$ rpki-client -vvf rpki.apnic.net/member_repository/A919E1FC/5B325FA6E9B911EFB6DA414CC4F9AE02/yl96MSHB9fmJUgx6UZcT-zpoyn4.mft File: yl96MSHB9fmJUgx6UZcT-zpoyn4.mft (raw, json) Hash identifier: bvPdAyTgtfZmVYEFVlsriXLicMIdYuKMO4VPg4xUzvc= Subject key identifier: 64:B5:77:54:F5:6A:82:D1:40:E4:28:C9:A9:C0:8E:2A:50:30:0B:B6 Authority key identifier: CA:5F:7A:31:21:C1:F5:F9:89:52:0C:7A:51:97:13:FB:3A:68:CA:7E Certificate issuer: /CN=A919E1FC/serialNumber=CA5F7A3121C1F5F989520C7A519713FB3A68CA7E Certificate serial: F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yl96MSHB9fmJUgx6UZcT-zpoyn4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919E1FC/5B325FA6E9B911EFB6DA414CC4F9AE02/yl96MSHB9fmJUgx6UZcT-zpoyn4.mft Manifest number: E3 Signing time: Fri 17 Apr 2026 06:16:38 +0000 Manifest this update: Fri 17 Apr 2026 06:16:37 +0000 Manifest next update: Fri 24 Apr 2026 06:16:37 +0000 Files and hashes: 1: yl96MSHB9fmJUgx6UZcT-zpoyn4.crl (hash: gy295q3OvfrtXBv1CZuOH8poOYbxuqW5zo8YfEqebH0=) 2: 09852FF6E9FC11EF9D3DE972C4F9AE02.roa (hash: +Guf8goiy81fZQZko9cL1+fi1M4VlxC1TorsAeBwzhI=) 3: F70CBA98E9B911EFB5B54650C4F9AE02.roa (hash: ApqLcBimI49Avn0PuHyRPruV4UszM9ORBkBlkObwqEY=) 4: 0A34182CE9FC11EF9D3DE972C4F9AE02.roa (hash: 5aZLhkHexwZy2OGn8j73qB9Fr54SX5MLYLq1gSETLgc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919E1FC/5B325FA6E9B911EFB6DA414CC4F9AE02/yl96MSHB9fmJUgx6UZcT-zpoyn4.crl rsync://rpki.apnic.net/member_repository/A919E1FC/5B325FA6E9B911EFB6DA414CC4F9AE02/yl96MSHB9fmJUgx6UZcT-zpoyn4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yl96MSHB9fmJUgx6UZcT-zpoyn4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 06:16:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 245 (0xf5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919E1FC, serialNumber=CA5F7A3121C1F5F989520C7A519713FB3A68CA7E Validity Not Before: Apr 17 06:16:37 2026 GMT Not After : Apr 24 06:16:37 2026 GMT Subject: CN=69e1d046-406a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:84:34:45:4e:46:51:46:24:55:a2:09:db:60:e5: dd:9f:19:f5:bb:c0:e6:fc:f5:a2:52:83:5d:13:08: e9:61:0a:fe:f9:1e:5f:ae:e7:f4:6b:f2:26:83:50: 1c:34:c8:63:89:b8:c6:01:89:6c:a5:1a:3e:48:42: 75:bc:74:a9:70:d6:db:fa:f1:53:96:9d:53:2a:37: ec:7d:f6:f4:d5:e4:17:3c:ce:dd:d6:2a:0e:c2:c0: ab:c4:9a:97:98:f5:c8:37:fa:80:c8:79:90:15:03: d0:00:aa:ba:5f:10:79:15:4c:50:97:b1:75:4e:44: 25:fd:a6:5a:26:42:3e:33:9f:63:e0:7c:d8:ad:2e: ef:f8:ee:ce:81:35:46:b8:82:d1:fe:4e:e3:d9:47: 3e:97:22:bc:d2:cc:a3:fc:5f:03:c9:eb:77:b2:0b: 84:94:fe:3f:20:c5:fb:c6:3b:70:19:d1:6d:21:e1: 17:3d:27:e0:be:00:5f:53:26:db:19:99:6f:cb:47: 72:a5:cf:26:7b:18:77:54:e8:42:f9:57:95:66:2e: 32:f4:a0:3d:74:dd:7e:a6:12:53:15:0a:f5:f7:99: 05:1c:32:8a:76:ed:8c:ef:7d:61:45:0f:da:16:c4: f9:bd:3b:6c:6c:fd:af:38:ec:65:04:82:47:ed:e4: 71:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:B5:77:54:F5:6A:82:D1:40:E4:28:C9:A9:C0:8E:2A:50:30:0B:B6 