$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.mft File: C-AoY1W14laYjORU35P8D8p_YEA.mft (raw, json) Hash identifier: pj/UyQvfT/MKACNf2hVApycnIF9Y6XVdoVJSYr7AQL0= Subject key identifier: EC:46:4A:D1:38:1B:C3:B2:2A:C8:42:C9:1A:41:D9:80:1E:89:B8:03 Authority key identifier: 0B:E0:28:63:55:B5:E2:56:98:8C:E4:54:DF:93:FC:0F:CA:7F:60:40 Certificate issuer: /CN=A91A1D43/serialNumber=0BE0286355B5E256988CE454DF93FC0FCA7F6040 Certificate serial: 0221 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C-AoY1W14laYjORU35P8D8p_YEA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.mft Manifest number: 0215 Signing time: Sun 01 Mar 2026 23:34:26 +0000 Manifest this update: Sun 01 Mar 2026 23:34:24 +0000 Manifest next update: Sun 08 Mar 2026 23:34:24 +0000 Files and hashes: 1: C-AoY1W14laYjORU35P8D8p_YEA.crl (hash: hOMDR7rFOcyEKuJ/dQkWV78ivf2EP/yiULMJU5nJUZ0=) 2: 8BCB2CFAEA3911EDB91E190BC4F9AE02.roa (hash: QhSp+pceORKO5TeSj6aanaSrz92dgNngwmylNT95Bc4=) 3: 8B1BDC14EA3911EDB91E190BC4F9AE02.roa (hash: IRQ+OR5t+v1uxAMW20q5TYiXjn6EFNEgE2VqHO9rI/w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.crl rsync://rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C-AoY1W14laYjORU35P8D8p_YEA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:34:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 545 (0x221) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1D43, serialNumber=0BE0286355B5E256988CE454DF93FC0FCA7F6040 Validity Not Before: Mar 1 23:34:24 2026 GMT Not After : Mar 8 23:34:24 2026 GMT Subject: CN=69a4cd01-2861 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:2b:7c:96:83:10:2c:70:8c:c2:03:3f:b9:f0: ff:ff:84:f1:e5:55:46:18:8a:43:f7:a6:98:ed:cb: f2:71:d9:33:ad:17:ea:bd:6e:c6:d9:ba:97:2e:7f: 3a:c9:a3:d2:79:c3:da:01:fc:45:71:85:79:92:48: ed:93:10:81:76:5f:42:4d:01:db:57:2b:5a:d8:08: 37:ab:50:2a:f2:ae:16:14:98:ea:b9:2e:d2:80:12: 23:36:e6:54:1d:0c:a3:71:00:f0:29:98:e1:98:28: 85:a0:72:b7:b3:17:d5:82:38:0d:46:50:74:98:42: 39:6c:8d:3d:71:1d:9b:91:6b:3f:10:7b:a6:37:ac: a1:fb:d1:c2:13:57:fd:ee:cc:84:10:5f:f2:2b:42: f0:a4:7b:66:88:76:bd:36:59:19:b3:7e:26:ff:a1: 40:02:e3:31:5b:ac:fa:30:07:21:71:81:53:83:48: fb:68:f8:10:16:7e:f0:0b:cf:6b:39:a9:f5:b0:59: 46:7b:8b:02:fe:36:3d:18:0f:68:6b:67:bb:65:ea: f1:97:90:80:82:92:4a:7c:79:3f:77:98:da:07:7e: 79:98:5c:df:23:46:3d:bb:e9:0f:aa:3d:f5:1e:fb: f9:3a:c9:60:7b:4b:a4:b9:da:f2:6f:9d:33:af:8f: 6d:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:46:4A:D1:38:1B:C3:B2:2A:C8:42:C9:1A:41:D9:80:1E:89:B8:03 X509v3 Authority Key Identifier: keyid:0B:E0:28:63:55:B5:E2:56:98:8C:E4:54:DF:93:FC:0F:CA:7F:60:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C-AoY1W14laYjORU35P8D8p_YEA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:e2:c7:5e:ea:b1:a0:6c:93:74:69:2c:ce:b9:d5:58:45:66: 2b:13:ae:d6:74:97:e4:23:d3:f3:a8:9a:ca:03:72:39:c3:4a: d2:9b:25:1f:2f:66:cd:51:79:98:6a:ca:84:59:9f:d2:55:6c: f2:fd:0d:5e:4f:7f:bc:d2:2c:d9:11:97:a5:1a:79:d7:57:2f: 9c:ca:2f:9b:15:8c:89:ec:3b:2a:d5:59:39:96:11:78:f1:7c: d5:11:d6:c9:21:1e:91:d8:d5:40:4a:77:57:9e:de:e4:ae:f9: ae:28:c9:b1:0f:f9:dc:c6:91:b7:76:1e:74:7e:04:d0:4c:4d: b8:d0:e1:56:a8:a8:db:62:ff:8b:57:fa:0e:01:c7:e0:5c:a1: 57:5d:11:2e:13:4c:cf:86:89:6c:34:c0:83:d8:4d:02:be:1d: 0b:45:cf:2d:c4:34:37:d8:d3:60:ac:54:55:4a:3b:9a:95:d2: 83:32:08:e5:08:de:8c:f6:80:b0:ba:5e:b9:9c:c0:76:52:af: 4b:47:d4:ed:00:29:72:2b:26:bd:12:6b:bb:44:80:99:46:5b: 19:10:c1:52:25:e3:b6:97:f0:24:21:93:26:91:92:b0:d0:01: 5c:20:61:c3:1e:d1:89:7a:ba:c6:ea:3f:e9:27:65:73:58:da: 8d:f1:09:73 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAiEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTFENDMxMTAvBgNVBAUTKDBCRTAyODYzNTVCNUUyNTY5ODhDRTQ1NERGOTNGQzBG Q0E3RjYwNDAwHhcNMjYwMzAxMjMzNDI0WhcNMjYwMzA4MjMzNDI0WjAYMRYwFAYD VQQDEw02OWE0Y2QwMS0yODYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwit8loMQLHCMwgM/ufD//4Tx5VVGGIpD96aY7cvycdkzrRfqvW7G2bqXLn86 yaPSecPaAfxFcYV5kkjtkxCBdl9CTQHbVyta2Ag3q1Aq8q4WFJjquS7SgBIjNuZU HQyjcQDwKZjhmCiFoHK3sxfVgjgNRlB0mEI5bI09cR2bkWs/EHumN6yh+9HCE1f9 7syEEF/yK0LwpHtmiHa9NlkZs34m/6FAAuMxW6z6MAchcYFTg0j7aPgQFn7wC89r Oan1sFlGe4sC/jY9GA9oa2e7Zerxl5CAgpJKfHk/d5jaB355mFzfI0Y9u+kPqj31 Hvv5Oslge0ukudryb50zr49trQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOxGStE4 G8OyKshCyRpB2YAeibgDMB8GA1UdIwQYMBaAFAvgKGNVteJWmIzkVN+T/A/Kf2BA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMUQ0My84OTI5REZERUVB MjgxMUVEQjdERDAxMThDNEY5QUUwMi9DLUFvWTFXMTRsYVlqT1JVMzVQOEQ4cF9Z RUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0MtQW9ZMVcxNGxhWWpPUlUzNVA4RDhwX1lFQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MUQ0My84OTI5REZERUVBMjgxMUVEQjdERDAxMThDNEY5QUUwMi9DLUFvWTFXMTRs YVlqT1JVMzVQOEQ4cF9ZRUEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAAOLHXuqxoGyTdGkszrnVWEVmKxOu1nSX5CPT86iaygNyOcNK0pslHy9mzVF5 mGrKhFmf0lVs8v0NXk9/vNIs2RGXpRp511cvnMovmxWMiew7KtVZOZYRePF81RHW ySEekdjVQEp3V57e5K75rijJsQ/53MaRt3YedH4E0ExNuNDhVqio22L/i1f6DgHH 4FyhV10RLhNMz4aJbDTAg9hNAr4dC0XPLcQ0N9jTYKxUVUo7mpXSgzII5QjejPaA sLpeuZzAdlKvS0fU7QApcismvRJru0SAmUZbGRDBUiXjtpfwJCGTJpGSsNABXCBh wx7RiXq6xuo/6Sdlc1jajfEJcw== -----END CERTIFICATE-----Generated at Mon Mar 2 12:41:45 2026 by rpki-client