$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft File: Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft (raw, json) Hash identifier: he7EXERDraYgFMVfpdLmKQ2AwheOOMsxU0qu6B+Hdf8= Subject key identifier: 9D:8B:B0:41:F1:10:87:EF:70:1E:DE:E0:57:5A:F2:B4:89:FD:45:49 Authority key identifier: 63:0E:FC:8B:C8:24:7F:99:A0:12:80:74:1E:4A:1A:0D:B7:F1:47:B0 Certificate issuer: /CN=A91BB629/serialNumber=630EFC8BC8247F99A01280741E4A1A0DB7F147B0 Certificate serial: 0152 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yw78i8gkf5mgEoB0HkoaDbfxR7A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft Manifest number: 014D Signing time: Fri 17 Apr 2026 04:55:07 +0000 Manifest this update: Fri 17 Apr 2026 04:55:06 +0000 Manifest next update: Fri 24 Apr 2026 04:55:06 +0000 Files and hashes: 1: Yw78i8gkf5mgEoB0HkoaDbfxR7A.crl (hash: 5bgqZL9xuAhkyHQO616RsQwdWOMgtUqx75CMrYLFs+g=) 2: 7CE4326245B511EFBAC06E1EC4F9AE02.roa (hash: y32dMEUN6YUCKolUe/uVA0r0aXZ6vWR2Ez2nh841QQQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.crl rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yw78i8gkf5mgEoB0HkoaDbfxR7A.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 338 (0x152) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB629, serialNumber=630EFC8BC8247F99A01280741E4A1A0DB7F147B0 Validity Not Before: Apr 17 04:55:06 2026 GMT Not After : Apr 24 04:55:06 2026 GMT Subject: CN=69e1bd2a-5b7c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:f7:35:c9:45:aa:9f:f8:a2:c7:5e:3e:37:04: 46:1c:77:3d:c6:c9:ef:48:d0:02:6e:65:d1:65:bf: c9:46:ce:9d:14:4b:3e:41:15:cf:85:76:9b:7d:12: e3:be:6a:d8:3e:59:67:53:27:58:c7:ee:2f:cb:02: 35:e6:2f:4c:28:1e:67:8f:b4:8b:ec:c6:aa:f9:b9: 41:11:7b:7b:0a:f4:20:9c:c2:cf:d8:c7:cf:b3:7c: 10:50:58:9e:c1:4f:38:fd:f6:87:26:b0:16:44:5b: ca:61:91:2a:8d:9c:ad:79:0b:a6:10:d6:e5:26:57: 2f:4b:70:b4:c5:ae:ef:37:41:d4:45:ca:33:d6:2c: 75:79:90:68:91:8c:32:de:f2:b2:fd:cb:8a:6e:4a: 1d:ec:a5:73:8e:38:cd:0e:c5:c4:ca:82:6c:b8:94: 65:b0:3c:44:82:b4:1d:8e:85:b8:53:78:38:a2:51: e1:16:b9:73:71:64:a5:2e:78:12:ba:fb:25:d3:88: 41:6e:d5:55:d4:be:33:36:75:d4:e5:67:10:97:72: c4:7d:52:c5:18:2e:3e:82:fd:e2:9e:d0:3c:9b:7b: a3:db:97:28:89:39:c2:5b:7b:91:e3:0e:82:43:31: 67:83:8c:67:28:64:2f:4c:e6:91:fc:dd:26:40:d0: aa:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:8B:B0:41:F1:10:87:EF:70:1E:DE:E0:57:5A:F2:B4:89:FD:45:49 X509v3 Authority Key Identifier: