$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.mft File: yCFQSaXsETZftnQLghcGdiaArRc.mft (raw, json) Hash identifier: AJqeVdw3pNv2aCXbFfXdLTKMmzx83ipF92CSmcX/9oY= Subject key identifier: 7F:63:1B:39:22:00:01:C1:B5:93:D1:98:B2:9E:FB:17:10:DA:9A:55 Authority key identifier: C8:21:50:49:A5:EC:11:36:5F:B6:74:0B:82:17:06:76:26:80:AD:17 Certificate issuer: /CN=A91DC459/serialNumber=C8215049A5EC11365FB6740B821706762680AD17 Certificate serial: 0162 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCFQSaXsETZftnQLghcGdiaArRc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.mft Manifest number: 0160 Signing time: Sun 01 Mar 2026 05:55:17 +0000 Manifest this update: Sun 01 Mar 2026 05:55:17 +0000 Manifest next update: Sun 08 Mar 2026 05:55:17 +0000 Files and hashes: 1: yCFQSaXsETZftnQLghcGdiaArRc.crl (hash: QPkgAzmQbsskFxyY/TYxCtebcZhvqxx0349RMAgNeV8=) 2: 264C45FAFA3F11EE8A884F09C4F9AE02.roa (hash: 5Qk7wqUj4bSez6DKvrGbvLq6LTkbYNIBEPZBlcBLEEY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.crl rsync://rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCFQSaXsETZftnQLghcGdiaArRc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 05:55:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 354 (0x162) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC459, serialNumber=C8215049A5EC11365FB6740B821706762680AD17 Validity Not Before: Mar 1 05:55:17 2026 GMT Not After : Mar 8 05:55:17 2026 GMT Subject: CN=69a3d4c5-0db3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:98:9f:24:c6:b8:80:64:1f:a1:f9:cf:0b:a0: 08:35:2f:6f:57:81:d0:2d:4f:9f:ea:a7:0a:12:a7: b1:84:22:64:9d:8e:13:80:65:ad:07:e1:bb:02:5e: bd:d9:26:cb:5a:ed:97:53:a7:45:1e:74:0e:c7:bb: 61:b8:13:06:5a:94:61:76:bd:cf:57:99:16:4d:a7: c5:11:c5:df:fc:0c:27:82:a4:11:ab:1d:7f:50:8d: 00:11:ed:03:96:1b:0d:ad:d6:ba:f3:0d:1c:8e:8a: 8a:ee:27:dd:34:52:77:29:aa:05:c1:74:27:e4:e6: 2f:a9:f1:05:f3:95:1e:6f:84:e0:af:e8:34:b2:3c: b5:d7:f4:e8:87:d5:c2:49:6b:32:a2:7f:cf:f7:ec: 4d:fa:b2:de:f6:ee:eb:25:94:5f:58:da:b0:33:45: 46:f7:ce:36:0f:ac:ba:26:5f:f6:33:a6:d2:a9:9c: 42:46:fb:3f:92:17:b1:d0:cd:30:6a:7f:14:7c:06: f2:bd:df:55:7e:ae:74:84:d7:b8:fe:f5:a3:3f:07: f3:4b:16:f8:c0:9f:c0:54:87:8d:31:10:19:48:e9: 74:6e:7f:db:00:7b:67:2a:40:b6:cc:99:97:62:30: 5a:36:a6:00:bb:4c:8f:62:da:aa:98:86:9b:eb:3c: ed:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:63:1B:39:22:00:01:C1:B5:93:D1:98:B2:9E:FB:17:10:DA:9A:55 X509v3 Authority Key Identifier: