$ rpki-client -vvf rpki.apnic.net/member_repository/A913A7A6/457A8E8273B611EA9B8C1F5CC4F9AE02/ny5XiO95WFurdhmHfTlierLl1Rk.mft File: ny5XiO95WFurdhmHfTlierLl1Rk.mft (raw, json) Hash identifier: c3ZXEcZF7lTziyrSoNe9ruU+qoh8+Cel7VT7ZTOCR+s= Subject key identifier: CC:65:41:33:44:EC:D8:E5:0C:94:46:6A:96:3C:8C:45:F0:64:3B:01 Authority key identifier: 9F:2E:57:88:EF:79:58:5B:AB:76:19:87:7D:39:62:7A:B2:E5:D5:19 Certificate issuer: /CN=A913A7A6/serialNumber=9F2E5788EF79585BAB7619877D39627AB2E5D519 Certificate serial: 0ABA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ny5XiO95WFurdhmHfTlierLl1Rk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913A7A6/457A8E8273B611EA9B8C1F5CC4F9AE02/ny5XiO95WFurdhmHfTlierLl1Rk.mft Manifest number: 0AB0 Signing time: Sat 04 Apr 2026 19:17:44 +0000 Manifest this update: Sat 04 Apr 2026 19:17:44 +0000 Manifest next update: Sat 11 Apr 2026 19:17:44 +0000 Files and hashes: 1: ny5XiO95WFurdhmHfTlierLl1Rk.crl (hash: 3HyXThZ2VMvGQbYD9kBX82SQHQWjs8AKcLi6mASKqkw=) 2: 4DAFC184ADC011ED897A4050C4F9AE02.roa (hash: v2saofmL0m7GfqQUIwDfIhLfQiWIxApSuK3jNuC63SE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913A7A6/457A8E8273B611EA9B8C1F5CC4F9AE02/ny5XiO95WFurdhmHfTlierLl1Rk.crl rsync://rpki.apnic.net/member_repository/A913A7A6/457A8E8273B611EA9B8C1F5CC4F9AE02/ny5XiO95WFurdhmHfTlierLl1Rk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ny5XiO95WFurdhmHfTlierLl1Rk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 19:17:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2746 (0xaba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913A7A6, serialNumber=9F2E5788EF79585BAB7619877D39627AB2E5D519 Validity Not Before: Apr 4 19:17:44 2026 GMT Not After : Apr 11 19:17:44 2026 GMT Subject: CN=69d163d8-c0ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:82:7c:b3:27:28:47:7f:1f:35:8c:eb:51:0a:c9: d5:cd:eb:96:44:2a:c0:b5:4d:3a:e4:c4:6c:8a:24: 6a:1e:39:8e:67:89:e3:d7:fe:93:1b:3c:f4:53:7f: d6:50:98:b5:f5:f5:d0:36:5b:19:5d:6a:aa:94:ff: 31:f3:79:b0:c7:00:83:9a:d1:32:16:00:41:7e:7c: 5f:77:2f:dc:e4:22:ea:28:74:fb:f3:43:7f:48:33: a6:ef:ea:eb:eb:d8:01:74:33:2c:63:aa:02:9c:5e: 06:29:26:7c:ec:ff:4d:38:1d:be:17:19:9a:3b:b6: 10:fb:7c:4c:bf:27:50:69:d2:c2:04:1f:55:3f:37: 19:21:15:61:23:dd:a7:3a:5e:89:55:ef:8d:4e:b0: ec:a2:e2:39:26:21:63:66:da:ac:13:fd:85:15:fd: fe:83:03:3c:99:e0:79:14:f2:91:15:a9:a0:5d:f7: e2:27:4a:7d:0d:7a:52:c8:5c:9f:c9:8d:5b:25:8a: d6:f8:cf:a7:85:a2:b3:c5:28:43:31:9c:a7:a3:5d: 55:e2:a1:15:e4:d3:39:ee:e7:f0:1f:41:f9:b6:89: 7d:77:82:26:44:bc:d4:5f:3e:c2:07:65:f4:e3:79: a1:2c:b0:5d:ba:20:35:f8:c6:53:57:58:d6:07:0d: ba:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:65:41:33:44:EC:D8:E5:0C:94:46:6A:96:3C:8C:45:F0:64:3B:01 X509v3 Authority Key Identifier: keyid:9F:2E:57:88:EF:79:58:5B:AB:76:19:87:7D:39:62:7A:B2:E5:D5:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913A7A6/457A8E8273B611EA9B8C1F5CC4F9AE02/ny5XiO95WFurdhmHfTlierLl1Rk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ny5XiO95WFurdhmHfTlierLl1Rk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913A7A6/457A8E8273B611EA9B8C1F5CC4F9AE02/ny5XiO95WFurdhmHfTlierLl1Rk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:06:ae:82:4c:df:e0:d5:9f:9c:67:20:a8:67:f6:67:ff:aa: e2:b2:e6:97:73:50:7a:ac:53:05:cb:88:27:4b:0c:64:3a:79: 5a:99:07:59:fc:ca:65:05:94:a0:cc:b4:0f:57:1e:32:dd:45: 72:e2:3d:c6:31:11:bc:0f:62:6d:e1:fe:89:43:aa:e9:26:76: 3f:67:b7:9f:ea:e6:36:cb:7f:10:98:f0:59:2c:b1:fd:76:5e: 39:53:e2:b2:85:b7:9a:bc:71:8e:bf:1f:a1:e9:b0:68:a9:f3: 64:22:61:3a:bf:11:72:5e:5b:0e:9f:49:34:fd:ff:85:95:26: d3:a7:04:0d:30:15:2a:04:5d:ac:6e:8e:2f:be:5a:d5:85:bc: 9b:33:7b:94:e6:51:a9:2b:2b:6a:8c:91:58:e6:dd:32:2a:03: 49:12:06:8d:3d:0b:b9:df:79:7d:6a:41:f8:dd:2a:0e:09:10: 2b:31:dd:24:b4:47:b4:9a:92:25:71:20:5e:48:d4:c8:cd:ea: 0e:88:9e:67:d1:4f:39:02:2b:54:43:ab:6b:b2:73:c2:24:32: 61:49:3a:ce:6c:ef:6f:5c:55:b8:ae:87:85:04:28:2e:16:20: 9c:37:b3:97:09:de:40:92:93:d5:d6:c7:cd:5f:7e:e2:e0:3d: 91:1a:8d:bb -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCrowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0E3QTYxMTAvBgNVBAUTKDlGMkU1Nzg4RUY3OTU4NUJBQjc2MTk4NzdEMzk2MjdB QjJFNUQ1MTkwHhcNMjYwNDA0MTkxNzQ0WhcNMjYwNDExMTkxNzQ0WjAYMRYwFAYD VQQDEw02OWQxNjNkOC1jMGFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAgnyzJyhHfx81jOtRCsnVzeuWRCrAtU065MRsiiRqHjmOZ4nj1/6TGzz0U3/W UJi19fXQNlsZXWqqlP8x83mwxwCDmtEyFgBBfnxfdy/c5CLqKHT780N/SDOm7+rr 69gBdDMsY6oCnF4GKSZ87P9NOB2+FxmaO7YQ+3xMvydQadLCBB9VPzcZIRVhI92n Ol6JVe+NTrDsouI5JiFjZtqsE/2FFf3+gwM8meB5FPKRFamgXffiJ0p9DXpSyFyf yY1bJYrW+M+nhaKzxShDMZyno11V4qEV5NM57ufwH0H5tol9d4ImRLzUXz7CB2X0 43mhLLBduiA1+MZTV1jWBw26sQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMxlQTNE 7NjlDJRGapY8jEXwZDsBMB8GA1UdIwQYMBaAFJ8uV4jveVhbq3YZh305Ynqy5dUZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQTdBNi80NTdBOEU4Mjcz QjYxMUVBOUI4QzFGNUNDNEY5QUUwMi9ueTVYaU85NVdGdXJkaG1IZlRsaWVyTGwx UmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL255NVhpTzk1V0Z1cmRobUhmVGxpZXJMbDFSay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QTdBNi80NTdBOEU4MjczQjYxMUVBOUI4QzFGNUNDNEY5QUUwMi9ueTVYaU85NVdG dXJkaG1IZlRsaWVyTGwxUmsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEARAaugkzf4NWfnGcgqGf2Z/+q4rLml3NQeqxTBcuIJ0sMZDp5WpkHWfzKZQWU oMy0D1ceMt1FcuI9xjERvA9ibeH+iUOq6SZ2P2e3n+rmNst/EJjwWSyx/XZeOVPi soW3mrxxjr8foemwaKnzZCJhOr8Rcl5bDp9JNP3/hZUm06cEDTAVKgRdrG6OL75a 1YW8mzN7lOZRqSsraoyRWObdMioDSRIGjT0Lud95fWpB+N0qDgkQKzHdJLRHtJqS JXEgXkjUyM3qDoieZ9FPOQIrVEOra7JzwiQyYUk6zmzvb1xVuK6HhQQoLhYgnDez lwneQJKT1dbHzV9+4uA9kRqNuw== -----END CERTIFICATE-----Generated at Mon Apr 6 14:00:05 2026 by rpki-client