$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA958/5AE197F41D9F11E2BCBFF78F08B02CD2/_RYHGGNz6B9E0TeyoOlpV-YquKE.mft File: _RYHGGNz6B9E0TeyoOlpV-YquKE.mft (raw, json) Hash identifier: 7BEs2yp4za8lU+Dm6m+fPpiUI5tsnfmSbJ+lGrxRMoc= Subject key identifier: 13:EF:6C:91:4A:5B:4E:CE:61:43:C7:76:6F:74:63:13:78:46:CE:97 Authority key identifier: FD:16:07:18:63:73:E8:1F:44:D1:37:B2:A0:E9:69:57:E6:2A:B8:A1 Certificate issuer: /CN=A91EA958/serialNumber=FD1607186373E81F44D137B2A0E96957E62AB8A1 Certificate serial: 3561 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_RYHGGNz6B9E0TeyoOlpV-YquKE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA958/5AE197F41D9F11E2BCBFF78F08B02CD2/_RYHGGNz6B9E0TeyoOlpV-YquKE.mft Manifest number: 353B Signing time: Mon 02 Mar 2026 15:06:19 +0000 Manifest this update: Mon 02 Mar 2026 15:06:18 +0000 Manifest next update: Mon 09 Mar 2026 15:06:18 +0000 Files and hashes: 1: _RYHGGNz6B9E0TeyoOlpV-YquKE.crl (hash: n0o8rV4SkS6Ft9iEd/wFOrhJT7TV1uvZiBCClyrcoak=) 2: 5A7BB752BD2F11EBB84EE532C4F9AE02.roa (hash: OqYW8F4250vX2cVPr/WKUGN/bLRsN60JeF92JnIapyY=) 3: 59F4A758BD2F11EBB84EE532C4F9AE02.roa (hash: m731XVB6b1xAGYHDb9IkvhodV8wFo5nHOoj74jQNmhY=) 4: D347187A7E9511ECA9132A0BC4F9AE02.roa (hash: hOPjAACYFIMnZpYQK50BQrHSZKRavg8kb8cFoUPdabA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA958/5AE197F41D9F11E2BCBFF78F08B02CD2/_RYHGGNz6B9E0TeyoOlpV-YquKE.crl rsync://rpki.apnic.net/member_repository/A91EA958/5AE197F41D9F11E2BCBFF78F08B02CD2/_RYHGGNz6B9E0TeyoOlpV-YquKE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_RYHGGNz6B9E0TeyoOlpV-YquKE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 15:06:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13665 (0x3561) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA958, serialNumber=FD1607186373E81F44D137B2A0E96957E62AB8A1 Validity Not Before: Mar 2 15:06:18 2026 GMT Not After : Mar 9 15:06:18 2026 GMT Subject: CN=69a5a76a-48f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:fd:14:f2:6a:d2:7d:1a:cd:3f:5d:f3:93:5b: 20:d1:bf:ec:74:a9:04:1e:df:6c:0e:82:0f:7e:53: 43:2e:56:6f:ae:d3:78:cd:40:dc:0d:42:0b:ef:58: e1:f1:45:27:7e:d6:1b:01:2a:fa:67:59:38:d8:fe: 93:8e:4b:79:45:2f:b3:67:7a:97:28:81:77:49:05: e5:8e:90:28:ea:b7:b7:d6:71:e6:25:87:78:c8:cb: 1e:9b:b1:49:d8:1f:9d:b5:98:ba:fc:7d:f3:a4:89: 2a:fa:50:7d:5f:8a:e7:74:1c:12:62:69:1b:79:77: 4e:c9:95:e5:a8:1a:4d:52:92:e8:10:0e:ba:4e:b9: 75:2c:9a:43:d9:f8:ae:b2:7e:b8:bf:0b:d3:0a:d2: 9d:50:05:fe:f0:ac:5b:83:99:5c:55:ef:61:4f:13: f5:31:b4:59:82:8d:a7:04:da:7f:99:dd:a0:39:93: dc:4f:d3:e1:53:de:82:9d:13:77:a0:15:f6:91:9f: b9:68:99:4b:15:ae:1b:c4:56:76:09:2d:34:71:dc: c4:e4:15:8e:9f:ec:54:bb:74:f2:56:11:db:c3:70: 5d:d0:16:9a:4b:9f:31:c9:fe:cf:87:39:e2:65:95: 24:96:21:62:48:b1:c1:56:e3:a4:11:a8:a7:ea:94: 33:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:EF:6C:91:4A:5B:4E:CE:61:43:C7:76:6F:74:63:13:78:46:CE:97 