$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft File: Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft (raw, json) Hash identifier: kOdafOZAVQxk6WuHrVnVUYAqwMB7vDQHau+3N+S7klE= Subject key identifier: 0E:AD:B9:FA:C6:BB:33:80:80:49:F8:8A:DB:DB:57:BD:BF:58:A6:40 Authority key identifier: 63:0E:FC:8B:C8:24:7F:99:A0:12:80:74:1E:4A:1A:0D:B7:F1:47:B0 Certificate issuer: /CN=A91BB629/serialNumber=630EFC8BC8247F99A01280741E4A1A0DB7F147B0 Certificate serial: 0135 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yw78i8gkf5mgEoB0HkoaDbfxR7A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft Manifest number: 0132 Signing time: Sun 01 Mar 2026 06:33:05 +0000 Manifest this update: Sun 01 Mar 2026 06:33:05 +0000 Manifest next update: Sun 08 Mar 2026 06:33:05 +0000 Files and hashes: 1: Yw78i8gkf5mgEoB0HkoaDbfxR7A.crl (hash: AqdQpUZwIfy+z6MrIMSqx18XHx0rL5WU4Mnaj6eBF9I=) 2: 7CE4326245B511EFBAC06E1EC4F9AE02.roa (hash: EhK8/xLXAq8HktQOYDtYXFFFetl+/ika/P4aOFY5JJ8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.crl rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yw78i8gkf5mgEoB0HkoaDbfxR7A.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 06:33:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 309 (0x135) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB629, serialNumber=630EFC8BC8247F99A01280741E4A1A0DB7F147B0 Validity Not Before: Mar 1 06:33:05 2026 GMT Not After : Mar 8 06:33:05 2026 GMT Subject: CN=69a3dda1-aedf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:c0:2e:38:c8:9a:b2:6d:21:cd:46:63:16:29: c7:10:b0:79:cf:b8:50:68:2f:10:02:57:30:e7:e0: 40:ab:ed:81:43:22:c5:4f:0b:2b:a4:3f:dc:66:3a: 9f:c4:12:8a:62:a8:91:ac:f4:e7:ab:fe:4e:29:9e: d8:14:8b:22:ee:50:d5:56:32:fa:f4:cd:2e:ec:f1: bb:f0:51:83:de:9e:84:98:21:c7:d4:bb:ac:f0:e0: c8:78:db:4f:f4:b7:85:3c:db:d8:fd:a5:92:42:7a: 70:bc:b1:98:e0:1f:dd:9a:a6:8c:a9:4d:51:79:36: c2:08:98:01:be:52:19:b8:ac:8d:28:2d:ff:cf:24: df:bb:54:aa:19:29:a0:79:94:cd:dc:4d:fc:ec:b2: 02:e1:f8:b1:de:e6:fb:3e:f5:10:24:a4:62:bc:dc: a0:a2:bc:6d:93:0a:51:97:b3:6f:17:20:34:09:92: 8f:72:60:7e:55:bc:2d:1a:f0:4a:d8:a2:5e:6d:dc: dd:1c:d7:c5:d6:bb:76:4d:ff:8f:e1:7d:01:0c:e5: 22:ad:79:67:d9:93:58:f0:39:30:15:73:df:ce:26: 82:e3:58:ae:6a:1d:a7:e3:63:ea:d2:c8:99:22:d7: 65:70:84:ff:9e:53:5e:1a:16:ec:8b:d3:ff:54:b6: 24:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:AD:B9:FA:C6:BB:33:80:80:49:F8:8A:DB:DB:57:BD:BF:58:A6:40 X509v3 Authority Key Identifier: keyid:63:0E:FC:8B:C8:24:7F:99:A0:12:80:74:1E:4A:1A:0D:B7:F1:47:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yw78i8gkf5mgEoB0HkoaDbfxR7A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:4d:d5:a3:56:4e:aa:f0:10:5a:d8:90:4c:cc:4a:98:c8:f4: b9:7b:a9:7f:6a:47:09:70:bd:86:38:e0:bb:f3:5f:76:73:8b: 0a:e2:a4:5a:52:08:70:81:e6:ed:5e:02:a4:24:78:a1:62:8c: 85:ea:4e:ea:a3:ca:4a:ca:a1:d8:82:24:46:ec:5c:ad:fa:74: 19:69:f3:cd:92:a7:4f:36:fe:8e:bf:3d:6c:69:38:aa:70:ba: a5:9c:2e:3b:7e:a7:39:66:dd:d3:44:85:e1:77:6c:79:c4:1c: a4:d6:e9:72:6d:13:c0:e3:95:a0:56:72:0a:e3:34:ae:e1:a2: 9b:ec:31:24:d3:fd:fa:23:48:b0:11:bd:f6:23:26:65:06:4d: 8d:94:54:f6:c3:43:25:7d:33:c2:f9:11:63:b5:cf:08:74:a7: 81:81:5f:3a:d2:c2:07:75:35:ba:17:14:b3:e3:d2:1c:5a:ab: 3d:f8:c4:82:ff:02:a5:df:b4:5f:1d:35:68:02:08:1a:d4:66: f4:6c:88:ff:5c:c1:7b:01:f1:5e:fe:bf:bc:3f:aa:90:e8:aa: b2:95:53:41:93:80:b9:55:17:ea:d3:c7:8d:70:c2:4c:13:ba: 73:08:1d:f3:4d:c6:22:17:2d:c0:d9:31:e7:a3:46:61:01:2f: fd:2f:0e:3c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICATUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkI2MjkxMTAvBgNVBAUTKDYzMEVGQzhCQzgyNDdGOTlBMDEyODA3NDFFNEExQTBE QjdGMTQ3QjAwHhcNMjYwMzAxMDYzMzA1WhcNMjYwMzA4MDYzMzA1WjAYMRYwFAYD VQQDEw02OWEzZGRhMS1hZWRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn8AuOMiasm0hzUZjFinHELB5z7hQaC8QAlcw5+BAq+2BQyLFTwsrpD/cZjqf xBKKYqiRrPTnq/5OKZ7YFIsi7lDVVjL69M0u7PG78FGD3p6EmCHH1Lus8ODIeNtP 9LeFPNvY/aWSQnpwvLGY4B/dmqaMqU1ReTbCCJgBvlIZuKyNKC3/zyTfu1SqGSmg eZTN3E387LIC4fix3ub7PvUQJKRivNygorxtkwpRl7NvFyA0CZKPcmB+VbwtGvBK 2KJebdzdHNfF1rt2Tf+P4X0BDOUirXln2ZNY8DkwFXPfziaC41iuah2n42Pq0siZ ItdlcIT/nlNeGhbsi9P/VLYk7QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFA6tufrG uzOAgEn4itvbV72/WKZAMB8GA1UdIwQYMBaAFGMO/IvIJH+ZoBKAdB5KGg238Uew MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjYyOS9FMkNGOTQwQTQ1 QjQxMUVGOEZEQjc0MURDNEY5QUUwMi9Zdzc4aThna2Y1bWdFb0IwSGtvYURiZnhS N0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1l3NzhpOGdrZjVtZ0VvQjBIa29hRGJmeFI3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjYyOS9FMkNGOTQwQTQ1QjQxMUVGOEZEQjc0MURDNEY5QUUwMi9Zdzc4aThna2Y1 bWdFb0IwSGtvYURiZnhSN0EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEADU3Vo1ZOqvAQWtiQTMxKmMj0uXupf2pHCXC9hjjgu/NfdnOLCuKkWlIIcIHm 7V4CpCR4oWKMhepO6qPKSsqh2IIkRuxcrfp0GWnzzZKnTzb+jr89bGk4qnC6pZwu O36nOWbd00SF4XdsecQcpNbpcm0TwOOVoFZyCuM0ruGim+wxJNP9+iNIsBG99iMm ZQZNjZRU9sNDJX0zwvkRY7XPCHSngYFfOtLCB3U1uhcUs+PSHFqrPfjEgv8Cpd+0 Xx01aAIIGtRm9GyI/1zBewHxXv6/vD+qkOiqspVTQZOAuVUX6tPHjXDCTBO6cwgd 803GIhctwNkx56NGYQEv/S8OPA== -----END CERTIFICATE-----Generated at Mon Mar 2 00:51:18 2026 by rpki-client