$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.mft File: 2YRcGequkJIocqDK_QUfFmFPhK8.mft (raw, json) Hash identifier: 6DAFIe7KzQq+aUisHX1dnf6ei+03Vfh4D9E3ErC29gA= Subject key identifier: E3:0E:72:66:6A:BC:68:CD:A1:47:BD:71:7C:EB:09:0E:66:E3:A5:CB Authority key identifier: D9:84:5C:19:EA:AE:90:92:28:72:A0:CA:FD:05:1F:16:61:4F:84:AF Certificate issuer: /CN=A91C6BF0/serialNumber=D9845C19EAAE90922872A0CAFD051F16614F84AF Certificate serial: 0EA5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2YRcGequkJIocqDK_QUfFmFPhK8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.mft Manifest number: 10BA Signing time: Mon 02 Mar 2026 02:45:45 +0000 Manifest this update: Mon 02 Mar 2026 02:45:43 +0000 Manifest next update: Mon 09 Mar 2026 02:45:43 +0000 Files and hashes: 1: 2YRcGequkJIocqDK_QUfFmFPhK8.crl (hash: TxrHAoWlAE6wtgsYhTsmZN9S0kkZx4difVpmODMTqDc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.crl rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2YRcGequkJIocqDK_QUfFmFPhK8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:45:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3749 (0xea5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6BF0, serialNumber=D9845C19EAAE90922872A0CAFD051F16614F84AF Validity Not Before: Mar 2 02:45:43 2026 GMT Not After : Mar 9 02:45:43 2026 GMT Subject: CN=69a4f9d8-b984 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:b4:f8:4e:b7:4b:3d:20:9a:b3:aa:49:c5:1d: ca:17:19:45:f4:bf:3f:72:aa:1c:e5:9a:ea:00:7a: cb:3f:c1:d4:a5:db:e6:8b:9c:f7:35:24:21:ca:cb: 38:50:5c:3c:45:80:50:e5:80:3f:a3:3f:3c:06:55: 57:15:e3:cc:8f:5d:dc:c9:14:d3:0c:e8:4e:e8:91: ef:7c:d0:5f:d3:c6:7c:14:b5:d9:d1:80:ca:5f:fa: 74:63:ff:47:47:d3:eb:a0:04:e2:40:b9:f3:dc:c9: 3d:43:ea:fa:58:2d:72:fd:80:4f:ab:5f:29:b0:c9: a4:ea:4c:6c:0d:e1:30:42:00:07:34:1a:b4:45:7f: 2e:ca:6b:5e:95:28:c8:7b:6f:ce:e6:7f:e1:ac:ee: 6d:6c:9e:c6:7e:64:58:3a:2d:9a:6b:2d:0b:36:d8: e0:7e:7a:41:4f:c0:22:35:2a:d2:6a:de:6b:74:1d: 1b:c4:21:8c:16:23:da:c6:0b:f4:5f:6a:c4:1d:20: b0:c0:1c:0e:55:0a:ab:50:b1:19:92:95:f6:99:4a: 43:c3:2c:4f:72:d2:30:8a:78:90:46:72:e5:ab:4f: ac:91:c4:37:0b:85:0e:26:2d:2b:91:a0:6f:73:c5: 4a:f4:e1:ac:9d:31:e6:4b:eb:2e:b0:5c:f3:74:67: 36:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:0E:72:66:6A:BC:68:CD:A1:47:BD:71:7C:EB:09:0E:66:E3:A5:CB X509v3 Authority Key Identifier: keyid:D9:84:5C:19:EA:AE:90:92:28:72:A0:CA:FD:05:1F:16:61:4F:84:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2YRcGequkJIocqDK_QUfFmFPhK8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:0d:c5:bc:8b:c5:5e:e2:c0:43:cd:34:cf:96:34:fb:e5:a6: 