$ rpki-client -vvf rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/y6GXwEyqm9KV9XiEcqahCqP773A.mft File: y6GXwEyqm9KV9XiEcqahCqP773A.mft (raw, json) Hash identifier: yNCP0r4L0QjPu/1KQ8t5tmBp6P2O95XSmnRXqKvoytU= Subject key identifier: 54:58:1C:A4:FB:6D:3B:07:A1:6A:37:47:20:42:46:0C:AA:15:6E:7A Authority key identifier: CB:A1:97:C0:4C:AA:9B:D2:95:F5:78:84:72:A6:A1:0A:A3:FB:EF:70 Certificate issuer: /CN=A9143CB3/serialNumber=CBA197C04CAA9BD295F5788472A6A10AA3FBEF70 Certificate serial: 1BEB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y6GXwEyqm9KV9XiEcqahCqP773A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/y6GXwEyqm9KV9XiEcqahCqP773A.mft Manifest number: 1BB1 Signing time: Sun 26 Apr 2026 16:11:12 +0000 Manifest this update: Sun 26 Apr 2026 16:11:12 +0000 Manifest next update: Sun 03 May 2026 16:11:12 +0000 Files and hashes: 1: y6GXwEyqm9KV9XiEcqahCqP773A.crl (hash: 8NJjxWxB+wj+bPvvFBBDi1+dkQnsLJ40GxRaE0NTPOk=) 2: DE0A76C805B511EE95562E2AC4F9AE02.roa (hash: fSrLukxaAM59ZQEmbnxQBdopl2ygjyhAoNct9kxcFt4=) 3: D90961489C1311EFA0BF1480C4F9AE02.roa (hash: jz3mUG66x+LfglClnYcC2zPJcIcV277FZw8xXWBFQHI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/y6GXwEyqm9KV9XiEcqahCqP773A.crl rsync://rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/y6GXwEyqm9KV9XiEcqahCqP773A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y6GXwEyqm9KV9XiEcqahCqP773A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 03 May 2026 16:11:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7147 (0x1beb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143CB3, serialNumber=CBA197C04CAA9BD295F5788472A6A10AA3FBEF70 Validity Not Before: Apr 26 16:11:12 2026 GMT Not After : May 3 16:11:12 2026 GMT Subject: CN=69ee3920-ff83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:da:5d:7f:77:d1:39:18:ba:a4:8f:3a:15:00: 72:77:29:30:12:fe:5a:3c:85:f3:64:5f:45:23:4d: 2e:0e:ea:c6:ff:c5:13:f5:06:22:72:7a:f5:7e:5f: df:ca:0c:27:50:a1:9a:3a:92:08:70:f4:a1:34:47: 03:70:da:ba:7b:87:50:1b:89:5f:72:73:dd:88:4f: 34:6f:fd:5b:bd:2e:12:e3:b7:77:2c:51:2f:c1:9e: f4:ab:2c:db:51:ef:ed:d0:99:66:15:fb:3c:1b:8e: 20:c4:fc:2d:fd:68:80:b0:e4:d4:23:f4:5b:01:51: 71:df:b6:1c:29:93:36:dd:e6:f2:09:6d:6d:34:c8: 6d:dd:01:7a:a0:4b:60:4b:dd:78:d2:68:bb:67:35: b0:88:67:60:9b:46:12:da:55:2d:03:4f:83:4f:c3: 28:46:92:c4:a5:fa:7e:78:dc:ac:52:aa:64:eb:ec: c6:99:1d:fc:1e:6d:fb:84:b0:df:48:32:7a:3e:5c: a7:dd:3b:bf:a1:dd:a4:45:06:92:cd:1d:e5:d1:d2: 02:36:0f:ec:a8:ce:53:59:5f:6d:25:b8:dd:01:4a: 2a:23:d7:ba:b4:d5:63:30:2f:49:dd:63:15:40:33: e1:da:0d:20:25:b2:14:a7:e7:56:4d:77:c9:fe:e6: 2f:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:58:1C:A4:FB:6D:3B:07:A1:6A:37:47:20:42:46:0C:AA:15:6E:7A X509v3 Authority Key Identifier: keyid:CB:A1:97:C0:4C:AA:9B:D2:95:F5:78:84:72:A6:A1:0A:A3:FB:EF:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/y6GXwEyqm9KV9XiEcqahCqP773A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y6GXwEyqm9KV9XiEcqahCqP773A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/y6GXwEyqm9KV9XiEcqahCqP773A.