$ rpki-client -vvf rpki.apnic.net/member_repository/A9159FAF/129575C46E4211EEAB4C9C6CC4F9AE02/y-xvGDkFSHUhx5R7T3v9bLeNpHk.mft File: y-xvGDkFSHUhx5R7T3v9bLeNpHk.mft (raw, json) Hash identifier: 8f272a9ybnOdXOhV4VS2B5373bVqUv//PjnH8ZYmjBo= Subject key identifier: EA:75:97:F3:67:7D:14:9B:E1:AD:6B:AA:F4:D2:E3:9E:73:A1:5C:21 Authority key identifier: CB:EC:6F:18:39:05:48:75:21:C7:94:7B:4F:7B:FD:6C:B7:8D:A4:79 Certificate issuer: /CN=A9159FAF/serialNumber=CBEC6F183905487521C7947B4F7BFD6CB78DA479 Certificate serial: 01FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-xvGDkFSHUhx5R7T3v9bLeNpHk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9159FAF/129575C46E4211EEAB4C9C6CC4F9AE02/y-xvGDkFSHUhx5R7T3v9bLeNpHk.mft Manifest number: 01E2 Signing time: Fri 17 Apr 2026 03:19:11 +0000 Manifest this update: Fri 17 Apr 2026 03:19:10 +0000 Manifest next update: Fri 24 Apr 2026 03:19:10 +0000 Files and hashes: 1: y-xvGDkFSHUhx5R7T3v9bLeNpHk.crl (hash: oTND48q1jEtegnEpKvosjL2ZiA6fX/NwYcnjj8d80ns=) 2: A910F37297CE11F0885B0A30C4F9AE02.roa (hash: Y7hqH6AdlNN+CGQx5eSl2EAvXIdaBV9/RAugdoHMkMg=) 3: 6A0C1182CA9D11F084B0E810C4F9AE02.roa (hash: Ur2xb9scSwvGgEl+imNvKk+65kBRDU8GyWd41dxPers=) 4: B752E03A97CE11F0ADE43030C4F9AE02.roa (hash: pvNtxEebaDqgsEGcGKNlJatXfUnFwrPrh9xqF+/MFUI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9159FAF/129575C46E4211EEAB4C9C6CC4F9AE02/y-xvGDkFSHUhx5R7T3v9bLeNpHk.crl rsync://rpki.apnic.net/member_repository/A9159FAF/129575C46E4211EEAB4C9C6CC4F9AE02/y-xvGDkFSHUhx5R7T3v9bLeNpHk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-xvGDkFSHUhx5R7T3v9bLeNpHk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 03:19:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 506 (0x1fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9159FAF, serialNumber=CBEC6F183905487521C7947B4F7BFD6CB78DA479 Validity Not Before: Apr 17 03:19:10 2026 GMT Not After : Apr 24 03:19:10 2026 GMT Subject: CN=69e1a6af-85e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:2e:c4:b4:aa:47:83:fb:69:29:84:20:1f:3d: 87:bd:88:d2:05:7e:84:92:71:8f:4e:fe:ba:c2:82: f5:5c:7f:d9:f3:fc:71:1b:30:cb:8a:45:aa:b9:2e: cd:e5:cc:c2:cf:5a:c6:af:01:81:08:92:18:65:f1: 30:f8:d8:ab:04:e2:f1:01:39:31:01:57:5e:43:b6: f7:bb:eb:6c:fb:ec:21:72:3d:26:1f:53:cc:f4:a4: 97:87:45:17:f5:ad:94:41:a6:ee:44:a7:30:8b:31: ac:c3:ae:fe:e0:43:e9:47:dc:0c:21:4e:74:02:8a: 91:40:e0:63:5a:2a:ff:88:39:17:5f:dd:57:e6:63: 1e:f7:35:a3:01:16:46:65:a8:d5:bf:e7:88:54:1c: 35:67:3b:f3:01:10:a9:c1:0e:12:eb:d6:d2:ef:74: 42:0e:e9:62:3e:22:ce:18:9b:2f:37:c4:24:9e:56: 96:75:39:38:b8:d2:03:77:10:04:97:87:4f:f3:34: 60:a9:67:02:b8:7a:88:84:07:ca:65:ae:a2:0b:b2: d7:de:e4:75:a2:dc:c3:c6:30:31:16:55:a5:57:58: f9:9f:55:64:59:3e:1e:db:2d:eb:60:da:58:d2:3f: 9c:ad:12:47:9d:23:9a:fe:e6:38:84:3f:20:c4:ca: fb:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:75:97:F3:67:7D:14:9B:E1:AD:6B:AA:F4:D2:E3:9E:73:A1:5C:21 