3e:e8:14:18:7a:ea:88:86:7f:93:66:3c:b0:23:da:ca:1f:df: b1:c2:7d:25:23:0b:25:c7:63:f3:92:7b:ae:e2:ec:43:0b:5c: 49:dc:cc:4c:f8:80:49:dc:29:1e:ba:67:94:dd:74:f3:86:e7: 8f:71:ff:44:f5:4a:fb:d9:e4:40:ee:4f:3e:2a:96:34:ff:76: 0f:49:3c:5e:c5:53:ca:15:de:a5:fd:53:8e:5d:7f:2b:68:4f: 44:52:33:82:40:27:77:c9:ed:a7:99:fc:08:33:b3:66:aa:b0: ac:6b:c0:04:d3:ed:c7:bf:56:43:b3:86:d4:da:63:96:5f:20: 74:41:6e:55:9a:f4:94:a1:f9:a9:f8:fb:b4:91:5d:64:0f:04: ed:d9:b0:21:84:c2:82:ef:eb:ac:3e:78:fc:be:8b:3d:a2:94: 83:3b:13:0d:a3:29:1d:59:70:72:9b:08:76:5c:09:74:83:6f: ef:9e:c7:9d:e0:11:00:29:26:fe:5f:66:d9:7a:dc:7d:85:29: 8a:3c:03:a0:98:b4:2b:f6:b5:d8:df:49:5d:32:67:47:69:23: 7a:2a:97:54:ce:b9:98:50:99:5c:38:df:f7:7e:6a:63:a9:85: 39:d5:a5:cf -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDqUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzZCRjAxMTAvBgNVBAUTKEQ5ODQ1QzE5RUFBRTkwOTIyODcyQTBDQUZEMDUxRjE2 NjE0Rjg0QUYwHhcNMjYwMzAyMDI0NTQzWhcNMjYwMzA5MDI0NTQzWjAYMRYwFAYD VQQDEw02OWE0ZjlkOC1iOTg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1bT4TrdLPSCas6pJxR3KFxlF9L8/cqoc5ZrqAHrLP8HUpdvmi5z3NSQhyss4 UFw8RYBQ5YA/oz88BlVXFePMj13cyRTTDOhO6JHvfNBf08Z8FLXZ0YDKX/p0Y/9H R9ProATiQLnz3Mk9Q+r6WC1y/YBPq18psMmk6kxsDeEwQgAHNBq0RX8uymtelSjI e2/O5n/hrO5tbJ7GfmRYOi2aay0LNtjgfnpBT8AiNSrSat5rdB0bxCGMFiPaxgv0 X2rEHSCwwBwOVQqrULEZkpX2mUpDwyxPctIwiniQRnLlq0+skcQ3C4UOJi0rkaBv c8VK9OGsnTHmS+susFzzdGc2uQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOMOcmZq vGjNoUe9cXzrCQ5m46XLMB8GA1UdIwQYMBaAFNmEXBnqrpCSKHKgyv0FHxZhT4Sv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNkJGMC8xNDkxOTc0QUFF QkIxMUU5OEEzOTBCNTlDNEY5QUUwMi8yWVJjR2VxdWtKSW9jcURLX1FVZkZtRlBo SzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJZUmNHZXF1a0pJb2NxREtfUVVmRm1GUGhLOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NkJGMC8xNDkxOTc0QUFFQkIxMUU5OEEzOTBCNTlDNEY5QUUwMi8yWVJjR2VxdWtK SW9jcURLX1FVZkZtRlBoSzgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAXA3FvIvFXuLAQ800z5Y0++WmPugUGHrqiIZ/k2Y8sCPayh/fscJ9JSMLJcdj 85J7ruLsQwtcSdzMTPiASdwpHrpnlN1084bnj3H/RPVK+9nkQO5PPiqWNP92D0k8 XsVTyhXepf1Tjl1/K2hPRFIzgkAnd8ntp5n8CDOzZqqwrGvABNPtx79WQ7OG1Npj ll8gdEFuVZr0lKH5qfj7tJFdZA8E7dmwIYTCgu/rrD54/L6LPaKUgzsTDaMpHVlw cpsIdlwJdINv757HneARACkm/l9m2XrcfYUpijwDoJi0K/a12N9JXTJnR2kjeiqX VM65mFCZXDjf935qY6mFOdWlzw== -----END CERTIFICATE-----Generated at Mon Mar 2 13:41:13 2026 by rpki-client