$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.mft File: yxZWgR0IRXmT6Ngbn5eY2tYWlxo.mft (raw, json) Hash identifier: rXaIt9D/BfWDOLzWn4tKeO2vH6pxAZtMTXKf4bBHInk= Subject key identifier: 68:02:7B:73:69:AC:85:47:5D:EE:FC:E3:F8:A6:24:97:B3:38:FF:C1 Authority key identifier: CB:16:56:81:1D:08:45:79:93:E8:D8:1B:9F:97:98:DA:D6:16:97:1A Certificate issuer: /CN=A91B4357/serialNumber=CB1656811D08457993E8D81B9F9798DAD616971A Certificate serial: 0550 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.mft Manifest number: 0522 Signing time: Thu 16 Apr 2026 23:29:23 +0000 Manifest this update: Thu 16 Apr 2026 23:29:22 +0000 Manifest next update: Thu 23 Apr 2026 23:29:22 +0000 Files and hashes: 1: yxZWgR0IRXmT6Ngbn5eY2tYWlxo.crl (hash: Neo7QFfTKKSWibFnU2y/aGj0DVEYKk/YUJvO82jmlJU=) 2: FBB1514E370111F1AC489D14BF833773.roa (hash: ZkDSUGhIzcmjSgjRJZ9cZlXr5/YHk19HP0IIMCiijuA=) 3: FB03729A370111F1AC489D14BF833773.roa (hash: AU9dHXjHqTNme6QysdUZa4PCsHy+4a87mRqErQXJ6iA=) 4: 9896BA2EB6DE11EC8DB17172C4F9AE02.roa (hash: dG9p093s1Ue0rrA4RBzIOjl2As439gOH8sz6VM6eiUQ=) 5: 52B98FDA46AF11ECB113AA4BC4F9AE02.roa (hash: xY/esRTHmVcSEnmni9qKfYB8APe7aNUaqGzW5UYshQs=) 6: 35A2418C45AE11ECB857890EC4F9AE02.roa (hash: 1S4BYpNOabN3d/LnYoJIPgaMIRT82AJo33zkA94dJ9s=) 7: FC94057A370111F1AC489D14BF833773.roa (hash: JZJalDSQr/IoFea9NxLBWN3ZOZ/DgJ84ZBHO9Nd0bsM=) 8: 351AC73E45AE11ECB857890EC4F9AE02.roa (hash: 1fMszEVclnRMOM/POK57IbuTqKPaZ6i1HdvWDw7RSC4=) 9: 346A2B4045AE11ECB857890EC4F9AE02.roa (hash: YheXK0UgGEB7Z/3VeNqFrG7TEedt8nnqAV/x4ZuFjYw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.crl rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 23:29:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1360 (0x550) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4357, serialNumber=CB1656811D08457993E8D81B9F9798DAD616971A Validity Not Before: Apr 16 23:29:22 2026 GMT Not After : Apr 23 23:29:22 2026 GMT Subject: CN=69e170d3-6e96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:64:b5:f5:bd:1a:33:36:8c:b2:55:9f:8d:f2: eb:56:d5:9a:da:a2:4a:6a:25:ee:cc:61:b2:c9:9d: c5:20:7b:67:90:21:38:31:42:75:c1:d2:7f:2c:01: c2:1c:9b:c3:62:42:8a:c4:7f:03:e3:2f:4f:c8:44: 07:e8:e8:33:96:fa:2b:25:ee:1f:92:19:1e:da:d8: 67:e0:87:d0:f2:96:f1:f7:35:a6:30:d1:8e:8f:75: a1:7f:b8:a7:c0:52:9b:71:77:13:5e:6a:34:d8:f8: 41:2b:e7:66:be:18:2b:53:7a:24:c7:0e:de:07:a2: 03:d2:c8:47:48:91:46:06:0c:f4:ef:1a:0f:22:77: 18:4b:89:0c:f8:43:49:d4:31:5c:a0:de:dc:74:1d: a3:88:da:a6:00:1c:d1:34:64:3f:2c:40:41:0f:cc: a7:d6:a2:4a:6f:a8:22:72:cc:4b:bf:83:d7:ae:23: f5:3e:8c:e0:af:b8:4a:71:7d:45:ad:9d:37:f6:fc: 0b:f9:a4:d2:e0:cc:0d:b0:97:a2:e0:73:ca:ad:8f: ce:e9:91:bc:9a:db:68:d1:e7:38:b7:48:30:c8:89: be:1f:50:3b:b8:46:7c:c6:02:df:71:20:46:92:28: