$ rpki-client -vvf rpki.apnic.net/member_repository/A919B5BB/44BBC14CFF0111E5B1CFB058C4F9AE02/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.mft File: ysRHjw_dmuQeJOn8Z_hR_0PDMwk.mft (raw, json) Hash identifier: iXJAR4ZN2K0EceKChddEmyqWeuGeiiNVMFM3NtDMFJs= Subject key identifier: 5E:4D:06:6B:A6:78:00:9A:F1:24:02:25:C2:09:9F:A6:E1:BF:83:5D Authority key identifier: CA:C4:47:8F:0F:DD:9A:E4:1E:24:E9:FC:67:F8:51:FF:43:C3:33:09 Certificate issuer: /CN=A919B5BB/serialNumber=CAC4478F0FDD9AE41E24E9FC67F851FF43C33309 Certificate serial: 217F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919B5BB/44BBC14CFF0111E5B1CFB058C4F9AE02/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.mft Manifest number: 2171 Signing time: Thu 16 Apr 2026 15:52:44 +0000 Manifest this update: Thu 16 Apr 2026 15:52:43 +0000 Manifest next update: Thu 23 Apr 2026 15:52:43 +0000 Files and hashes: 1: ysRHjw_dmuQeJOn8Z_hR_0PDMwk.crl (hash: CaRXLI0x74hVWdflubV0NJo4498E3S+drGgI0m9IU/o=) 2: C49E2E22FF0111E591C15659C4F9AE02.roa (hash: HhQxUt8kfX+mJlXHn9AIcVCVvv1AbgL+l8SBK6m5XSw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919B5BB/44BBC14CFF0111E5B1CFB058C4F9AE02/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.crl rsync://rpki.apnic.net/member_repository/A919B5BB/44BBC14CFF0111E5B1CFB058C4F9AE02/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 15:52:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8575 (0x217f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919B5BB, serialNumber=CAC4478F0FDD9AE41E24E9FC67F851FF43C33309 Validity Not Before: Apr 16 15:52:43 2026 GMT Not After : Apr 23 15:52:43 2026 GMT Subject: CN=69e105cc-5921 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:76:70:f1:64:f3:d3:bb:49:7a:5e:35:07:ad: 17:2c:49:3c:06:69:6e:c6:fd:34:7b:d9:0c:7c:44: c2:72:5b:37:ec:15:c6:5c:bd:54:c4:55:89:43:5c: 73:fa:81:e7:04:d0:84:99:7e:a3:38:6c:28:c1:f1: 05:df:c5:f1:38:c3:d1:3a:b3:d3:5d:36:23:61:09: 68:ca:d3:8e:12:a6:88:36:ed:ff:ed:f4:60:cb:79: 02:52:46:e0:78:64:5f:23:5b:e8:6c:c5:5a:14:6e: 5c:c3:36:8f:ee:5d:09:9e:37:17:f0:28:31:c5:3c: 86:6c:15:22:68:0b:dc:1b:e1:26:0a:f6:5b:5f:6b: c9:53:53:d5:bd:0f:8a:bd:0d:2a:7d:c4:6e:2c:84: 28:c1:ef:37:d8:dc:f6:7a:3b:4b:55:d6:04:03:b8: 5b:52:b4:09:2c:07:21:d3:e7:fe:92:53:18:91:0d: e0:68:59:29:1b:58:b5:f3:df:1e:a2:79:1f:a8:9a: b6:19:15:4d:d9:72:d7:cc:e3:37:f1:44:31:ec:31: 9d:4b:7b:3c:f7:49:1f:82:10:5f:6d:a5:55:58:bc: 77:55:f7:68:26:b9:70:d2:f7:cb:cb:86:f0:62:1e: fb:f8:82:64:8d:6d:0d:f0:f8:37:65:07:66:dc:42: d6:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:4D:06:6B:A6:78:00:9A:F1:24:02:25:C2:09:9F:A6:E1:BF:83:5D X509v3 Authority Key Identifier: keyid:CA:C4:47:8F:0F:DD:9A:E4:1E:24:E9:FC:67:F8:51:FF:43:C3:33:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919B5BB/44BBC14CFF0111E5B1CFB058C4F9AE02/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919B5BB/44BBC14CFF0111E5B1CFB058C4F9AE02/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:95:a9:37:1e:c6:ba:98:23:01:d8:9c:8c:53:30:eb:00:7b: 20:b1:b5:a8:a6:13:8f:c8:d3:8b:44:43:cd:e8:c4:ab:d0:2a: c8:1c:5b:56:ed:68:34:9d:84:ad:7b:59:9b:c5:75:31:23:ff: 0b:13:31:83:5f:aa:6a:ee:25:f3:08:da:9d:03:26:3f:ce:c8: 16:e8:69:10:d8:59:96:87:8d:b2:ac:0b:0c:1d:0f:1a:59:47: 42:6c:24:93:c0:69:40:e8:e6:fd:0f:fd:ac:06:d6:68:45:09: 69:55:f3:bb:5c:f2:ce:56:d5:1e:fb:59:5d:21:57:9c:dc:27: 2a:3c:ba:f7:c5:88:e1:ca:1a:9b:bb:6d:0a:04:81:95:b4:fd: 1a:e0:8a:bb:d6:47:9e:d5:d8:e4:af:fd:0f:98:78:f8:d0:36: c8:9a:ed:2e:3a:97:3d:2a:c2:1f:00:34:a2:84:34:f4:a6:f7: 7b:cc:e8:f0:6a:a4:f4:9f:5a:6a:db:ef:e6:57:b6:84:ca:29: 10:cd:1d:f6:b0:2a:5c:39:c4:61:7f:f1:03:9b:36:35:54:ba: 8f:c3:9b:5a:a9:3c:07:ec:a0:ea:45:c4:a0:55:04:5e:ee:37: be:d8:b0:97:b7:3c:ee:b6:5e:e5:b5:64:95:c7:aa:e0:9d:df: 06:f7:24:1b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICIX8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUI1QkIxMTAvBgNVBAUTKENBQzQ0NzhGMEZERDlBRTQxRTI0RTlGQzY3Rjg1MUZG NDNDMzMzMDkwHhcNMjYwNDE2MTU1MjQzWhcNMjYwNDIzMTU1MjQzWjAYMRYwFAYD VQQDEw02OWUxMDVjYy01OTIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoHZw8WTz07tJel41B60XLEk8Bmluxv00e9kMfETCcls37BXGXL1UxFWJQ1xz +oHnBNCEmX6jOGwowfEF38XxOMPROrPTXTYjYQloytOOEqaINu3/7fRgy3kCUkbg eGRfI1vobMVaFG5cwzaP7l0JnjcX8CgxxTyGbBUiaAvcG+EmCvZbX2vJU1PVvQ+K vQ0qfcRuLIQowe832Nz2ejtLVdYEA7hbUrQJLAch0+f+klMYkQ3gaFkpG1i1898e onkfqJq2GRVN2XLXzOM38UQx7DGdS3s890kfghBfbaVVWLx3VfdoJrlw0vfLy4bw Yh77+IJkjW0N8Pg3ZQdm3ELWqQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFF5NBmum eACa8SQCJcIJn6bhv4NdMB8GA1UdIwQYMBaAFMrER48P3ZrkHiTp/Gf4Uf9DwzMJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QjVCQi80NEJCQzE0Q0ZG MDExMUU1QjFDRkIwNThDNEY5QUUwMi95c1JIandfZG11UWVKT244Wl9oUl8wUERN d2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lzUkhqd19kbXVRZUpPbjhaX2hSXzBQRE13ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QjVCQi80NEJCQzE0Q0ZGMDExMUU1QjFDRkIwNThDNEY5QUUwMi95c1JIandfZG11 UWVKT244Wl9oUl8wUERNd2subWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAYJWpNx7GupgjAdicjFMw6wB7ILG1qKYTj8jTi0RDzejEq9AqyBxbVu1oNJ2E rXtZm8V1MSP/CxMxg1+qau4l8wjanQMmP87IFuhpENhZloeNsqwLDB0PGllHQmwk k8BpQOjm/Q/9rAbWaEUJaVXzu1zyzlbVHvtZXSFXnNwnKjy698WI4coam7ttCgSB lbT9GuCKu9ZHntXY5K/9D5h4+NA2yJrtLjqXPSrCHwA0ooQ09Kb3e8zo8Gqk9J9a atvv5le2hMopEM0d9rAqXDnEYX/xA5s2NVS6j8ObWqk8B+yg6kXEoFUEXu43vtiw l7c87rZe5bVklceq4J3fBvckGw== -----END CERTIFICATE-----Generated at Fri Apr 17 13:56:20 2026 by rpki-client