keyid:C8:21:50:49:A5:EC:11:36:5F:B6:74:0B:82:17:06:76:26:80:AD:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCFQSaXsETZftnQLghcGdiaArRc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:d3:88:eb:cd:b8:63:72:8b:32:cd:a9:7b:d1:10:14:2b:99: 76:1d:a6:d4:91:c8:23:c4:d2:8b:13:e2:52:fd:53:39:66:7d: 38:6a:30:bc:b6:f8:e1:9a:f7:46:42:c4:b8:8c:88:a7:76:8c: ce:bb:42:d4:82:c7:63:7a:39:d5:c3:37:4d:37:07:02:06:1c: df:d8:20:87:bb:d2:e2:18:60:64:9e:5b:2e:23:22:c2:37:27: 3d:fc:d8:37:e5:19:5e:b7:50:06:3d:43:c3:ed:46:ab:69:5c: d2:0a:2f:54:e1:e7:4c:4d:e6:93:84:a8:0f:8c:56:50:9c:be: 14:2c:74:92:ea:ea:a0:0a:53:e5:63:7f:59:4c:d1:05:56:62: 42:35:7a:10:d0:06:28:6f:d3:1e:ea:0e:14:4f:6c:d3:48:93: 62:0d:c2:3f:7e:52:9b:4d:aa:ff:fb:1d:61:7a:71:a5:ab:a0: cd:70:6a:0a:eb:8f:ec:9f:9a:e6:c3:c3:ba:87:4f:54:6a:a5: fa:dd:37:6f:2a:20:c1:67:39:67:84:26:39:59:9b:57:c7:cd: f6:96:f1:4b:d5:35:da:e6:13:52:c4:dd:9a:e3:da:80:83:4f: a5:bc:3b:4a:58:4e:ef:89:70:6f:6a:50:99:94:08:40:54:af: a3:1c:00:94 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAWIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM0NTkxMTAvBgNVBAUTKEM4MjE1MDQ5QTVFQzExMzY1RkI2NzQwQjgyMTcwNjc2 MjY4MEFEMTcwHhcNMjYwMzAxMDU1NTE3WhcNMjYwMzA4MDU1NTE3WjAYMRYwFAYD VQQDEw02OWEzZDRjNS0wZGIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0pifJMa4gGQfofnPC6AINS9vV4HQLU+f6qcKEqexhCJknY4TgGWtB+G7Al69 2SbLWu2XU6dFHnQOx7thuBMGWpRhdr3PV5kWTafFEcXf/AwngqQRqx1/UI0AEe0D lhsNrda68w0cjoqK7ifdNFJ3KaoFwXQn5OYvqfEF85Ueb4Tgr+g0sjy11/Toh9XC SWsyon/P9+xN+rLe9u7rJZRfWNqwM0VG9842D6y6Jl/2M6bSqZxCRvs/khex0M0w an8UfAbyvd9Vfq50hNe4/vWjPwfzSxb4wJ/AVIeNMRAZSOl0bn/bAHtnKkC2zJmX YjBaNqYAu0yPYtqqmIab6zztAQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFH9jGzki AAHBtZPRmLKe+xcQ2ppVMB8GA1UdIwQYMBaAFMghUEml7BE2X7Z0C4IXBnYmgK0X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzQ1OS9BOTM1MDdCQ0Y2 RDUxMUVFQjg3ODNDMUVDNEY5QUUwMi95Q0ZRU2FYc0VUWmZ0blFMZ2hjR2RpYUFy UmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lDRlFTYVhzRVRaZnRuUUxnaGNHZGlhQXJSYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzQ1OS9BOTM1MDdCQ0Y2RDUxMUVFQjg3ODNDMUVDNEY5QUUwMi95Q0ZRU2FYc0VU WmZ0blFMZ2hjR2RpYUFyUmMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEArNOI6824Y3KLMs2pe9EQFCuZdh2m1JHII8TSixPiUv1TOWZ9OGowvLb44Zr3 RkLEuIyIp3aMzrtC1ILHY3o51cM3TTcHAgYc39ggh7vS4hhgZJ5bLiMiwjcnPfzY N+UZXrdQBj1Dw+1Gq2lc0govVOHnTE3mk4SoD4xWUJy+FCx0kurqoApT5WN/WUzR BVZiQjV6ENAGKG/THuoOFE9s00iTYg3CP35Sm02q//sdYXpxpaugzXBqCuuP7J+a 5sPDuodPVGql+t03byogwWc5Z4QmOVmbV8fN9pbxS9U12uYTUsTdmuPagINPpbw7 SlhO74lwb2pQmZQIQFSvoxwAlA== -----END CERTIFICATE-----Generated at Sun Mar 1 23:55:23 2026 by rpki-client