$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.mft File: yAcP0GGoUf-K7eDeDDYH7rmP9wE.mft (raw, json) Hash identifier: grYmY+rSeug7oOMLUBoYdWfc5galSu7Ysyh1H+4ji6k= Subject key identifier: 8B:FD:B4:4A:BB:1C:3F:C3:61:B8:1A:01:A6:5F:64:9F:C2:E4:63:D3 Authority key identifier: C8:07:0F:D0:61:A8:51:FF:8A:ED:E0:DE:0C:36:07:EE:B9:8F:F7:01 Certificate issuer: /CN=A91E4D3D/serialNumber=C8070FD061A851FF8AEDE0DE0C3607EEB98FF701 Certificate serial: 0670 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yAcP0GGoUf-K7eDeDDYH7rmP9wE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.mft Manifest number: 064A Signing time: Mon 02 Mar 2026 02:33:02 +0000 Manifest this update: Mon 02 Mar 2026 02:33:01 +0000 Manifest next update: Mon 09 Mar 2026 02:33:01 +0000 Files and hashes: 1: yAcP0GGoUf-K7eDeDDYH7rmP9wE.crl (hash: niiRYYsh2oqcLkKwGjb8fAjXWZYFPbAaoEwECayNGrQ=) 2: 0B931E94FB6611F099070A594B6F56BC.roa (hash: uagR+FXdNjUZC+L7KSIQm2TRETRvZ6N6loPS8LZtsCE=) 3: 5FA1BF8802DD11EE86865A23C4F9AE02.roa (hash: GFfQfs1rBXk5RvNn/1eLrsagDcvE+KrBjwNFBGF3aQo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.crl rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yAcP0GGoUf-K7eDeDDYH7rmP9wE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:32:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1648 (0x670) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4D3D, serialNumber=C8070FD061A851FF8AEDE0DE0C3607EEB98FF701 Validity Not Before: Mar 2 02:33:01 2026 GMT Not After : Mar 9 02:33:01 2026 GMT Subject: CN=69a4f6dd-372f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:91:54:ac:e9:7c:7a:be:d8:c5:53:a7:3b:41: 2c:fa:fa:80:13:e5:e0:b5:62:2e:2c:da:26:3b:b1: e3:22:b8:e9:14:fc:fd:3a:99:37:49:29:9f:04:50: 2b:54:c4:45:46:7b:17:97:4c:39:df:23:11:a7:ba: 72:33:d1:9a:e2:ba:c1:10:04:23:98:0c:cf:b7:31: 81:27:5c:6e:81:7d:86:3a:2e:0d:6e:2c:ff:3c:c9: 0b:1f:c2:f6:9e:29:91:5f:3f:7a:ef:59:42:72:2e: 57:9e:3d:a3:d5:2e:02:14:f1:bf:0b:f9:ed:c2:f0: 39:46:88:7a:74:6c:24:47:e2:3b:fa:16:57:2b:88: 20:e1:5c:22:f0:92:0a:96:47:ea:ad:51:5d:e1:36: 6b:77:e7:7b:92:ae:f1:bc:96:b0:14:9f:e6:09:a3: 15:c3:2e:fc:e0:76:9e:fa:4d:80:67:be:8b:cb:70: 8f:9c:c2:90:28:3f:b1:1f:6e:72:ef:9c:cd:41:c2: 31:ee:63:83:14:f8:29:c8:9f:38:dc:e5:ed:19:1b: fb:7c:61:46:20:93:9d:51:c7:ce:28:8b:57:ae:b2: 67:18:47:cd:de:86:d4:a1:29:b1:aa:43:46:81:8c: 25:44:e0:8c:f8:bc:35:37:9b:79:cf:3e:14:ed:6d: 65:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:FD:B4:4A:BB:1C:3F:C3:61:B8:1A:01:A6:5F:64:9F:C2:E4:63:D3 X509v3 Authority Key Identifier: keyid:C8:07:0F:D0:61:A8:51:FF:8A:ED:E0:DE:0C:36:07:EE:B9:8F:F7:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yAcP0GGoUf-K7eDeDDYH7rmP9wE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:c9:5d:60:f2:30:50:ec:38:de:62:56:97:06:64:50:1a:a5: aa:9c:32:92:72:fe:68:e8:d2:6e:01:fa:50:1b:7e:68:11:48: ad:13:94:d5:e3:78:ce:3e:fb:3a:33:a1:cf:b5:42:c1:2a:e0: 0a:2b:8c:74:1a:50:bd:70:cf:09:b5:a0:4f:88:07:c6:86:a4: f5:0b:a9:6f:0c:a2:eb:b2:e9:ad:e2:5e:da:f1:90:fd:10:a8: 52:39:73:e7:18:03:a1:d7:70:bd:00:8d:5d:c5:8c:18:fd:d5: 86:b9:62:a8:ba:78:85:bd:06:b2:e8:fb:eb:9f:18:34:db:03: 95:05:b0:e3:5d:74:63:b4:02:61:83:35:f3:8d:3a:45:36:a7: 7e:c8:e8:80:d8:79:4f:50:85:68:0d:6c:84:8b:26:f8:38:a2: 77:c0:32:8e:25:d3:e4:9e:2f:ed:74:40:c7:db:b1:63:0d:e4: 37:31:f0:70:84:7d:76:1c:3e:6a:24:ef:7e:49:c1:38:ce:c8: b9:a4:54:cd:fc:21:f5:52:44:63:3a:87:27:3b:9c:01:94:71: bd:83:5d:25:32:06:f2:34:e5:3b:cc:3d:d1:16:6e:46:bb:46: c5:d5:13:e8:f3:18:a8:a5:20:16:82:bf:bc:64:dc:8b:97:26: e2:a6:98:97 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBnAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTREM0QxMTAvBgNVBAUTKEM4MDcwRkQwNjFBODUxRkY4QUVERTBERTBDMzYwN0VF Qjk4RkY3MDEwHhcNMjYwMzAyMDIzMzAxWhcNMjYwMzA5MDIzMzAxWjAYMRYwFAYD VQQDEw02OWE0ZjZkZC0zNzJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnJFUrOl8er7YxVOnO0Es+vqAE+XgtWIuLNomO7HjIrjpFPz9Opk3SSmfBFAr VMRFRnsXl0w53yMRp7pyM9Ga4rrBEAQjmAzPtzGBJ1xugX2GOi4Nbiz/PMkLH8L2 nimRXz9671lCci5Xnj2j1S4CFPG/C/ntwvA5Roh6dGwkR+I7+hZXK4gg4Vwi8JIK lkfqrVFd4TZrd+d7kq7xvJawFJ/mCaMVwy784Hae+k2AZ76Ly3CPnMKQKD+xH25y 75zNQcIx7mODFPgpyJ843OXtGRv7fGFGIJOdUcfOKItXrrJnGEfN3obUoSmxqkNG gYwlROCM+Lw1N5t5zz4U7W1lvQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIv9tEq7 HD/DYbgaAaZfZJ/C5GPTMB8GA1UdIwQYMBaAFMgHD9BhqFH/iu3g3gw2B+65j/cB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEQzRC9CMDIwMkQzMkQ4 QjkxMUVCQUJDMUY0ODVDNEY5QUUwMi95QWNQMEdHb1VmLUs3ZURlRERZSDdybVA5 d0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lBY1AwR0dvVWYtSzdlRGVERFlIN3JtUDl3RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NEQzRC9CMDIwMkQzMkQ4QjkxMUVCQUJDMUY0ODVDNEY5QUUwMi95QWNQMEdHb1Vm LUs3ZURlRERZSDdybVA5d0UubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAI8ldYPIwUOw43mJWlwZkUBqlqpwyknL+aOjSbgH6UBt+aBFIrROU1eN4zj77 OjOhz7VCwSrgCiuMdBpQvXDPCbWgT4gHxoak9Qupbwyi67LpreJe2vGQ/RCoUjlz 5xgDoddwvQCNXcWMGP3VhrliqLp4hb0Gsuj7658YNNsDlQWw4110Y7QCYYM18406 RTanfsjogNh5T1CFaA1shIsm+Diid8AyjiXT5J4v7XRAx9uxYw3kNzHwcIR9dhw+ aiTvfknBOM7IuaRUzfwh9VJEYzqHJzucAZRxvYNdJTIG8jTlO8w90RZuRrtGxdUT 6PMYqKUgFoK/vGTci5cm4qaYlw== -----END CERTIFICATE-----Generated at Mon Mar 2 12:39:12 2026 by rpki-client