$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.mft File: y8ZgM3D76EzM4GToT08m7b7CZ7E.mft (raw, json) Hash identifier: 16CNsCVk557L8CMNzZ6Ampo+MuQXWiay4/ytLUOObjU= Subject key identifier: 5A:FF:52:AA:B0:04:C5:EC:5B:24:CD:29:93:2A:5C:14:F0:DF:11:2E Authority key identifier: CB:C6:60:33:70:FB:E8:4C:CC:E0:64:E8:4F:4F:26:ED:BE:C2:67:B1 Certificate issuer: /CN=A91D9CA8/serialNumber=CBC6603370FBE84CCCE064E84F4F26EDBEC267B1 Certificate serial: FD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y8ZgM3D76EzM4GToT08m7b7CZ7E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.mft Manifest number: EF Signing time: Wed 15 Apr 2026 06:07:44 +0000 Manifest this update: Wed 15 Apr 2026 06:07:43 +0000 Manifest next update: Wed 22 Apr 2026 06:07:43 +0000 Files and hashes: 1: y8ZgM3D76EzM4GToT08m7b7CZ7E.crl (hash: f0+oPrKqNqGw9XMU0JkD9H5UmYK+RgILf6DRrE5MwrQ=) 2: 459A40A0399111F0B589186BC4F9AE02.roa (hash: scPqVoYPhM9N9nt8I3yfdS2nCVlGwPE0LU2L+VLMObQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.crl rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y8ZgM3D76EzM4GToT08m7b7CZ7E.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 06:07:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 253 (0xfd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9CA8, serialNumber=CBC6603370FBE84CCCE064E84F4F26EDBEC267B1 Validity Not Before: Apr 15 06:07:43 2026 GMT Not After : Apr 22 06:07:43 2026 GMT Subject: CN=69df2b2f-66d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:85:85:a4:cb:18:2a:65:bc:3a:0a:a8:07:e7: f9:58:51:6b:a2:c5:55:35:c3:f7:1d:0f:55:46:88: 23:6b:3d:b9:6a:8f:ad:40:a9:75:d1:2e:f8:6b:59: 64:27:62:9e:80:4b:88:62:06:f1:90:cb:32:bc:70: a7:1b:6e:eb:08:f7:b6:60:a0:07:69:6b:a3:ee:75: 78:32:28:cb:9e:fa:f7:b5:a1:dc:63:c5:c8:96:a5: e7:0c:d8:47:54:ff:e9:1d:ef:37:87:a4:1d:2a:a4: 3d:5f:a4:69:c8:04:c1:d8:1b:d9:3c:6b:fa:72:1e: 8b:ac:28:7a:03:fa:36:d1:62:a2:8d:59:63:2d:41: aa:e4:5d:82:71:e4:14:fe:5c:4b:0d:05:8e:24:49: a9:4a:cc:a2:7c:27:f8:d3:33:1d:8e:0e:7b:f1:3c: cc:1d:f7:cd:67:64:23:29:07:1d:7b:3b:0e:07:e8: 63:26:b1:be:10:0a:45:c3:a0:be:a7:3d:4e:15:c9: 82:2d:3f:e9:78:4a:5a:04:b6:84:14:dd:28:24:b5: 65:5a:16:82:ff:00:7a:65:a6:18:b4:a3:62:3d:46: 2c:1b:ef:3a:d6:41:44:6d:af:b9:25:05:01:85:08: 81:ce:18:b4:87:d1:cf:32:b1:87:ad:93:a0:32:d6: f6:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:FF:52:AA:B0:04:C5:EC:5B:24:CD:29:93:2A:5C:14:F0:DF:11:2E X509v3 Authority Key Identifier: