$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.mft File: yxZWgR0IRXmT6Ngbn5eY2tYWlxo.mft (raw, json) Hash identifier: wNC7iHoHxFV2g03h7v+TXRLpSYgX7YAsHl+zpdGJGxA= Subject key identifier: 01:39:9B:5E:02:93:FE:63:EF:66:D6:67:92:32:E8:1F:CA:C2:AB:FC Authority key identifier: CB:16:56:81:1D:08:45:79:93:E8:D8:1B:9F:97:98:DA:D6:16:97:1A Certificate issuer: /CN=A91B4357/serialNumber=CB1656811D08457993E8D81B9F9798DAD616971A Certificate serial: 0533 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.mft Manifest number: 0508 Signing time: Mon 02 Mar 2026 00:50:36 +0000 Manifest this update: Mon 02 Mar 2026 00:50:33 +0000 Manifest next update: Mon 09 Mar 2026 00:50:33 +0000 Files and hashes: 1: yxZWgR0IRXmT6Ngbn5eY2tYWlxo.crl (hash: ob2+p0P0sn5tmWuM5klZEBcQQp0yWvmxodfWyTLDZoM=) 2: 346A2B4045AE11ECB857890EC4F9AE02.roa (hash: YheXK0UgGEB7Z/3VeNqFrG7TEedt8nnqAV/x4ZuFjYw=) 3: 52B98FDA46AF11ECB113AA4BC4F9AE02.roa (hash: xY/esRTHmVcSEnmni9qKfYB8APe7aNUaqGzW5UYshQs=) 4: 351AC73E45AE11ECB857890EC4F9AE02.roa (hash: 1fMszEVclnRMOM/POK57IbuTqKPaZ6i1HdvWDw7RSC4=) 5: 9896BA2EB6DE11EC8DB17172C4F9AE02.roa (hash: dG9p093s1Ue0rrA4RBzIOjl2As439gOH8sz6VM6eiUQ=) 6: CA888654D0E011EC9E5ACC1CC4F9AE02.roa (hash: bcqqVj2cPJZljPqgNexbPZepdU+xtAEAALfwJxCXrw4=) 7: 35A2418C45AE11ECB857890EC4F9AE02.roa (hash: 1S4BYpNOabN3d/LnYoJIPgaMIRT82AJo33zkA94dJ9s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.crl rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:50:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1331 (0x533) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4357, serialNumber=CB1656811D08457993E8D81B9F9798DAD616971A Validity Not Before: Mar 2 00:50:33 2026 GMT Not After : Mar 9 00:50:33 2026 GMT Subject: CN=69a4dedc-0b2c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:c5:6e:16:78:9a:a1:3d:95:cc:9f:35:cd:4f: e3:8a:00:1b:5e:7c:44:1e:74:98:5e:3c:40:24:4e: 42:cd:13:d8:65:3e:e4:0d:f8:6b:44:31:d3:6b:9f: 75:6a:b7:84:74:3b:0b:af:ad:81:92:78:9f:18:0e: 4f:e0:5d:4d:da:1a:e9:eb:cb:f2:74:47:38:86:6e: 55:24:44:e0:c7:33:84:9d:e2:59:b4:26:1d:d4:a0: 9d:9c:d9:54:59:ac:36:f0:a3:72:40:1a:14:62:a9: c6:69:8b:f3:ea:f9:67:53:0d:7f:ad:19:62:8f:3d: bd:28:28:79:f8:bc:fe:30:b8:5f:26:7c:32:2a:c7: 60:c2:0c:84:e7:ec:33:fb:28:f0:df:df:d9:a9:93: d8:a0:bb:03:e2:ae:01:fb:65:89:f1:4c:46:62:ac: ff:4e:4d:4a:31:21:8f:03:72:05:3b:25:7f:f8:15: 89:33:5e:61:e6:5b:5b:65:db:1b:a3:f3:a0:6f:70: e2:fc:43:ac:4a:49:8d:0a:b5:0d:ec:04:d4:74:53: 2b:f4:b1:80:93:5b:8f:e5:6a:20:6d:20:32:b8:ff: e8:10:2e:d4:9d:33:d7:48:21:32:16:b2:27:0f:c8: 35:f6:b4:fa:6f:0d:d5:a5:52:8e:6b:7f:ac:a7:5d: