$ rpki-client -vvf rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/y6GXwEyqm9KV9XiEcqahCqP773A.mft File: y6GXwEyqm9KV9XiEcqahCqP773A.mft (raw, json) Hash identifier: /AimpIwYx7pYKqq2+qVqelBo+8HKd0wuhga230m5D1g= Subject key identifier: D3:AD:4B:FB:B2:2D:5B:ED:7B:85:82:BD:4C:0E:7E:4B:E6:D1:6A:7D Authority key identifier: CB:A1:97:C0:4C:AA:9B:D2:95:F5:78:84:72:A6:A1:0A:A3:FB:EF:70 Certificate issuer: /CN=A9143CB3/serialNumber=CBA197C04CAA9BD295F5788472A6A10AA3FBEF70 Certificate serial: 1BE6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y6GXwEyqm9KV9XiEcqahCqP773A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/y6GXwEyqm9KV9XiEcqahCqP773A.mft Manifest number: 1BAC Signing time: Thu 16 Apr 2026 16:12:59 +0000 Manifest this update: Thu 16 Apr 2026 16:12:58 +0000 Manifest next update: Thu 23 Apr 2026 16:12:58 +0000 Files and hashes: 1: y6GXwEyqm9KV9XiEcqahCqP773A.crl (hash: TKZQ6uPYnnzW9jVmP9/F0UUBwuQJSgbaG1hgM9q5Nck=) 2: DE0A76C805B511EE95562E2AC4F9AE02.roa (hash: fSrLukxaAM59ZQEmbnxQBdopl2ygjyhAoNct9kxcFt4=) 3: D90961489C1311EFA0BF1480C4F9AE02.roa (hash: jz3mUG66x+LfglClnYcC2zPJcIcV277FZw8xXWBFQHI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/y6GXwEyqm9KV9XiEcqahCqP773A.crl rsync://rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/y6GXwEyqm9KV9XiEcqahCqP773A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y6GXwEyqm9KV9XiEcqahCqP773A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 16:12:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7142 (0x1be6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143CB3, serialNumber=CBA197C04CAA9BD295F5788472A6A10AA3FBEF70 Validity Not Before: Apr 16 16:12:58 2026 GMT Not After : Apr 23 16:12:58 2026 GMT Subject: CN=69e10a8b-5cf1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:85:c8:d4:09:ef:0c:cd:c4:13:59:cf:0e:a0: 84:42:eb:be:4a:1f:5b:06:15:03:90:ec:fe:b6:c3: 45:ea:91:54:5b:e8:7f:eb:5a:b8:fc:20:96:be:f0: e2:34:e5:2c:f1:15:d9:83:f8:a5:ad:45:a0:66:69: 9b:de:21:8e:a7:9e:54:8b:9b:2a:c9:e2:91:6d:c3: ea:a2:7e:eb:08:79:39:55:fc:fd:f9:24:1d:6a:f1: 06:05:69:cc:1b:14:c8:9d:2a:61:8e:41:54:57:52: b5:ed:1d:90:87:98:9e:ff:67:a5:a5:44:9e:f0:a3: 64:06:67:6d:a1:a8:20:6a:f0:56:3b:77:7d:9a:78: ab:89:d6:a1:09:13:9a:2d:df:8e:aa:bc:be:ea:30: e5:21:47:c0:a9:5e:fb:82:85:9f:2c:5f:e2:46:2f: 2f:e3:53:f4:66:1e:72:ea:9e:3a:6f:9d:50:8d:55: 7e:0b:4c:35:78:25:9f:6f:1c:31:a6:7d:b6:e7:d7: 24:6a:af:e3:9b:60:3c:4d:c5:41:14:ee:7e:fa:6c: c8:b1:5b:1e:48:be:26:0b:d2:9a:06:4a:8e:63:a8: be:ad:1a:d5:a2:12:b6:d3:92:6d:e6:eb:76:77:23: 58:02:c1:18:56:da:10:1a:3c:57:cd:25:15:20:54: 6e:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:AD:4B:FB:B2:2D:5B:ED:7B:85:82:BD:4C:0E:7E:4B:E6:D1:6A:7D X509v3 Authority Key Identifier: keyid:CB:A1:97:C0:4C:AA:9B:D2:95:F5:78:84:72:A6:A1:0A:A3:FB:EF:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/y6GXwEyqm9KV9XiEcqahCqP773A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y6GXwEyqm9KV9XiEcqahCqP773A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/y6GXwEyqm9KV9XiEcqahCqP773A.