keyid:CB:C6:60:33:70:FB:E8:4C:CC:E0:64:E8:4F:4F:26:ED:BE:C2:67:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y8ZgM3D76EzM4GToT08m7b7CZ7E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b6:b4:3a:49:13:55:c1:79:e5:cd:78:91:b5:36:a2:97:12:33: 9f:8e:a1:08:3d:a8:ca:92:0d:01:27:75:b4:3a:24:c5:a9:e6: 26:cd:08:a7:0d:c5:7e:bc:80:0a:a0:22:c4:3f:43:a0:36:f3: b9:a0:5c:12:00:25:00:e6:8c:0b:c2:c3:33:b9:eb:6a:9b:7e: 43:df:2a:62:76:d3:1a:d1:b8:15:86:b3:68:c3:ac:01:ec:35: 69:f7:79:a5:74:ef:35:6e:f2:51:17:31:93:31:ab:18:3a:87: 82:6a:ec:cc:d0:38:b7:7f:72:cc:3c:5f:fd:3a:08:fc:25:59: 9f:c9:7a:a5:3b:ae:c4:35:f4:44:0a:d6:9c:ae:42:ae:13:65: 5d:dc:50:94:21:f4:d7:92:46:76:df:76:5a:a0:b2:4f:70:26: 73:8a:8b:86:43:89:bc:ed:01:36:2a:8a:d6:5e:ce:2a:8b:5b: 3d:51:f3:e3:fb:6b:bf:5c:48:5f:a3:b8:cd:d1:38:d0:04:38: f0:bb:dc:88:1d:d6:20:99:8b:9a:5e:50:0e:37:6c:2d:fb:b2: 10:26:b3:67:8b:b4:00:66:b0:b1:83:b7:50:c5:f6:49:5a:c8: 8e:1f:e2:07:59:2f:e3:95:e0:49:a1:6a:03:73:8f:4d:1d:1d: c2:3a:74:3a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAP0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDlDQTgxMTAvBgNVBAUTKENCQzY2MDMzNzBGQkU4NENDQ0UwNjRFODRGNEYyNkVE QkVDMjY3QjEwHhcNMjYwNDE1MDYwNzQzWhcNMjYwNDIyMDYwNzQzWjAYMRYwFAYD VQQDEw02OWRmMmIyZi02NmQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzoWFpMsYKmW8OgqoB+f5WFFrosVVNcP3HQ9VRogjaz25ao+tQKl10S74a1lk J2KegEuIYgbxkMsyvHCnG27rCPe2YKAHaWuj7nV4MijLnvr3taHcY8XIlqXnDNhH VP/pHe83h6QdKqQ9X6RpyATB2BvZPGv6ch6LrCh6A/o20WKijVljLUGq5F2CceQU /lxLDQWOJEmpSsyifCf40zMdjg578TzMHffNZ2QjKQcdezsOB+hjJrG+EApFw6C+ pz1OFcmCLT/peEpaBLaEFN0oJLVlWhaC/wB6ZaYYtKNiPUYsG+861kFEba+5JQUB hQiBzhi0h9HPMrGHrZOgMtb2YQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFr/Uqqw BMXsWyTNKZMqXBTw3xEuMB8GA1UdIwQYMBaAFMvGYDNw++hMzOBk6E9PJu2+wmex MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOUNBOC8yMERBMjc0NkU0 RkQxMUVGQUMxQ0U2N0ZDNEY5QUUwMi95OFpnTTNENzZFek00R1RvVDA4bTdiN0Na N0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3k4WmdNM0Q3NkV6TTRHVG9UMDhtN2I3Q1o3RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OUNBOC8yMERBMjc0NkU0RkQxMUVGQUMxQ0U2N0ZDNEY5QUUwMi95OFpnTTNENzZF ek00R1RvVDA4bTdiN0NaN0UubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAtrQ6SRNVwXnlzXiRtTailxIzn46hCD2oypINASd1tDokxanmJs0Ipw3FfryA CqAixD9DoDbzuaBcEgAlAOaMC8LDM7nrapt+Q98qYnbTGtG4FYazaMOsAew1afd5 pXTvNW7yURcxkzGrGDqHgmrszNA4t39yzDxf/ToI/CVZn8l6pTuuxDX0RArWnK5C rhNlXdxQlCH015JGdt92WqCyT3Amc4qLhkOJvO0BNiqK1l7OKotbPVHz4/trv1xI X6O4zdE40AQ48LvciB3WIJmLml5QDjdsLfuyECazZ4u0AGawsYO3UMX2SVrIjh/i B1kv45XgSaFqA3OPTR0dwjp0Og== -----END CERTIFICATE-----Generated at Fri Apr 17 06:47:51 2026 by rpki-client