$ rpki-client -vvf rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft File: ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft (raw, json) Hash identifier: ZDSQMs/bEc2Qd5Y1bABUn7L3B/s9y980iR75W+g8DfY= Subject key identifier: C7:61:33:1F:FC:9C:BA:5F:6F:A3:E2:F9:12:78:6A:8A:B8:B3:6E:05 Authority key identifier: C9:ED:4B:76:76:E3:F5:A5:B1:F8:A6:A0:DD:7E:22:1B:63:E5:34:AB Certificate issuer: /CN=A91D2ACF/serialNumber=C9ED4B7676E3F5A5B1F8A6A0DD7E221B63E534AB Certificate serial: 0ACB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft Manifest number: 0AB5 Signing time: Thu 16 Apr 2026 19:23:38 +0000 Manifest this update: Thu 16 Apr 2026 19:23:38 +0000 Manifest next update: Thu 23 Apr 2026 19:23:38 +0000 Files and hashes: 1: ye1Ldnbj9aWx-Kag3X4iG2PlNKs.crl (hash: rUV0AzkVLU402XegUV6l4RDZFaw8UIMW9CwFULTn73w=) 2: 3A851EE273E411EA9572F76EC4F9AE02.roa (hash: B7PIpT06o5yz5X0ICfGhNE1RjQ8ofk6sdiEjNK1EArU=) 3: 55D7D802475A11F0B3C02112C4F9AE02.roa (hash: 1ct6ERLfD4y94EVh8sazQBKiN2tsb/2UaNvWuVl4I30=) 4: F22D283A9B3B11EBA5C76B80C4F9AE02.roa (hash: 9jHgiW6B1sqLvSJnd17xl6prg5mUxXRdfL0P2w6JRHY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.crl rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 19:23:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2763 (0xacb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D2ACF, serialNumber=C9ED4B7676E3F5A5B1F8A6A0DD7E221B63E534AB Validity Not Before: Apr 16 19:23:38 2026 GMT Not After : Apr 23 19:23:38 2026 GMT Subject: CN=69e1373a-19e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:c8:46:1d:ea:f0:fa:b9:f1:b5:22:cc:24:69: 78:c0:5d:36:a9:28:6a:79:4e:bb:de:81:a0:ea:c6: 8f:b8:44:c1:80:d4:28:ab:68:22:f7:37:a5:29:14: e2:d4:e4:7e:c7:30:e8:99:cd:8e:46:39:ef:dd:93: d4:aa:1e:a6:20:d8:bf:f9:d8:50:c8:71:30:5c:63: 1d:2e:36:b1:fb:8a:d3:80:1e:90:19:4c:30:b4:af: a9:8c:8a:89:88:f8:7c:2d:ec:d9:e1:21:ac:2f:01: 7c:10:fe:4a:1d:45:5d:a5:20:1f:87:1b:a9:c3:c2: 72:8e:44:ad:67:b8:36:53:98:12:7f:70:c8:e2:ca: 35:07:9b:77:77:59:c0:56:4e:cb:60:6f:e6:7f:60: df:a4:bf:4b:60:1d:98:cb:89:29:e3:9c:34:05:86: 2a:df:93:1b:3f:7c:39:bf:7c:26:fc:d5:7e:39:2d: 42:ab:93:64:73:a6:95:c9:8c:c0:ed:7b:c5:e1:2b: 5e:8e:33:90:7f:32:9a:02:64:93:6d:20:b2:28:1d: 55:a1:46:96:2a:5b:ed:11:7f:30:ee:2a:ed:64:d4: 8c:73:ab:72:84:4e:c3:af:fb:c2:28:49:5d:37:1e: 7a:a1:60:fa:cb:79:84:38:06:f9:cf:b4:cf:31:d4: ae:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:61:33:1F:FC:9C:BA:5F:6F:A3:E2:F9:12:78:6A:8A:B8:B3:6E:05 X509v3 Authority Key Identifier: keyid:C9:ED:4B:76:76:E3:F5:A5:B1:F8:A6:A0:DD:7E:22:1B:63:E5:34:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:d6:77:ac:ab:44:63:54:9c:bc:df:b6:b9:ca:5c:ac:f5:37: dd:49:61:eb:ee:2e:e3:06:00:00:7f:c1:97:fb:d6:bc:2e:63: 54:67:b2:62:9f:50:bf:40:85:29:8c:95:cb:62:ae:f0:c6:20: 0a:9b:90:ca:b2:79:84:c8:26:ba:90:76:bd:82:c8:4e:f7:bd: 74:65:6a:be:36:db:c5:59:29:d4:62:e2:69:ed:3d:88:9a:6c: b5:6a:fd:13:26:55:90:bb:4c:de:8c:39:99:da:3d:62:69:f6: fc:22:f0:01:34:ba:fb:91:62:26:3a:96:47:c3:e1:72:0f:43: a6:c8:86:d4:d5:5a:02:ca:13:de:e1:6c:23:c4:a0:a0:b5:14: 44:e9:26:ab:d6:e9:61:2e:d3:86:a4:b3:84:51:a6:e4:40:45: b6:97:f2:05:3b:bc:d7:0f:e6:e0:f5:c8:6f:18:41:ea:0a:26: 76:77:9b:9c:5d:61:2d:1d:f9:86:93:56:c2:95:75:06:2d:85: 90:64:74:e8:63:6d:1d:a0:f8:7e:73:1f:d5:9b:f4:24:15:2c: a1:b3:35:18:08:ca:07:2e:0e:69:9b:b0:fa:6a:08:7d:23:8f: 26:27:b7:af:e5:6f:10:a8:e4:ce:ee:3e:0f:6c:83:79:ff:00: 80:8b:17:83 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCsswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDJBQ0YxMTAvBgNVBAUTKEM5RUQ0Qjc2NzZFM0Y1QTVCMUY4QTZBMEREN0UyMjFC NjNFNTM0QUIwHhcNMjYwNDE2MTkyMzM4WhcNMjYwNDIzMTkyMzM4WjAYMRYwFAYD VQQDEw02OWUxMzczYS0xOWU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAschGHerw+rnxtSLMJGl4wF02qShqeU673oGg6saPuETBgNQoq2gi9zelKRTi 1OR+xzDomc2ORjnv3ZPUqh6mINi/+dhQyHEwXGMdLjax+4rTgB6QGUwwtK+pjIqJ iPh8LezZ4SGsLwF8EP5KHUVdpSAfhxupw8JyjkStZ7g2U5gSf3DI4so1B5t3d1nA Vk7LYG/mf2DfpL9LYB2Yy4kp45w0BYYq35MbP3w5v3wm/NV+OS1Cq5Nkc6aVyYzA 7XvF4StejjOQfzKaAmSTbSCyKB1VoUaWKlvtEX8w7irtZNSMc6tyhE7Dr/vCKEld Nx56oWD6y3mEOAb5z7TPMdSuvwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMdhMx/8 nLpfb6Pi+RJ4aoq4s24FMB8GA1UdIwQYMBaAFMntS3Z24/WlsfimoN1+Ihtj5TSr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMkFDRi81QUM2MkIyQTcz RTMxMUVBOUI1OTQzNkVDNEY5QUUwMi95ZTFMZG5iajlhV3gtS2FnM1g0aUcyUGxO S3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3llMUxkbmJqOWFXeC1LYWczWDRpRzJQbE5Lcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MkFDRi81QUM2MkIyQTczRTMxMUVBOUI1OTQzNkVDNEY5QUUwMi95ZTFMZG5iajlh V3gtS2FnM1g0aUcyUGxOS3MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAENZ3rKtEY1ScvN+2ucpcrPU33Ulh6+4u4wYAAH/Bl/vWvC5jVGeyYp9Qv0CF KYyVy2Ku8MYgCpuQyrJ5hMgmupB2vYLITve9dGVqvjbbxVkp1GLiae09iJpstWr9 EyZVkLtM3ow5mdo9Ymn2/CLwATS6+5FiJjqWR8Phcg9DpsiG1NVaAsoT3uFsI8Sg oLUUROkmq9bpYS7ThqSzhFGm5EBFtpfyBTu81w/m4PXIbxhB6gomdnebnF1hLR35 hpNWwpV1Bi2FkGR06GNtHaD4fnMf1Zv0JBUsobM1GAjKBy4OaZuw+moIfSOPJie3 r+VvEKjkzu4+D2yDef8AgIsXgw== -----END CERTIFICATE-----Generated at Fri Apr 17 12:35:04 2026 by rpki-client