e9:be:84:c0:84:3a:ee:2f:2b:2b:1f:3b:48:46:03: 68:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:02:7B:73:69:AC:85:47:5D:EE:FC:E3:F8:A6:24:97:B3:38:FF:C1 X509v3 Authority Key Identifier: keyid:CB:16:56:81:1D:08:45:79:93:E8:D8:1B:9F:97:98:DA:D6:16:97:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:d3:51:03:48:52:b2:1d:65:63:1e:dd:3d:24:e3:da:4a:bc: c5:d9:a1:34:7c:72:32:e5:22:14:71:62:f7:97:94:1d:12:24: af:31:ba:32:2b:28:af:a1:0e:82:46:6f:01:d2:79:39:ce:79: 9a:2f:ef:0e:bb:6b:63:2b:1d:69:88:b5:2a:26:7d:c4:a7:5b: 17:01:b0:be:fd:3d:7a:3d:f1:55:23:78:66:cb:b1:27:87:1c: ce:e9:47:b6:ac:56:c5:af:c1:85:4a:c7:61:cf:1e:78:dc:89: c7:98:23:dc:d3:c4:ac:98:c5:3c:e5:af:87:bc:8c:97:96:72: d1:50:4a:df:7d:69:d5:2f:99:df:9a:78:79:83:1b:c2:e8:f3: 7f:26:ed:45:9a:0c:6f:cc:c2:c8:f0:98:c3:26:ee:53:1d:d6: fc:34:3c:3b:f2:88:01:59:bd:a2:e5:f6:bb:51:a1:a9:55:27: 9e:c0:b3:2f:50:53:fd:f6:51:d6:77:d4:be:cf:e2:d3:2b:4e: 2d:e1:ee:df:d9:c3:59:ca:b5:f9:b2:41:29:a9:66:84:41:29: 0d:34:80:26:ed:20:31:78:f9:c9:bf:a5:ce:b8:d7:3c:c2:e1: d3:02:36:09:5b:33:77:1b:84:6a:dd:93:32:db:17:30:1f:8b: 7f:a0:cb:e9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBVAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQzNTcxMTAvBgNVBAUTKENCMTY1NjgxMUQwODQ1Nzk5M0U4RDgxQjlGOTc5OERB RDYxNjk3MUEwHhcNMjYwNDE2MjMyOTIyWhcNMjYwNDIzMjMyOTIyWjAYMRYwFAYD VQQDEw02OWUxNzBkMy02ZTk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt2S19b0aMzaMslWfjfLrVtWa2qJKaiXuzGGyyZ3FIHtnkCE4MUJ1wdJ/LAHC HJvDYkKKxH8D4y9PyEQH6OgzlvorJe4fkhke2thn4IfQ8pbx9zWmMNGOj3Whf7in wFKbcXcTXmo02PhBK+dmvhgrU3okxw7eB6ID0shHSJFGBgz07xoPIncYS4kM+ENJ 1DFcoN7cdB2jiNqmABzRNGQ/LEBBD8yn1qJKb6gicsxLv4PXriP1Pozgr7hKcX1F rZ039vwL+aTS4MwNsJei4HPKrY/O6ZG8mtto0ec4t0gwyIm+H1A7uEZ8xgLfcSBG kijpvoTAhDruLysrHztIRgNoxQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGgCe3Np rIVHXe784/imJJezOP/BMB8GA1UdIwQYMBaAFMsWVoEdCEV5k+jYG5+XmNrWFpca MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDM1Ny9CODRCMTBFQzQ1 QTgxMUVDOEIxNDA1NThDNEY5QUUwMi95eFpXZ1IwSVJYbVQ2TmdibjVlWTJ0WVds eG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3l4WldnUjBJUlhtVDZOZ2JuNWVZMnRZV2x4by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDM1Ny9CODRCMTBFQzQ1QTgxMUVDOEIxNDA1NThDNEY5QUUwMi95eFpXZ1IwSVJY bVQ2TmdibjVlWTJ0WVdseG8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAX9NRA0hSsh1lYx7dPSTj2kq8xdmhNHxyMuUiFHFi95eUHRIkrzG6Misor6EO gkZvAdJ5Oc55mi/vDrtrYysdaYi1KiZ9xKdbFwGwvv09ej3xVSN4ZsuxJ4cczulH tqxWxa/BhUrHYc8eeNyJx5gj3NPErJjFPOWvh7yMl5Zy0VBK331p1S+Z35p4eYMb wujzfybtRZoMb8zCyPCYwybuUx3W/DQ8O/KIAVm9ouX2u1GhqVUnnsCzL1BT/fZR 1nfUvs/i0ytOLeHu39nDWcq1+bJBKalmhEEpDTSAJu0gMXj5yb+lzrjXPMLh0wI2 CVszdxuEat2TMtsXMB+Lf6DL6Q== -----END CERTIFICATE-----Generated at Fri Apr 17 23:40:16 2026 by rpki-client