$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.mft File: 0ypa3AVCwugXwgK-a3KB6GnReJc.mft (raw, json) Hash identifier: vWP1jbOhTIccp0o/OBjEhCfVl7ScUmqXEzhXVaXWriY= Subject key identifier: 6C:08:66:4D:5E:4A:83:3D:E8:4C:E2:7A:02:12:DF:BD:8B:F5:58:8F Authority key identifier: D3:2A:5A:DC:05:42:C2:E8:17:C2:02:BE:6B:72:81:E8:69:D1:78:97 Certificate issuer: /CN=A91E0855/serialNumber=D32A5ADC0542C2E817C202BE6B7281E869D17897 Certificate serial: 0162 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0ypa3AVCwugXwgK-a3KB6GnReJc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.mft Manifest number: 0156 Signing time: Fri 17 Apr 2026 04:52:59 +0000 Manifest this update: Fri 17 Apr 2026 04:52:58 +0000 Manifest next update: Fri 24 Apr 2026 04:52:58 +0000 Files and hashes: 1: 0ypa3AVCwugXwgK-a3KB6GnReJc.crl (hash: 2yKvuxsa6lHox2noJ15jy7yd1xHsEwSUGXJdZEJxAiI=) 2: 77D3D4A0FEDA11F0AB7A7279726F56BC.roa (hash: FHfqmVc0DH5T6GrvyUSWpVxXHt1ddRfHNNOxDC51WEY=) 3: 6F723CC0830B11F0B82E836DC4F9AE02.roa (hash: kic2dalBDWVuSnTSKRWGlC83NcfnCjH4W7+pZUZCDAs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.crl rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0ypa3AVCwugXwgK-a3KB6GnReJc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 354 (0x162) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0855, serialNumber=D32A5ADC0542C2E817C202BE6B7281E869D17897 Validity Not Before: Apr 17 04:52:58 2026 GMT Not After : Apr 24 04:52:58 2026 GMT Subject: CN=69e1bcab-439a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:c0:b0:17:dd:8a:82:b2:3d:e0:13:bb:96:3b: 4a:fa:52:cc:82:10:40:df:d7:56:51:a8:7f:20:84: 3e:0e:14:7a:a6:61:da:48:c6:2e:9e:94:20:7c:d5: 56:bd:f5:e1:c1:89:3a:58:ad:b5:e6:db:d1:27:eb: a5:c0:e4:d8:15:a4:f7:12:c9:7b:91:5e:7d:9f:e5: 7c:a6:ee:f8:93:7d:43:17:2e:1b:8d:57:02:d5:9a: 31:5f:e4:1b:f0:f9:3e:11:5b:51:27:c2:4c:8e:bb: fc:d2:66:10:52:ba:7f:c4:df:0b:f9:75:5e:bb:8d: d0:5c:25:cb:20:4f:d3:65:e3:18:d4:84:d1:77:8f: 9c:86:e7:33:ac:57:95:d8:96:f9:a0:14:29:9a:c8: 43:53:15:62:3d:01:59:4a:37:fc:2a:47:4a:99:82: 59:cb:95:57:e4:f4:12:45:2b:41:d8:ad:1c:d7:44: 6c:31:ad:fe:ab:71:32:e6:9f:75:77:40:18:50:0a: 62:dd:27:d9:2b:ae:7e:fa:00:59:c4:92:6b:48:33: f1:e7:f0:0c:3a:b1:34:3e:ad:62:0f:86:89:c2:dc: 44:eb:f4:65:5c:bb:65:83:5c:07:69:7c:6b:86:53: 93:07:8c:52:ef:8f:52:c7:6a:4b:1b:f5:9d:78:79: 5e:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:08:66:4D:5E:4A:83:3D:E8:4C:E2:7A:02:12:DF:BD:8B:F5:58:8F X509v3 Authority Key Identifier: keyid:D3:2A:5A:DC:05:42:C2:E8:17:C2:02:BE:6B:72:81:E8:69:D1:78:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0ypa3AVCwugXwgK-a3KB6GnReJc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:ce:93:44:ce:c9:6a:b2:2e:d1:44:b9:d2:ae:aa:8f:8c:27: 27:4a:a5:a7:4d:e4:35:62:1c:c0:a9:ba:8d:2e:89:d1:e1:a4: fd:96:d8:0f:bb:3d:36:e4:29:e1:d0:c9:23:7e:3c:3a:79:57: bb:56:c3:27:7b:5b:bb:94:24:20:07:c9:89:c0:af:fc:fc:1d: 08:5c:65:98:3d:7b:99:f9:92:4c:58:f2:57:72:a3:ca:51:cd: a3:4a:62:c1:fc:9c:14:71:18:a5:a2:c8:ac:db:9a:4a:a6:2b: dd:ae:a1:e1:9f:4d:c1:bb:33:8a:97:90:2f:d6:3a:b9:b2:88: 3a:c9:11:90:4f:73:7e:f6:f4:ec:cc:8d:82:8e:10:25:81:04: 3a:d2:20:9a:6b:91:8c:08:8a:1e:21:6d:b9:87:70:72:33:53: ba:b8:82:c4:de:d4:a1:c6:16:91:db:9d:06:2d:4a:26:fd:3a: eb:62:f9:bc:3d:d2:62:5b:6c:c2:81:a5:af:fe:bf:1f:08:23: 20:54:58:66:fe:44:fe:ae:0f:93:ef:d0:f6:e5:22:df:3b:e1: e4:dd:fb:20:d0:32:c9:2a:37:e9:21:a4:11:cd:33:10:a3:72: 36:d4:9e:61:d4:52:c0:9d:da:a9:e8:b4:14:01:03:fe:87:c9: 5d:cc:1d:16 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAWIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTA4NTUxMTAvBgNVBAUTKEQzMkE1QURDMDU0MkMyRTgxN0MyMDJCRTZCNzI4MUU4 NjlEMTc4OTcwHhcNMjYwNDE3MDQ1MjU4WhcNMjYwNDI0MDQ1MjU4WjAYMRYwFAYD VQQDEw02OWUxYmNhYi00MzlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm8CwF92KgrI94BO7ljtK+lLMghBA39dWUah/IIQ+DhR6pmHaSMYunpQgfNVW vfXhwYk6WK215tvRJ+ulwOTYFaT3Esl7kV59n+V8pu74k31DFy4bjVcC1ZoxX+Qb 8Pk+EVtRJ8JMjrv80mYQUrp/xN8L+XVeu43QXCXLIE/TZeMY1ITRd4+chuczrFeV 2Jb5oBQpmshDUxViPQFZSjf8KkdKmYJZy5VX5PQSRStB2K0c10RsMa3+q3Ey5p91 d0AYUApi3SfZK65++gBZxJJrSDPx5/AMOrE0Pq1iD4aJwtxE6/RlXLtlg1wHaXxr hlOTB4xS749Sx2pLG/WdeHle6wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGwIZk1e SoM96EziegIS372L9ViPMB8GA1UdIwQYMBaAFNMqWtwFQsLoF8ICvmtygehp0XiX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMDg1NS81MDRDRkZFMjQ0 OTYxMUVGOEU4NEU2M0RDNEY5QUUwMi8weXBhM0FWQ3d1Z1h3Z0stYTNLQjZHblJl SmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzB5cGEzQVZDd3VnWHdnSy1hM0tCNkduUmVKYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MDg1NS81MDRDRkZFMjQ0OTYxMUVGOEU4NEU2M0RDNEY5QUUwMi8weXBhM0FWQ3d1 Z1h3Z0stYTNLQjZHblJlSmMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAis6TRM7JarIu0US50q6qj4wnJ0qlp03kNWIcwKm6jS6J0eGk/ZbYD7s9NuQp 4dDJI348OnlXu1bDJ3tbu5QkIAfJicCv/PwdCFxlmD17mfmSTFjyV3KjylHNo0pi wfycFHEYpaLIrNuaSqYr3a6h4Z9NwbszipeQL9Y6ubKIOskRkE9zfvb07MyNgo4Q JYEEOtIgmmuRjAiKHiFtuYdwcjNTuriCxN7UocYWkdudBi1KJv0662L5vD3SYlts woGlr/6/HwgjIFRYZv5E/q4Pk+/Q9uUi3zvh5N37INAyySo36SGkEc0zEKNyNtSe YdRSwJ3aqei0FAED/ofJXcwdFg== -----END CERTIFICATE-----Generated at Fri Apr 17 08:04:49 2026 by rpki-client