X509v3 Authority Key Identifier: keyid:CB:EC:6F:18:39:05:48:75:21:C7:94:7B:4F:7B:FD:6C:B7:8D:A4:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9159FAF/129575C46E4211EEAB4C9C6CC4F9AE02/y-xvGDkFSHUhx5R7T3v9bLeNpHk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-xvGDkFSHUhx5R7T3v9bLeNpHk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9159FAF/129575C46E4211EEAB4C9C6CC4F9AE02/y-xvGDkFSHUhx5R7T3v9bLeNpHk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:ef:f9:02:d7:ba:03:cf:ed:fb:c4:e7:e5:25:95:26:31:2c: ba:1c:d7:48:88:38:d6:7c:00:41:02:08:ef:fc:36:02:99:d6: 95:ce:f9:f8:95:b6:5a:70:3c:c2:85:ec:1f:39:db:d7:a1:2b: ce:48:e6:94:c8:3b:d1:34:52:f6:e4:72:bb:00:a2:f0:1b:77: 7d:b7:69:7f:d7:8b:d4:59:bb:72:e6:43:ec:de:c8:9d:59:6c: a0:64:1f:61:15:f0:9b:d6:59:c1:ca:95:43:34:b8:9d:9b:6f: 70:3c:82:54:8d:78:e3:ee:93:82:b6:18:03:49:d7:82:f5:b1: ea:ee:c6:4c:9d:fa:d5:6b:1c:47:79:8b:15:c4:2e:d8:06:09: 91:ed:8d:21:ab:66:da:4d:b8:e4:e3:c5:fa:68:62:03:35:ba: 18:10:71:b2:fe:fc:91:82:cf:6b:59:3d:31:f0:8f:e5:ad:46: f2:0b:71:89:ab:27:60:1c:82:b7:ee:fd:25:47:5b:42:7f:73: 7e:6f:19:c2:2c:59:41:1d:e9:4d:c2:5e:0b:5d:95:c3:dc:35: fe:29:67:2f:b3:b2:db:bc:0b:75:19:9a:0d:f9:c9:cd:85:67: ef:d3:96:15:93:b8:39:f8:c1:0f:28:41:5a:7a:da:0f:d9:55: 28:79:79:67 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAfowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTlGQUYxMTAvBgNVBAUTKENCRUM2RjE4MzkwNTQ4NzUyMUM3OTQ3QjRGN0JGRDZD Qjc4REE0NzkwHhcNMjYwNDE3MDMxOTEwWhcNMjYwNDI0MDMxOTEwWjAYMRYwFAYD VQQDEw02OWUxYTZhZi04NWU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuC7EtKpHg/tpKYQgHz2HvYjSBX6EknGPTv66woL1XH/Z8/xxGzDLikWquS7N 5czCz1rGrwGBCJIYZfEw+NirBOLxATkxAVdeQ7b3u+ts++whcj0mH1PM9KSXh0UX 9a2UQabuRKcwizGsw67+4EPpR9wMIU50AoqRQOBjWir/iDkXX91X5mMe9zWjARZG ZajVv+eIVBw1ZzvzARCpwQ4S69bS73RCDuliPiLOGJsvN8QknlaWdTk4uNIDdxAE l4dP8zRgqWcCuHqIhAfKZa6iC7LX3uR1otzDxjAxFlWlV1j5n1VkWT4e2y3rYNpY 0j+crRJHnSOa/uY4hD8gxMr7qQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOp1l/Nn fRSb4a1rqvTS455zoVwhMB8GA1UdIwQYMBaAFMvsbxg5BUh1IceUe097/Wy3jaR5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OUZBRi8xMjk1NzVDNDZF NDIxMUVFQUI0QzlDNkNDNEY5QUUwMi95LXh2R0RrRlNIVWh4NVI3VDN2OWJMZU5w SGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3kteHZHRGtGU0hVaHg1UjdUM3Y5YkxlTnBIay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OUZBRi8xMjk1NzVDNDZFNDIxMUVFQUI0QzlDNkNDNEY5QUUwMi95LXh2R0RrRlNI VWh4NVI3VDN2OWJMZU5wSGsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAMe/5Ate6A8/t+8Tn5SWVJjEsuhzXSIg41nwAQQII7/w2ApnWlc75+JW2WnA8 woXsHznb16ErzkjmlMg70TRS9uRyuwCi8Bt3fbdpf9eL1Fm7cuZD7N7InVlsoGQf YRXwm9ZZwcqVQzS4nZtvcDyCVI144+6TgrYYA0nXgvWx6u7GTJ361WscR3mLFcQu 2AYJke2NIatm2k245OPF+mhiAzW6GBBxsv78kYLPa1k9MfCP5a1G8gtxiasnYByC t+79JUdbQn9zfm8ZwixZQR3pTcJeC12Vw9w1/ilnL7Oy27wLdRmaDfnJzYVn79OW FZO4OfjBDyhBWnraD9lVKHl5Zw== -----END CERTIFICATE-----Generated at Fri Apr 17 09:57:58 2026 by rpki-client