X509v3 Authority Key Identifier: keyid:FD:16:07:18:63:73:E8:1F:44:D1:37:B2:A0:E9:69:57:E6:2A:B8:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA958/5AE197F41D9F11E2BCBFF78F08B02CD2/_RYHGGNz6B9E0TeyoOlpV-YquKE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_RYHGGNz6B9E0TeyoOlpV-YquKE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA958/5AE197F41D9F11E2BCBFF78F08B02CD2/_RYHGGNz6B9E0TeyoOlpV-YquKE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:1d:2e:01:a8:80:bd:d5:61:9c:1b:e0:c5:65:b9:04:4b:c3: a2:6f:c0:12:b6:70:bd:18:44:43:b4:c8:a5:19:98:34:b2:46: 6e:48:33:5b:c3:d1:6a:7f:67:77:95:ac:a9:16:33:4c:12:bc: f7:8d:ae:25:8b:0a:19:f3:3c:d2:be:2e:b6:6f:96:1f:49:8f: 7c:b0:ca:74:1d:20:d9:8c:f6:2a:f3:e3:e5:8b:5e:20:a2:16: 15:4b:2c:ba:c3:00:80:f6:cd:2c:cd:38:db:05:d6:66:04:fd: d2:82:97:aa:b1:a9:09:3f:19:c5:cd:22:43:cb:3e:63:36:bc: 2c:02:18:d3:0f:7c:90:e5:7d:66:40:4a:99:cb:d3:70:52:be: 9b:7a:12:9d:39:fe:ef:89:4d:4a:07:48:6c:5f:39:81:aa:d4: 6e:9e:2b:d8:c0:7f:0e:6f:00:70:92:75:6c:6c:74:c8:c5:71: 28:5c:a3:97:18:aa:cb:3c:31:75:56:db:b6:d9:c5:5f:24:1b: c0:99:d8:bb:3b:f3:ac:78:3a:d7:fa:6e:ff:e1:23:68:57:39: 38:04:fb:b2:b2:79:37:98:42:9f:ff:4b:09:e7:ec:d1:9b:2e: 2d:22:79:04:f5:44:f2:92:9c:1b:b3:79:13:ff:00:91:1a:cb: 5a:46:4d:fc -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNWEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE5NTgxMTAvBgNVBAUTKEZEMTYwNzE4NjM3M0U4MUY0NEQxMzdCMkEwRTk2OTU3 RTYyQUI4QTEwHhcNMjYwMzAyMTUwNjE4WhcNMjYwMzA5MTUwNjE4WjAYMRYwFAYD VQQDEw02OWE1YTc2YS00OGY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4P0U8mrSfRrNP13zk1sg0b/sdKkEHt9sDoIPflNDLlZvrtN4zUDcDUIL71jh 8UUnftYbASr6Z1k42P6Tjkt5RS+zZ3qXKIF3SQXljpAo6re31nHmJYd4yMsem7FJ 2B+dtZi6/H3zpIkq+lB9X4rndBwSYmkbeXdOyZXlqBpNUpLoEA66Trl1LJpD2fiu sn64vwvTCtKdUAX+8Kxbg5lcVe9hTxP1MbRZgo2nBNp/md2gOZPcT9PhU96CnRN3 oBX2kZ+5aJlLFa4bxFZ2CS00cdzE5BWOn+xUu3TyVhHbw3Bd0BaaS58xyf7Phzni ZZUkliFiSLHBVuOkEain6pQzZwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBPvbJFK W07OYUPHdm90YxN4Rs6XMB8GA1UdIwQYMBaAFP0WBxhjc+gfRNE3sqDpaVfmKrih MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTk1OC81QUUxOTdGNDFE OUYxMUUyQkNCRkY3OEYwOEIwMkNEMi9fUllIR0dOejZCOUUwVGV5b09scFYtWXF1 S0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19SWUhHR056NkI5RTBUZXlvT2xwVi1ZcXVLRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTk1OC81QUUxOTdGNDFEOUYxMUUyQkNCRkY3OEYwOEIwMkNEMi9fUllIR0dOejZC OUUwVGV5b09scFYtWXF1S0UubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAhR0uAaiAvdVhnBvgxWW5BEvDom/AErZwvRhEQ7TIpRmYNLJGbkgzW8PRan9n d5WsqRYzTBK8942uJYsKGfM80r4utm+WH0mPfLDKdB0g2Yz2KvPj5YteIKIWFUss usMAgPbNLM042wXWZgT90oKXqrGpCT8Zxc0iQ8s+Yza8LAIY0w98kOV9ZkBKmcvT cFK+m3oSnTn+74lNSgdIbF85garUbp4r2MB/Dm8AcJJ1bGx0yMVxKFyjlxiqyzwx dVbbttnFXyQbwJnYuzvzrHg61/pu/+EjaFc5OAT7srJ5N5hCn/9LCefs0ZsuLSJ5 BPVE8pKcG7N5E/8AkRrLWkZN/A== -----END CERTIFICATE-----Generated at Mon Mar 2 18:51:20 2026 by rpki-client