$ rpki-client -vvf rpki.apnic.net/member_repository/A917EB96/64D6BDCC1C2911EE9D06F90AC4F9AE02/yCt7N51v7So8MMRTfg-HzLYIIus.mft File: yCt7N51v7So8MMRTfg-HzLYIIus.mft (raw, json) Hash identifier: ejIJge9+iTM7g/uLwASG9nNnZtKgv0DtrADpdGUlRH4= Subject key identifier: 38:CD:C8:C8:E5:C3:F0:E9:54:D0:4F:9F:7B:B1:5D:5B:AE:3C:E1:9A Authority key identifier: C8:2B:7B:37:9D:6F:ED:2A:3C:30:C4:53:7E:0F:87:CC:B6:08:22:EB Certificate issuer: /CN=A917EB96/serialNumber=C82B7B379D6FED2A3C30C4537E0F87CCB60822EB Certificate serial: 0216 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCt7N51v7So8MMRTfg-HzLYIIus.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917EB96/64D6BDCC1C2911EE9D06F90AC4F9AE02/yCt7N51v7So8MMRTfg-HzLYIIus.mft Manifest number: 020C Signing time: Fri 17 Apr 2026 02:44:10 +0000 Manifest this update: Fri 17 Apr 2026 02:44:10 +0000 Manifest next update: Fri 24 Apr 2026 02:44:10 +0000 Files and hashes: 1: yCt7N51v7So8MMRTfg-HzLYIIus.crl (hash: r5HpSD/rPzG1UGy9R9LM5cFTob1E4+urzlKz4QYw34U=) 2: B50ECD32A57E11EEB4533738C4F9AE02.roa (hash: Z9dMHKPPJ4AwtBBzPO0B7QfeY06QQPe693ePWyaMLDg=) 3: 348BAEE41C2D11EEB362491FC4F9AE02.roa (hash: yocmNFy5AmrqEw3U7DjRD1ZXBRbgklEi4nFkGSGg5fE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917EB96/64D6BDCC1C2911EE9D06F90AC4F9AE02/yCt7N51v7So8MMRTfg-HzLYIIus.crl rsync://rpki.apnic.net/member_repository/A917EB96/64D6BDCC1C2911EE9D06F90AC4F9AE02/yCt7N51v7So8MMRTfg-HzLYIIus.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCt7N51v7So8MMRTfg-HzLYIIus.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 02:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 534 (0x216) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917EB96, serialNumber=C82B7B379D6FED2A3C30C4537E0F87CCB60822EB Validity Not Before: Apr 17 02:44:10 2026 GMT Not After : Apr 24 02:44:10 2026 GMT Subject: CN=69e19e7a-468a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:2e:f1:07:79:d1:10:bd:83:7c:1d:3a:b6:19: 5e:d4:e2:62:0f:ec:d1:55:57:6c:66:55:03:68:b0: bf:0d:4b:76:18:c3:9b:91:29:b4:f7:92:2f:74:99: 53:a6:b5:1e:4a:9e:3b:b4:5e:76:1d:bb:2e:34:fe: 36:80:ea:fa:ce:ba:5b:da:6e:e7:84:3a:94:38:ad: 1e:73:e7:b9:39:49:f3:3b:c0:53:10:ad:e6:da:36: fd:68:9b:03:47:85:80:e2:71:a3:c8:41:77:c6:ca: dd:6c:57:8c:e1:65:e4:49:ad:a9:ef:f1:15:5a:38: 25:62:91:a3:12:39:64:32:d8:ae:5c:43:75:09:ce: 24:2b:54:b4:79:e9:89:51:ce:6d:cb:e0:0f:20:16: bf:07:b5:ac:90:64:b8:44:18:76:cf:d4:06:04:ff: b3:fb:ad:56:9d:e3:b1:81:90:73:51:df:ce:e9:ea: 7c:54:f4:35:d9:f3:fb:79:ea:70:c0:7f:5a:d9:e1: 21:15:64:02:fb:b5:7b:9a:3f:8b:01:c0:3d:53:61: 66:85:79:c9:0e:f4:22:95:90:6d:11:60:f8:18:93: 48:7a:63:c6:74:ad:6e:c5:85:7e:c7:15:77:cb:69: 1b:17:25:3f:ba:e0:11:d7:a4:67:c9:b9:1d:3c:1a: fb:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:CD:C8:C8:E5:C3:F0:E9:54:D0:4F:9F:7B:B1:5D:5B:AE:3C:E1:9A X509v3 Authority Key Identifier: keyid:C8:2B:7B:37:9D:6F:ED:2A:3C:30:C4:53:7E:0F:87:CC:B6:08:22:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917EB96/64D6BDCC1C2911EE9D06F90AC4F9AE02/yCt7N51v7So8MMRTfg-HzLYIIus.