keyid:63:0E:FC:8B:C8:24:7F:99:A0:12:80:74:1E:4A:1A:0D:B7:F1:47:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yw78i8gkf5mgEoB0HkoaDbfxR7A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:d3:97:3a:7d:b0:13:10:3e:4c:c2:e2:d9:bb:08:ff:96:a6: 6b:5f:22:86:8b:b0:58:d6:e8:77:fc:61:30:60:6b:36:2c:71: 7d:c0:3e:97:fe:12:e8:f0:70:53:69:46:11:56:41:06:49:d9: a4:a4:ec:5a:c7:a3:62:60:2c:72:be:3f:c5:dc:02:42:63:d7: 61:c3:69:bd:72:46:39:10:3c:bc:97:c8:9f:eb:29:16:59:47: 12:a1:29:66:ae:4b:65:21:df:5a:9f:5d:82:74:20:fa:53:f3: 0f:de:a0:9d:96:3d:6e:da:55:39:46:0a:98:7c:e9:18:db:05: 17:76:06:3d:1e:d1:18:10:a4:5e:a1:af:aa:94:a3:75:d4:e8: 58:92:c0:56:ac:45:ef:e5:a6:8b:01:fc:7b:19:41:01:d7:a5: 5a:18:b2:8a:e6:e3:83:fa:1f:cf:cf:4a:ff:e8:0d:d2:7d:a8: dc:c3:00:7e:44:06:91:a9:6a:62:93:22:12:b0:f3:3d:16:37: 5e:57:36:59:09:f0:c4:28:62:23:e5:de:3b:78:6d:05:29:bb: f6:ad:fc:49:23:81:9d:74:a4:85:ba:a5:8a:43:6c:f4:c4:5b: 18:81:18:13:8b:85:03:65:77:43:3c:39:32:53:8d:a1:9c:6c: 3c:9a:1e:cb -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAVIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkI2MjkxMTAvBgNVBAUTKDYzMEVGQzhCQzgyNDdGOTlBMDEyODA3NDFFNEExQTBE QjdGMTQ3QjAwHhcNMjYwNDE3MDQ1NTA2WhcNMjYwNDI0MDQ1NTA2WjAYMRYwFAYD VQQDEw02OWUxYmQyYS01YjdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3/c1yUWqn/iix14+NwRGHHc9xsnvSNACbmXRZb/JRs6dFEs+QRXPhXabfRLj vmrYPllnUydYx+4vywI15i9MKB5nj7SL7Maq+blBEXt7CvQgnMLP2MfPs3wQUFie wU84/faHJrAWRFvKYZEqjZyteQumENblJlcvS3C0xa7vN0HURcoz1ix1eZBokYwy 3vKy/cuKbkod7KVzjjjNDsXEyoJsuJRlsDxEgrQdjoW4U3g4olHhFrlzcWSlLngS uvsl04hBbtVV1L4zNnXU5WcQl3LEfVLFGC4+gv3intA8m3uj25coiTnCW3uR4w6C QzFng4xnKGQvTOaR/N0mQNCquwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJ2LsEHx EIfvcB7e4Fda8rSJ/UVJMB8GA1UdIwQYMBaAFGMO/IvIJH+ZoBKAdB5KGg238Uew MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjYyOS9FMkNGOTQwQTQ1 QjQxMUVGOEZEQjc0MURDNEY5QUUwMi9Zdzc4aThna2Y1bWdFb0IwSGtvYURiZnhS N0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1l3NzhpOGdrZjVtZ0VvQjBIa29hRGJmeFI3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjYyOS9FMkNGOTQwQTQ1QjQxMUVGOEZEQjc0MURDNEY5QUUwMi9Zdzc4aThna2Y1 bWdFb0IwSGtvYURiZnhSN0EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAaNOXOn2wExA+TMLi2bsI/5ama18ihouwWNbod/xhMGBrNixxfcA+l/4S6PBw U2lGEVZBBknZpKTsWsejYmAscr4/xdwCQmPXYcNpvXJGORA8vJfIn+spFllHEqEp Zq5LZSHfWp9dgnQg+lPzD96gnZY9btpVOUYKmHzpGNsFF3YGPR7RGBCkXqGvqpSj ddToWJLAVqxF7+WmiwH8exlBAdelWhiyiubjg/ofz89K/+gN0n2o3MMAfkQGkalq YpMiErDzPRY3Xlc2WQnwxChiI+XeO3htBSm79q38SSOBnXSkhbqlikNs9MRbGIEY E4uFA2V3Qzw5MlONoZxsPJoeyw== -----END CERTIFICATE-----Generated at Fri Apr 17 10:48:51 2026 by rpki-client