$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.mft File: YbAiM19NheFtR3oAatyOPy_alGA.mft (raw, json) Hash identifier: q8CavOWFNb+p1Rf/pZX5qHUUC+jf9FTXUlx7OA1KBQg= Subject key identifier: CB:B2:D1:61:32:B4:6D:E1:F6:B9:AA:60:D4:8E:34:3C:6C:C7:B1:5D Authority key identifier: 61:B0:22:33:5F:4D:85:E1:6D:47:7A:00:6A:DC:8E:3F:2F:DA:94:60 Certificate issuer: /CN=A91A7C77/serialNumber=61B022335F4D85E16D477A006ADC8E3F2FDA9460 Certificate serial: 0537 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YbAiM19NheFtR3oAatyOPy_alGA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.mft Manifest number: 0532 Signing time: Sat 04 Apr 2026 23:17:37 +0000 Manifest this update: Sat 04 Apr 2026 23:17:37 +0000 Manifest next update: Sat 11 Apr 2026 23:17:37 +0000 Files and hashes: 1: YbAiM19NheFtR3oAatyOPy_alGA.crl (hash: F4rIl7PXpNegdjOKGWJH3jIsCl/woL3N7E9pjHNMths=) 2: FF4EB6B2395811ECA422C462C4F9AE02.roa (hash: 1EXMwCZdlr4n5uu1XLxW00w3UXh6JZwNTcRYA1sNXNA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.crl rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YbAiM19NheFtR3oAatyOPy_alGA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 23:17:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1335 (0x537) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7C77, serialNumber=61B022335F4D85E16D477A006ADC8E3F2FDA9460 Validity Not Before: Apr 4 23:17:37 2026 GMT Not After : Apr 11 23:17:37 2026 GMT Subject: CN=69d19c11-c5a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:9f:0a:f5:80:03:2c:09:55:42:1a:00:36:28: 0a:f4:47:73:37:c2:b0:8f:52:26:f4:20:90:62:14: 8d:e2:52:04:0e:58:03:82:e1:02:55:c7:88:04:2a: 08:81:8d:3a:bd:ff:64:e8:f8:84:56:14:17:3f:78: d8:2f:0a:d9:dc:71:7d:d2:a1:f5:e3:79:ae:0d:11: 00:40:e9:26:2c:d9:ed:c4:63:de:80:08:e4:59:99: 41:a7:43:b5:1f:8e:5b:c7:1d:b2:b7:77:b6:23:c3: d1:94:07:6f:45:90:3c:f5:f5:db:0f:99:46:4e:65: 3d:7c:ed:17:40:17:b9:51:aa:2d:28:67:92:b6:de: e0:3e:0a:3c:b0:de:54:f2:51:24:c6:18:2c:83:e9: 01:b3:4d:94:3e:2d:73:16:17:fe:c8:10:d8:13:05: f6:ae:25:c3:2b:10:f8:a0:b7:e9:5c:2f:d8:4d:c7: 33:71:06:f6:53:1b:4a:b6:d8:41:b4:5b:09:f3:73: 94:32:1d:60:e1:6e:c2:78:63:5b:f8:85:1f:7b:ad: 36:a0:72:8c:32:9f:7f:f9:ae:7d:d9:cb:f9:e3:44: c0:14:02:6f:e4:f7:83:d0:7a:e5:97:c9:e7:d6:f9: 5a:10:83:ae:e2:09:41:99:66:97:3d:bb:e1:a6:2a: ed:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:B2:D1:61:32:B4:6D:E1:F6:B9:AA:60:D4:8E:34:3C:6C:C7:B1:5D X509v3 Authority Key Identifier: keyid:61:B0:22:33:5F:4D:85:E1:6D:47:7A:00:6A:DC:8E:3F:2F:DA:94:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YbAiM19NheFtR3oAatyOPy_alGA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:e8:d3:9e:c7:f1:bd:61:b0:3c:26:4c:86:10:fb:4a:a3:60: 97:e5:dc:63:c9:09:c8:fd:6b:14:4c:2d:61:7e:73:11:39:8f: 4e:35:af:30:85:7e:ce:48:ba:c4:99:69:aa:de:a0:cb:ca:5a: 7a:4b:bd:e5:a9:f9:45:ef:0f:cb:5d:cc:1a:91:e0:e4:5d:6d: 11:18:e6:66:da:ed:35:52:89:25:66:5b:5b:0a:39:3c:47:7e: aa:ef:79:ca:4b:ad:2f:32:60:df:a3:df:99:3f:17:e4:b0:03: fc:89:3c:1f:d1:c9:6e:79:89:d7:33:a9:45:66:64:30:46:3d: 69:7b:4c:ec:85:a4:3c:df:f3:f0:db:63:88:8f:ce:13:06:21: 72:33:a3:9e:f5:90:3e:43:ea:f5:77:eb:00:2c:29:77:bc:11: b2:3b:30:fb:41:23:84:7e:43:be:38:ac:0c:72:48:ec:4b:96: ef:d0:84:fe:cc:19:63:13:69:f4:75:39:36:a6:ed:a9:88:25: 01:b7:cb:23:eb:d9:cf:ed:46:cf:18:3d:ef:85:8c:0d:0d:b2: 4a:1b:85:2d:3c:b5:8d:5b:b1:42:05:df:2e:fb:d5:65:19:9c: 94:87:3e:98:d2:f8:85:18:96:22:19:46:37:e4:38:b2:1a:df: f7:28:28:02 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBTcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTdDNzcxMTAvBgNVBAUTKDYxQjAyMjMzNUY0RDg1RTE2RDQ3N0EwMDZBREM4RTNG MkZEQTk0NjAwHhcNMjYwNDA0MjMxNzM3WhcNMjYwNDExMjMxNzM3WjAYMRYwFAYD VQQDEw02OWQxOWMxMS1jNWEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1p8K9YADLAlVQhoANigK9EdzN8Kwj1Im9CCQYhSN4lIEDlgDguECVceIBCoI gY06vf9k6PiEVhQXP3jYLwrZ3HF90qH143muDREAQOkmLNntxGPegAjkWZlBp0O1 H45bxx2yt3e2I8PRlAdvRZA89fXbD5lGTmU9fO0XQBe5UaotKGeStt7gPgo8sN5U 8lEkxhgsg+kBs02UPi1zFhf+yBDYEwX2riXDKxD4oLfpXC/YTcczcQb2UxtKtthB tFsJ83OUMh1g4W7CeGNb+IUfe602oHKMMp9/+a592cv540TAFAJv5PeD0Hrll8nn 1vlaEIOu4glBmWaXPbvhpirthwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMuy0WEy tG3h9rmqYNSONDxsx7FdMB8GA1UdIwQYMBaAFGGwIjNfTYXhbUd6AGrcjj8v2pRg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBN0M3Ny9EQzIwMUFGRTM5 NTQxMUVDODBEOUQzNTlDNEY5QUUwMi9ZYkFpTTE5TmhlRnRSM29BYXR5T1B5X2Fs R0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1liQWlNMTlOaGVGdFIzb0FhdHlPUHlfYWxHQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB N0M3Ny9EQzIwMUFGRTM5NTQxMUVDODBEOUQzNTlDNEY5QUUwMi9ZYkFpTTE5Tmhl RnRSM29BYXR5T1B5X2FsR0EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEADejTnsfxvWGwPCZMhhD7SqNgl+XcY8kJyP1rFEwtYX5zETmPTjWvMIV+zki6 xJlpqt6gy8paeku95an5Re8Py13MGpHg5F1tERjmZtrtNVKJJWZbWwo5PEd+qu95 ykutLzJg36PfmT8X5LAD/Ik8H9HJbnmJ1zOpRWZkMEY9aXtM7IWkPN/z8NtjiI/O EwYhcjOjnvWQPkPq9XfrACwpd7wRsjsw+0EjhH5DvjisDHJI7EuW79CE/swZYxNp 9HU5NqbtqYglAbfLI+vZz+1Gzxg974WMDQ2yShuFLTy1jVuxQgXfLvvVZRmclIc+ mNL4hRiWIhlGN+Q4shrf9ygoAg== -----END CERTIFICATE-----Generated at Sun Apr 5 21:08:27 2026 by rpki-client