X509v3 Authority Key Identifier: keyid:CA:5F:7A:31:21:C1:F5:F9:89:52:0C:7A:51:97:13:FB:3A:68:CA:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919E1FC/5B325FA6E9B911EFB6DA414CC4F9AE02/yl96MSHB9fmJUgx6UZcT-zpoyn4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yl96MSHB9fmJUgx6UZcT-zpoyn4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919E1FC/5B325FA6E9B911EFB6DA414CC4F9AE02/yl96MSHB9fmJUgx6UZcT-zpoyn4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:b1:01:03:15:3a:bf:53:e9:13:11:8f:e2:09:cc:e4:63:5e: 85:f3:57:00:48:e7:94:d3:41:e7:95:27:dd:ed:00:18:b4:ad: 80:af:44:43:04:19:b8:c3:e0:3b:b1:0d:c5:25:b8:b5:d5:0b: f7:04:8c:f8:4b:ac:e4:61:11:6c:06:0d:e8:fd:1e:5c:6e:ac: b5:5f:11:9b:43:00:ba:37:e3:ad:67:da:12:02:a1:bd:0a:c3: 7f:85:a9:4f:e4:c1:81:45:29:91:4d:7c:2a:b4:c6:f0:98:e9: ce:6d:d4:d0:ed:5e:c7:f5:5c:d8:37:14:74:8d:4e:1d:31:cf: ac:75:38:ce:04:e6:8e:7f:44:73:0e:7a:8a:e8:a3:f5:42:ac: d4:e8:43:24:9f:b0:07:6d:e1:95:4e:71:6f:1e:4f:d8:3e:2b: 9e:fb:a0:19:3a:56:5a:90:7b:1f:bd:79:f3:ed:05:6f:36:33: 88:15:fd:14:fc:51:69:68:b8:c4:29:9d:d4:09:cc:4e:55:6a: 77:3d:a5:c4:72:93:eb:1e:83:e2:3a:ad:46:90:39:66:bb:7d: dd:4c:e9:af:f7:b2:18:7b:5b:13:da:33:2b:72:de:f1:88:6f: da:f2:3e:69:7b:12:03:66:6f:8b:cd:c1:82:b9:b0:91:40:92: 0b:35:c0:2d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAPUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUUxRkMxMTAvBgNVBAUTKENBNUY3QTMxMjFDMUY1Rjk4OTUyMEM3QTUxOTcxM0ZC M0E2OENBN0UwHhcNMjYwNDE3MDYxNjM3WhcNMjYwNDI0MDYxNjM3WjAYMRYwFAYD VQQDEw02OWUxZDA0Ni00MDZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAhDRFTkZRRiRVognbYOXdnxn1u8Dm/PWiUoNdEwjpYQr++R5fruf0a/Img1Ac NMhjibjGAYlspRo+SEJ1vHSpcNbb+vFTlp1TKjfsffb01eQXPM7d1ioOwsCrxJqX mPXIN/qAyHmQFQPQAKq6XxB5FUxQl7F1TkQl/aZaJkI+M59j4HzYrS7v+O7OgTVG uILR/k7j2Uc+lyK80syj/F8Dyet3sguElP4/IMX7xjtwGdFtIeEXPSfgvgBfUybb GZlvy0dypc8mexh3VOhC+VeVZi4y9KA9dN1+phJTFQr195kFHDKKdu2M731hRQ/a FsT5vTtsbP2vOOxlBIJH7eRxLQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGS1d1T1 aoLRQOQoyanAjipQMAu2MB8GA1UdIwQYMBaAFMpfejEhwfX5iVIMelGXE/s6aMp+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RTFGQy81QjMyNUZBNkU5 QjkxMUVGQjZEQTQxNENDNEY5QUUwMi95bDk2TVNIQjlmbUpVZ3g2VVpjVC16cG95 bjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lsOTZNU0hCOWZtSlVneDZVWmNULXpwb3luNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RTFGQy81QjMyNUZBNkU5QjkxMUVGQjZEQTQxNENDNEY5QUUwMi95bDk2TVNIQjlm bUpVZ3g2VVpjVC16cG95bjQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAErEBAxU6v1PpExGP4gnM5GNehfNXAEjnlNNB55Un3e0AGLStgK9EQwQZuMPg O7ENxSW4tdUL9wSM+Eus5GERbAYN6P0eXG6stV8Rm0MAujfjrWfaEgKhvQrDf4Wp T+TBgUUpkU18KrTG8Jjpzm3U0O1ex/Vc2DcUdI1OHTHPrHU4zgTmjn9Ecw56iuij 9UKs1OhDJJ+wB23hlU5xbx5P2D4rnvugGTpWWpB7H7158+0FbzYziBX9FPxRaWi4 xCmd1AnMTlVqdz2lxHKT6x6D4jqtRpA5Zrt93Uzpr/eyGHtbE9ozK3Le8Yhv2vI+ aXsSA2Zvi83BgrmwkUCSCzXALQ== -----END CERTIFICATE-----Generated at Fri Apr 17 19:44:27 2026 by rpki-client