$ rpki-client -vvf rpki.apnic.net/member_repository/A91BFE4E/DA3D71A87BE311EF88D9C753C4F9AE02/YB71rSfD3A1NmC22u0dsBsvHAKA.mft File: YB71rSfD3A1NmC22u0dsBsvHAKA.mft (raw, json) Hash identifier: ytom1vsEKQ6qhyN3FWhxWpNSs4cAC1+AfjuhVQdMVU4= Subject key identifier: 45:70:2A:9A:09:A8:B0:33:D9:60:1E:3D:86:A3:9B:20:60:9A:43:40 Authority key identifier: 60:1E:F5:AD:27:C3:DC:0D:4D:98:2D:B6:BB:47:6C:06:CB:C7:00:A0 Certificate issuer: /CN=A91BFE4E/serialNumber=601EF5AD27C3DC0D4D982DB6BB476C06CBC700A0 Certificate serial: 0125 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YB71rSfD3A1NmC22u0dsBsvHAKA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BFE4E/DA3D71A87BE311EF88D9C753C4F9AE02/YB71rSfD3A1NmC22u0dsBsvHAKA.mft Manifest number: 0125 Signing time: Fri 17 Apr 2026 05:21:08 +0000 Manifest this update: Fri 17 Apr 2026 05:21:08 +0000 Manifest next update: Fri 24 Apr 2026 05:21:08 +0000 Files and hashes: 1: YB71rSfD3A1NmC22u0dsBsvHAKA.crl (hash: 1BPqp3AdrTvCFBy52D40cxirOAL+0sO4xpAwXB0NS0k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BFE4E/DA3D71A87BE311EF88D9C753C4F9AE02/YB71rSfD3A1NmC22u0dsBsvHAKA.crl rsync://rpki.apnic.net/member_repository/A91BFE4E/DA3D71A87BE311EF88D9C753C4F9AE02/YB71rSfD3A1NmC22u0dsBsvHAKA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YB71rSfD3A1NmC22u0dsBsvHAKA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 05:21:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 293 (0x125) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BFE4E, serialNumber=601EF5AD27C3DC0D4D982DB6BB476C06CBC700A0 Validity Not Before: Apr 17 05:21:08 2026 GMT Not After : Apr 24 05:21:08 2026 GMT Subject: CN=69e1c344-d4a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:22:e8:94:6c:97:bd:38:ad:59:cf:0f:97:c6: a7:a5:db:d1:05:64:c3:aa:aa:aa:c9:10:06:57:62: 3d:9f:d9:1d:90:26:00:3b:e8:98:4b:82:b6:c8:9e: 72:40:e9:9b:ee:03:09:25:1e:9b:78:5e:6f:08:c2: 12:6e:f3:9c:f1:e2:59:78:00:89:29:bf:d1:5d:b5: 6e:73:7d:cb:88:c7:1f:bd:2d:13:d8:3c:d7:1d:39: 76:08:15:d9:d5:b9:ec:a5:ca:5e:88:b4:ec:bc:d7: ef:00:b8:34:94:61:5a:a1:e8:3f:77:ed:a6:5f:fa: 71:6a:7c:e2:94:9b:41:d6:3c:b5:6a:b5:1a:db:7c: 6e:92:c4:11:b8:ca:6b:e1:26:f3:00:c1:0a:5c:36: ea:5c:6e:ca:0f:30:51:31:cb:3f:e4:3d:9d:63:55: 30:57:76:b6:5f:cb:a8:a2:df:a0:b5:f7:95:53:fb: ae:f7:2c:08:ea:62:de:b6:ce:15:f3:33:32:59:a2: bd:30:41:82:14:6b:bc:18:84:ff:c1:2a:c0:0b:1e: 37:64:f6:9e:c5:c3:67:77:0f:2a:5d:22:14:2c:9d: be:81:ca:f9:27:a3:fb:08:e4:5c:fb:b1:0c:5c:57: ae:2e:c9:23:45:f8:72:e4:b0:7a:7c:4d:f8:79:7c: dc:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:70:2A:9A:09:A8:B0:33:D9:60:1E:3D:86:A3:9B:20:60:9A:43:40 X509v3 Authority Key Identifier: keyid:60:1E:F5:AD:27:C3:DC:0D:4D:98:2D:B6:BB:47:6C:06:CB:C7:00:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BFE4E/DA3D71A87BE311EF88D9C753C4F9AE02/YB71rSfD3A1NmC22u0dsBsvHAKA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YB71rSfD3A1NmC22u0dsBsvHAKA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BFE4E/DA3D71A87BE311EF88D9C753C4F9AE02/YB71rSfD3A1NmC22u0dsBsvHAKA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:cf:6c:65:ec:c5:77:8e:91:81:38:f1:e2:47:4c:16:40:e2: 0a:9e:52:7b:0f:97:1b:7c:b8:2c:75:80:86:fb:1f:d9:ee:59: fd:f3:61:3b:74:6c:b8:0c:25:b3:74:d2:ad:c2:e5:02:f9:31: 9f:2b:83:9f:72:f0:1b:79:80:e2:8f:6b:8c:27:b1:6d:be:22: a5:fd:32:cf:c2:bf:6a:20:d5:d2:44:c7:b6:4d:03:b2:a1:f4: 2b:4c:ca:13:f8:f5:bb:b4:c6:01:6c:6b:27:7d:09:0f:84:35: df:2c:26:68:de:68:4a:ad:43:a6:5b:f1:16:46:f9:57:db:c1: 92:b6:96:6c:44:c6:ae:1e:63:9e:39:e8:ef:c6:de:a5:3e:42: b5:04:bb:9b:01:0d:d9:bd:eb:69:66:f8:41:c2:a5:e6:ef:7a: 3c:5c:c9:b4:e0:f8:93:8c:72:74:91:43:ce:9b:bf:80:bb:46: 12:09:55:2f:83:f8:a8:fb:78:be:fb:20:02:0b:33:56:44:dd: 78:96:6c:57:e5:75:18:50:01:f8:db:02:c8:8d:1c:a1:89:36: 02:6b:53:55:66:06:32:5b:e9:18:b2:c8:ab:a0:9e:89:56:e4: 42:aa:62:f2:c4:2a:d9:a9:46:1a:05:c3:85:56:4d:12:c0:5c: 1d:43:9e:79 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICASUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkZFNEUxMTAvBgNVBAUTKDYwMUVGNUFEMjdDM0RDMEQ0RDk4MkRCNkJCNDc2QzA2 Q0JDNzAwQTAwHhcNMjYwNDE3MDUyMTA4WhcNMjYwNDI0MDUyMTA4WjAYMRYwFAYD VQQDEw02OWUxYzM0NC1kNGEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqiLolGyXvTitWc8Pl8anpdvRBWTDqqqqyRAGV2I9n9kdkCYAO+iYS4K2yJ5y QOmb7gMJJR6beF5vCMISbvOc8eJZeACJKb/RXbVuc33LiMcfvS0T2DzXHTl2CBXZ 1bnspcpeiLTsvNfvALg0lGFaoeg/d+2mX/pxanzilJtB1jy1arUa23xuksQRuMpr 4SbzAMEKXDbqXG7KDzBRMcs/5D2dY1UwV3a2X8uoot+gtfeVU/uu9ywI6mLets4V 8zMyWaK9MEGCFGu8GIT/wSrACx43ZPaexcNndw8qXSIULJ2+gcr5J6P7CORc+7EM XFeuLskjRfhy5LB6fE34eXzcDwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEVwKpoJ qLAz2WAePYajmyBgmkNAMB8GA1UdIwQYMBaAFGAe9a0nw9wNTZgttrtHbAbLxwCg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRkU0RS9EQTNENzFBODdC RTMxMUVGODhEOUM3NTNDNEY5QUUwMi9ZQjcxclNmRDNBMU5tQzIydTBkc0JzdkhB S0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lCNzFyU2ZEM0ExTm1DMjJ1MGRzQnN2SEFLQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RkU0RS9EQTNENzFBODdCRTMxMUVGODhEOUM3NTNDNEY5QUUwMi9ZQjcxclNmRDNB MU5tQzIydTBkc0JzdkhBS0EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAlM9sZezFd46RgTjx4kdMFkDiCp5Sew+XG3y4LHWAhvsf2e5Z/fNhO3RsuAwl s3TSrcLlAvkxnyuDn3LwG3mA4o9rjCexbb4ipf0yz8K/aiDV0kTHtk0DsqH0K0zK E/j1u7TGAWxrJ30JD4Q13ywmaN5oSq1DplvxFkb5V9vBkraWbETGrh5jnjno78be pT5CtQS7mwEN2b3raWb4QcKl5u96PFzJtOD4k4xydJFDzpu/gLtGEglVL4P4qPt4 vvsgAgszVkTdeJZsV+V1GFAB+NsCyI0coYk2AmtTVWYGMlvpGLLIq6CeiVbkQqpi 8sQq2alGGgXDhVZNEsBcHUOeeQ== -----END CERTIFICATE-----Generated at Fri Apr 17 11:09:42 2026 by rpki-client