$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5C25/687A10A6765A11E99D01E42EC4F9AE02/y_Kp2oisCPjVEG3svXLW-gnIGOk.mft File: y_Kp2oisCPjVEG3svXLW-gnIGOk.mft (raw, json) Hash identifier: b39Okbq91VIOEeTJdf5V3M0nAvZ01GBhtQBxR4eGRxU= Subject key identifier: 1C:54:E4:95:53:18:E8:B7:E9:87:C2:06:11:97:5D:A9:8C:1E:D1:B5 Authority key identifier: CB:F2:A9:DA:88:AC:08:F8:D5:10:6D:EC:BD:72:D6:FA:09:C8:18:E9 Certificate issuer: /CN=A91D5C25/serialNumber=CBF2A9DA88AC08F8D5106DECBD72D6FA09C818E9 Certificate serial: 0FB5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y_Kp2oisCPjVEG3svXLW-gnIGOk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5C25/687A10A6765A11E99D01E42EC4F9AE02/y_Kp2oisCPjVEG3svXLW-gnIGOk.mft Manifest number: 0FA9 Signing time: Mon 02 Mar 2026 00:32:00 +0000 Manifest this update: Mon 02 Mar 2026 00:31:58 +0000 Manifest next update: Mon 09 Mar 2026 00:31:58 +0000 Files and hashes: 1: y_Kp2oisCPjVEG3svXLW-gnIGOk.crl (hash: 1qQmDQl6DkNE3dYRqdLEO6ahUJR8rO8SKLvjfhPgPZw=) 2: 4ECF0A4C765C11E9A01A6E34C4F9AE02.roa (hash: xbMUHktmtqoO4YD2xQk5VmAmqFtIHFV5OiNCpWlNa0Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5C25/687A10A6765A11E99D01E42EC4F9AE02/y_Kp2oisCPjVEG3svXLW-gnIGOk.crl rsync://rpki.apnic.net/member_repository/A91D5C25/687A10A6765A11E99D01E42EC4F9AE02/y_Kp2oisCPjVEG3svXLW-gnIGOk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y_Kp2oisCPjVEG3svXLW-gnIGOk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:31:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4021 (0xfb5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5C25, serialNumber=CBF2A9DA88AC08F8D5106DECBD72D6FA09C818E9 Validity Not Before: Mar 2 00:31:58 2026 GMT Not After : Mar 9 00:31:58 2026 GMT Subject: CN=69a4da80-7098 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:f5:b4:f1:dd:61:ad:20:97:27:35:e9:31:9b: b9:c8:19:dd:74:4e:6b:7e:dd:6e:52:90:b0:d8:0b: 1c:0d:78:3b:b5:50:d5:e9:78:3f:92:69:fd:4c:ac: da:08:55:8a:62:53:90:05:dc:65:97:8b:34:e8:7b: 7f:3d:da:31:c6:14:d3:54:6d:26:e3:96:9d:08:fa: 2f:59:c7:30:63:6c:60:67:50:af:ab:b9:8c:d8:cc: 14:3f:53:d1:dc:6b:93:77:b2:97:98:fe:d2:23:a4: 6d:0e:21:dd:f5:fd:c8:3a:b5:d4:d2:56:10:df:d0: f1:93:53:30:62:4c:2b:10:a7:9c:40:ed:15:13:eb: 5d:cd:50:05:fe:38:45:73:eb:43:41:4b:44:a7:13: cb:21:01:b7:5a:51:36:5f:59:80:12:6d:c1:da:9d: cf:ee:cf:36:a4:dc:54:fb:8f:72:3b:16:55:91:e5: a3:01:43:8d:b3:cf:fe:6e:c7:f1:48:6b:45:6b:8e: d5:15:f7:02:0b:0b:26:16:09:b2:84:61:e9:d4:15: 02:4a:a8:2a:f3:24:e8:17:42:59:ea:e0:d6:a4:2f: 46:de:be:df:42:27:5a:b5:a6:ec:50:9d:08:63:57: 41:c7:fd:2d:c3:18:b4:4f:8c:ef:c5:df:96:32:a2: 8c:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:54:E4:95:53:18:E8:B7:E9:87:C2:06:11:97:5D:A9:8C:1E:D1:B5 X509v3 Authority Key Identifier: