$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.mft File: C-AoY1W14laYjORU35P8D8p_YEA.mft (raw, json) Hash identifier: zL+01aGqFL7HwlHeV7ss/3rVoSRICvH9xY9LBEaG/t0= Subject key identifier: 63:F6:58:B0:34:52:59:37:AD:18:7B:4D:3A:1D:BB:D1:50:FA:B8:C7 Authority key identifier: 0B:E0:28:63:55:B5:E2:56:98:8C:E4:54:DF:93:FC:0F:CA:7F:60:40 Certificate issuer: /CN=A91A1D43/serialNumber=0BE0286355B5E256988CE454DF93FC0FCA7F6040 Certificate serial: 0239 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C-AoY1W14laYjORU35P8D8p_YEA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.mft Manifest number: 022D Signing time: Fri 17 Apr 2026 02:25:03 +0000 Manifest this update: Fri 17 Apr 2026 02:25:02 +0000 Manifest next update: Fri 24 Apr 2026 02:25:02 +0000 Files and hashes: 1: C-AoY1W14laYjORU35P8D8p_YEA.crl (hash: GkjsPrsWaHYkguu23KG/66B3eGiCR3qo4rHz/mysh8c=) 2: 8BCB2CFAEA3911EDB91E190BC4F9AE02.roa (hash: QhSp+pceORKO5TeSj6aanaSrz92dgNngwmylNT95Bc4=) 3: 8B1BDC14EA3911EDB91E190BC4F9AE02.roa (hash: IRQ+OR5t+v1uxAMW20q5TYiXjn6EFNEgE2VqHO9rI/w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.crl rsync://rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C-AoY1W14laYjORU35P8D8p_YEA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 02:25:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 569 (0x239) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1D43, serialNumber=0BE0286355B5E256988CE454DF93FC0FCA7F6040 Validity Not Before: Apr 17 02:25:02 2026 GMT Not After : Apr 24 02:25:02 2026 GMT Subject: CN=69e199fe-81bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:53:c8:2c:f7:a6:5b:57:d0:4b:87:8c:5d:b3: 0c:75:0c:6a:8d:61:bd:9d:03:6c:91:fd:2c:df:00: 62:a4:18:e3:05:70:48:65:49:ec:fd:21:ab:b1:b8: 6e:d0:af:43:88:05:75:66:07:40:38:dd:00:06:64: da:ea:9f:94:cb:f7:f0:ca:ae:c6:56:18:79:68:65: 3e:85:d2:20:35:a6:2c:37:44:3a:2e:b7:7e:be:89: 36:3c:52:b9:81:bf:28:fe:02:2e:24:2c:2b:46:fb: 4d:f8:11:44:87:bf:f8:1a:4a:8f:4f:10:1d:3b:6d: fd:c8:d2:8a:0a:51:89:4f:b4:56:98:44:e6:f3:aa: 59:ee:0d:83:1b:c3:7c:4e:a1:ce:91:80:bc:fd:72: 8d:de:5c:3d:6b:3b:ce:45:a6:d5:bf:f2:be:7b:6e: 7f:79:a8:0c:eb:9b:e0:0b:61:d3:01:2e:71:75:23: 8e:34:18:b4:29:f4:53:6f:82:4b:8d:74:04:da:c4: 18:e9:dc:52:a5:fd:7b:d1:af:e3:b4:53:ee:33:9d: bd:cd:35:56:b9:b3:15:39:c6:75:a8:22:f4:fe:bb: 83:bb:96:f7:60:27:4a:aa:6a:32:4f:9e:3a:d4:27: 88:3f:70:38:9e:89:f7:7e:fc:49:86:cf:f7:56:df: a0:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:F6:58:B0:34:52:59:37:AD:18:7B:4D:3A:1D:BB:D1:50:FA:B8:C7 X509v3 Authority Key Identifier: keyid:0B:E0:28:63:55:B5:E2:56:98:8C:E4:54:DF:93:FC:0F:CA:7F:60:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C-AoY1W14laYjORU35P8D8p_YEA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:7b:bd:c4:df:fc:96:a6:87:1e:ff:63:90:db:21:c6:87:41: 71:ba:b6:9d:3c:97:62:59:24:12:4e:cc:aa:0b:c3:91:23:28: 3d:3c:db:cc:5a:e5:80:d4:b9:ce:b4:8b:8d:2f:43:27:45:4c: 6b:46:9f:00:1c:ef:f8:12:e9:10:c3:1f:4d:db:67:36:b6:a2: f6:95:02:76:1f:fb:ae:c8:ae:12:09:eb:b7:1d:0a:9c:18:38: bb:ab:31:97:2d:80:07:10:9d:8b:98:be:cb:01:f3:28:0b:36: f6:15:84:c0:b2:c0:9e:9d:cb:02:4b:20:0a:23:4d:fd:f0:66: d5:3a:3e:49:d9:c5:b5:75:da:c0:25:50:0f:5c:d4:b4:c1:44: 22:ad:08:58:0c:cc:8e:0b:57:ac:28:4f:06:c1:9a:a8:0d:21: 0e:eb:20:7f:6e:9e:88:37:e8:ae:ea:17:38:f3:78:5d:d1:c6: 71:69:d0:3d:ac:4e:1f:83:b5:41:b6:1e:4e:17:c6:d1:40:1d: b7:36:d7:17:2f:3d:3b:a8:b3:ce:8b:a9:04:be:96:f0:62:d4: e6:52:5a:12:c5:01:74:1f:dd:60:05:d9:17:33:02:39:28:ca: fa:b2:fa:c4:55:c1:7b:06:cf:3d:87:d1:f8:53:3e:4e:f2:f1: 70:0b:8c:eb -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAjkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTFENDMxMTAvBgNVBAUTKDBCRTAyODYzNTVCNUUyNTY5ODhDRTQ1NERGOTNGQzBG Q0E3RjYwNDAwHhcNMjYwNDE3MDIyNTAyWhcNMjYwNDI0MDIyNTAyWjAYMRYwFAYD VQQDEw02OWUxOTlmZS04MWJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz1PILPemW1fQS4eMXbMMdQxqjWG9nQNskf0s3wBipBjjBXBIZUns/SGrsbhu 0K9DiAV1ZgdAON0ABmTa6p+Uy/fwyq7GVhh5aGU+hdIgNaYsN0Q6Lrd+vok2PFK5 gb8o/gIuJCwrRvtN+BFEh7/4GkqPTxAdO239yNKKClGJT7RWmETm86pZ7g2DG8N8 TqHOkYC8/XKN3lw9azvORabVv/K+e25/eagM65vgC2HTAS5xdSOONBi0KfRTb4JL jXQE2sQY6dxSpf170a/jtFPuM529zTVWubMVOcZ1qCL0/ruDu5b3YCdKqmoyT546 1CeIP3A4non3fvxJhs/3Vt+gjQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGP2WLA0 Ulk3rRh7TTodu9FQ+rjHMB8GA1UdIwQYMBaAFAvgKGNVteJWmIzkVN+T/A/Kf2BA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMUQ0My84OTI5REZERUVB MjgxMUVEQjdERDAxMThDNEY5QUUwMi9DLUFvWTFXMTRsYVlqT1JVMzVQOEQ4cF9Z RUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0MtQW9ZMVcxNGxhWWpPUlUzNVA4RDhwX1lFQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MUQ0My84OTI5REZERUVBMjgxMUVEQjdERDAxMThDNEY5QUUwMi9DLUFvWTFXMTRs YVlqT1JVMzVQOEQ4cF9ZRUEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAG3u9xN/8lqaHHv9jkNshxodBcbq2nTyXYlkkEk7MqgvDkSMoPTzbzFrlgNS5 zrSLjS9DJ0VMa0afABzv+BLpEMMfTdtnNrai9pUCdh/7rsiuEgnrtx0KnBg4u6sx ly2ABxCdi5i+ywHzKAs29hWEwLLAnp3LAksgCiNN/fBm1To+SdnFtXXawCVQD1zU tMFEIq0IWAzMjgtXrChPBsGaqA0hDusgf26eiDforuoXOPN4XdHGcWnQPaxOH4O1 QbYeThfG0UAdtzbXFy89O6izzoupBL6W8GLU5lJaEsUBdB/dYAXZFzMCOSjK+rL6 xFXBewbPPYfR+FM+TvLxcAuM6w== -----END CERTIFICATE-----Generated at Fri Apr 17 19:20:52 2026 by rpki-client