$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE524/0C2C2BD688C511EEA8311C71C4F9AE02/Y3kC4bqWiB1HLuyt-kW1V348HDE.mft File: Y3kC4bqWiB1HLuyt-kW1V348HDE.mft (raw, json) Hash identifier: ZXRdqsFgwAAw9ajzpBV3JnyEt28vZDkzAxFTikyyPww= Subject key identifier: 1B:FC:59:06:89:51:67:85:7D:97:CA:13:64:2F:47:71:BE:6A:76:FC Authority key identifier: 63:79:02:E1:BA:96:88:1D:47:2E:EC:AD:FA:45:B5:57:7E:3C:1C:31 Certificate issuer: /CN=A91CE524/serialNumber=637902E1BA96881D472EECADFA45B5577E3C1C31 Certificate serial: 01C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y3kC4bqWiB1HLuyt-kW1V348HDE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE524/0C2C2BD688C511EEA8311C71C4F9AE02/Y3kC4bqWiB1HLuyt-kW1V348HDE.mft Manifest number: 01C4 Signing time: Fri 17 Apr 2026 03:30:51 +0000 Manifest this update: Fri 17 Apr 2026 03:30:51 +0000 Manifest next update: Fri 24 Apr 2026 03:30:51 +0000 Files and hashes: 1: Y3kC4bqWiB1HLuyt-kW1V348HDE.crl (hash: YoLFX58RLwGBn8kUGbAYnrXAYVQrV9IFVUQGGWpvOKQ=) 2: FF1FE402898011EEB3403779C4F9AE02.roa (hash: PkkKjxmP3oqdz8rOsnvlI4lixs/LLzNeT38IVCT5f2s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE524/0C2C2BD688C511EEA8311C71C4F9AE02/Y3kC4bqWiB1HLuyt-kW1V348HDE.crl rsync://rpki.apnic.net/member_repository/A91CE524/0C2C2BD688C511EEA8311C71C4F9AE02/Y3kC4bqWiB1HLuyt-kW1V348HDE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y3kC4bqWiB1HLuyt-kW1V348HDE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 03:30:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 456 (0x1c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE524, serialNumber=637902E1BA96881D472EECADFA45B5577E3C1C31 Validity Not Before: Apr 17 03:30:51 2026 GMT Not After : Apr 24 03:30:51 2026 GMT Subject: CN=69e1a96b-efa5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:88:db:20:8c:a7:ca:5d:34:68:b9:a6:57:ca: 27:b9:47:09:e5:aa:f0:e5:55:74:5d:55:f6:73:0d: 2d:e9:31:83:0e:21:1d:96:80:5b:15:80:34:61:7e: 39:28:d2:90:8b:5c:b0:c1:f4:5a:aa:d9:38:c0:04: 73:2a:5f:23:1e:a1:7a:8e:cd:7f:d9:e3:3b:d2:27: b1:75:0f:b5:63:9d:ca:81:f9:18:7e:11:41:ad:5c: 8b:84:cc:7e:0b:61:ba:72:f6:f5:51:ad:51:4f:55: 72:2b:ef:ea:34:49:50:27:9d:61:01:e7:9a:93:32: 89:00:0d:c8:7f:65:65:25:66:51:a8:cc:a5:94:03: 77:d9:6a:cd:4c:e7:de:d9:e9:00:98:b6:42:5e:cc: 6a:e4:87:eb:ae:13:d4:e3:ea:16:a6:05:eb:43:d2: f1:45:89:01:17:ad:8b:e2:71:a6:8e:ea:38:70:28: 50:18:14:df:18:6b:58:0a:47:bb:a5:d9:f2:6f:8e: d0:e0:36:1d:8b:6b:d6:3b:99:9f:88:a7:b8:ad:1e: d6:0a:9d:c6:f5:4b:32:3c:75:2e:d6:ab:65:5e:1e: 73:aa:2f:3f:3a:f3:e9:5e:bb:a2:37:d0:31:79:d0: a6:cb:11:34:06:f7:b8:ec:8c:73:3a:5a:5b:63:70: 58:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:FC:59:06:89:51:67:85:7D:97:CA:13:64:2F:47:71:BE:6A:76:FC X509v3 Authority Key Identifier: keyid:63:79:02:E1:BA:96:88:1D:47:2E:EC:AD:FA:45:B5:57:7E:3C:1C:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE524/0C2C2BD688C511EEA8311C71C4F9AE02/Y3kC4bqWiB1HLuyt-kW1V348HDE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y3kC4bqWiB1HLuyt-kW1V348HDE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE524/0C2C2BD688C511EEA8311C71C4F9AE02/Y3kC4bqWiB1HLuyt-kW1V348HDE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:61:bf:28:5b:cd:0e:a0:d9:ad:d1:3a:fd:fe:b7:f8:56:32: bf:4e:91:6d:9d:ef:a3:b9:36:11:70:b5:b6:f1:07:b9:21:50: db:43:7c:89:64:ac:43:e9:4f:7f:26:2b:8a:de:7a:67:9b:b9: bb:d7:8d:6f:3f:cf:a5:3d:9f:6c:52:37:0a:1a:8f:65:a4:30: 17:e9:f8:02:fc:d2:c9:03:db:3a:a4:bc:99:02:8a:1d:47:05: 6c:b9:82:84:bc:44:0b:fa:d0:f7:6f:ae:7f:51:91:d5:29:f3: 9e:f5:69:ce:22:4b:62:ba:2b:e9:dc:c5:b3:ed:71:ad:96:7f: 1b:ae:64:4c:cd:33:73:c4:7c:82:b7:b3:45:b8:83:f6:1f:dd: cf:ae:f1:62:79:b1:42:20:b8:20:b4:cc:d2:eb:76:af:37:c9: ca:2e:15:63:59:a4:44:20:54:c9:20:07:e0:2d:c5:ad:ef:9c: d9:e9:bc:9a:4c:a8:2b:96:79:a7:6b:d8:f5:19:0f:88:1e:dc: 29:b6:0a:55:02:e8:3c:08:6d:c9:6a:9e:35:ce:39:5a:02:43: 1e:db:5d:8c:4e:48:2b:2f:97:2c:f7:c1:cc:25:56:f8:66:93: 19:98:ef:ec:28:2e:4d:78:c2:eb:ef:75:11:f5:52:e2:43:30: 8e:ba:e7:a6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAcgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U1MjQxMTAvBgNVBAUTKDYzNzkwMkUxQkE5Njg4MUQ0NzJFRUNBREZBNDVCNTU3 N0UzQzFDMzEwHhcNMjYwNDE3MDMzMDUxWhcNMjYwNDI0MDMzMDUxWjAYMRYwFAYD VQQDEw02OWUxYTk2Yi1lZmE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyIjbIIynyl00aLmmV8onuUcJ5arw5VV0XVX2cw0t6TGDDiEdloBbFYA0YX45 KNKQi1ywwfRaqtk4wARzKl8jHqF6js1/2eM70iexdQ+1Y53KgfkYfhFBrVyLhMx+ C2G6cvb1Ua1RT1VyK+/qNElQJ51hAeeakzKJAA3If2VlJWZRqMyllAN32WrNTOfe 2ekAmLZCXsxq5IfrrhPU4+oWpgXrQ9LxRYkBF62L4nGmjuo4cChQGBTfGGtYCke7 pdnyb47Q4DYdi2vWO5mfiKe4rR7WCp3G9UsyPHUu1qtlXh5zqi8/OvPpXruiN9Ax edCmyxE0Bve47IxzOlpbY3BYZwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBv8WQaJ UWeFfZfKE2QvR3G+anb8MB8GA1UdIwQYMBaAFGN5AuG6logdRy7srfpFtVd+PBwx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTUyNC8wQzJDMkJENjg4 QzUxMUVFQTgzMTFDNzFDNEY5QUUwMi9ZM2tDNGJxV2lCMUhMdXl0LWtXMVYzNDhI REUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1kza0M0YnFXaUIxSEx1eXQta1cxVjM0OEhERS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTUyNC8wQzJDMkJENjg4QzUxMUVFQTgzMTFDNzFDNEY5QUUwMi9ZM2tDNGJxV2lC MUhMdXl0LWtXMVYzNDhIREUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAqWG/KFvNDqDZrdE6/f63+FYyv06RbZ3vo7k2EXC1tvEHuSFQ20N8iWSsQ+lP fyYrit56Z5u5u9eNbz/PpT2fbFI3ChqPZaQwF+n4AvzSyQPbOqS8mQKKHUcFbLmC hLxEC/rQ92+uf1GR1SnznvVpziJLYror6dzFs+1xrZZ/G65kTM0zc8R8grezRbiD 9h/dz67xYnmxQiC4ILTM0ut2rzfJyi4VY1mkRCBUySAH4C3Fre+c2em8mkyoK5Z5 p2vY9RkPiB7cKbYKVQLoPAhtyWqeNc45WgJDHttdjE5IKy+XLPfBzCVW+GaTGZjv 7CguTXjC6+91EfVS4kMwjrrnpg== -----END CERTIFICATE-----Generated at Fri Apr 17 16:59:41 2026 by rpki-client