keyid:CB:F2:A9:DA:88:AC:08:F8:D5:10:6D:EC:BD:72:D6:FA:09:C8:18:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5C25/687A10A6765A11E99D01E42EC4F9AE02/y_Kp2oisCPjVEG3svXLW-gnIGOk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y_Kp2oisCPjVEG3svXLW-gnIGOk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5C25/687A10A6765A11E99D01E42EC4F9AE02/y_Kp2oisCPjVEG3svXLW-gnIGOk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:d2:3f:68:48:98:cd:62:18:08:31:0f:49:92:af:8a:3c:0e: 4b:e8:34:83:62:a8:76:5b:d6:6d:96:8f:2c:7a:fe:52:62:fe: 2a:90:07:82:25:5d:30:f4:a6:97:58:48:07:c9:b9:a3:84:30: 47:c3:69:a8:e8:43:ce:40:51:b8:86:23:cc:97:79:9d:86:40: d1:13:cb:14:21:66:19:7f:4f:8a:99:90:d6:c8:31:91:b9:38: 06:b6:92:df:fa:ea:12:0d:94:a8:be:a8:d1:f7:68:ca:47:2f: b5:f7:bc:27:71:16:a7:68:95:dd:8c:00:8b:3c:18:6c:e2:9e: f4:37:54:e4:da:08:3d:9d:aa:57:8d:04:08:28:0e:ec:87:fb: 9d:66:45:c8:c1:e0:49:da:41:e8:d0:f7:1c:b5:dd:82:d7:b3: 04:ea:7b:21:0d:30:17:ca:f3:50:ca:f3:f2:3e:e1:78:65:30: 08:68:fe:64:d6:d5:9b:cb:ad:70:16:83:3a:7d:8e:47:32:ba: 31:14:fc:74:3a:46:b0:03:9f:9c:be:8e:be:a4:48:e8:93:75: f3:97:70:7c:b8:42:ee:94:91:ee:64:1a:14:c3:23:f4:76:e4: a0:cc:d5:74:04:d5:8e:21:d1:57:22:ed:c1:7d:c2:b2:8e:72: ed:f8:24:21 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICD7UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDVDMjUxMTAvBgNVBAUTKENCRjJBOURBODhBQzA4RjhENTEwNkRFQ0JENzJENkZB MDlDODE4RTkwHhcNMjYwMzAyMDAzMTU4WhcNMjYwMzA5MDAzMTU4WjAYMRYwFAYD VQQDEw02OWE0ZGE4MC03MDk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvvW08d1hrSCXJzXpMZu5yBnddE5rft1uUpCw2AscDXg7tVDV6Xg/kmn9TKza CFWKYlOQBdxll4s06Ht/PdoxxhTTVG0m45adCPovWccwY2xgZ1Cvq7mM2MwUP1PR 3GuTd7KXmP7SI6RtDiHd9f3IOrXU0lYQ39Dxk1MwYkwrEKecQO0VE+tdzVAF/jhF c+tDQUtEpxPLIQG3WlE2X1mAEm3B2p3P7s82pNxU+49yOxZVkeWjAUONs8/+bsfx SGtFa47VFfcCCwsmFgmyhGHp1BUCSqgq8yToF0JZ6uDWpC9G3r7fQidatabsUJ0I Y1dBx/0twxi0T4zvxd+WMqKMnQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBxU5JVT GOi36YfCBhGXXamMHtG1MB8GA1UdIwQYMBaAFMvyqdqIrAj41RBt7L1y1voJyBjp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENUMyNS82ODdBMTBBNjc2 NUExMUU5OUQwMUU0MkVDNEY5QUUwMi95X0twMm9pc0NQalZFRzNzdlhMVy1nbklH T2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lfS3Ayb2lzQ1BqVkVHM3N2WExXLWduSUdPay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NUMyNS82ODdBMTBBNjc2NUExMUU5OUQwMUU0MkVDNEY5QUUwMi95X0twMm9pc0NQ alZFRzNzdlhMVy1nbklHT2subWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAaNI/aEiYzWIYCDEPSZKvijwOS+g0g2KodlvWbZaPLHr+UmL+KpAHgiVdMPSm l1hIB8m5o4QwR8NpqOhDzkBRuIYjzJd5nYZA0RPLFCFmGX9PipmQ1sgxkbk4BraS 3/rqEg2UqL6o0fdoykcvtfe8J3EWp2iV3YwAizwYbOKe9DdU5NoIPZ2qV40ECCgO 7If7nWZFyMHgSdpB6ND3HLXdgtezBOp7IQ0wF8rzUMrz8j7heGUwCGj+ZNbVm8ut cBaDOn2ORzK6MRT8dDpGsAOfnL6OvqRI6JN185dwfLhC7pSR7mQaFMMj9HbkoMzV dATVjiHRVyLtwX3Cso5y7fgkIQ== -----END CERTIFICATE-----Generated at Mon Mar 2 15:01:21 2026 by rpki-client