$ rpki-client -vvf rpki.apnic.net/member_repository/A9175D4F/585F4D0E787911EAAEBA3B38C4F9AE02/YCgZkDDJlCoUSqFr-zB450H27CM.mft File: YCgZkDDJlCoUSqFr-zB450H27CM.mft (raw, json) Hash identifier: vR0DdYzMFv4IlUhVmXr6DjDwQujaYYQh3ajfgxZ864U= Subject key identifier: B2:C5:0B:F5:D1:FF:8C:B7:A2:68:3D:7C:FB:82:99:89:60:8C:2C:F0 Authority key identifier: 60:28:19:90:30:C9:94:2A:14:4A:A1:6B:FB:30:78:E7:41:F6:EC:23 Certificate issuer: /CN=A9175D4F/serialNumber=6028199030C9942A144AA16BFB3078E741F6EC23 Certificate serial: 0AB0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YCgZkDDJlCoUSqFr-zB450H27CM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9175D4F/585F4D0E787911EAAEBA3B38C4F9AE02/YCgZkDDJlCoUSqFr-zB450H27CM.mft Manifest number: 0A9E Signing time: Thu 16 Apr 2026 19:25:39 +0000 Manifest this update: Thu 16 Apr 2026 19:25:39 +0000 Manifest next update: Thu 23 Apr 2026 19:25:39 +0000 Files and hashes: 1: YCgZkDDJlCoUSqFr-zB450H27CM.crl (hash: R9rkd2Yt5RtrBbenaOL4eIc9U72wVfqtCPLR6qHnlV4=) 2: 5C1CF19EA9C011EABAAB4624C4F9AE02.roa (hash: U+pjz+gHKxK+CuW7qo7BMs3J3XoJAneOPNb7LhCFDWE=) 3: 5D2B0616A9C011EABAAB4624C4F9AE02.roa (hash: 8YO7DX/ju7wBJN2WP2J19RtUaJOJS0pwglyNumUV6/c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9175D4F/585F4D0E787911EAAEBA3B38C4F9AE02/YCgZkDDJlCoUSqFr-zB450H27CM.crl rsync://rpki.apnic.net/member_repository/A9175D4F/585F4D0E787911EAAEBA3B38C4F9AE02/YCgZkDDJlCoUSqFr-zB450H27CM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YCgZkDDJlCoUSqFr-zB450H27CM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 19:25:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2736 (0xab0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9175D4F, serialNumber=6028199030C9942A144AA16BFB3078E741F6EC23 Validity Not Before: Apr 16 19:25:39 2026 GMT Not After : Apr 23 19:25:39 2026 GMT Subject: CN=69e137b3-6e31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:f8:25:a4:81:fc:df:2d:03:be:25:1f:ca:60: 43:96:ed:98:71:83:85:9f:ea:59:09:aa:48:62:75: 50:5d:1f:db:b3:62:34:28:b2:91:73:73:08:59:1f: ae:d3:84:57:ea:0a:29:12:1c:77:82:2c:5e:7e:d9: b8:90:9d:fb:95:84:34:a3:12:01:f9:48:d0:f7:d9: cd:92:92:79:66:bf:4a:17:e9:ea:b5:56:87:08:c6: 98:67:86:05:98:f9:64:b6:a5:7d:12:d4:0b:57:22: d2:9b:52:53:6a:2b:d1:24:dc:c6:de:d4:fd:07:ce: 50:2c:72:d6:0c:81:ab:32:70:a6:9b:cd:c6:e4:22: ca:0e:db:4d:42:61:f5:9a:d8:ea:b0:ea:fb:fc:b2: c2:0b:09:4f:ff:57:4f:3c:56:00:03:07:df:78:f6: fe:bd:5f:a3:e2:b6:7c:85:a0:4e:2f:bf:e4:85:18: 71:a2:41:82:f4:1e:60:c0:c6:d2:ed:89:00:51:cf: 1e:4b:0f:82:f6:3f:a6:ef:29:bc:8a:cb:0f:1d:e5: d6:48:40:77:4a:dc:4f:95:79:7a:45:50:be:03:1e: 33:92:79:8b:97:8f:42:ac:aa:aa:1f:19:92:92:e1: 37:7b:bc:13:74:78:0f:33:ff:55:08:ca:4c:3d:e6: cc:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:C5:0B:F5:D1:FF:8C:B7:A2:68:3D:7C:FB:82:99:89:60:8C:2C:F0 X509v3 Authority Key Identifier: keyid:60:28:19:90:30:C9:94:2A:14:4A:A1:6B:FB:30:78:E7:41:F6:EC:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9175D4F/585F4D0E787911EAAEBA3B38C4F9AE02/YCgZkDDJlCoUSqFr-zB450H27CM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YCgZkDDJlCoUSqFr-zB450H27CM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175D4F/585F4D0E787911EAAEBA3B38C4F9AE02/YCgZkDDJlCoUSqFr-zB450H27CM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:af:c4:c1:24:8c:fc:12:d2:4a:5b:81:f1:13:d7:8e:d8:99: 3e:81:1e:8b:ce:5d:f5:79:22:b7:35:35:3b:c9:8e:0f:6f:bf: 55:38:66:64:0e:0d:11:b2:17:43:3d:b3:f1:b1:c1:fb:dc:34: c3:5f:73:92:76:6b:03:bd:56:aa:aa:b5:0a:ce:59:f4:27:65: d8:11:40:ec:c4:6d:e6:3b:13:a2:e0:83:3b:78:d8:fa:ae:96: f5:0d:ae:ea:93:c1:bb:41:36:cb:4e:4c:c8:21:be:09:6c:ac: 48:94:81:78:9c:80:92:5f:7a:56:44:3d:ee:8f:e5:51:9a:f4: 2d:26:76:f8:3d:68:eb:fe:22:05:1b:29:5f:99:7b:4c:d7:89: 6c:3f:23:37:64:f3:ed:d3:aa:8a:24:8d:ca:19:a9:f3:76:ae: 2c:a4:8f:55:2c:72:56:2f:bc:73:46:44:91:e4:da:c0:18:3d: 42:df:6a:97:52:de:ec:50:fe:6f:12:bd:a5:5f:81:1d:2b:7b: 4d:3b:87:dd:a7:98:54:f4:7c:fa:b2:a7:2c:17:e9:1f:48:e4: 65:b1:8a:a1:66:da:f2:9a:48:67:1c:bf:8b:c0:61:54:ec:f0: ba:b6:7e:c1:e0:c6:d5:d9:a3:62:93:dc:c6:43:c1:97:43:bb: 35:cb:0f:f2 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCrAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzVENEYxMTAvBgNVBAUTKDYwMjgxOTkwMzBDOTk0MkExNDRBQTE2QkZCMzA3OEU3 NDFGNkVDMjMwHhcNMjYwNDE2MTkyNTM5WhcNMjYwNDIzMTkyNTM5WjAYMRYwFAYD VQQDEw02OWUxMzdiMy02ZTMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv/glpIH83y0DviUfymBDlu2YcYOFn+pZCapIYnVQXR/bs2I0KLKRc3MIWR+u 04RX6gopEhx3gixeftm4kJ37lYQ0oxIB+UjQ99nNkpJ5Zr9KF+nqtVaHCMaYZ4YF mPlktqV9EtQLVyLSm1JTaivRJNzG3tT9B85QLHLWDIGrMnCmm83G5CLKDttNQmH1 mtjqsOr7/LLCCwlP/1dPPFYAAwffePb+vV+j4rZ8haBOL7/khRhxokGC9B5gwMbS 7YkAUc8eSw+C9j+m7ym8issPHeXWSEB3StxPlXl6RVC+Ax4zknmLl49CrKqqHxmS kuE3e7wTdHgPM/9VCMpMPebMvQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLLFC/XR /4y3omg9fPuCmYlgjCzwMB8GA1UdIwQYMBaAFGAoGZAwyZQqFEqha/sweOdB9uwj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NUQ0Ri81ODVGNEQwRTc4 NzkxMUVBQUVCQTNCMzhDNEY5QUUwMi9ZQ2daa0RESmxDb1VTcUZyLXpCNDUwSDI3 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lDZ1prRERKbENvVVNxRnItekI0NTBIMjdDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NUQ0Ri81ODVGNEQwRTc4NzkxMUVBQUVCQTNCMzhDNEY5QUUwMi9ZQ2daa0RESmxD b1VTcUZyLXpCNDUwSDI3Q00ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEALK/EwSSM/BLSSluB8RPXjtiZPoEei85d9XkitzU1O8mOD2+/VThmZA4NEbIX Qz2z8bHB+9w0w19zknZrA71Wqqq1Cs5Z9Cdl2BFA7MRt5jsTouCDO3jY+q6W9Q2u 6pPBu0E2y05MyCG+CWysSJSBeJyAkl96VkQ97o/lUZr0LSZ2+D1o6/4iBRspX5l7 TNeJbD8jN2Tz7dOqiiSNyhmp83auLKSPVSxyVi+8c0ZEkeTawBg9Qt9ql1Le7FD+ bxK9pV+BHSt7TTuH3aeYVPR8+rKnLBfpH0jkZbGKoWba8ppIZxy/i8BhVOzwurZ+ weDG1dmjYpPcxkPBl0O7NcsP8g== -----END CERTIFICATE-----Generated at Fri Apr 17 17:05:59 2026 by rpki-client