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cf:1f:fd:8a:06:1d:ad:63:02:e3:4c:c6:fa:a7:06:cd:3b:d8: 1b:e9:95:f8:7a:a8:58:79:13:ea:6f:53:7b:00:a2:2f:7a:f9: ca:eb:c1:61:72:18:5a:da:2e:0e:4e:b4:5c:b7:90:55:cf:d2: d2:f2:c0:c3:3e:87:2e:5c:b4:5b:e7:f9:e8:80:5f:f8:ed:e4: 81:09:9b:bd:26:d7:90:87:16:cc:20:e9:43:4a:f6:78:9d:33: ca:1e:de:5b:e4:b8:24:96:53:a5:7e:64:fa:42:0c:f3:0e:5e: 33:bb:bf:b5:04:f4:91:39:5a:2e:db:80:45:ed:93:c2:c2:39: 17:b7:0b:d4:a5:63:d6:09:fc:df:72:e4:7e:93:4b:99:ba:41: 57:d0:cf:3e:8a:a5:e2:96:aa:51:ce:e0:7d:77:db:1f:8e:5f: 23:2c:c7:6e:ab:c8:db:57:73:75:32:d0:25:6f:ea:55:eb:0b: b1:d2:ac:f1:ca:38:0c:0b:ae:d1:39:92:8b:0b:10:0a:89:10: 72:cb:ab:7d:97:e8:0e:45:5c:ad:fe:bb:b1:a0:d4:09:c8:3e: ba:9d:76:08:fe:69:4c:7f:b6:45:ec:48:ad:47:03:67:86:30: 57:c6:44:8c:8a:21:0d:d6:7a:56:23:f6:40:27:94:ad:d4:d5: ad:3b:17:13 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICG+YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNDQjMxMTAvBgNVBAUTKENCQTE5N0MwNENBQTlCRDI5NUY1Nzg4NDcyQTZBMTBB QTNGQkVGNzAwHhcNMjYwNDE2MTYxMjU4WhcNMjYwNDIzMTYxMjU4WjAYMRYwFAYD VQQDEw02OWUxMGE4Yi01Y2YxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtIXI1AnvDM3EE1nPDqCEQuu+Sh9bBhUDkOz+tsNF6pFUW+h/61q4/CCWvvDi NOUs8RXZg/ilrUWgZmmb3iGOp55Ui5sqyeKRbcPqon7rCHk5Vfz9+SQdavEGBWnM GxTInSphjkFUV1K17R2Qh5ie/2elpUSe8KNkBmdtoaggavBWO3d9mniridahCROa Ld+Oqry+6jDlIUfAqV77goWfLF/iRi8v41P0Zh5y6p46b51QjVV+C0w1eCWfbxwx pn2259ckaq/jm2A8TcVBFO5++mzIsVseSL4mC9KaBkqOY6i+rRrVohK205Jt5ut2 dyNYAsEYVtoQGjxXzSUVIFRupwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNOtS/uy LVvte4WCvUwOfkvm0Wp9MB8GA1UdIwQYMBaAFMuhl8BMqpvSlfV4hHKmoQqj++9w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0NCMy8xREI3OTgzQzI1 OUQxMUU3ODVEMzI1MEFDNEY5QUUwMi95NkdYd0V5cW05S1Y5WGlFY3FhaENxUDc3 M0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3k2R1h3RXlxbTlLVjlYaUVjcWFoQ3FQNzczQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 M0NCMy8xREI3OTgzQzI1OUQxMUU3ODVEMzI1MEFDNEY5QUUwMi95NkdYd0V5cW05 S1Y5WGlFY3FhaENxUDc3M0EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAzx/9igYdrWMC40zG+qcGzTvYG+mV+HqoWHkT6m9TewCiL3r5yuvBYXIYWtou Dk60XLeQVc/S0vLAwz6HLly0W+f56IBf+O3kgQmbvSbXkIcWzCDpQ0r2eJ0zyh7e W+S4JJZTpX5k+kIM8w5eM7u/tQT0kTlaLtuARe2TwsI5F7cL1KVj1gn833LkfpNL mbpBV9DPPoql4paqUc7gfXfbH45fIyzHbqvI21dzdTLQJW/qVesLsdKs8co4DAuu 0TmSiwsQCokQcsurfZfoDkVcrf67saDUCcg+up12CP5pTH+2RexIrUcDZ4YwV8ZE jIohDdZ6ViP2QCeUrdTVrTsXEw== -----END CERTIFICATE-----Generated at Fri Apr 17 14:46:41 2026 by rpki-client