$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.mft File: yCFQSaXsETZftnQLghcGdiaArRc.mft (raw, json) Hash identifier: iEtPh6IzEvO8dMuOSW1ACqjmCbWo+/AQzugSOUtYk+Q= Subject key identifier: DC:90:98:97:29:F3:27:93:CF:85:0A:47:FD:BC:16:94:A9:92:C7:97 Authority key identifier: C8:21:50:49:A5:EC:11:36:5F:B6:74:0B:82:17:06:76:26:80:AD:17 Certificate issuer: /CN=A91DC459/serialNumber=C8215049A5EC11365FB6740B821706762680AD17 Certificate serial: 017F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCFQSaXsETZftnQLghcGdiaArRc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.mft Manifest number: 017A Signing time: Fri 17 Apr 2026 04:19:57 +0000 Manifest this update: Fri 17 Apr 2026 04:19:57 +0000 Manifest next update: Fri 24 Apr 2026 04:19:57 +0000 Files and hashes: 1: yCFQSaXsETZftnQLghcGdiaArRc.crl (hash: F076X/fYwOq1/27JGn33yutUMwoohOCVRgcpUudzvS0=) 2: 264C45FAFA3F11EE8A884F09C4F9AE02.roa (hash: DhtcaUMqqCMW/cXHm6qDVJ4p8jBXsfCnZxdH4xPuRuE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.crl rsync://rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCFQSaXsETZftnQLghcGdiaArRc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 04:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 383 (0x17f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC459, serialNumber=C8215049A5EC11365FB6740B821706762680AD17 Validity Not Before: Apr 17 04:19:57 2026 GMT Not After : Apr 24 04:19:57 2026 GMT Subject: CN=69e1b4ed-ed8e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:00:85:48:19:8b:db:f2:17:b0:4a:01:e0:e2: 3d:f1:a4:99:4b:b2:60:3d:0d:49:60:ad:09:43:fa: 07:92:18:d2:d9:a4:de:99:ff:fe:62:b2:f0:44:1e: 2b:07:bd:39:a1:f4:db:9d:bc:b8:aa:98:20:0e:7f: 07:8d:c1:c2:29:21:d2:f7:c4:37:3d:69:f6:87:86: fe:2e:d1:73:bd:0a:90:d6:60:ea:3c:f2:6c:ff:40: 55:f3:ed:1b:f9:89:d9:c8:a0:3e:13:a8:fa:75:5c: 1c:7c:0d:7b:5a:dc:cd:f2:97:7c:34:9f:2f:54:85: 43:76:0e:27:4e:8e:4c:7b:b2:c2:78:b1:9c:9a:b7: c5:27:79:dc:4f:1b:1b:a0:93:15:97:99:6f:4c:52: 81:08:81:52:05:33:71:92:8c:9a:55:7b:6d:97:3e: d9:ef:8b:67:39:a2:8a:be:48:c2:ac:0c:2f:76:2a: a3:32:1d:30:50:8a:6a:a4:6a:c4:1f:77:43:ba:ae: c6:d2:63:38:80:2d:5f:3e:6a:45:c1:d9:3a:4e:58: e6:4b:24:4e:e9:2d:ef:80:85:a9:3f:d7:ec:b9:b5: 80:db:b9:7a:9e:72:c1:9e:19:a7:8e:b9:a8:7d:47: c1:37:b9:8e:ec:eb:a3:4e:b0:53:41:b2:9f:0d:a5: 1c:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:90:98:97:29:F3:27:93:CF:85:0A:47:FD:BC:16:94:A9:92:C7:97 X509v3 Authority Key Identifier: keyid:C8:21:50:49:A5:EC:11:36:5F:B6:74:0B:82:17:06:76:26:80:AD:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCFQSaXsETZftnQLghcGdiaArRc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:2a:62:6f:d1:59:fa:10:e3:8a:9c:d9:30:f6:be:13:e0:c4: 1d:60:61:10:30:9d:0a:03:58:c9:c1:25:12:ef:42:9f:9c:19: 0c:4a:c0:10:02:35:34:40:f1:45:63:b0:58:0c:15:ec:1d:a8: ba:1e:d4:bc:59:4c:71:a8:df:29:34:76:46:44:60:ff:ea:99: c8:78:da:0e:07:22:b3:7a:d0:a6:12:53:b4:61:1e:56:b7:a3: 35:0b:99:6e:c2:00:b0:32:78:0f:0e:d0:14:6c:3a:b0:8b:13: 82:c0:bf:8b:2c:8d:9d:bb:ed:f3:ea:0d:0d:a8:c1:53:c8:25: 8c:dc:b4:8b:ed:84:78:e9:86:dc:bf:c6:7a:8b:10:42:f8:ce: 4e:9b:05:4f:d4:08:6c:66:af:d9:74:90:9a:30:f2:42:8b:b3: 0a:cb:40:67:c7:0c:94:59:56:7b:1e:15:5b:e8:8d:70:92:96: 65:d8:c9:92:0a:6c:63:c7:fa:96:ab:07:52:87:e8:53:4e:1b: 05:1d:ca:50:cc:38:f5:28:c3:df:9c:da:94:62:49:95:f6:c3: a9:1e:53:ce:8e:a9:c0:30:6e:db:36:2f:34:84:0a:b7:05:87: 19:f4:a8:be:21:f7:2c:8c:8b:51:6b:a1:e6:58:09:76:b0:56: a9:99:47:b2 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAX8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM0NTkxMTAvBgNVBAUTKEM4MjE1MDQ5QTVFQzExMzY1RkI2NzQwQjgyMTcwNjc2 MjY4MEFEMTcwHhcNMjYwNDE3MDQxOTU3WhcNMjYwNDI0MDQxOTU3WjAYMRYwFAYD VQQDEw02OWUxYjRlZC1lZDhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmACFSBmL2/IXsEoB4OI98aSZS7JgPQ1JYK0JQ/oHkhjS2aTemf/+YrLwRB4r B705ofTbnby4qpggDn8HjcHCKSHS98Q3PWn2h4b+LtFzvQqQ1mDqPPJs/0BV8+0b +YnZyKA+E6j6dVwcfA17WtzN8pd8NJ8vVIVDdg4nTo5Me7LCeLGcmrfFJ3ncTxsb oJMVl5lvTFKBCIFSBTNxkoyaVXttlz7Z74tnOaKKvkjCrAwvdiqjMh0wUIpqpGrE H3dDuq7G0mM4gC1fPmpFwdk6TljmSyRO6S3vgIWpP9fsubWA27l6nnLBnhmnjrmo fUfBN7mO7OujTrBTQbKfDaUcjQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNyQmJcp 8yeTz4UKR/28FpSpkseXMB8GA1UdIwQYMBaAFMghUEml7BE2X7Z0C4IXBnYmgK0X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzQ1OS9BOTM1MDdCQ0Y2 RDUxMUVFQjg3ODNDMUVDNEY5QUUwMi95Q0ZRU2FYc0VUWmZ0blFMZ2hjR2RpYUFy UmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lDRlFTYVhzRVRaZnRuUUxnaGNHZGlhQXJSYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzQ1OS9BOTM1MDdCQ0Y2RDUxMUVFQjg3ODNDMUVDNEY5QUUwMi95Q0ZRU2FYc0VU WmZ0blFMZ2hjR2RpYUFyUmMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAqypib9FZ+hDjipzZMPa+E+DEHWBhEDCdCgNYycElEu9Cn5wZDErAEAI1NEDx RWOwWAwV7B2ouh7UvFlMcajfKTR2RkRg/+qZyHjaDgcis3rQphJTtGEeVrejNQuZ bsIAsDJ4Dw7QFGw6sIsTgsC/iyyNnbvt8+oNDajBU8gljNy0i+2EeOmG3L/GeosQ QvjOTpsFT9QIbGav2XSQmjDyQouzCstAZ8cMlFlWex4VW+iNcJKWZdjJkgpsY8f6 lqsHUofoU04bBR3KUMw49SjD35zalGJJlfbDqR5Tzo6pwDBu2zYvNIQKtwWHGfSo viH3LIyLUWuh5lgJdrBWqZlHsg== -----END CERTIFICATE-----Generated at Fri Apr 17 17:33:17 2026 by rpki-client