e7:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:39:9B:5E:02:93:FE:63:EF:66:D6:67:92:32:E8:1F:CA:C2:AB:FC X509v3 Authority Key Identifier: keyid:CB:16:56:81:1D:08:45:79:93:E8:D8:1B:9F:97:98:DA:D6:16:97:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:9f:4c:75:83:ca:24:5d:ca:26:3d:68:92:d5:b3:93:dd:06: 21:97:c6:68:ff:92:83:7b:06:f0:17:2e:78:79:b2:d4:3b:1d: 86:fa:18:b8:77:4f:96:fa:fc:24:6a:86:02:46:76:79:08:ee: 73:c0:ce:f8:be:fb:14:86:82:e0:6d:19:e9:4c:d9:34:33:73: a1:29:cd:2d:e0:12:63:0b:5d:70:72:39:1e:dd:d4:4e:d6:69: 3a:72:36:a6:84:0c:24:a2:b8:f5:d8:65:42:99:6c:03:d2:b2: 7a:90:c1:07:e1:a2:92:79:5b:04:96:59:20:9d:9e:19:c7:b4: eb:a4:cf:d2:a7:c6:f6:30:69:8c:c2:21:0e:dd:55:b6:fc:ce: f5:50:68:1f:23:4e:3f:20:0f:6f:26:68:50:0a:d3:7c:b2:4f: 77:7b:86:2c:e6:92:67:f1:a9:ec:3f:b9:ac:99:1b:94:25:c9: 00:98:c3:92:68:76:28:98:ca:e0:1e:af:dc:56:b3:77:9c:f3: 04:17:b7:58:f7:bf:d3:b9:17:30:78:0c:3c:8a:a9:cd:dd:d4: c5:41:f9:53:e9:21:52:75:1a:5e:ed:ac:9b:83:c2:97:56:65: 22:b8:98:e6:29:c6:49:90:30:d6:6b:67:c3:8d:ee:12:5c:58: 8a:dc:83:30 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBTMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQzNTcxMTAvBgNVBAUTKENCMTY1NjgxMUQwODQ1Nzk5M0U4RDgxQjlGOTc5OERB RDYxNjk3MUEwHhcNMjYwMzAyMDA1MDMzWhcNMjYwMzA5MDA1MDMzWjAYMRYwFAYD VQQDEw02OWE0ZGVkYy0wYjJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApMVuFniaoT2VzJ81zU/jigAbXnxEHnSYXjxAJE5CzRPYZT7kDfhrRDHTa591 areEdDsLr62BknifGA5P4F1N2hrp68vydEc4hm5VJETgxzOEneJZtCYd1KCdnNlU Waw28KNyQBoUYqnGaYvz6vlnUw1/rRlijz29KCh5+Lz+MLhfJnwyKsdgwgyE5+wz +yjw39/ZqZPYoLsD4q4B+2WJ8UxGYqz/Tk1KMSGPA3IFOyV/+BWJM15h5ltbZdsb o/Ogb3Di/EOsSkmNCrUN7ATUdFMr9LGAk1uP5WogbSAyuP/oEC7UnTPXSCEyFrIn D8g19rT6bw3VpVKOa3+sp13nGwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAE5m14C k/5j72bWZ5Iy6B/Kwqv8MB8GA1UdIwQYMBaAFMsWVoEdCEV5k+jYG5+XmNrWFpca MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDM1Ny9CODRCMTBFQzQ1 QTgxMUVDOEIxNDA1NThDNEY5QUUwMi95eFpXZ1IwSVJYbVQ2TmdibjVlWTJ0WVds eG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3l4WldnUjBJUlhtVDZOZ2JuNWVZMnRZV2x4by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDM1Ny9CODRCMTBFQzQ1QTgxMUVDOEIxNDA1NThDNEY5QUUwMi95eFpXZ1IwSVJY bVQ2TmdibjVlWTJ0WVdseG8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAf59MdYPKJF3KJj1oktWzk90GIZfGaP+Sg3sG8BcueHmy1DsdhvoYuHdPlvr8 JGqGAkZ2eQjuc8DO+L77FIaC4G0Z6UzZNDNzoSnNLeASYwtdcHI5Ht3UTtZpOnI2 poQMJKK49dhlQplsA9KyepDBB+GiknlbBJZZIJ2eGce066TP0qfG9jBpjMIhDt1V tvzO9VBoHyNOPyAPbyZoUArTfLJPd3uGLOaSZ/Gp7D+5rJkblCXJAJjDkmh2KJjK 4B6v3Fazd5zzBBe3WPe/07kXMHgMPIqpzd3UxUH5U+khUnUaXu2sm4PCl1ZlIriY 5inGSZAw1mtnw43uElxYityDMA== -----END CERTIFICATE-----Generated at Mon Mar 2 13:05:40 2026 by rpki-client