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:b4:fb:9c:93:d2:60:6a:0c:60:97:39:cb:cb:b5:16:c6:03: 79:0a:d9:33:67:0a:de:c6:bf:7d:7d:aa:d5:44:ce:79:b2:95: 4d:17:5e:ee:91:ba:6b:72:c3:c3:2e:21:ab:cf:f5:88:a9:12: 2d:43:bc:06:4e:dc:7f:05:4e:d6:1e:c7:a4:be:96:d6:45:34: c9:7b:ab:ef:df:67:10:a1:13:4c:1d:d9:58:97:a7:92:b7:79: 5f:f9:c4:3b:af:9b:43:2d:73:11:6e:e9:18:74:65:5e:5f:40: 3b:ae:83:43:9a:c6:71:3c:06:a5:2d:8f:25:62:83:b5:bd:d5: 1e:d6:ce:a0:65:83:67:12:db:27:b1:1a:02:49:f5:22:16:74: 32:20:a0:74:af:e9:b4:0b:b5:4b:76:09:4d:fd:89:c8:82:e9: b7:c4:26:14:cc:b5:1a:ba:e0:d7:ba:4a:ea:81:03:0c:71:1c: 05:47:3f:f2:4a:36:f7:2b:c0:9b:6d:a7:20:02:86:78:71:70: c3:80:5e:ad:95:fe:cc:76:f9:76:b0:85:8a:22:c7:74:43:77: 65:0d:21:99:a6:43:42:b3:2c:dc:51:8b:99:d2:dc:50:c3:76: 17:81:b6:74:32:89:2b:b0:cb:5f:b1:35:5c:20:86:54:64:d5: 98:38:ed:a0 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICG+swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNDQjMxMTAvBgNVBAUTKENCQTE5N0MwNENBQTlCRDI5NUY1Nzg4NDcyQTZBMTBB QTNGQkVGNzAwHhcNMjYwNDI2MTYxMTEyWhcNMjYwNTAzMTYxMTEyWjAYMRYwFAYD VQQDEw02OWVlMzkyMC1mZjgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo9pdf3fRORi6pI86FQBydykwEv5aPIXzZF9FI00uDurG/8UT9QYicnr1fl/f ygwnUKGaOpIIcPShNEcDcNq6e4dQG4lfcnPdiE80b/1bvS4S47d3LFEvwZ70qyzb Ue/t0JlmFfs8G44gxPwt/WiAsOTUI/RbAVFx37YcKZM23ebyCW1tNMht3QF6oEtg S9140mi7ZzWwiGdgm0YS2lUtA0+DT8MoRpLEpfp+eNysUqpk6+zGmR38Hm37hLDf SDJ6Plyn3Tu/od2kRQaSzR3l0dICNg/sqM5TWV9tJbjdAUoqI9e6tNVjMC9J3WMV QDPh2g0gJbIUp+dWTXfJ/uYvYQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFRYHKT7 bTsHoWo3RyBCRgyqFW56MB8GA1UdIwQYMBaAFMuhl8BMqpvSlfV4hHKmoQqj++9w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0NCMy8xREI3OTgzQzI1 OUQxMUU3ODVEMzI1MEFDNEY5QUUwMi95NkdYd0V5cW05S1Y5WGlFY3FhaENxUDc3 M0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3k2R1h3RXlxbTlLVjlYaUVjcWFoQ3FQNzczQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 M0NCMy8xREI3OTgzQzI1OUQxMUU3ODVEMzI1MEFDNEY5QUUwMi95NkdYd0V5cW05 S1Y5WGlFY3FhaENxUDc3M0EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEABbT7nJPSYGoMYJc5y8u1FsYDeQrZM2cK3sa/fX2q1UTOebKVTRde7pG6a3LD wy4hq8/1iKkSLUO8Bk7cfwVO1h7HpL6W1kU0yXur799nEKETTB3ZWJenkrd5X/nE O6+bQy1zEW7pGHRlXl9AO66DQ5rGcTwGpS2PJWKDtb3VHtbOoGWDZxLbJ7EaAkn1 IhZ0MiCgdK/ptAu1S3YJTf2JyILpt8QmFMy1Grrg17pK6oEDDHEcBUc/8ko29yvA m22nIAKGeHFww4BerZX+zHb5drCFiiLHdEN3ZQ0hmaZDQrMs3FGLmdLcUMN2F4G2 dDKJK7DLX7E1XCCGVGTVmDjtoA== -----END CERTIFICATE-----Generated at Mon Apr 27 22:10:22 2026 by rpki-client