$ rpki-client -vvf rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.mft File: Y-SHYqiTCAlnc9nhydGpmYA1Zw0.mft (raw, json) Hash identifier: fHEc7Q4gC7KN13jzIMRwjXqTzTYgAdch+6bQrDuCr2g= Subject key identifier: F8:91:9D:46:EF:B3:D8:C3:22:1B:35:5F:AD:E3:A5:A9:72:90:E9:52 Authority key identifier: 63:E4:87:62:A8:93:08:09:67:73:D9:E1:C9:D1:A9:99:80:35:67:0D Certificate issuer: /CN=A9147B58/serialNumber=63E48762A89308096773D9E1C9D1A9998035670D Certificate serial: 065D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.mft Manifest number: 0654 Signing time: Thu 16 Apr 2026 22:35:45 +0000 Manifest this update: Thu 16 Apr 2026 22:35:45 +0000 Manifest next update: Thu 23 Apr 2026 22:35:45 +0000 Files and hashes: 1: Y-SHYqiTCAlnc9nhydGpmYA1Zw0.crl (hash: w+y67eZOqQzRU9gIw19nNNyf1zAq41Vq+LAJQD8AmnY=) 2: 657BCA62CABC11EB8D6D063BC4F9AE02.roa (hash: 9P+/XWI1mTR2CKwLdPvtfOBgjyqZfC7ZNyD/mGLr3KU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.crl rsync://rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 22:35:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1629 (0x65d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147B58, serialNumber=63E48762A89308096773D9E1C9D1A9998035670D Validity Not Before: Apr 16 22:35:45 2026 GMT Not After : Apr 23 22:35:45 2026 GMT Subject: CN=69e16441-79c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:f6:1e:da:61:ef:ca:4d:a2:73:79:c0:e6:27: dc:aa:66:20:4a:58:a9:7e:00:8f:39:92:53:d8:fb: be:c2:6a:9f:43:78:47:6c:ec:ad:f1:c4:5b:e9:e5: cb:fa:20:55:9b:da:c2:fc:1f:a8:58:e6:f1:4c:50: eb:1f:6f:31:68:c9:23:ca:e5:d4:13:08:f6:6f:56: 92:4b:a6:f3:2a:a5:32:9e:22:2e:3c:14:b2:e6:9b: 50:e1:51:86:9d:4c:08:3d:29:d4:ba:3c:c7:82:07: 3b:8f:36:b4:22:bc:8a:ad:79:ef:18:0a:13:56:0a: 12:b1:34:dd:c5:0f:b0:e1:e4:ad:94:aa:d5:3c:0c: a6:76:17:8e:e7:c3:59:fc:e5:3f:c9:42:7a:c3:5c: eb:7c:31:b5:53:00:d6:a9:01:d0:2a:57:b3:f1:7f: 68:87:5f:81:d3:ca:8d:fa:cd:4d:4c:1d:7d:42:e2: 78:b6:76:a3:b9:53:f0:4f:2f:3d:f9:1b:f2:6f:5a: dd:a1:85:0c:c3:66:63:3d:dc:72:93:b3:83:c8:68: 16:a7:f3:62:bd:1b:83:ef:17:44:25:3b:94:ae:3d: f6:0e:09:35:76:2e:b6:58:73:8f:b1:b6:3c:64:45: 90:14:5e:b8:dd:88:22:65:47:de:53:82:28:e7:67: 62:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:91:9D:46:EF:B3:D8:C3:22:1B:35:5F:AD:E3:A5:A9:72:90:E9:52 X509v3 Authority Key Identifier: keyid:63:E4:87:62:A8:93:08:09:67:73:D9:E1:C9:D1:A9:99:80:35:67:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:c4:93:0f:29:b4:1d:ba:5f:09:9d:3c:d6:b5:5e:5b:9b:66: 