$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC01A/0F85014CD11D11EC81696363C4F9AE02/YFvaPXrcwC2sc4auORR6ZGWTqJ0.mft File: YFvaPXrcwC2sc4auORR6ZGWTqJ0.mft (raw, json) Hash identifier: cR+aTlrBLVpy58D5kTwYXT8RsSA3j+vdkKFxMBpNZGU= Subject key identifier: 8A:55:C7:6B:69:5F:E9:55:7A:E9:0B:4C:79:B9:C0:CA:47:C3:02:6B Authority key identifier: 60:5B:DA:3D:7A:DC:C0:2D:AC:73:86:AE:39:14:7A:64:65:93:A8:9D Certificate issuer: /CN=A91FC01A/serialNumber=605BDA3D7ADCC02DAC7386AE39147A646593A89D Certificate serial: 03BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YFvaPXrcwC2sc4auORR6ZGWTqJ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC01A/0F85014CD11D11EC81696363C4F9AE02/YFvaPXrcwC2sc4auORR6ZGWTqJ0.mft Manifest number: 03B4 Signing time: Sun 05 Apr 2026 00:28:11 +0000 Manifest this update: Sun 05 Apr 2026 00:28:11 +0000 Manifest next update: Sun 12 Apr 2026 00:28:11 +0000 Files and hashes: 1: YFvaPXrcwC2sc4auORR6ZGWTqJ0.crl (hash: 2HaMi9EI2utCjdQytNwSeNQApPLn8544LNsTNcH52IE=) 2: 426D5CEAD12111ECBBAC1B7DC4F9AE02.roa (hash: Cjy/SWLQH86e7gQzB7H8gnQKLtLg5bLdlkR56jFW4Ls=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC01A/0F85014CD11D11EC81696363C4F9AE02/YFvaPXrcwC2sc4auORR6ZGWTqJ0.crl rsync://rpki.apnic.net/member_repository/A91FC01A/0F85014CD11D11EC81696363C4F9AE02/YFvaPXrcwC2sc4auORR6ZGWTqJ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YFvaPXrcwC2sc4auORR6ZGWTqJ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 00:28:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 955 (0x3bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC01A, serialNumber=605BDA3D7ADCC02DAC7386AE39147A646593A89D Validity Not Before: Apr 5 00:28:11 2026 GMT Not After : Apr 12 00:28:11 2026 GMT Subject: CN=69d1ac9b-ebce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:fc:a9:0a:c8:b2:d7:03:23:12:2a:4e:75:a1: f6:bb:7e:4a:9e:60:8a:45:cd:ed:43:2c:fd:ec:d2: d3:aa:ae:3d:b1:57:be:c5:94:88:e1:e0:8a:40:69: 17:df:ca:33:30:1e:89:a8:fe:be:7c:bf:91:76:c7: 7b:6e:ee:22:eb:7f:dc:d8:fc:e9:1a:dd:70:d3:cd: a9:79:cb:37:c5:50:f9:3b:c7:d8:f2:b2:de:80:b8: bc:ea:ed:f6:82:4f:4f:72:3f:ed:6a:44:86:81:d0: 03:9e:8f:13:fd:09:0f:6a:26:77:6a:71:53:6e:d9: 65:ce:19:35:b4:20:ce:1c:5c:33:14:f2:68:87:a0: 13:4f:9a:6e:b4:02:49:6c:41:12:53:6c:fd:b8:dd: 2a:81:54:35:2d:b0:e2:ea:cb:c3:5d:d0:57:d8:6d: e4:e0:ce:41:6c:bd:e8:e7:c3:80:8f:c1:cf:47:70: 81:c9:81:c2:3b:a5:1f:62:ad:dc:68:73:f7:85:1f: a2:c3:dd:55:d6:d6:69:cf:87:d7:76:e8:a5:f5:07: 26:90:58:dd:2b:33:db:85:5c:60:15:34:8c:8b:41: 23:e7:d4:9d:68:05:05:83:b3:f5:f5:17:66:7b:e9: 11:9c:7a:6f:ab:bb:1b:66:58:9c:7c:a1:36:ff:03: 7e:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:55:C7:6B:69:5F:E9:55:7A:E9:0B:4C:79:B9:C0:CA:47:C3:02:6B X509v3 Authority Key Identifier: keyid:60:5B:DA:3D:7A:DC:C0:2D:AC:73:86:AE:39:14:7A:64:65:93:A8:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC01A/0F85014CD11D11EC81696363C4F9AE02/YFvaPXrcwC2sc4auORR6ZGWTqJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YFvaPXrcwC2sc4auORR6ZGWTqJ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC01A/0F85014CD11D11EC81696363C4F9AE02/YFvaPXrcwC2sc4auORR6ZGWTqJ0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:63:b3:ae:af:aa:40:fc:c8:92:e7:eb:8a:0d:9c:d4:a8:a7: dd:88:ff:46:9f:78:c2:d7:04:2e:d0:1a:42:33:e2:85:95:80: 67:ad:cc:d7:fb:06:dd:03:a1:9a:d7:5c:c7:f1:99:f6:e8:ad: f4:41:d3:b1:a9:bd:61:16:09:0f:55:79:e3:db:dd:44:28:bb: ea:85:ae:4f:c5:eb:6f:5b:ba:7c:8e:60:20:b5:01:f2:7e:75: 5f:d5:cb:b7:05:e6:d6:b0:c8:c7:b2:a0:61:d4:b1:b0:7b:fb: 21:d9:b7:ce:2c:40:1f:82:70:5d:a1:f7:74:ea:90:2a:af:6a: 07:0e:73:58:56:e0:b8:ce:6f:14:ea:1f:c4:9b:ae:b8:cf:a9: 57:fa:2a:48:86:43:c5:51:6d:46:18:7b:96:bf:00:35:0c:8b: 5d:19:c7:50:d0:1b:44:98:c1:90:70:52:64:ac:3b:67:65:ca: d2:58:6f:76:42:7e:35:d9:09:ca:df:f6:95:0e:05:8b:ab:d5: 98:87:33:4a:6f:5e:73:2e:7f:36:75:79:e8:e0:d3:2c:0d:f9: 43:14:77:3a:01:f7:7f:9d:c3:e2:95:57:9b:74:91:f2:10:df: 28:61:14:36:bc:0b:23:4d:18:52:6f:1f:30:b4:b2:07:95:5a: 9b:0d:28:ed -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA7swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkMwMUExMTAvBgNVBAUTKDYwNUJEQTNEN0FEQ0MwMkRBQzczODZBRTM5MTQ3QTY0 NjU5M0E4OUQwHhcNMjYwNDA1MDAyODExWhcNMjYwNDEyMDAyODExWjAYMRYwFAYD VQQDEw02OWQxYWM5Yi1lYmNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs/ypCsiy1wMjEipOdaH2u35KnmCKRc3tQyz97NLTqq49sVe+xZSI4eCKQGkX 38ozMB6JqP6+fL+Rdsd7bu4i63/c2PzpGt1w082pecs3xVD5O8fY8rLegLi86u32 gk9Pcj/takSGgdADno8T/QkPaiZ3anFTbtllzhk1tCDOHFwzFPJoh6ATT5putAJJ bEESU2z9uN0qgVQ1LbDi6svDXdBX2G3k4M5BbL3o58OAj8HPR3CByYHCO6UfYq3c aHP3hR+iw91V1tZpz4fXduil9QcmkFjdKzPbhVxgFTSMi0Ej59SdaAUFg7P19Rdm e+kRnHpvq7sbZlicfKE2/wN+QwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIpVx2tp X+lVeukLTHm5wMpHwwJrMB8GA1UdIwQYMBaAFGBb2j163MAtrHOGrjkUemRlk6id MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQzAxQS8wRjg1MDE0Q0Qx MUQxMUVDODE2OTYzNjNDNEY5QUUwMi9ZRnZhUFhyY3dDMnNjNGF1T1JSNlpHV1Rx SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lGdmFQWHJjd0Myc2M0YXVPUlI2WkdXVHFKMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QzAxQS8wRjg1MDE0Q0QxMUQxMUVDODE2OTYzNjNDNEY5QUUwMi9ZRnZhUFhyY3dD MnNjNGF1T1JSNlpHV1RxSjAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAU2Ozrq+qQPzIkufrig2c1Kin3Yj/Rp94wtcELtAaQjPihZWAZ63M1/sG3QOh mtdcx/GZ9uit9EHTsam9YRYJD1V549vdRCi76oWuT8Xrb1u6fI5gILUB8n51X9XL twXm1rDIx7KgYdSxsHv7Idm3zixAH4JwXaH3dOqQKq9qBw5zWFbguM5vFOofxJuu uM+pV/oqSIZDxVFtRhh7lr8ANQyLXRnHUNAbRJjBkHBSZKw7Z2XK0lhvdkJ+NdkJ yt/2lQ4Fi6vVmIczSm9ecy5/NnV56ODTLA35QxR3OgH3f53D4pVXm3SR8hDfKGEU NrwLI00YUm8fMLSyB5Vamw0o7Q== -----END CERTIFICATE-----Generated at Sun Apr 5 20:58:55 2026 by rpki-client