$ rpki-client -vvf rpki.apnic.net/member_repository/A91DCB25/2C60DFD8FDA511E88859C06BC4F9AE02/YcuQhfAv-PpF5zL1gDQPQkngDKI.mft File: YcuQhfAv-PpF5zL1gDQPQkngDKI.mft (raw, json) Hash identifier: Od7NCBfN/eoR1eq8wfqAcTKC2uoukLNktcS7hTU4uy0= Subject key identifier: EA:DC:CA:CE:B6:CD:8F:16:F0:46:9E:E9:ED:69:6F:78:C9:53:7A:3A Authority key identifier: 61:CB:90:85:F0:2F:F8:FA:45:E7:32:F5:80:34:0F:42:49:E0:0C:A2 Certificate issuer: /CN=A91DCB25/serialNumber=61CB9085F02FF8FA45E732F580340F4249E00CA2 Certificate serial: 1231 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YcuQhfAv-PpF5zL1gDQPQkngDKI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DCB25/2C60DFD8FDA511E88859C06BC4F9AE02/YcuQhfAv-PpF5zL1gDQPQkngDKI.mft Manifest number: 1225 Signing time: Thu 16 Apr 2026 17:03:48 +0000 Manifest this update: Thu 16 Apr 2026 17:03:48 +0000 Manifest next update: Thu 23 Apr 2026 17:03:48 +0000 Files and hashes: 1: YcuQhfAv-PpF5zL1gDQPQkngDKI.crl (hash: 31rqv0iGy965vXvnOvQt9XMUFktRa3CGEvVnMTnq2zI=) 2: BDC1AB0AFDA611E88FA5E26DC4F9AE02.roa (hash: wLzSSsb1W3A2MYP49E/fklCTD0d/JRiMl3Lul9XwiIg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DCB25/2C60DFD8FDA511E88859C06BC4F9AE02/YcuQhfAv-PpF5zL1gDQPQkngDKI.crl rsync://rpki.apnic.net/member_repository/A91DCB25/2C60DFD8FDA511E88859C06BC4F9AE02/YcuQhfAv-PpF5zL1gDQPQkngDKI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YcuQhfAv-PpF5zL1gDQPQkngDKI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 17:03:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4657 (0x1231) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DCB25, serialNumber=61CB9085F02FF8FA45E732F580340F4249E00CA2 Validity Not Before: Apr 16 17:03:48 2026 GMT Not After : Apr 23 17:03:48 2026 GMT Subject: CN=69e11674-9a56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:5d:ef:b2:c1:e1:0d:b4:0e:78:eb:3f:42:0e: 48:e1:0f:17:bd:e5:0b:79:50:00:63:80:62:f3:14: 10:e7:ed:e7:90:d3:da:26:84:46:97:5b:b4:92:7c: b7:b6:f5:73:cf:a8:52:c1:26:e9:15:9e:8d:63:28: b3:cf:3a:15:30:6a:b8:1c:d8:82:3b:28:37:a5:a1: 6a:89:e0:59:99:1d:1b:d0:ba:b2:54:2f:22:bb:74: 60:66:c5:41:4b:77:61:d3:c8:66:05:3f:e6:46:a8: 8a:51:4b:c5:e4:b7:cc:f8:4e:d2:12:e1:32:d2:fa: 3f:ad:53:66:08:b0:4a:41:e8:9c:04:97:6c:2f:03: 2b:fe:8d:f7:bd:38:36:d2:af:55:54:3c:38:83:fb: f5:a7:f0:cf:3a:d8:0a:e2:6d:ff:60:79:b1:78:b3: 69:c9:17:58:fc:b0:ef:75:8f:74:58:92:49:71:0d: e1:96:38:71:38:b4:8b:fd:ed:6a:2a:c0:ce:f8:4e: 6d:05:54:af:f1:78:73:41:68:d7:48:bf:22:cc:b1: 68:df:62:7e:85:5d:a8:ad:2a:c2:25:7b:6e:e2:08: 74:1b:28:52:12:fd:71:12:60:f7:d7:50:13:78:15: fa:b1:38:d7:dd:47:67:aa:f2:d4:44:70:6b:4c:ae: c7:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:DC:CA:CE:B6:CD:8F:16:F0:46:9E:E9:ED:69:6F:78:C9:53:7A:3A X509v3 Authority Key Identifier: