$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.mft File: yoXhM8HiOWFMnFd4ARi9swlSjnY.mft (raw, json) Hash identifier: 667PurZKXA9EMWmhCcQ/u0jVn3s7wlMZSFZWa8ivqEU= Subject key identifier: D9:1B:DC:43:17:41:09:CB:5A:73:5D:4B:CC:EC:FD:21:83:ED:19:6B Authority key identifier: CA:85:E1:33:C1:E2:39:61:4C:9C:57:78:01:18:BD:B3:09:52:8E:76 Certificate issuer: /CN=A91DC42E/serialNumber=CA85E133C1E239614C9C57780118BDB309528E76 Certificate serial: 083E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yoXhM8HiOWFMnFd4ARi9swlSjnY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.mft Manifest number: 0835 Signing time: Sat 18 Apr 2026 20:49:11 +0000 Manifest this update: Sat 18 Apr 2026 20:49:10 +0000 Manifest next update: Sat 25 Apr 2026 20:49:10 +0000 Files and hashes: 1: yoXhM8HiOWFMnFd4ARi9swlSjnY.crl (hash: 8TCr2HrCCeptLwbva9hOO+BrlcOlpeQ/z1/bXFx8lQw=) 2: 4AAD8CFE0D1E11EB83C9B637C4F9AE02.roa (hash: 1FYTa+b4b7Loa31EgzeXR7TOb6YS6HpedmRkzfbLWn0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.crl rsync://rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yoXhM8HiOWFMnFd4ARi9swlSjnY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Apr 2026 20:49:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2110 (0x83e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC42E, serialNumber=CA85E133C1E239614C9C57780118BDB309528E76 Validity Not Before: Apr 18 20:49:10 2026 GMT Not After : Apr 25 20:49:10 2026 GMT Subject: CN=69e3ee47-500c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:fa:c0:0c:94:78:08:f8:5c:63:3a:c2:a5:b9: b6:f8:73:38:dd:c6:30:1a:94:d6:3e:1c:ad:54:7d: d9:f1:b2:ba:54:eb:f2:54:0b:a6:dd:36:f2:90:1f: 04:e5:ef:71:21:e5:ab:d1:72:f4:0b:9b:f5:3b:10: a8:af:73:04:4d:01:eb:97:fe:20:08:07:59:cb:f7: 99:1d:1b:e2:c2:9a:f1:42:47:66:40:d9:d9:b4:52: db:26:4b:2b:16:d4:7b:01:29:0d:a0:26:b1:f0:bc: bc:f6:44:ba:1d:19:46:b0:76:a6:ad:70:48:64:d2: 54:10:49:23:b0:94:58:1a:e7:86:4a:6a:05:1f:34: 0d:b7:57:2f:46:80:91:b8:5e:e2:b6:ba:f7:d9:bf: 57:1d:b1:62:f7:66:0e:9b:53:59:8f:d7:03:5d:8c: 2a:d3:1c:4e:d8:11:03:f8:a7:ea:26:15:02:e8:4b: ec:26:9e:ca:22:bf:39:99:0d:1d:68:28:0b:06:a0: 26:d6:bf:68:6b:e0:a8:07:53:aa:18:99:1c:40:78: e7:0c:fb:29:08:e6:ff:6e:75:db:97:13:c7:84:0c: 95:91:93:2f:ef:1b:9d:bf:36:92:d2:a6:8d:75:f5: d8:5b:a0:ad:31:63:4a:c7:71:c3:62:0a:52:43:e6: 4b:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:1B:DC:43:17:41:09:CB:5A:73:5D:4B:CC:EC:FD:21:83:ED:19:6B X509v3 Authority Key Identifier: