$ rpki-client -vvf rpki.apnic.net/member_repository/A9120FD4/809C24D2F55111E99D5B7D3DC4F9AE02/YsaxoLLDphTzy0P6uzG_gWFrVLQ.mft File: YsaxoLLDphTzy0P6uzG_gWFrVLQ.mft (raw, json) Hash identifier: Tzmr10e7pnNwagWaPw7xwxVUu49a7EjeNZeC1fif+0Q= Subject key identifier: B5:1D:75:68:C7:58:12:C5:A7:77:A4:36:AA:06:EB:BA:D7:87:2E:D7 Authority key identifier: 62:C6:B1:A0:B2:C3:A6:14:F3:CB:43:FA:BB:31:BF:81:61:6B:54:B4 Certificate issuer: /CN=A9120FD4/serialNumber=62C6B1A0B2C3A614F3CB43FABB31BF81616B54B4 Certificate serial: 0D5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YsaxoLLDphTzy0P6uzG_gWFrVLQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120FD4/809C24D2F55111E99D5B7D3DC4F9AE02/YsaxoLLDphTzy0P6uzG_gWFrVLQ.mft Manifest number: 0D49 Signing time: Sat 18 Apr 2026 17:56:44 +0000 Manifest this update: Sat 18 Apr 2026 17:56:43 +0000 Manifest next update: Sat 25 Apr 2026 17:56:43 +0000 Files and hashes: 1: YsaxoLLDphTzy0P6uzG_gWFrVLQ.crl (hash: QM0XtAZTq2wD20ByeueiNsoMlxGf2UQpxS725GhQDiU=) 2: 4154E51AC91311EBA6226F45C4F9AE02.roa (hash: pILIYLSoyXCPBfvCRHzHdNoR3Vcxlvl1vIwUNhIpUCE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120FD4/809C24D2F55111E99D5B7D3DC4F9AE02/YsaxoLLDphTzy0P6uzG_gWFrVLQ.crl rsync://rpki.apnic.net/member_repository/A9120FD4/809C24D2F55111E99D5B7D3DC4F9AE02/YsaxoLLDphTzy0P6uzG_gWFrVLQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YsaxoLLDphTzy0P6uzG_gWFrVLQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Apr 2026 17:56:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3418 (0xd5a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120FD4, serialNumber=62C6B1A0B2C3A614F3CB43FABB31BF81616B54B4 Validity Not Before: Apr 18 17:56:43 2026 GMT Not After : Apr 25 17:56:43 2026 GMT Subject: CN=69e3c5dc-b917 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:e4:fa:5d:95:72:aa:64:27:5a:f4:14:b1:b2: 90:fd:46:15:55:fb:8e:65:6b:96:96:38:27:0e:ab: f5:5d:61:89:01:cf:a9:20:70:48:73:d5:87:82:f9: 8a:40:bd:6e:6f:42:af:9c:68:e0:6c:02:c2:c3:54: c7:fe:72:24:69:29:3f:87:ed:45:40:98:b4:01:bd: bc:3e:f0:71:67:61:40:75:8c:73:87:55:af:70:b8: 60:cd:15:f5:df:c5:b4:6d:2a:e3:ca:2b:38:3a:d2: ea:1f:a9:97:18:dd:85:b2:dd:39:02:92:8f:6e:11: af:b9:c7:2a:26:5b:ed:4a:64:14:71:c5:a3:9f:d4: ab:ee:49:a3:5c:8a:52:46:da:e1:92:38:6e:a1:27: 6a:92:6f:5c:4f:58:49:6c:0b:fe:6c:9b:f3:7c:bc: 45:56:06:60:3c:8e:40:60:b4:25:79:fc:f9:41:45: 3e:77:fb:bf:3d:64:f3:82:57:d3:b2:72:e7:d0:ad: ea:7e:a7:41:7d:cb:3a:e7:5a:e9:b0:c6:45:8c:c4: c7:9e:bb:a1:66:4c:9f:4d:48:4f:53:76:f9:7c:47: 29:6c:d0:3e:ad:f8:df:bd:21:5c:90:c5:69:15:3a: d4:fa:22:3f:94:cd:11:05:e7:a9:3b:d1:03:4a:50: f5:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:1D:75:68:C7:58:12:C5:A7:77:A4:36:AA:06:EB:BA:D7:87:2E:D7 X509v3 Authority Key Identifier: keyid:62:C6:B1:A0:B2:C3:A6:14:F3:CB:43:FA:BB:31:BF:81:61:6B:54:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120FD4/809C24D2F55111E99D5B7D3DC4F9AE02/YsaxoLLDphTzy0P6uzG_gWFrVLQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YsaxoLLDphTzy0P6uzG_gWFrVLQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120FD4/809C24D2F55111E99D5B7D3DC4F9AE02/YsaxoLLDphTzy0P6uzG_gWFrVLQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:f9:d4:b4:61:c4:69:01:3b:f3:d0:fa:03:83:86:7c:2c:89: 03:80:a2:30:a6:59:9a:1d:52:eb:15:a3:8a:9a:95:31:3c:67: 24:6f:5e:e4:23:2e:89:0d:0c:aa:e1:ef:36:19:7d:70:f2:eb: dc:25:f8:d6:86:53:a9:59:ee:dc:2a:af:60:8a:ed:a1:d9:5c: 7a:2d:3c:5d:fe:44:d4:7e:17:43:9e:18:21:1b:53:0f:3e:ca: 70:1f:aa:14:f0:b4:0f:be:c3:96:0d:d0:1b:2f:c1:45:c0:4e: 59:91:63:e6:04:e9:d8:08:df:b5:eb:a7:fe:f6:d0:c1:97:71: ad:1f:f6:5a:ff:23:b5:5d:e4:74:5f:e4:4a:d1:8b:d8:2e:7d: b4:a3:1c:6b:95:7c:29:2a:29:6f:97:6f:cf:e8:1c:29:1d:ff: d1:14:16:75:30:8a:9a:f1:ed:f5:ac:c9:bf:fd:fe:f3:61:e9: 91:53:61:2a:38:d1:25:df:97:7d:f4:ca:83:4d:c6:61:40:80: 91:fc:be:68:e7:6c:3d:0d:a0:fb:cd:34:e2:1f:d3:c2:dc:94: a2:a2:ed:cb:7e:cf:5a:c4:af:cc:87:9f:74:7b:b4:ba:54:7c: 8a:72:df:93:cc:2c:b4:0f:33:84:d9:14:e0:4d:13:ce:1b:38: 0a:e5:2a:66 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDVowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBGRDQxMTAvBgNVBAUTKDYyQzZCMUEwQjJDM0E2MTRGM0NCNDNGQUJCMzFCRjgx NjE2QjU0QjQwHhcNMjYwNDE4MTc1NjQzWhcNMjYwNDI1MTc1NjQzWjAYMRYwFAYD VQQDEw02OWUzYzVkYy1iOTE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAj+T6XZVyqmQnWvQUsbKQ/UYVVfuOZWuWljgnDqv1XWGJAc+pIHBIc9WHgvmK QL1ub0KvnGjgbALCw1TH/nIkaSk/h+1FQJi0Ab28PvBxZ2FAdYxzh1WvcLhgzRX1 38W0bSrjyis4OtLqH6mXGN2Fst05ApKPbhGvuccqJlvtSmQUccWjn9Sr7kmjXIpS RtrhkjhuoSdqkm9cT1hJbAv+bJvzfLxFVgZgPI5AYLQlefz5QUU+d/u/PWTzglfT snLn0K3qfqdBfcs651rpsMZFjMTHnruhZkyfTUhPU3b5fEcpbNA+rfjfvSFckMVp FTrU+iI/lM0RBeepO9EDSlD1iwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLUddWjH WBLFp3ekNqoG67rXhy7XMB8GA1UdIwQYMBaAFGLGsaCyw6YU88tD+rsxv4Fha1S0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEZENC84MDlDMjREMkY1 NTExMUU5OUQ1QjdEM0RDNEY5QUUwMi9Zc2F4b0xMRHBoVHp5MFA2dXpHX2dXRnJW TFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lzYXhvTExEcGhUenkwUDZ1ekdfZ1dGclZMUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MEZENC84MDlDMjREMkY1NTExMUU5OUQ1QjdEM0RDNEY5QUUwMi9Zc2F4b0xMRHBo VHp5MFA2dXpHX2dXRnJWTFEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEACvnUtGHEaQE789D6A4OGfCyJA4CiMKZZmh1S6xWjipqVMTxnJG9e5CMuiQ0M quHvNhl9cPLr3CX41oZTqVnu3CqvYIrtodlcei08Xf5E1H4XQ54YIRtTDz7KcB+q FPC0D77Dlg3QGy/BRcBOWZFj5gTp2Ajfteun/vbQwZdxrR/2Wv8jtV3kdF/kStGL 2C59tKMca5V8KSopb5dvz+gcKR3/0RQWdTCKmvHt9azJv/3+82HpkVNhKjjRJd+X ffTKg03GYUCAkfy+aOdsPQ2g+8004h/TwtyUoqLty37PWsSvzIefdHu0ulR8inLf k8wstA8zhNkU4E0Tzhs4CuUqZg== -----END CERTIFICATE-----Generated at Sun Apr 19 12:48:40 2026 by rpki-client