$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.mft File: yAcP0GGoUf-K7eDeDDYH7rmP9wE.mft (raw, json) Hash identifier: 2rcOjRdG9+tDQZrGZ85zW+UOhVBvo4vBLID+wYtS4jM= Subject key identifier: 14:62:C2:67:0E:87:67:27:7F:70:71:D4:E3:28:49:5F:6B:9E:5C:49 Authority key identifier: C8:07:0F:D0:61:A8:51:FF:8A:ED:E0:DE:0C:36:07:EE:B9:8F:F7:01 Certificate issuer: /CN=A91E4D3D/serialNumber=C8070FD061A851FF8AEDE0DE0C3607EEB98FF701 Certificate serial: 0690 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yAcP0GGoUf-K7eDeDDYH7rmP9wE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.mft Manifest number: 0667 Signing time: Thu 16 Apr 2026 22:40:19 +0000 Manifest this update: Thu 16 Apr 2026 22:40:18 +0000 Manifest next update: Thu 23 Apr 2026 22:40:18 +0000 Files and hashes: 1: yAcP0GGoUf-K7eDeDDYH7rmP9wE.crl (hash: Rj6fY6wtbUSiF3iW5toqCGOvfFW8vrUefES6Y8sSh8Q=) 2: 6954A6281D1811F1BB26F0200F3D8C67.roa (hash: P5Q8K6LwmwdhzRwpWgvgD1DNuYjFnIVgmUtZw1JMKT0=) 3: 5FA1BF8802DD11EE86865A23C4F9AE02.roa (hash: GFfQfs1rBXk5RvNn/1eLrsagDcvE+KrBjwNFBGF3aQo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.crl rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yAcP0GGoUf-K7eDeDDYH7rmP9wE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 22:40:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1680 (0x690) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4D3D, serialNumber=C8070FD061A851FF8AEDE0DE0C3607EEB98FF701 Validity Not Before: Apr 16 22:40:18 2026 GMT Not After : Apr 23 22:40:18 2026 GMT Subject: CN=69e16553-87ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:87:d1:95:f0:86:8e:4c:1c:51:18:90:7a:f1: 4b:ae:22:df:68:16:20:fd:12:fd:6d:d5:ce:9f:62: d0:39:bc:0e:c7:d2:16:7c:e8:4e:25:a5:41:5f:56: 16:c6:45:33:76:f7:a4:09:84:40:74:27:17:ff:71: f7:bf:17:74:73:e1:72:97:52:55:75:1c:48:72:30: 20:50:44:25:ff:31:76:13:a7:02:ed:7e:c4:05:fc: b0:cb:6e:74:a0:1c:6a:c7:10:b0:d3:b3:b1:06:25: 60:4c:06:14:e1:ba:90:50:e7:cf:23:4a:22:7c:83: 3a:ad:c9:ef:96:dc:ff:f1:5e:ec:f1:ec:82:1f:69: 4a:42:a6:be:c9:29:45:33:c0:bf:9a:c0:97:85:0a: 18:b8:a6:a0:e1:4f:6b:db:bd:ef:73:cd:9e:cc:7c: 09:13:2e:e8:f0:6b:c8:d8:73:7c:5b:b0:18:07:72: a0:4c:49:d1:19:63:9c:46:3a:63:94:58:ef:1f:89: f0:db:63:d8:45:d8:f0:c2:32:11:90:a5:26:de:0d: 05:f1:e5:6e:a8:77:d9:83:24:b3:fe:88:90:73:12: 79:45:db:27:ff:7d:9d:b1:4c:0b:93:ea:f3:a2:9a: 63:1b:b2:79:fa:c3:b8:05:a0:4f:d7:4c:26:a1:35: ba:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:62:C2:67:0E:87:67:27:7F:70:71:D4:E3:28:49:5F:6B:9E:5C:49 X509v3 Authority Key Identifier: keyid:C8:07:0F:D0:61:A8:51:FF:8A:ED:E0:DE:0C:36:07:EE:B9:8F:F7:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yAcP0GGoUf-K7eDeDDYH7rmP9wE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:18:54:e4:5f:bb:ae:3f:f8:d1:73:7d:a1:9c:fa:6e:73:d3: cf:9b:8f:eb:09:00:a7:26:ac:39:f9:4f:3a:3e:22:c1:d5:86: 93:78:6e:11:00:6c:3a:d5:b5:32:dd:65:13:a0:00:0c:eb:cb: 58:67:f5:8a:4f:89:4d:fe:6e:f7:85:62:2b:47:bd:80:39:e2: 36:71:2e:5d:cc:e2:ac:7b:60:0e:b3:e7:f6:09:6a:f5:67:13: 76:2f:87:30:4e:7b:98:40:67:87:08:c3:7b:17:0b:d2:ec:cc: fe:f0:1e:ec:a2:b5:8a:36:95:8b:1c:c1:d4:69:a9:e6:62:33: 0a:df:88:5f:0a:74:ec:70:54:e8:2b:2e:06:51:df:31:3c:96: 50:b6:13:b3:9a:c8:88:45:97:30:6e:a1:6f:e0:88:2e:fa:16: ac:78:2c:2b:9c:39:9b:11:12:98:16:6e:75:9e:93:fa:f0:d0: 65:59:dc:fe:4d:d9:55:01:c0:8f:41:7f:e1:f9:70:b6:e8:4d: 8f:28:82:29:a1:66:7f:be:15:e7:e8:7c:96:80:b9:bb:c4:38: 92:91:66:b4:0b:3a:03:74:fc:b8:82:9c:e0:18:24:50:45:c6: 98:95:03:d7:1a:22:cd:5e:04:24:53:17:cc:99:b6:ec:57:59: 70:0f:67:44 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBpAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTREM0QxMTAvBgNVBAUTKEM4MDcwRkQwNjFBODUxRkY4QUVERTBERTBDMzYwN0VF Qjk4RkY3MDEwHhcNMjYwNDE2MjI0MDE4WhcNMjYwNDIzMjI0MDE4WjAYMRYwFAYD VQQDEw02OWUxNjU1My04N2ZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqofRlfCGjkwcURiQevFLriLfaBYg/RL9bdXOn2LQObwOx9IWfOhOJaVBX1YW xkUzdvekCYRAdCcX/3H3vxd0c+Fyl1JVdRxIcjAgUEQl/zF2E6cC7X7EBfywy250 oBxqxxCw07OxBiVgTAYU4bqQUOfPI0oifIM6rcnvltz/8V7s8eyCH2lKQqa+ySlF M8C/msCXhQoYuKag4U9r273vc82ezHwJEy7o8GvI2HN8W7AYB3KgTEnRGWOcRjpj lFjvH4nw22PYRdjwwjIRkKUm3g0F8eVuqHfZgySz/oiQcxJ5Rdsn/32dsUwLk+rz oppjG7J5+sO4BaBP10wmoTW6rQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBRiwmcO h2cnf3Bx1OMoSV9rnlxJMB8GA1UdIwQYMBaAFMgHD9BhqFH/iu3g3gw2B+65j/cB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEQzRC9CMDIwMkQzMkQ4 QjkxMUVCQUJDMUY0ODVDNEY5QUUwMi95QWNQMEdHb1VmLUs3ZURlRERZSDdybVA5 d0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lBY1AwR0dvVWYtSzdlRGVERFlIN3JtUDl3RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NEQzRC9CMDIwMkQzMkQ4QjkxMUVCQUJDMUY0ODVDNEY5QUUwMi95QWNQMEdHb1Vm LUs3ZURlRERZSDdybVA5d0UubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAJhhU5F+7rj/40XN9oZz6bnPTz5uP6wkApyasOflPOj4iwdWGk3huEQBsOtW1 Mt1lE6AADOvLWGf1ik+JTf5u94ViK0e9gDniNnEuXczirHtgDrPn9glq9WcTdi+H ME57mEBnhwjDexcL0uzM/vAe7KK1ijaVixzB1Gmp5mIzCt+IXwp07HBU6CsuBlHf MTyWULYTs5rIiEWXMG6hb+CILvoWrHgsK5w5mxESmBZudZ6T+vDQZVnc/k3ZVQHA j0F/4flwtuhNjyiCKaFmf74V5+h8loC5u8Q4kpFmtAs6A3T8uIKc4BgkUEXGmJUD 1xoizV4EJFMXzJm27FdZcA9nRA== -----END CERTIFICATE-----Generated at Fri Apr 17 05:31:41 2026 by rpki-client