$ rpki-client -vvf rpki.apnic.net/member_repository/A9120D97/10A99A0A178311F1B7AAC0FF273D8C67/Y0nPcXs0CWM10fw5e8UEBkinjw4.mft File: Y0nPcXs0CWM10fw5e8UEBkinjw4.mft (raw, json) Hash identifier: mtHN6MJlD34f1qHwDqNC3RmcwDMBrhVxTvtTPmEAIEY= Subject key identifier: 05:8C:38:C3:6D:18:22:0B:35:7A:E7:D2:3E:ED:2C:CB:2C:2D:2D:62 Authority key identifier: 63:49:CF:71:7B:34:09:63:35:D1:FC:39:7B:C5:04:06:48:A7:8F:0E Certificate issuer: /CN=A9120D97/serialNumber=6349CF717B34096335D1FC397BC5040648A78F0E Certificate serial: 1C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y0nPcXs0CWM10fw5e8UEBkinjw4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120D97/10A99A0A178311F1B7AAC0FF273D8C67/Y0nPcXs0CWM10fw5e8UEBkinjw4.mft Manifest number: 1B Signing time: Tue 21 Apr 2026 08:42:38 +0000 Manifest this update: Tue 21 Apr 2026 08:42:37 +0000 Manifest next update: Tue 28 Apr 2026 08:42:37 +0000 Files and hashes: 1: Y0nPcXs0CWM10fw5e8UEBkinjw4.crl (hash: YDM1jU6q3Og0U3lqLItK72/yr6HjRt3nqKb/N0iSRa0=) 2: B2D0F8D2178311F1B32BFEF6283D8C67.roa (hash: 0l1faSsNOHOUv9dts3Hprtyh48iyjB1f/xwuNggdhEY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120D97/10A99A0A178311F1B7AAC0FF273D8C67/Y0nPcXs0CWM10fw5e8UEBkinjw4.crl rsync://rpki.apnic.net/member_repository/A9120D97/10A99A0A178311F1B7AAC0FF273D8C67/Y0nPcXs0CWM10fw5e8UEBkinjw4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y0nPcXs0CWM10fw5e8UEBkinjw4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 08:42:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28 (0x1c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120D97, serialNumber=6349CF717B34096335D1FC397BC5040648A78F0E Validity Not Before: Apr 21 08:42:37 2026 GMT Not After : Apr 28 08:42:37 2026 GMT Subject: CN=69e7387e-3acd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:47:83:dd:78:97:78:92:53:36:8b:09:fe:db: 26:99:b9:48:c8:ce:51:c8:7d:ae:86:c4:d3:a4:e3: 6c:c9:8b:1d:c9:6b:31:a8:dd:6d:52:f9:8d:1d:f6: 81:a7:f6:25:98:6c:41:39:f4:04:5f:13:d3:ff:b1: 87:94:a8:e1:e7:eb:31:6f:e1:b5:f3:ab:b6:cb:ec: 12:67:6b:ef:d8:4e:92:52:54:c0:07:9e:6f:1b:30: 58:ea:58:81:60:a8:86:3e:9a:2a:d6:7f:db:84:d8: 03:33:f8:57:28:5c:73:c6:60:0f:c5:d7:5c:13:53: a8:5a:d8:2f:f1:19:17:7e:da:a4:c5:5d:21:ea:b9: 9f:d3:42:75:9b:f9:96:e1:22:4d:2a:32:d1:e8:56: 5e:87:55:81:11:08:bd:c6:c5:b1:b0:89:6a:90:91: c4:73:81:5c:15:3d:9d:5c:3b:2a:3b:15:a9:74:e5: ee:43:62:a5:a9:40:10:96:d9:2e:ac:1c:9e:36:39: ba:41:70:34:53:16:fb:3e:51:02:22:00:80:49:c6: 93:a0:80:a8:70:7a:2c:4c:ca:bd:87:93:f4:5a:c8: f2:20:f2:80:0e:f8:15:d9:56:3d:b5:7c:cb:1a:69: 9b:58:15:9a:3e:4d:1c:81:02:eb:22:0b:04:c5:38: e3:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:8C:38:C3:6D:18:22:0B:35:7A:E7:D2:3E:ED:2C:CB:2C:2D:2D:62 X509v3 Authority Key Identifier: keyid:63:49:CF:71:7B:34:09:63:35:D1:FC:39:7B:C5:04:06:48:A7:8F:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120D97/10A99A0A178311F1B7AAC0FF273D8C67/Y0nPcXs0CWM10fw5e8UEBkinjw4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y0nPcXs0CWM10fw5e8UEBkinjw4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120D97/10A99A0A178311F1B7AAC0FF273D8C67/Y0nPcXs0CWM10fw5e8UEBkinjw4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:56:cf:7f:3a:7f:0a:93:31:c1:e4:6f:c5:c5:43:d6:7a:27: fd:65:d9:19:a4:21:3f:42:40:c7:d1:2c:1b:a3:c8:4d:49:fb: bc:78:95:a9:a5:53:3b:59:e9:93:05:17:2e:3f:24:d3:3d:ea: 2e:43:6f:93:40:32:b3:25:4c:17:d9:52:9d:49:e3:27:80:11: ec:23:b7:05:45:29:3e:98:1a:e2:54:98:c9:96:27:df:fb:69: 59:e4:9a:db:80:11:21:3f:9c:81:c5:b4:37:e8:63:db:da:00: 96:98:1e:86:a9:89:0f:6f:6f:55:f2:36:a3:33:39:9b:ea:b3: 2a:25:52:1f:09:6a:07:77:c5:d0:be:d0:7f:fc:60:6c:88:5a: c2:a5:47:b2:52:2f:2e:e8:30:97:fa:36:09:09:8b:aa:01:f4: 1e:bc:4f:e2:82:74:f0:c8:0e:22:1d:7e:9f:2e:fe:fb:b2:50: 3c:73:90:40:f6:3a:6c:06:07:ad:31:ea:fa:d9:d9:29:4b:09: b4:70:f5:e2:9f:4e:1c:07:e0:cc:9c:a4:4e:95:f7:7b:f4:ea: 26:f7:55:8d:a4:a4:7c:57:60:7c:1f:08:09:62:25:d9:88:66: a7:34:31:6c:88:1a:29:2b:95:39:b8:8a:78:c5:a4:fc:a4:d9: 36:c3:dc:1b -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBHDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy MEQ5NzExMC8GA1UEBRMoNjM0OUNGNzE3QjM0MDk2MzM1RDFGQzM5N0JDNTA0MDY0 OEE3OEYwRTAeFw0yNjA0MjEwODQyMzdaFw0yNjA0MjgwODQyMzdaMBgxFjAUBgNV BAMTDTY5ZTczODdlLTNhY2QwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCxR4PdeJd4klM2iwn+2yaZuUjIzlHIfa6GxNOk42zJix3JazGo3W1S+Y0d9oGn 9iWYbEE59ARfE9P/sYeUqOHn6zFv4bXzq7bL7BJna+/YTpJSVMAHnm8bMFjqWIFg qIY+mirWf9uE2AMz+FcoXHPGYA/F11wTU6ha2C/xGRd+2qTFXSHquZ/TQnWb+Zbh Ik0qMtHoVl6HVYERCL3GxbGwiWqQkcRzgVwVPZ1cOyo7Fal05e5DYqWpQBCW2S6s HJ42ObpBcDRTFvs+UQIiAIBJxpOggKhweixMyr2Hk/RayPIg8oAO+BXZVj21fMsa aZtYFZo+TRyBAusiCwTFOOOHAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUBYw4w20Y Igs1eufSPu0syywtLWIwHwYDVR0jBBgwFoAUY0nPcXs0CWM10fw5e8UEBkinjw4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTIwRDk3LzEwQTk5QTBBMTc4 MzExRjFCN0FBQzBGRjI3M0Q4QzY3L1kwblBjWHMwQ1dNMTBmdzVlOFVFQmtpbmp3 NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWTBuUGNYczBDV00xMGZ3NWU4VUVCa2luanc0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTIw RDk3LzEwQTk5QTBBMTc4MzExRjFCN0FBQzBGRjI3M0Q4QzY3L1kwblBjWHMwQ1dN MTBmdzVlOFVFQmtpbmp3NC5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQBzVs9/On8KkzHB5G/FxUPWeif9ZdkZpCE/QkDH0Swbo8hNSfu8eJWppVM7WemT BRcuPyTTPeouQ2+TQDKzJUwX2VKdSeMngBHsI7cFRSk+mBriVJjJliff+2lZ5Jrb gBEhP5yBxbQ36GPb2gCWmB6GqYkPb29V8jajMzmb6rMqJVIfCWoHd8XQvtB//GBs iFrCpUeyUi8u6DCX+jYJCYuqAfQevE/ignTwyA4iHX6fLv77slA8c5BA9jpsBget Mer62dkpSwm0cPXin04cB+DMnKROlfd79Oom91WNpKR8V2B8HwgJYiXZiGanNDFs iBopK5U5uIp4xaT8pNk2w9wb -----END CERTIFICATE-----Generated at Wed Apr 22 10:00:59 2026 by rpki-client