$ rpki-client -vvf rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.mft File: Y-SHYqiTCAlnc9nhydGpmYA1Zw0.mft (raw, json) Hash identifier: m1CrG/tD6Vux2856q3lTxCqVCFjxXRil/Evd1v25GSI= Subject key identifier: 47:EF:FF:1C:50:CC:D0:AD:BA:DA:97:3F:69:6D:A1:5D:F5:70:D7:45 Authority key identifier: 63:E4:87:62:A8:93:08:09:67:73:D9:E1:C9:D1:A9:99:80:35:67:0D Certificate issuer: /CN=A9147B58/serialNumber=63E48762A89308096773D9E1C9D1A9998035670D Certificate serial: 0657 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.mft Manifest number: 064E Signing time: Sat 04 Apr 2026 22:28:59 +0000 Manifest this update: Sat 04 Apr 2026 22:28:59 +0000 Manifest next update: Sat 11 Apr 2026 22:28:59 +0000 Files and hashes: 1: Y-SHYqiTCAlnc9nhydGpmYA1Zw0.crl (hash: wGjeu3fUPT/TNbR60/Tvwi00Go4gZ8XQ3J74SnSO0BY=) 2: 657BCA62CABC11EB8D6D063BC4F9AE02.roa (hash: 9P+/XWI1mTR2CKwLdPvtfOBgjyqZfC7ZNyD/mGLr3KU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.crl rsync://rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 22:28:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1623 (0x657) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147B58, serialNumber=63E48762A89308096773D9E1C9D1A9998035670D Validity Not Before: Apr 4 22:28:59 2026 GMT Not After : Apr 11 22:28:59 2026 GMT Subject: CN=69d190ab-e8ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:90:5d:17:bf:f2:9a:64:8f:9c:57:53:21:b4: f5:20:09:72:30:42:d3:76:b8:4e:09:bd:12:9f:65: 87:86:a7:84:aa:d6:a8:3f:58:fb:1e:02:28:8c:34: 83:d6:b1:7c:cb:1f:68:b1:50:de:bd:89:7e:a4:58: 38:c3:c8:7f:9a:b3:61:36:62:1e:63:01:c4:b6:19: 15:35:f4:1a:23:e3:dc:c9:9a:19:0a:9c:0d:5d:da: 53:52:f4:00:a1:a6:e8:22:5d:8b:16:89:b8:fa:76: 60:ac:d6:07:f7:4d:fc:6c:53:0c:a9:44:b8:20:7a: 58:13:51:57:7c:c5:0b:c3:52:18:66:60:8e:28:98: ea:43:ef:b3:65:25:2a:1e:21:31:87:ff:f6:04:bf: 96:7a:21:ad:3b:81:5d:0f:e0:b3:10:1c:32:cf:36: 17:69:be:9f:39:9f:90:97:c2:6e:cf:15:af:ad:51: 2f:da:f1:d0:59:ca:e4:8f:01:44:91:da:b1:f9:4a: ea:b1:4a:2b:19:3d:e6:22:5f:19:08:08:bc:7b:bf: 58:45:9b:0d:56:11:97:b2:e4:cf:3d:95:ae:5e:83: c0:ad:cb:cc:04:d0:9b:f8:69:32:16:03:bb:73:65: d4:4c:b4:7f:e6:f2:eb:75:07:a9:88:b9:e5:8d:db: 39:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:EF:FF:1C:50:CC:D0:AD:BA:DA:97:3F:69:6D:A1:5D:F5:70:D7:45 X509v3 Authority Key Identifier: keyid:63:E4:87:62:A8:93:08:09:67:73:D9:E1:C9:D1:A9:99:80:35:67:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:48:a0:02:64:67:d6:04:a5:0a:aa:b1:c1:09:f0:98:41:12: db:dc:5c:43:25:38:a2:a3:77:d7:e3:ab:67:c0:3a:01:d9:7a: 9f:5b:ff:2c:9a:49:ab:02:87:fe:99:f1:68:e4:bd:71:d3:4f: 36:49:09:3a:38:05:91:5a:12:38:6e:20:d0:c6:47:05:47:a7: 46:89:5b:63:21:02:50:f3:2f:fe:1a:9e:05:db:57:8d:ee:45: 17:c0:f2:3a:63:50:32:b7:0c:12:d1:f9:92:bc:79:8d:86:73: 78:a1:bd:1a:65:1d:ab:ed:8a:83:d9:85:94:cf:c8:6b:54:1a: 7d:97:17:1e:e0:c1:87:65:6b:b6:11:3d:99:66:1d:e5:23:54: 23:e4:6d:ce:43:58:9d:70:4f:62:da:dd:80:43:3e:74:cd:dd: 94:a9:b6:a2:70:6d:86:23:8f:49:bd:1e:6b:55:30:6f:b3:89: e0:33:3e:cb:ff:fc:24:79:a5:92:34:10:69:52:4f:69:32:6b: 96:e9:1e:12:9f:76:6b:68:0c:e4:4a:1a:13:1d:7b:52:9d:8e: ca:fc:88:9a:fe:e4:38:38:03:d7:c1:7a:ac:9b:4e:19:38:50: f3:3f:59:29:e4:91:84:f5:05:2a:13:7b:1e:52:f0:e2:b3:94: 94:9e:a9:32 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBlcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDdCNTgxMTAvBgNVBAUTKDYzRTQ4NzYyQTg5MzA4MDk2NzczRDlFMUM5RDFBOTk5 ODAzNTY3MEQwHhcNMjYwNDA0MjIyODU5WhcNMjYwNDExMjIyODU5WjAYMRYwFAYD VQQDEw02OWQxOTBhYi1lOGFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp5BdF7/ymmSPnFdTIbT1IAlyMELTdrhOCb0Sn2WHhqeEqtaoP1j7HgIojDSD 1rF8yx9osVDevYl+pFg4w8h/mrNhNmIeYwHEthkVNfQaI+PcyZoZCpwNXdpTUvQA oaboIl2LFom4+nZgrNYH9038bFMMqUS4IHpYE1FXfMULw1IYZmCOKJjqQ++zZSUq HiExh//2BL+WeiGtO4FdD+CzEBwyzzYXab6fOZ+Ql8JuzxWvrVEv2vHQWcrkjwFE kdqx+UrqsUorGT3mIl8ZCAi8e79YRZsNVhGXsuTPPZWuXoPArcvMBNCb+GkyFgO7 c2XUTLR/5vLrdQepiLnljds5dQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEfv/xxQ zNCtutqXP2ltoV31cNdFMB8GA1UdIwQYMBaAFGPkh2KokwgJZ3PZ4cnRqZmANWcN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0N0I1OC9BQUMyMUM3RUNB QjgxMUVCODQxNTUzMzZDNEY5QUUwMi9ZLVNIWXFpVENBbG5jOW5oeWRHcG1ZQTFa dzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ktU0hZcWlUQ0FsbmM5bmh5ZEdwbVlBMVp3MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 N0I1OC9BQUMyMUM3RUNBQjgxMUVCODQxNTUzMzZDNEY5QUUwMi9ZLVNIWXFpVENB bG5jOW5oeWRHcG1ZQTFadzAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAOkigAmRn1gSlCqqxwQnwmEES29xcQyU4oqN31+OrZ8A6Adl6n1v/LJpJqwKH /pnxaOS9cdNPNkkJOjgFkVoSOG4g0MZHBUenRolbYyECUPMv/hqeBdtXje5FF8Dy OmNQMrcMEtH5krx5jYZzeKG9GmUdq+2Kg9mFlM/Ia1QafZcXHuDBh2VrthE9mWYd 5SNUI+RtzkNYnXBPYtrdgEM+dM3dlKm2onBthiOPSb0ea1Uwb7OJ4DM+y//8JHml kjQQaVJPaTJrlukeEp92a2gM5EoaEx17Up2OyvyImv7kODgD18F6rJtOGThQ8z9Z KeSRhPUFKhN7HlLw4rOUlJ6pMg== -----END CERTIFICATE-----Generated at Mon Apr 6 09:00:27 2026 by rpki-client