keyid:CA:85:E1:33:C1:E2:39:61:4C:9C:57:78:01:18:BD:B3:09:52:8E:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yoXhM8HiOWFMnFd4ARi9swlSjnY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:e4:96:26:d3:2f:4d:69:02:77:8b:b6:40:b3:bb:1b:ab:3f: 32:80:a1:54:5a:41:68:2b:6b:27:f2:41:b1:e0:cd:05:3b:21: bc:27:c9:1e:33:90:bd:63:27:42:c0:90:c5:57:ca:51:f7:7b: 2a:e3:a6:c4:da:69:5d:34:a5:22:64:f4:19:c9:25:a7:4e:8c: 81:38:98:8d:41:d7:5c:c0:90:71:c1:ad:41:67:92:23:8e:81: a6:59:ff:ca:c3:8d:d0:30:77:a8:5c:98:65:c0:3c:0b:75:30: 12:49:f2:80:e9:48:01:58:1f:5c:ed:72:c2:f7:b1:9e:b4:6d: f2:87:d5:a4:a7:8a:26:06:48:4b:24:05:39:2d:30:2c:a4:1c: fa:2e:11:98:71:e5:cc:63:a2:c4:12:d3:af:fe:9e:11:de:15: 5e:f7:ce:d6:ed:bf:5d:39:bd:62:e4:a1:93:66:f9:ec:05:4e: 79:df:df:5d:f4:26:b2:e1:11:5a:23:ce:35:eb:d6:f9:90:36: fb:c1:27:ff:e2:30:9a:bd:43:1e:f0:85:af:c8:6c:6b:22:00: 89:45:38:98:38:a9:b2:af:cf:61:d1:75:96:45:97:67:55:eb: 39:93:82:f5:97:9a:06:74:99:6e:33:6a:92:ec:70:cc:41:7c: 56:48:c7:3c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCD4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM0MkUxMTAvBgNVBAUTKENBODVFMTMzQzFFMjM5NjE0QzlDNTc3ODAxMThCREIz MDk1MjhFNzYwHhcNMjYwNDE4MjA0OTEwWhcNMjYwNDI1MjA0OTEwWjAYMRYwFAYD VQQDEw02OWUzZWU0Ny01MDBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2vrADJR4CPhcYzrCpbm2+HM43cYwGpTWPhytVH3Z8bK6VOvyVAum3TbykB8E 5e9xIeWr0XL0C5v1OxCor3METQHrl/4gCAdZy/eZHRviwprxQkdmQNnZtFLbJksr FtR7ASkNoCax8Ly89kS6HRlGsHamrXBIZNJUEEkjsJRYGueGSmoFHzQNt1cvRoCR uF7itrr32b9XHbFi92YOm1NZj9cDXYwq0xxO2BED+KfqJhUC6EvsJp7KIr85mQ0d aCgLBqAm1r9oa+CoB1OqGJkcQHjnDPspCOb/bnXblxPHhAyVkZMv7xudvzaS0qaN dfXYW6CtMWNKx3HDYgpSQ+ZLmwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNkb3EMX QQnLWnNdS8zs/SGD7RlrMB8GA1UdIwQYMBaAFMqF4TPB4jlhTJxXeAEYvbMJUo52 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzQyRS9ENkE3RkY0ODBE MTcxMUVCQTc0MUE1MEFDNEY5QUUwMi95b1hoTThIaU9XRk1uRmQ0QVJpOXN3bFNq blkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lvWGhNOEhpT1dGTW5GZDRBUmk5c3dsU2puWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzQyRS9ENkE3RkY0ODBEMTcxMUVCQTc0MUE1MEFDNEY5QUUwMi95b1hoTThIaU9X Rk1uRmQ0QVJpOXN3bFNqblkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAKeSWJtMvTWkCd4u2QLO7G6s/MoChVFpBaCtrJ/JBseDNBTshvCfJHjOQvWMn QsCQxVfKUfd7KuOmxNppXTSlImT0Gcklp06MgTiYjUHXXMCQccGtQWeSI46Bpln/ ysON0DB3qFyYZcA8C3UwEknygOlIAVgfXO1ywvexnrRt8ofVpKeKJgZISyQFOS0w LKQc+i4RmHHlzGOixBLTr/6eEd4VXvfO1u2/XTm9YuShk2b57AVOed/fXfQmsuER WiPONevW+ZA2+8En/+Iwmr1DHvCFr8hsayIAiUU4mDipsq/PYdF1lkWXZ1XrOZOC 9ZeaBnSZbjNqkuxwzEF8VkjHPA== -----END CERTIFICATE-----Generated at Sun Apr 19 08:56:55 2026 by rpki-client