$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5C25/687A10A6765A11E99D01E42EC4F9AE02/y_Kp2oisCPjVEG3svXLW-gnIGOk.mft File: y_Kp2oisCPjVEG3svXLW-gnIGOk.mft (raw, json) Hash identifier: gQThINvfuiJhz4sTcnFKcvpcneK/DDAHAXIHMax6T4I= Subject key identifier: 72:19:54:CB:83:AE:C2:4A:AB:58:46:F9:66:B2:3C:DA:7A:D9:04:60 Authority key identifier: CB:F2:A9:DA:88:AC:08:F8:D5:10:6D:EC:BD:72:D6:FA:09:C8:18:E9 Certificate issuer: /CN=A91D5C25/serialNumber=CBF2A9DA88AC08F8D5106DECBD72D6FA09C818E9 Certificate serial: 0FD5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y_Kp2oisCPjVEG3svXLW-gnIGOk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5C25/687A10A6765A11E99D01E42EC4F9AE02/y_Kp2oisCPjVEG3svXLW-gnIGOk.mft Manifest number: 0FC4 Signing time: Thu 16 Apr 2026 17:26:07 +0000 Manifest this update: Thu 16 Apr 2026 17:26:07 +0000 Manifest next update: Thu 23 Apr 2026 17:26:07 +0000 Files and hashes: 1: y_Kp2oisCPjVEG3svXLW-gnIGOk.crl (hash: DZkYUYte4B6hx4AdjfSUy8+jyNvpNAi7XaiBj3pslWU=) 2: 4ECF0A4C765C11E9A01A6E34C4F9AE02.roa (hash: RJ14Wr4LV/wXhdMBKMrnSZc5mLGEgm5MX8wuJCoDPHc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5C25/687A10A6765A11E99D01E42EC4F9AE02/y_Kp2oisCPjVEG3svXLW-gnIGOk.crl rsync://rpki.apnic.net/member_repository/A91D5C25/687A10A6765A11E99D01E42EC4F9AE02/y_Kp2oisCPjVEG3svXLW-gnIGOk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y_Kp2oisCPjVEG3svXLW-gnIGOk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 17:26:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4053 (0xfd5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5C25, serialNumber=CBF2A9DA88AC08F8D5106DECBD72D6FA09C818E9 Validity Not Before: Apr 16 17:26:07 2026 GMT Not After : Apr 23 17:26:07 2026 GMT Subject: CN=69e11baf-a133 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:e3:21:23:d1:05:f2:e2:88:34:b3:c0:ef:93: 7a:4e:88:b5:cd:21:e9:0e:9e:ff:58:69:44:9c:37: 04:24:bd:84:40:18:2b:54:51:52:b5:0f:12:ef:9a: 1b:4f:6f:51:99:00:c5:20:cb:36:20:7a:fc:08:4e: 0b:a0:22:ac:9b:b1:f2:36:c1:7e:2f:a4:fc:cd:41: 2f:f7:4b:41:1a:37:c1:1e:f2:1c:78:12:73:f0:47: 67:63:e9:d4:25:f2:a0:af:e1:31:6d:18:f2:ad:14: 45:c4:0d:8b:96:d1:cc:20:de:2a:a2:aa:ef:9c:42: d4:08:86:2a:80:54:52:0c:c0:e1:1b:9f:fb:c7:b2: 75:07:a0:4b:2d:8c:c8:f2:77:62:c4:5c:a3:81:a7: 8e:da:5d:fc:f6:02:f8:7d:63:46:68:24:07:75:1d: 18:f8:b0:f8:f1:a9:fd:59:4b:54:fe:d2:8b:9e:f1: 6e:c5:45:91:d1:d8:68:8c:d4:bc:93:ba:97:57:1e: 9b:7f:f8:03:c2:13:d4:82:f5:6d:85:5d:6d:4e:3b: 0c:35:79:3d:e3:8e:d5:10:3d:c4:72:51:a9:d1:43: 20:7a:62:34:d2:b8:2c:34:26:ca:65:d8:f7:80:18: 8b:dd:3b:d4:f4:fc:b0:b4:46:9a:5e:69:31:bc:26: a1:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:19:54:CB:83:AE:C2:4A:AB:58:46:F9:66:B2:3C:DA:7A:D9:04:60 X509v3 Authority Key Identifier: keyid:CB:F2:A9:DA:88:AC:08:F8:D5:10:6D:EC:BD:72:D6:FA:09:C8:18:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5C25/687A10A6765A11E99D01E42EC4F9AE02/y_Kp2oisCPjVEG3svXLW-gnIGOk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y_Kp2oisCPjVEG3svXLW-gnIGOk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5C25/687A10A6765A11E99D01E42EC4F9AE02/y_Kp2oisCPjVEG3svXLW-gnIGOk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:67:55:3c:d5:b8:f1:13:a7:d1:c8:ac:0b:b4:00:66:9b:77: d8:d9:07:6e:3e:e5:4c:6a:e7:2c:ef:72:f5:51:bc:10:7f:b8: 28:7a:3c:fe:ea:e0:56:f4:02:b5:e7:dd:03:62:8b:fa:6f:00: 2b:55:1f:7d:7f:23:2d:c9:31:1a:79:92:44:01:aa:36:33:18: 90:f3:b8:14:bc:a2:bf:59:53:d2:47:15:9f:5e:59:e3:aa:25: a1:17:72:64:96:0d:75:a4:9b:ad:9b:44:08:97:6d:e9:e4:5d: 13:d4:c4:a6:af:da:dd:70:38:a7:ba:20:3d:88:ed:68:af:38: 23:94:6d:c1:6e:67:f7:75:78:ce:27:b9:48:cd:0e:c2:16:f1: 37:38:5a:d2:f8:12:72:85:34:49:de:a1:10:7a:97:c4:49:82: 5f:71:af:50:8a:71:67:d2:08:78:b1:ff:5f:59:61:c2:7b:31: 47:66:9d:27:91:0c:4b:1c:4d:bd:77:4a:43:44:42:7e:a5:58: 5a:ee:62:e1:b9:b3:9f:7a:e1:f1:bc:8c:a5:56:8e:f3:b6:6d: 9f:f5:a8:55:cd:5c:9a:81:df:28:20:4e:8b:d0:b4:25:ab:70: 16:24:4f:6c:48:84:8f:0b:b8:53:2c:3e:4a:7d:27:6c:7a:4b: b3:23:bd:85 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICD9UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDVDMjUxMTAvBgNVBAUTKENCRjJBOURBODhBQzA4RjhENTEwNkRFQ0JENzJENkZB MDlDODE4RTkwHhcNMjYwNDE2MTcyNjA3WhcNMjYwNDIzMTcyNjA3WjAYMRYwFAYD VQQDEw02OWUxMWJhZi1hMTMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyOMhI9EF8uKINLPA75N6Toi1zSHpDp7/WGlEnDcEJL2EQBgrVFFStQ8S75ob T29RmQDFIMs2IHr8CE4LoCKsm7HyNsF+L6T8zUEv90tBGjfBHvIceBJz8EdnY+nU JfKgr+ExbRjyrRRFxA2LltHMIN4qoqrvnELUCIYqgFRSDMDhG5/7x7J1B6BLLYzI 8ndixFyjgaeO2l389gL4fWNGaCQHdR0Y+LD48an9WUtU/tKLnvFuxUWR0dhojNS8 k7qXVx6bf/gDwhPUgvVthV1tTjsMNXk9447VED3EclGp0UMgemI00rgsNCbKZdj3 gBiL3TvU9PywtEaaXmkxvCahDwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHIZVMuD rsJKq1hG+WayPNp62QRgMB8GA1UdIwQYMBaAFMvyqdqIrAj41RBt7L1y1voJyBjp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENUMyNS82ODdBMTBBNjc2 NUExMUU5OUQwMUU0MkVDNEY5QUUwMi95X0twMm9pc0NQalZFRzNzdlhMVy1nbklH T2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lfS3Ayb2lzQ1BqVkVHM3N2WExXLWduSUdPay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NUMyNS82ODdBMTBBNjc2NUExMUU5OUQwMUU0MkVDNEY5QUUwMi95X0twMm9pc0NQ alZFRzNzdlhMVy1nbklHT2subWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAGmdVPNW48ROn0cisC7QAZpt32NkHbj7lTGrnLO9y9VG8EH+4KHo8/urgVvQC tefdA2KL+m8AK1UffX8jLckxGnmSRAGqNjMYkPO4FLyiv1lT0kcVn15Z46oloRdy ZJYNdaSbrZtECJdt6eRdE9TEpq/a3XA4p7ogPYjtaK84I5RtwW5n93V4zie5SM0O whbxNzha0vgScoU0Sd6hEHqXxEmCX3GvUIpxZ9IIeLH/X1lhwnsxR2adJ5EMSxxN vXdKQ0RCfqVYWu5i4bmzn3rh8byMpVaO87Ztn/WoVc1cmoHfKCBOi9C0JatwFiRP bEiEjwu4Uyw+Sn0nbHpLsyO9hQ== -----END CERTIFICATE-----Generated at Fri Apr 17 18:40:58 2026 by rpki-client