keyid:61:CB:90:85:F0:2F:F8:FA:45:E7:32:F5:80:34:0F:42:49:E0:0C:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DCB25/2C60DFD8FDA511E88859C06BC4F9AE02/YcuQhfAv-PpF5zL1gDQPQkngDKI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YcuQhfAv-PpF5zL1gDQPQkngDKI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DCB25/2C60DFD8FDA511E88859C06BC4F9AE02/YcuQhfAv-PpF5zL1gDQPQkngDKI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:d9:c4:71:3c:9f:71:a1:b2:9d:d6:cb:aa:8d:c3:f2:88:6e: fd:f2:1a:55:51:38:f7:34:33:75:78:7c:c0:04:e8:35:f1:7d: ec:d4:9d:34:13:93:2b:70:4f:b3:5f:d5:a5:7b:8c:7f:ca:43: 8a:2f:89:da:7e:4a:b6:0b:4f:46:6b:b3:61:40:66:b3:d4:36: 9d:c9:61:78:b7:ec:f8:53:c3:ec:fc:0a:e0:65:7e:e8:71:a7: 0f:a7:a4:92:a1:f9:1f:16:d9:10:e3:cf:0a:7c:07:09:11:62: 42:ab:fb:05:c8:fe:6c:61:b0:6d:95:0e:bd:18:cd:70:e8:e6: cb:e3:c3:a7:e1:f0:76:29:20:22:04:2d:4d:a7:e4:f8:ee:6d: b5:42:6d:66:84:65:62:ff:3d:d9:03:65:53:bc:3a:77:a3:b6: 4a:1b:4a:94:c8:1d:cf:43:d1:7e:6b:a7:66:9e:d0:4a:d0:96: 6a:6e:cf:a7:34:cc:12:3e:9e:b4:34:1e:e1:1f:03:2f:ad:46: 93:49:3b:44:92:96:be:e2:97:b7:c5:59:17:24:2c:45:8a:ee: 90:e1:7a:e2:ad:f4:9c:13:e9:f5:28:87:84:23:f8:41:fc:2f: 44:b2:3d:b7:73:b7:ed:e1:c5:74:14:0b:56:01:36:7a:0f:65: 0a:cd:fa:db -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICEjEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RENCMjUxMTAvBgNVBAUTKDYxQ0I5MDg1RjAyRkY4RkE0NUU3MzJGNTgwMzQwRjQy NDlFMDBDQTIwHhcNMjYwNDE2MTcwMzQ4WhcNMjYwNDIzMTcwMzQ4WjAYMRYwFAYD VQQDEw02OWUxMTY3NC05YTU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqF3vssHhDbQOeOs/Qg5I4Q8XveULeVAAY4Bi8xQQ5+3nkNPaJoRGl1u0kny3 tvVzz6hSwSbpFZ6NYyizzzoVMGq4HNiCOyg3paFqieBZmR0b0LqyVC8iu3RgZsVB S3dh08hmBT/mRqiKUUvF5LfM+E7SEuEy0vo/rVNmCLBKQeicBJdsLwMr/o33vTg2 0q9VVDw4g/v1p/DPOtgK4m3/YHmxeLNpyRdY/LDvdY90WJJJcQ3hljhxOLSL/e1q KsDO+E5tBVSv8XhzQWjXSL8izLFo32J+hV2orSrCJXtu4gh0GyhSEv1xEmD311AT eBX6sTjX3UdnqvLURHBrTK7HBQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOrcys62 zY8W8Eae6e1pb3jJU3o6MB8GA1UdIwQYMBaAFGHLkIXwL/j6Recy9YA0D0JJ4Ayi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQ0IyNS8yQzYwREZEOEZE QTUxMUU4ODg1OUMwNkJDNEY5QUUwMi9ZY3VRaGZBdi1QcEY1ekwxZ0RRUFFrbmdE S0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ljdVFoZkF2LVBwRjV6TDFnRFFQUWtuZ0RLSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE Q0IyNS8yQzYwREZEOEZEQTUxMUU4ODg1OUMwNkJDNEY5QUUwMi9ZY3VRaGZBdi1Q cEY1ekwxZ0RRUFFrbmdES0kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAQNnEcTyfcaGyndbLqo3D8ohu/fIaVVE49zQzdXh8wAToNfF97NSdNBOTK3BP s1/VpXuMf8pDii+J2n5KtgtPRmuzYUBms9Q2nclheLfs+FPD7PwK4GV+6HGnD6ek kqH5HxbZEOPPCnwHCRFiQqv7Bcj+bGGwbZUOvRjNcOjmy+PDp+HwdikgIgQtTafk +O5ttUJtZoRlYv892QNlU7w6d6O2ShtKlMgdz0PRfmunZp7QStCWam7PpzTMEj6e tDQe4R8DL61Gk0k7RJKWvuKXt8VZFyQsRYrukOF64q30nBPp9SiHhCP4QfwvRLI9 t3O37eHFdBQLVgE2eg9lCs362w== -----END CERTIFICATE-----Generated at Fri Apr 17 05:29:26 2026 by rpki-client