$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE352/C8E22E8A011611EC9CCDE722C4F9AE02/yqbrmbP-Dvtl048Vsqrk3Dnasx0.mft File: yqbrmbP-Dvtl048Vsqrk3Dnasx0.mft (raw, json) Hash identifier: bQgwZZu4c9cGt13HBLuKfJ1+leZW3USNXbj7BrPkz08= Subject key identifier: E5:3B:D2:AE:3F:F1:FF:DB:57:20:3D:E4:AE:B4:6A:AC:DF:62:0D:9A Authority key identifier: CA:A6:EB:99:B3:FE:0E:FB:65:D3:8F:15:B2:AA:E4:DC:39:DA:B3:1D Certificate issuer: /CN=A91DE352/serialNumber=CAA6EB99B3FE0EFB65D38F15B2AAE4DC39DAB31D Certificate serial: 05B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yqbrmbP-Dvtl048Vsqrk3Dnasx0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE352/C8E22E8A011611EC9CCDE722C4F9AE02/yqbrmbP-Dvtl048Vsqrk3Dnasx0.mft Manifest number: 05AE Signing time: Mon 02 Mar 2026 01:32:37 +0000 Manifest this update: Mon 02 Mar 2026 01:32:36 +0000 Manifest next update: Mon 09 Mar 2026 01:32:36 +0000 Files and hashes: 1: yqbrmbP-Dvtl048Vsqrk3Dnasx0.crl (hash: zV2kYoTYWnTidvdgR1dBWh5ceayObj7v9UfPUBTfQdo=) 2: F1C77A3C73E711ECA415F87FC4F9AE02.roa (hash: ndTpDZlPiwVPJ1O58HOrjE/VLnQNPEmSoyFLTx+c11g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE352/C8E22E8A011611EC9CCDE722C4F9AE02/yqbrmbP-Dvtl048Vsqrk3Dnasx0.crl rsync://rpki.apnic.net/member_repository/A91DE352/C8E22E8A011611EC9CCDE722C4F9AE02/yqbrmbP-Dvtl048Vsqrk3Dnasx0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yqbrmbP-Dvtl048Vsqrk3Dnasx0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:32:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1462 (0x5b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE352, serialNumber=CAA6EB99B3FE0EFB65D38F15B2AAE4DC39DAB31D Validity Not Before: Mar 2 01:32:36 2026 GMT Not After : Mar 9 01:32:36 2026 GMT Subject: CN=69a4e8b4-d4be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:1e:3c:ef:44:d8:a0:41:f4:42:a7:f2:ff:a2: 9f:7b:45:8b:07:5a:d3:62:f2:b9:a6:90:50:db:f7: e2:ec:34:d1:8f:95:dd:2c:a4:5a:55:a6:7a:f8:e6: 7b:3e:53:63:27:36:88:f0:77:7c:52:df:9e:6a:b0: 4b:04:59:7b:e8:29:c9:c3:d0:ac:2e:de:11:12:0a: 99:4e:d7:46:c3:82:bd:21:6a:f7:30:e4:ef:a4:84: b3:52:10:fe:da:79:ec:f3:f5:cd:c8:5f:4b:53:1c: d7:a6:34:ca:4f:95:63:44:88:08:64:35:e5:5b:2f: a0:db:56:0a:91:3c:54:80:10:aa:1f:00:04:8d:36: 66:d8:4f:6f:05:9e:76:5a:1b:70:00:bb:12:99:ca: f1:3d:e0:d9:45:29:76:a3:88:98:dc:48:fb:f1:03: cb:e4:14:7c:cd:14:9b:74:bb:0b:dd:14:bc:46:1f: 42:a9:4f:ac:35:4c:f3:75:90:19:1e:2b:bf:6c:96: 53:b6:b7:41:d7:4f:6a:a0:7e:62:4e:e3:9b:f2:64: af:81:0d:a2:8f:2a:2b:3a:7e:73:d2:6c:f9:69:49: cf:8b:b2:12:26:d1:e4:9b:57:e3:bd:c4:8f:9e:59: 81:f7:5b:ec:dd:52:ac:14:f1:92:14:09:f5:5a:09: 42:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:3B:D2:AE:3F:F1:FF:DB:57:20:3D:E4:AE:B4:6A:AC:DF:62:0D:9A X509v3 Authority Key Identifier: keyid:CA:A6:EB:99:B3:FE:0E:FB:65:D3:8F:15:B2:AA:E4:DC:39:DA:B3:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE352/C8E22E8A011611EC9CCDE722C4F9AE02/yqbrmbP-Dvtl048Vsqrk3Dnasx0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yqbrmbP-Dvtl048Vsqrk3Dnasx0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE352/C8E22E8A011611EC9CCDE722C4F9AE02/yqbrmbP-Dvtl048Vsqrk3Dnasx0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:fa:31:3e:28:a6:0e:5e:99:7e:8f:93:4a:8e:48:c1:f1:ff: 7e:56:7a:6e:a1:bc:1f:b0:a3:60:6b:ef:5f:a6:c6:83:ef:88: c7:5c:2b:dc:59:9c:89:a7:16:c2:47:e5:49:e4:50:03:06:5d: f5:d2:33:da:5b:5b:a2:da:83:86:be:94:af:c3:3a:78:71:a8: a6:73:4c:35:17:c2:84:5a:f6:db:92:88:2a:3e:75:92:b8:05: c8:e2:49:40:c0:bf:f3:d4:d9:02:7e:25:7b:e7:08:b1:c7:73: 4d:cf:87:d6:5f:b4:0f:0e:58:1f:ea:5e:76:d3:15:df:e9:d1: 6b:dd:fa:65:9f:6e:28:3e:b3:9e:e7:77:84:4d:18:7b:5b:8b: 07:ac:19:f5:56:dc:66:2b:7d:c2:73:7e:5e:75:ec:6b:43:aa: 2a:8e:f5:d2:0d:07:26:0e:86:04:2e:05:f1:82:05:87:a2:98: 11:21:c2:6f:ac:d1:d0:48:f7:d5:84:9a:48:07:66:85:5a:f8: a8:ab:c1:53:69:72:e1:c0:d5:1c:5a:07:f9:07:d7:7d:a5:41: 66:c1:e6:8c:5c:98:42:02:ff:9e:de:1c:c9:a8:73:eb:07:61: 46:0d:34:9d:98:e6:ee:e2:14:78:d8:62:6e:5e:2d:c7:c6:a3: 71:4b:e8:f2 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBbYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REUzNTIxMTAvBgNVBAUTKENBQTZFQjk5QjNGRTBFRkI2NUQzOEYxNUIyQUFFNERD MzlEQUIzMUQwHhcNMjYwMzAyMDEzMjM2WhcNMjYwMzA5MDEzMjM2WjAYMRYwFAYD VQQDEw02OWE0ZThiNC1kNGJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlB4870TYoEH0Qqfy/6Kfe0WLB1rTYvK5ppBQ2/fi7DTRj5XdLKRaVaZ6+OZ7 PlNjJzaI8Hd8Ut+earBLBFl76CnJw9CsLt4REgqZTtdGw4K9IWr3MOTvpISzUhD+ 2nns8/XNyF9LUxzXpjTKT5VjRIgIZDXlWy+g21YKkTxUgBCqHwAEjTZm2E9vBZ52 WhtwALsSmcrxPeDZRSl2o4iY3Ej78QPL5BR8zRSbdLsL3RS8Rh9CqU+sNUzzdZAZ Hiu/bJZTtrdB109qoH5iTuOb8mSvgQ2ijyorOn5z0mz5aUnPi7ISJtHkm1fjvcSP nlmB91vs3VKsFPGSFAn1WglCywIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOU70q4/ 8f/bVyA95K60aqzfYg2aMB8GA1UdIwQYMBaAFMqm65mz/g77ZdOPFbKq5Nw52rMd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTM1Mi9DOEUyMkU4QTAx MTYxMUVDOUNDREU3MjJDNEY5QUUwMi95cWJybWJQLUR2dGwwNDhWc3FyazNEbmFz eDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lxYnJtYlAtRHZ0bDA0OFZzcXJrM0RuYXN4MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RTM1Mi9DOEUyMkU4QTAxMTYxMUVDOUNDREU3MjJDNEY5QUUwMi95cWJybWJQLUR2 dGwwNDhWc3FyazNEbmFzeDAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAEvoxPiimDl6Zfo+TSo5IwfH/flZ6bqG8H7CjYGvvX6bGg++Ix1wr3FmciacW wkflSeRQAwZd9dIz2ltbotqDhr6Ur8M6eHGopnNMNRfChFr225KIKj51krgFyOJJ QMC/89TZAn4le+cIscdzTc+H1l+0Dw5YH+pedtMV3+nRa936ZZ9uKD6znud3hE0Y e1uLB6wZ9VbcZit9wnN+XnXsa0OqKo710g0HJg6GBC4F8YIFh6KYESHCb6zR0Ej3 1YSaSAdmhVr4qKvBU2ly4cDVHFoH+QfXfaVBZsHmjFyYQgL/nt4cyahz6wdhRg00 nZjm7uIUeNhibl4tx8ajcUvo8g== -----END CERTIFICATE-----Generated at Mon Mar 2 17:16:35 2026 by rpki-client