05:34:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 383 (0x17f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1CAA, serialNumber=617F054E3CE451E0C3E7F446DD09F7864652B656 Validity Not Before: Mar 1 05:34:58 2026 GMT Not After : Mar 8 05:34:58 2026 GMT Subject: CN=69a3d002-393f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:34:49:59:cd:db:a2:1f:64:c6:37:ce:19:2e: 75:f2:a8:f9:dc:c5:75:7e:5d:12:b2:d0:55:3b:6e: 3a:16:ce:e6:03:43:ea:e8:b0:a0:4e:c5:9e:b4:2b: 8e:16:8a:87:75:e0:60:ed:7a:98:01:06:10:8b:8a: c1:fe:83:ee:d3:ab:7e:aa:0a:c6:45:5f:cb:56:5c: bb:16:5d:0c:f4:7e:e2:51:64:74:ef:53:0a:a1:20: a1:db:5a:2d:37:87:64:5f:88:1b:3f:01:19:ff:06: f9:e5:4e:61:c1:ad:1d:9b:de:4b:d1:4f:8e:a3:2f: f2:9f:46:76:d8:fe:07:6c:e3:f5:96:6a:cf:27:8a: 10:04:28:cf:50:47:1b:5c:f3:2d:7f:7f:8b:2d:58: 70:04:5a:8c:f4:ac:4e:89:94:16:c8:a2:ef:6c:82: 29:bb:69:1e:84:2d:f4:5e:b6:e2:40:3d:43:b2:64: f4:cb:1e:88:79:26:17:c1:19:0e:b4:56:bd:95:5e: 9c:08:56:ba:cb:2d:1e:4a:87:e1:a8:83:4d:06:be: 0b:90:ea:ec:aa:d5:32:cf:83:33:20:12:b0:25:61: 9c:1b:d4:a1:83:c1:f4:6f:59:a0:20:38:0f:ad:85: 16:77:a0:cd:e4:c2:2e:ae:e9:b2:1a:2f:8d:05:d7: 06:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:E5:7A:72:11:4F:05:1B:6E:0B:BE:9A:55:DD:66:97:22:03:B5:C6 X509v3 Authority Key Identifier: keyid:61:7F:05:4E:3C:E4:51:E0:C3:E7:F4:46:DD:09:F7:86:46:52:B6:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1CAA/8E275A1ECE4A11EE8DE9E51FC4F9AE02/YX8FTjzkUeDD5_RG3Qn3hkZStlY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YX8FTjzkUeDD5_RG3Qn3hkZStlY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1CAA/8E275A1ECE4A11EE8DE9E51FC4F9AE02/YX8FTjzkUeDD5_RG3Qn3hkZStlY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:d4:f0:18:2d:f6:33:9d:f1:0b:2b:b5:bb:5b:b3:7f:eb:a3: b5:52:e0:be:5f:ae:dd:bf:bb:9c:de:f8:91:92:ea:a4:56:60: 27:15:4d:1e:da:ef:ce:05:82:d4:27:2a:58:c2:19:3a:24:ce: 41:0f:bd:46:b8:ed:45:f3:3c:77:f5:e2:f7:15:cc:4a:de:0f: 35:22:55:06:ae:bb:30:f1:ac:82:83:c4:bc:4d:4e:0d:a7:53: af:a2:e8:9d:79:98:50:58:9e:fa:8f:6f:0c:a5:9c:62:e2:6a: 7f:c2:2b:6d:78:e1:53:9e:95:fb:28:a3:23:94:0e:72:d6:bf: c7:9b:72:08:8b:b3:0d:83:5a:e7:c2:d4:06:33:c6:1d:a2:a9: 6a:57:2f:57:7c:60:c1:d0:ce:bf:a5:22:71:25:83:31:f1:f8: 04:4a:94:46:f4:ee:55:58:89:c7:f8:30:21:38:84:94:b1:9b: 11:e1:f7:ac:29:3e:77:55:57:66:67:c8:50:be:83:28:23:bb: d5:1b:54:5b:69:11:61:aa:c1:db:f2:a8:c5:2a:fc:d8:e2:73: 38:f6:44:8d:34:62:1f:1c:a8:47:3b:46:3f:a6:cc:c5:39:4b: 6d:37:cd:c5:88:a0:c2:94:c2:be:a8:09:b9:1e:18:b1:df:44: 6f:eb:fc:be -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAX8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTFDQUExMTAvBgNVBAUTKDYxN0YwNTRFM0NFNDUxRTBDM0U3RjQ0NkREMDlGNzg2 NDY1MkI2NTYwHhcNMjYwMzAxMDUzNDU4WhcNMjYwMzA4MDUzNDU4WjAYMRYwFAYD VQQDEw02OWEzZDAwMi0zOTNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAhzRJWc3boh9kxjfOGS518qj53MV1fl0SstBVO246Fs7mA0Pq6LCgTsWetCuO FoqHdeBg7XqYAQYQi4rB/oPu06t+qgrGRV/LVly7Fl0M9H7iUWR071MKoSCh21ot N4dkX4gbPwEZ/wb55U5hwa0dm95L0U+Ooy/yn0Z22P4HbOP1lmrPJ4oQBCjPUEcb XPMtf3+LLVhwBFqM9KxOiZQWyKLvbIIpu2kehC30XrbiQD1DsmT0yx6IeSYXwRkO tFa9lV6cCFa6yy0eSofhqINNBr4LkOrsqtUyz4MzIBKwJWGcG9Shg8H0b1mgIDgP rYUWd6DN5MIurumyGi+NBdcG5wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNzlenIR TwUbbgu+mlXdZpciA7XGMB8GA1UdIwQYMBaAFGF/BU485FHgw+f0Rt0J94ZGUrZW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMUNBQS84RTI3NUExRUNF NEExMUVFOERFOUU1MUZDNEY5QUUwMi9ZWDhGVGp6a1VlREQ1X1JHM1FuM2hrWlN0 bFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lYOEZUanprVWVERDVfUkczUW4zaGtaU3RsWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MUNBQS84RTI3NUExRUNFNEExMUVFOERFOUU1MUZDNEY5QUUwMi9ZWDhGVGp6a1Vl REQ1X1JHM1FuM2hrWlN0bFkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAdtTwGC32M53xCyu1u1uzf+ujtVLgvl+u3b+7nN74kZLqpFZgJxVNHtrvzgWC 1CcqWMIZOiTOQQ+9RrjtRfM8d/Xi9xXMSt4PNSJVBq67MPGsgoPEvE1ODadTr6Lo nXmYUFie+o9vDKWcYuJqf8IrbXjhU56V+yijI5QOcta/x5tyCIuzDYNa58LUBjPG HaKpalcvV3xgwdDOv6UicSWDMfH4BEqURvTuVViJx/gwITiElLGbEeH3rCk+d1VX ZmfIUL6DKCO71RtUW2kRYarB2/KoxSr82OJzOPZEjTRiHxyoRztGP6bMxTlLbTfN xYigwpTCvqgJuR4Ysd9Eb+v8vg== -----END CERTIFICATE-----Generated at Sun Mar 1 20:49:03 2026 by rpki-client