$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.mft File: 0ypa3AVCwugXwgK-a3KB6GnReJc.mft (raw, json) Hash identifier: DRxuWnxFsDmCAEGwqzqVKU2EaLrU7xWV05lLw4EL7IM= Subject key identifier: 16:A4:B2:3A:6C:D3:05:A8:15:8E:86:0E:8B:2B:D9:DD:6A:78:2F:0B Authority key identifier: D3:2A:5A:DC:05:42:C2:E8:17:C2:02:BE:6B:72:81:E8:69:D1:78:97 Certificate issuer: /CN=A91E0855/serialNumber=D32A5ADC0542C2E817C202BE6B7281E869D17897 Certificate serial: 014A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0ypa3AVCwugXwgK-a3KB6GnReJc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.mft Manifest number: 013E Signing time: Mon 02 Mar 2026 02:41:57 +0000 Manifest this update: Mon 02 Mar 2026 02:41:55 +0000 Manifest next update: Mon 09 Mar 2026 02:41:55 +0000 Files and hashes: 1: 0ypa3AVCwugXwgK-a3KB6GnReJc.crl (hash: S5ZZBTPkZszJBQR0vZ/uCNPBzaDFCsIaU5Yz0WPRiA4=) 2: 6F723CC0830B11F0B82E836DC4F9AE02.roa (hash: kic2dalBDWVuSnTSKRWGlC83NcfnCjH4W7+pZUZCDAs=) 3: 77D3D4A0FEDA11F0AB7A7279726F56BC.roa (hash: FHfqmVc0DH5T6GrvyUSWpVxXHt1ddRfHNNOxDC51WEY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.crl rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0ypa3AVCwugXwgK-a3KB6GnReJc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:41:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 330 (0x14a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0855, serialNumber=D32A5ADC0542C2E817C202BE6B7281E869D17897 Validity Not Before: Mar 2 02:41:55 2026 GMT Not After : Mar 9 02:41:55 2026 GMT Subject: CN=69a4f8f5-d230 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:0f:f8:5a:a6:e2:1a:cc:47:99:d9:f6:c8:34: 24:19:11:e3:ff:cb:57:16:65:85:aa:28:bc:ad:91: 18:41:f3:33:e3:5f:f3:ee:4c:50:c1:6d:76:37:05: 0a:fc:29:dd:b6:68:57:d4:20:a1:e8:5b:bc:85:fa: 24:d0:eb:84:b0:9a:fb:91:39:70:4a:e6:96:db:d4: 26:a8:b3:a5:10:e6:4c:00:9a:6a:59:1c:f1:24:3e: de:52:e3:a7:46:8e:2d:9a:a1:b5:2e:91:6d:75:83: 6e:7c:5d:57:7d:ea:7e:60:83:46:78:90:df:8f:8b: 12:8f:44:ed:22:f2:11:20:2e:9b:33:59:5d:c2:e8: 62:3e:4f:e9:02:4f:74:b0:5f:e3:9c:7d:e8:a6:13: cf:f9:a2:73:c4:2f:dc:15:2b:28:37:0d:1d:bd:2b: 03:c4:d0:91:27:75:56:95:26:f0:5a:e6:cf:65:60: 34:2a:19:88:15:a6:4c:4b:01:e1:80:dd:7b:a4:fd: 69:c8:86:79:a5:8d:34:c2:02:52:5f:6e:d5:73:2a: 95:9a:ea:d5:58:4e:2b:ec:59:e1:07:f2:93:67:9e: 2e:0d:12:93:34:77:4a:e0:5f:89:98:09:68:98:f5: 22:a8:30:99:f9:b9:74:cd:34:90:7a:51:f5:dd:00: 11:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:A4:B2:3A:6C:D3:05:A8:15:8E:86:0E:8B:2B:D9:DD:6A:78:2F:0B X509v3 Authority Key Identifier: keyid:D3:2A:5A:DC:05:42:C2:E8:17:C2:02:BE:6B:72:81:E8:69:D1:78:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0ypa3AVCwugXwgK-a3KB6GnReJc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:35:43:75:85:eb:51:ff:b7:e9:0e:5a:51:65:3c:91:b3:2b: 10:79:1c:41:0d:50:b8:8a:51:51:75:7f:e8:75:a2:96:1a:7c: 63:1c:ab:5b:76:4a:ad:db:a9:4e:fe:52:d9:4f:08:e8:57:df: 0f:ad:ec:07:fa:50:0c:22:0f:ea:8e:c8:b4:e8:f5:c2:17:46: ba:8b:e8:d2:4f:cc:bf:cc:ca:ae:30:29:c8:92:33:b7:f2:31: b6:97:b6:9e:d5:2f:2a:c9:a5:20:e8:24:35:fd:55:11:77:53: 04:b0:27:53:66:27:58:cc:ff:b4:e9:4e:ea:de:7c:6a:b5:e6: 46:54:8f:59:ca:79:3e:84:80:98:a6:ad:79:41:aa:cf:0f:67: 6c:b9:23:ee:6e:dc:fa:46:f2:aa:88:7e:67:2c:f4:8d:5e:33: 96:9f:6c:94:6d:79:98:3c:5d:55:50:c7:91:02:a7:7e:65:38: 05:11:73:b2:f6:c9:b8:5a:38:ba:e6:b3:c2:a2:f8:8f:02:11: 1f:4a:73:c8:ae:6a:1b:c2:4d:b5:49:32:95:19:59:c4:f4:53: 81:ad:f4:68:a9:dd:07:aa:80:aa:cb:8c:5c:86:5f:82:b7:0d: 5f:bb:0b:85:9a:a8:c7:a6:61:6f:54:6e:c7:4d:88:f0:77:b0: d0:dd:6b:50 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAUowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTA4NTUxMTAvBgNVBAUTKEQzMkE1QURDMDU0MkMyRTgxN0MyMDJCRTZCNzI4MUU4 NjlEMTc4OTcwHhcNMjYwMzAyMDI0MTU1WhcNMjYwMzA5MDI0MTU1WjAYMRYwFAYD VQQDEw02OWE0ZjhmNS1kMjMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtQ/4WqbiGsxHmdn2yDQkGRHj/8tXFmWFqii8rZEYQfMz41/z7kxQwW12NwUK /CndtmhX1CCh6Fu8hfok0OuEsJr7kTlwSuaW29QmqLOlEOZMAJpqWRzxJD7eUuOn Ro4tmqG1LpFtdYNufF1Xfep+YINGeJDfj4sSj0TtIvIRIC6bM1ldwuhiPk/pAk90 sF/jnH3ophPP+aJzxC/cFSsoNw0dvSsDxNCRJ3VWlSbwWubPZWA0KhmIFaZMSwHh gN17pP1pyIZ5pY00wgJSX27VcyqVmurVWE4r7FnhB/KTZ54uDRKTNHdK4F+JmAlo mPUiqDCZ+bl0zTSQelH13QAREQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBaksjps 0wWoFY6GDosr2d1qeC8LMB8GA1UdIwQYMBaAFNMqWtwFQsLoF8ICvmtygehp0XiX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMDg1NS81MDRDRkZFMjQ0 OTYxMUVGOEU4NEU2M0RDNEY5QUUwMi8weXBhM0FWQ3d1Z1h3Z0stYTNLQjZHblJl SmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzB5cGEzQVZDd3VnWHdnSy1hM0tCNkduUmVKYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MDg1NS81MDRDRkZFMjQ0OTYxMUVGOEU4NEU2M0RDNEY5QUUwMi8weXBhM0FWQ3d1 Z1h3Z0stYTNLQjZHblJlSmMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAATVDdYXrUf+36Q5aUWU8kbMrEHkcQQ1QuIpRUXV/6HWilhp8YxyrW3ZKrdup Tv5S2U8I6FffD63sB/pQDCIP6o7ItOj1whdGuovo0k/Mv8zKrjApyJIzt/Ixtpe2 ntUvKsmlIOgkNf1VEXdTBLAnU2YnWMz/tOlO6t58arXmRlSPWcp5PoSAmKateUGq zw9nbLkj7m7c+kbyqoh+Zyz0jV4zlp9slG15mDxdVVDHkQKnfmU4BRFzsvbJuFo4 uuazwqL4jwIRH0pzyK5qG8JNtUkylRlZxPRTga30aKndB6qAqsuMXIZfgrcNX7sL hZqox6Zhb1Rux02I8Hew0N1rUA== -----END CERTIFICATE-----Generated at Mon Mar 2 14:21:14 2026 by rpki-client