$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.mft File: YbAiM19NheFtR3oAatyOPy_alGA.mft (raw, json) Hash identifier: y5DgSoC1wCILvGcHIjL/jiyNeZDE0uuYb23SO/u7Dis= Subject key identifier: CB:2C:41:DB:73:06:FD:A9:A4:30:D9:47:CB:41:34:A1:92:DA:8A:4D Authority key identifier: 61:B0:22:33:5F:4D:85:E1:6D:47:7A:00:6A:DC:8E:3F:2F:DA:94:60 Certificate issuer: /CN=A91A7C77/serialNumber=61B022335F4D85E16D477A006ADC8E3F2FDA9460 Certificate serial: 0525 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YbAiM19NheFtR3oAatyOPy_alGA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.mft Manifest number: 0520 Signing time: Mon 02 Mar 2026 01:04:25 +0000 Manifest this update: Mon 02 Mar 2026 01:04:23 +0000 Manifest next update: Mon 09 Mar 2026 01:04:23 +0000 Files and hashes: 1: YbAiM19NheFtR3oAatyOPy_alGA.crl (hash: ILfwSD4w/h9xJLIGNM1F3ZtGJNYfelqeAYhilvYgVlc=) 2: FF4EB6B2395811ECA422C462C4F9AE02.roa (hash: 1EXMwCZdlr4n5uu1XLxW00w3UXh6JZwNTcRYA1sNXNA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.crl rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YbAiM19NheFtR3oAatyOPy_alGA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:04:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1317 (0x525) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7C77, serialNumber=61B022335F4D85E16D477A006ADC8E3F2FDA9460 Validity Not Before: Mar 2 01:04:23 2026 GMT Not After : Mar 9 01:04:23 2026 GMT Subject: CN=69a4e218-a9c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:65:7c:20:d4:e7:df:60:89:dc:48:88:cc:61: e8:35:89:fd:42:f7:1f:41:45:f7:ed:7d:4f:b9:e1: f7:da:97:b5:e2:05:21:b0:f5:12:dd:22:10:ed:e7: 24:00:83:8d:2a:f3:34:7d:a8:51:c0:2e:69:98:13: e3:8f:04:4c:ed:f6:a5:fe:0d:3f:83:40:be:1a:28: a9:34:8c:03:92:57:32:f0:bd:0b:3a:41:57:0a:af: 60:ac:d4:1f:5a:bc:ec:12:11:06:b1:37:ad:43:43: 1a:83:c0:c9:6d:c2:cf:87:89:f8:67:e3:99:89:3e: 40:c1:b9:08:5f:b0:ad:ed:8e:16:99:f0:87:d7:ba: 2c:14:06:84:41:64:fa:2a:82:4f:86:e7:e1:3e:31: 97:68:3a:36:ff:64:1b:da:a9:6f:3a:ed:5a:19:2b: 7d:0f:3f:92:53:ed:31:3c:d3:2f:1d:d5:f2:8e:ba: ae:e0:47:86:b3:40:30:7d:43:41:b7:dd:a2:64:d0: 9a:7d:f9:7d:31:60:02:6a:41:c8:dc:ea:22:ff:b3: 33:0b:a6:e9:3f:84:20:68:3a:63:3a:63:8f:e7:d6: 9e:7e:44:68:7c:53:fa:a8:08:44:62:17:41:c2:ad: f7:c2:78:32:5d:fe:9a:ce:a9:96:f0:45:41:68:c1: 5f:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:2C:41:DB:73:06:FD:A9:A4:30:D9:47:CB:41:34:A1:92:DA:8A:4D X509v3 Authority Key Identifier: keyid:61:B0:22:33:5F:4D:85:E1:6D:47:7A:00:6A:DC:8E:3F:2F:DA:94:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YbAiM19NheFtR3oAatyOPy_alGA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:62:5c:38:e4:fc:c4:9f:28:b3:c7:d3:45:f6:97:a3:6d:6e: 90:35:e6:11:05:da:25:01:5a:f0:bd:f9:d3:c6:44:42:17:63: 81:8c:da:3e:27:13:64:72:10:fc:69:4c:13:92:c4:f7:99:74: f6:6f:20:96:e6:61:1a:07:02:69:60:69:62:4f:35:95:b2:a1: fd:57:1c:67:15:d7:14:60:3d:8c:aa:fc:b9:60:79:53:05:86: 1b:4f:82:e1:d7:38:ab:4b:89:40:3f:94:57:e4:81:80:9b:35: ca:5e:14:47:be:61:08:be:dd:f2:d3:44:81:6b:9a:31:6d:3f: 94:7f:b8:c4:a1:0f:a6:be:ed:c3:33:ee:08:91:16:65:e3:30: ad:a3:25:35:0d:28:15:96:4d:49:58:5f:6e:7c:af:44:f5:ae: 45:02:95:3b:c6:e2:5a:f5:7f:9b:8b:70:58:4c:6d:b6:df:a3: d2:7d:61:bd:74:c7:78:4f:cc:11:6e:f7:94:5b:b3:9b:26:3b: 2a:1e:30:60:f8:11:63:3c:75:60:e6:80:d5:bd:2b:1b:b6:47: ab:4c:66:ae:00:7b:33:82:4d:41:d2:28:5e:2f:f3:ec:a7:4f: 8f:fa:65:7c:e8:3a:ee:ca:16:ac:2a:0e:3d:0c:d3:e2:8f:4e: e5:b3:94:90 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBSUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTdDNzcxMTAvBgNVBAUTKDYxQjAyMjMzNUY0RDg1RTE2RDQ3N0EwMDZBREM4RTNG MkZEQTk0NjAwHhcNMjYwMzAyMDEwNDIzWhcNMjYwMzA5MDEwNDIzWjAYMRYwFAYD VQQDEw02OWE0ZTIxOC1hOWM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxWV8INTn32CJ3EiIzGHoNYn9QvcfQUX37X1PueH32pe14gUhsPUS3SIQ7eck AIONKvM0fahRwC5pmBPjjwRM7fal/g0/g0C+GiipNIwDklcy8L0LOkFXCq9grNQf WrzsEhEGsTetQ0Mag8DJbcLPh4n4Z+OZiT5AwbkIX7Ct7Y4WmfCH17osFAaEQWT6 KoJPhufhPjGXaDo2/2Qb2qlvOu1aGSt9Dz+SU+0xPNMvHdXyjrqu4EeGs0AwfUNB t92iZNCaffl9MWACakHI3Ooi/7MzC6bpP4QgaDpjOmOP59aefkRofFP6qAhEYhdB wq33wngyXf6azqmW8EVBaMFfaQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMssQdtz Bv2ppDDZR8tBNKGS2opNMB8GA1UdIwQYMBaAFGGwIjNfTYXhbUd6AGrcjj8v2pRg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBN0M3Ny9EQzIwMUFGRTM5 NTQxMUVDODBEOUQzNTlDNEY5QUUwMi9ZYkFpTTE5TmhlRnRSM29BYXR5T1B5X2Fs R0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1liQWlNMTlOaGVGdFIzb0FhdHlPUHlfYWxHQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB N0M3Ny9EQzIwMUFGRTM5NTQxMUVDODBEOUQzNTlDNEY5QUUwMi9ZYkFpTTE5Tmhl RnRSM29BYXR5T1B5X2FsR0EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAU2JcOOT8xJ8os8fTRfaXo21ukDXmEQXaJQFa8L3508ZEQhdjgYzaPicTZHIQ /GlME5LE95l09m8gluZhGgcCaWBpYk81lbKh/VccZxXXFGA9jKr8uWB5UwWGG0+C 4dc4q0uJQD+UV+SBgJs1yl4UR75hCL7d8tNEgWuaMW0/lH+4xKEPpr7twzPuCJEW ZeMwraMlNQ0oFZZNSVhfbnyvRPWuRQKVO8biWvV/m4twWExttt+j0n1hvXTHeE/M EW73lFuzmyY7Kh4wYPgRYzx1YOaA1b0rG7ZHq0xmrgB7M4JNQdIoXi/z7KdPj/pl fOg67soWrCoOPQzT4o9O5bOUkA== -----END CERTIFICATE-----Generated at Mon Mar 2 05:51:48 2026 by rpki-client