$ rpki-client -vvf rpki.apnic.net/member_repository/A9175D4F/585F4D0E787911EAAEBA3B38C4F9AE02/YCgZkDDJlCoUSqFr-zB450H27CM.mft File: YCgZkDDJlCoUSqFr-zB450H27CM.mft (raw, json) Hash identifier: TkJ/LTEqFwse5Qp5RXbkvRJurOqEq3OHH2x2Il6GGcg= Subject key identifier: B3:2E:FC:40:68:1D:95:40:9E:1C:F5:4C:15:D2:25:04:20:F1:55:69 Authority key identifier: 60:28:19:90:30:C9:94:2A:14:4A:A1:6B:FB:30:78:E7:41:F6:EC:23 Certificate issuer: /CN=A9175D4F/serialNumber=6028199030C9942A144AA16BFB3078E741F6EC23 Certificate serial: 0AAA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YCgZkDDJlCoUSqFr-zB450H27CM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9175D4F/585F4D0E787911EAAEBA3B38C4F9AE02/YCgZkDDJlCoUSqFr-zB450H27CM.mft Manifest number: 0A98 Signing time: Sat 04 Apr 2026 19:20:15 +0000 Manifest this update: Sat 04 Apr 2026 19:20:15 +0000 Manifest next update: Sat 11 Apr 2026 19:20:15 +0000 Files and hashes: 1: YCgZkDDJlCoUSqFr-zB450H27CM.crl (hash: svOZ8ONbV1iKCc3voiMPc0k0C4bKhx6xea8M6JVJNMg=) 2: 5C1CF19EA9C011EABAAB4624C4F9AE02.roa (hash: U+pjz+gHKxK+CuW7qo7BMs3J3XoJAneOPNb7LhCFDWE=) 3: 5D2B0616A9C011EABAAB4624C4F9AE02.roa (hash: 8YO7DX/ju7wBJN2WP2J19RtUaJOJS0pwglyNumUV6/c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9175D4F/585F4D0E787911EAAEBA3B38C4F9AE02/YCgZkDDJlCoUSqFr-zB450H27CM.crl rsync://rpki.apnic.net/member_repository/A9175D4F/585F4D0E787911EAAEBA3B38C4F9AE02/YCgZkDDJlCoUSqFr-zB450H27CM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YCgZkDDJlCoUSqFr-zB450H27CM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 19:20:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2730 (0xaaa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9175D4F, serialNumber=6028199030C9942A144AA16BFB3078E741F6EC23 Validity Not Before: Apr 4 19:20:15 2026 GMT Not After : Apr 11 19:20:15 2026 GMT Subject: CN=69d1646f-38cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:a4:7f:12:94:37:c1:b2:d3:8c:d9:bc:45:24: 31:93:2c:a9:49:37:d7:04:ca:6b:f9:ba:51:46:7a: 6b:d4:3b:eb:76:91:e2:58:6d:29:a0:10:d4:24:22: 58:d1:1b:71:e2:f4:92:12:48:88:3d:0c:4d:57:76: ee:e1:32:c9:e2:71:9a:ce:b9:1e:7d:e6:5b:20:b6: 22:13:9f:0c:a5:fd:aa:a9:b6:0b:24:1d:52:41:38: 8c:d5:f5:32:f7:c9:eb:65:12:ed:fa:26:0b:6f:f5: 34:2e:ea:05:7f:1c:b6:de:1b:93:4b:b8:f1:e9:bc: 58:6f:7b:3f:63:69:93:a7:6d:10:f6:47:e1:1c:8f: e4:9b:cd:7a:d0:34:ac:73:33:41:80:f9:82:aa:58: 82:23:72:a6:d0:f7:d4:84:30:d9:6a:9a:b5:2c:ba: 8d:e6:d8:45:d6:fb:8e:be:4f:cb:81:f9:a7:df:3b: 95:2d:f7:52:02:d6:64:6e:a2:b5:be:51:bd:10:8f: 04:a5:2d:34:ea:4a:28:12:1a:d4:fa:69:e9:c5:60: 30:63:e2:d8:44:8b:8d:b8:dc:e4:15:f4:3e:30:f8: af:98:ae:82:03:46:9c:a3:e3:1f:bf:e3:74:cc:37: 1d:97:41:ee:5a:8f:f4:43:d8:35:5e:21:bb:05:5f: 0f:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:2E:FC:40:68:1D:95:40:9E:1C:F5:4C:15:D2:25:04:20:F1:55:69 X509v3 Authority Key Identifier: keyid:60:28:19:90:30:C9:94:2A:14:4A:A1:6B:FB:30:78:E7:41:F6:EC:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9175D4F/585F4D0E787911EAAEBA3B38C4F9AE02/YCgZkDDJlCoUSqFr-zB450H27CM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YCgZkDDJlCoUSqFr-zB450H27CM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175D4F/585F4D0E787911EAAEBA3B38C4F9AE02/YCgZkDDJlCoUSqFr-zB450H27CM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:87:39:a6:4f:cc:d9:fb:25:10:e4:38:95:8b:3b:24:ee:a1: c5:6e:8c:aa:62:8f:0a:5c:01:c6:8d:91:6d:65:0f:aa:72:d8: 72:9f:79:49:5a:52:c9:9a:63:b0:d7:a7:af:bd:6a:34:6a:16: f3:87:4d:cf:b0:8c:d8:8c:18:44:16:55:43:65:d9:64:60:99: f7:23:19:8b:fb:b7:a8:72:d6:61:1c:59:9a:98:bd:ed:63:e0: 7a:a9:8b:e3:10:af:6d:4e:5b:77:59:d6:05:f0:85:47:83:ca: 21:6d:b0:f2:10:00:d5:51:b1:ab:8b:4e:e4:47:a4:fc:cb:f6: d1:a4:73:64:6f:9f:af:66:9a:53:3f:6c:b2:28:c2:33:59:c2: d0:b2:f7:61:97:6a:a5:e4:1e:0d:f3:a1:8b:da:b8:bb:4f:64: 92:e2:02:5a:b6:f4:02:fa:2d:a1:08:9a:02:14:28:04:88:04: b4:0e:f4:1c:20:eb:4f:c2:fb:ea:30:a8:ca:e8:d4:08:b2:37: 8e:8b:cb:bb:a7:34:04:e0:27:46:c9:b1:63:63:6e:e7:b2:f3: 19:02:cc:c0:ab:78:47:32:3f:95:d6:3c:7d:4f:30:c1:15:a6: 5b:f6:66:75:a2:9a:a5:73:ed:dc:96:f4:2d:0d:0c:ff:57:e7: 84:5f:09:42 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCqowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzVENEYxMTAvBgNVBAUTKDYwMjgxOTkwMzBDOTk0MkExNDRBQTE2QkZCMzA3OEU3 NDFGNkVDMjMwHhcNMjYwNDA0MTkyMDE1WhcNMjYwNDExMTkyMDE1WjAYMRYwFAYD VQQDEw02OWQxNjQ2Zi0zOGNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkKR/EpQ3wbLTjNm8RSQxkyypSTfXBMpr+bpRRnpr1DvrdpHiWG0poBDUJCJY 0Rtx4vSSEkiIPQxNV3bu4TLJ4nGazrkefeZbILYiE58Mpf2qqbYLJB1SQTiM1fUy 98nrZRLt+iYLb/U0LuoFfxy23huTS7jx6bxYb3s/Y2mTp20Q9kfhHI/km8160DSs czNBgPmCqliCI3Km0PfUhDDZapq1LLqN5thF1vuOvk/Lgfmn3zuVLfdSAtZkbqK1 vlG9EI8EpS006kooEhrU+mnpxWAwY+LYRIuNuNzkFfQ+MPivmK6CA0aco+Mfv+N0 zDcdl0HuWo/0Q9g1XiG7BV8PvQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLMu/EBo HZVAnhz1TBXSJQQg8VVpMB8GA1UdIwQYMBaAFGAoGZAwyZQqFEqha/sweOdB9uwj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NUQ0Ri81ODVGNEQwRTc4 NzkxMUVBQUVCQTNCMzhDNEY5QUUwMi9ZQ2daa0RESmxDb1VTcUZyLXpCNDUwSDI3 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lDZ1prRERKbENvVVNxRnItekI0NTBIMjdDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NUQ0Ri81ODVGNEQwRTc4NzkxMUVBQUVCQTNCMzhDNEY5QUUwMi9ZQ2daa0RESmxD b1VTcUZyLXpCNDUwSDI3Q00ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAFIc5pk/M2fslEOQ4lYs7JO6hxW6MqmKPClwBxo2RbWUPqnLYcp95SVpSyZpj sNenr71qNGoW84dNz7CM2IwYRBZVQ2XZZGCZ9yMZi/u3qHLWYRxZmpi97WPgeqmL 4xCvbU5bd1nWBfCFR4PKIW2w8hAA1VGxq4tO5Eek/Mv20aRzZG+fr2aaUz9ssijC M1nC0LL3YZdqpeQeDfOhi9q4u09kkuICWrb0AvotoQiaAhQoBIgEtA70HCDrT8L7 6jCoyujUCLI3jovLu6c0BOAnRsmxY2Nu57LzGQLMwKt4RzI/ldY8fU8wwRWmW/Zm daKapXPt3Jb0LQ0M/1fnhF8JQg== -----END CERTIFICATE-----Generated at Sun Apr 5 19:52:19 2026 by rpki-client