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCt7N51v7So8MMRTfg-HzLYIIus.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917EB96/64D6BDCC1C2911EE9D06F90AC4F9AE02/yCt7N51v7So8MMRTfg-HzLYIIus.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:8b:3b:bc:8f:4b:9e:bf:1a:af:5a:15:8d:96:d2:89:1e:97: a0:cf:e7:f6:16:54:1f:bb:48:47:17:69:99:d5:b6:50:11:7c: a6:49:9e:67:06:49:07:cd:e6:6d:c6:59:e4:21:fd:01:25:0e: 46:36:2c:5f:7f:b9:fc:af:55:85:33:34:e8:87:e3:bc:a1:52: 3e:2c:4c:ec:3c:07:43:d6:f0:36:6e:cf:dc:46:5f:bc:a0:20: 72:d1:29:a3:81:c5:23:74:65:6b:bd:58:1c:44:d1:37:4b:a9: 7b:70:0a:dc:87:f2:74:e8:ac:50:ee:63:55:6e:18:1b:08:b4: ac:58:fe:09:1a:aa:ca:5d:ea:6a:1c:0c:56:6f:85:33:9c:5c: b2:cf:3c:51:3c:39:3e:0f:66:fa:83:48:b5:b1:2d:03:40:f7: f6:e2:6a:d6:3b:13:42:f2:e5:17:9b:6e:0e:0f:f8:9a:18:97: b4:14:af:af:95:47:5a:8e:fe:af:46:e9:7b:64:3e:8a:fd:78: d4:7a:8e:b2:cc:78:84:9d:49:d2:27:ea:09:e9:cc:2a:8b:fb: bb:94:30:f4:3f:5d:33:3a:3f:14:74:28:9f:b8:92:62:51:c0: 2e:07:ca:0a:16:de:e6:1d:23:70:c7:94:cb:95:b2:a5:65:d2: fd:f4:8f:9e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAhYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VCOTYxMTAvBgNVBAUTKEM4MkI3QjM3OUQ2RkVEMkEzQzMwQzQ1MzdFMEY4N0ND QjYwODIyRUIwHhcNMjYwNDE3MDI0NDEwWhcNMjYwNDI0MDI0NDEwWjAYMRYwFAYD VQQDEw02OWUxOWU3YS00NjhhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsS7xB3nREL2DfB06thle1OJiD+zRVVdsZlUDaLC/DUt2GMObkSm095IvdJlT prUeSp47tF52HbsuNP42gOr6zrpb2m7nhDqUOK0ec+e5OUnzO8BTEK3m2jb9aJsD R4WA4nGjyEF3xsrdbFeM4WXkSa2p7/EVWjglYpGjEjlkMtiuXEN1Cc4kK1S0eemJ Uc5ty+APIBa/B7WskGS4RBh2z9QGBP+z+61WneOxgZBzUd/O6ep8VPQ12fP7eepw wH9a2eEhFWQC+7V7mj+LAcA9U2FmhXnJDvQilZBtEWD4GJNIemPGdK1uxYV+xxV3 y2kbFyU/uuAR16RnybkdPBr76QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDjNyMjl w/DpVNBPn3uxXVuuPOGaMB8GA1UdIwQYMBaAFMgrezedb+0qPDDEU34Ph8y2CCLr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUI5Ni82NEQ2QkRDQzFD MjkxMUVFOUQwNkY5MEFDNEY5QUUwMi95Q3Q3TjUxdjdTbzhNTVJUZmctSHpMWUlJ dXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lDdDdONTF2N1NvOE1NUlRmZy1IekxZSUl1cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RUI5Ni82NEQ2QkRDQzFDMjkxMUVFOUQwNkY5MEFDNEY5QUUwMi95Q3Q3TjUxdjdT bzhNTVJUZmctSHpMWUlJdXMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAaos7vI9Lnr8ar1oVjZbSiR6XoM/n9hZUH7tIRxdpmdW2UBF8pkmeZwZJB83m bcZZ5CH9ASUORjYsX3+5/K9VhTM06IfjvKFSPixM7DwHQ9bwNm7P3EZfvKAgctEp o4HFI3Rla71YHETRN0upe3AK3IfydOisUO5jVW4YGwi0rFj+CRqqyl3qahwMVm+F M5xcss88UTw5Pg9m+oNItbEtA0D39uJq1jsTQvLlF5tuDg/4mhiXtBSvr5VHWo7+ r0bpe2Q+iv141HqOssx4hJ1J0ifqCenMKov7u5Qw9D9dMzo/FHQon7iSYlHALgfK Chbe5h0jcMeUy5WypWXS/fSPng== -----END CERTIFICATE-----Generated at Fri Apr 17 08:03:35 2026 by rpki-client