8d:50:ea:cc:f3:c6:02:e2:d9:41:84:19:e1:a3:97:99:db:e2: 2a:95:49:d5:9c:cd:ff:ba:a7:47:54:d0:cb:c6:a7:68:13:64: 56:c5:cb:fc:86:53:a2:50:bb:26:52:f9:54:1c:e5:89:7d:0d: 62:30:c6:57:bb:89:fe:25:12:11:7a:7f:c3:c0:67:45:fa:f6: 3e:5c:c3:f7:c6:63:df:5e:7c:dd:87:d3:db:19:4f:69:91:0d: e4:f2:c3:16:b1:4f:8b:90:b6:cb:6c:27:18:db:42:e0:d4:e8: 30:71:d0:3b:c5:6c:c4:3a:fb:e2:95:e9:f5:b5:a5:af:ec:01: ef:e2:5a:48:c0:75:ef:09:1d:a4:e6:d7:8e:29:e0:9d:14:83: 94:bd:08:c8:57:2f:0d:bf:00:ef:19:47:cc:16:a8:48:f6:3a: b6:b4:a9:0f:e7:be:ef:ad:1f:da:b8:c9:d5:c6:1c:e0:3b:b3: c9:35:19:80:19:fe:b9:7f:f5:c8:ed:d5:84:d5:02:56:8d:3f: 73:1e:04:94:70:c0:e0:db:d7:1b:9a:b8:49:7b:3d:b3:27:06: a2:64:4c:36:b3:12:ec:f4:e0:33:e6:71:93:fc:77:1a:00:68: d5:a9:00:15 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBl0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDdCNTgxMTAvBgNVBAUTKDYzRTQ4NzYyQTg5MzA4MDk2NzczRDlFMUM5RDFBOTk5 ODAzNTY3MEQwHhcNMjYwNDE2MjIzNTQ1WhcNMjYwNDIzMjIzNTQ1WjAYMRYwFAYD VQQDEw02OWUxNjQ0MS03OWM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp/Ye2mHvyk2ic3nA5ifcqmYgSlipfgCPOZJT2Pu+wmqfQ3hHbOyt8cRb6eXL +iBVm9rC/B+oWObxTFDrH28xaMkjyuXUEwj2b1aSS6bzKqUyniIuPBSy5ptQ4VGG nUwIPSnUujzHggc7jza0IryKrXnvGAoTVgoSsTTdxQ+w4eStlKrVPAymdheO58NZ /OU/yUJ6w1zrfDG1UwDWqQHQKlez8X9oh1+B08qN+s1NTB19QuJ4tnajuVPwTy89 +Rvyb1rdoYUMw2ZjPdxyk7ODyGgWp/NivRuD7xdEJTuUrj32Dgk1di62WHOPsbY8 ZEWQFF643YgiZUfeU4Io52diEwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPiRnUbv s9jDIhs1X63jpalykOlSMB8GA1UdIwQYMBaAFGPkh2KokwgJZ3PZ4cnRqZmANWcN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0N0I1OC9BQUMyMUM3RUNB QjgxMUVCODQxNTUzMzZDNEY5QUUwMi9ZLVNIWXFpVENBbG5jOW5oeWRHcG1ZQTFa dzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ktU0hZcWlUQ0FsbmM5bmh5ZEdwbVlBMVp3MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 N0I1OC9BQUMyMUM3RUNBQjgxMUVCODQxNTUzMzZDNEY5QUUwMi9ZLVNIWXFpVENB bG5jOW5oeWRHcG1ZQTFadzAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEATMSTDym0HbpfCZ081rVeW5tmjVDqzPPGAuLZQYQZ4aOXmdviKpVJ1ZzN/7qn R1TQy8anaBNkVsXL/IZTolC7JlL5VBzliX0NYjDGV7uJ/iUSEXp/w8BnRfr2PlzD 98Zj31583YfT2xlPaZEN5PLDFrFPi5C2y2wnGNtC4NToMHHQO8VsxDr74pXp9bWl r+wB7+JaSMB17wkdpObXjingnRSDlL0IyFcvDb8A7xlHzBaoSPY6trSpD+e+760f 2rjJ1cYc4DuzyTUZgBn+uX/1yO3VhNUCVo0/cx4ElHDA4NvXG5q4SXs9sycGomRM NrMS7PTgM+Zxk/x3GgBo1akAFQ== -----END CERTIFICATE-----Generated at Fri Apr 17 05:27:45 2026 by rpki-client