$ rpki-client -vvf rpki.apnic.net/member_repository/A9158491/60DA53FADFA511EF8BD49F87C4F9AE02/YfjH66e1XnGy5rF3QJFCUdiM8KY.mft File: YfjH66e1XnGy5rF3QJFCUdiM8KY.mft (raw, json) Hash identifier: XgvadKesFBm/dYhLCFuGHJS9UN/hy4w+CaA6reTPrxM= Subject key identifier: 94:54:5B:CC:E0:38:7D:E1:DA:D3:DA:BA:A6:16:AC:9C:C3:94:32:1B Authority key identifier: 61:F8:C7:EB:A7:B5:5E:71:B2:E6:B1:77:40:91:42:51:D8:8C:F0:A6 Certificate issuer: /CN=A9158491/serialNumber=61F8C7EBA7B55E71B2E6B17740914251D88CF0A6 Certificate serial: F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YfjH66e1XnGy5rF3QJFCUdiM8KY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158491/60DA53FADFA511EF8BD49F87C4F9AE02/YfjH66e1XnGy5rF3QJFCUdiM8KY.mft Manifest number: ED Signing time: Sun 05 Apr 2026 05:57:56 +0000 Manifest this update: Sun 05 Apr 2026 05:57:55 +0000 Manifest next update: Sun 12 Apr 2026 05:57:55 +0000 Files and hashes: 1: YfjH66e1XnGy5rF3QJFCUdiM8KY.crl (hash: 9aTNQ3hjIozZxfvUqW2pELXGqrHZpg8OCNbRwYXAhrs=) 2: 5FDDEE1CE34211EF8EA0CA77C4F9AE02.roa (hash: +tOM25MCKNoZft+0ItL3rfD0x3Jm3+5ljYXYPQKuHQA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158491/60DA53FADFA511EF8BD49F87C4F9AE02/YfjH66e1XnGy5rF3QJFCUdiM8KY.crl rsync://rpki.apnic.net/member_repository/A9158491/60DA53FADFA511EF8BD49F87C4F9AE02/YfjH66e1XnGy5rF3QJFCUdiM8KY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YfjH66e1XnGy5rF3QJFCUdiM8KY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 05:57:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 248 (0xf8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158491, serialNumber=61F8C7EBA7B55E71B2E6B17740914251D88CF0A6 Validity Not Before: Apr 5 05:57:55 2026 GMT Not After : Apr 12 05:57:55 2026 GMT Subject: CN=69d1f9e3-fb64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:d3:f9:a0:e5:9f:4d:47:8e:70:35:75:cd:96: 29:33:56:ab:09:50:2d:6e:dc:32:9f:dd:c8:63:4b: 6a:78:94:a9:f2:96:56:db:7c:40:18:2e:c2:ed:1f: 53:85:ea:09:ea:31:97:99:07:6c:95:a2:ef:05:3a: aa:9e:8d:a2:53:99:07:48:f1:ac:2d:b2:ad:68:df: b3:8e:5c:d7:65:cb:20:0a:cb:e3:dd:cd:5e:19:5e: 29:6c:11:ad:ae:88:46:1c:19:11:21:1a:15:dc:2d: cd:73:2b:33:18:79:e3:92:3c:b3:b3:31:c8:c8:b8: 37:64:d0:cb:32:bc:d7:49:82:fd:79:31:65:7d:65: ae:3d:dd:49:4f:94:23:ae:25:b5:ac:5b:18:ae:4e: bb:3a:1a:81:cd:64:ff:e5:cb:2a:75:ab:55:3f:4b: af:eb:95:53:0c:98:f1:78:07:28:71:a1:e1:5c:65: ed:9a:a1:31:87:ad:aa:1b:2e:c7:2b:e9:7c:1c:a9: 03:22:a0:6a:62:59:b5:ec:9a:90:43:6c:f9:87:66: b4:05:95:09:3f:99:8a:55:9b:cb:bc:a3:1c:35:34: a6:04:83:f7:55:b6:a3:2f:ae:3e:88:a3:ae:5c:69: bf:3c:5b:bc:4d:eb:11:e5:94:c3:70:4e:30:9c:e7: df:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:54:5B:CC:E0:38:7D:E1:DA:D3:DA:BA:A6:16:AC:9C:C3:94:32:1B X509v3 Authority Key Identifier: keyid:61:F8:C7:EB:A7:B5:5E:71:B2:E6:B1:77:40:91:42:51:D8:8C:F0:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158491/60DA53FADFA511EF8BD49F87C4F9AE02/YfjH66e1XnGy5rF3QJFCUdiM8KY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YfjH66e1XnGy5rF3QJFCUdiM8KY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158491/60DA53FADFA511EF8BD49F87C4F9AE02/YfjH66e1XnGy5rF3QJFCUdiM8KY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b9:5e:f5:cf:7e:95:ab:b1:f9:3c:eb:81:5e:79:aa:e8:f7:fa: b9:dc:e7:b6:e9:37:e2:4c:db:1f:4a:20:8b:b1:67:39:4f:29: d9:86:1c:a1:ae:03:51:01:37:71:1d:39:7c:43:e2:85:d4:97: d7:7b:b2:64:5a:b7:c1:fc:01:2a:73:4b:13:26:cb:ba:46:cc: 62:0a:91:3f:98:ac:1e:e8:d7:63:10:35:d1:65:97:b7:12:29: 67:5f:72:ea:30:9e:73:b5:4e:17:9d:80:b1:41:e7:e5:36:b1: ca:33:f7:e9:3c:84:ed:3b:09:1e:2f:8c:eb:30:0b:3f:b6:df: 31:f7:46:14:d8:93:4c:8d:22:fd:f3:89:45:00:34:5c:00:59: 35:21:f4:51:83:a3:ca:d5:18:58:be:b2:27:b7:50:b9:41:d4: d7:f0:ef:2e:2c:08:93:cf:b4:de:59:64:d5:a7:3a:10:ec:10: fa:7d:38:9e:c1:c5:a9:b0:97:06:95:b1:64:55:bb:46:64:f6: df:b4:18:51:a0:4c:ce:11:9a:b9:19:ce:6f:28:9e:19:cc:2f: e5:c3:fb:6c:38:1a:91:d8:ab:f1:28:b3:8f:98:05:0c:eb:df: 19:2d:2c:bd:5e:6b:c1:a4:d0:6c:4f:ac:44:d8:cd:47:72:77: c1:38:09:79 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAPgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg0OTExMTAvBgNVBAUTKDYxRjhDN0VCQTdCNTVFNzFCMkU2QjE3NzQwOTE0MjUx RDg4Q0YwQTYwHhcNMjYwNDA1MDU1NzU1WhcNMjYwNDEyMDU1NzU1WjAYMRYwFAYD VQQDEw02OWQxZjllMy1mYjY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxtP5oOWfTUeOcDV1zZYpM1arCVAtbtwyn93IY0tqeJSp8pZW23xAGC7C7R9T heoJ6jGXmQdslaLvBTqqno2iU5kHSPGsLbKtaN+zjlzXZcsgCsvj3c1eGV4pbBGt rohGHBkRIRoV3C3NcyszGHnjkjyzszHIyLg3ZNDLMrzXSYL9eTFlfWWuPd1JT5Qj riW1rFsYrk67OhqBzWT/5csqdatVP0uv65VTDJjxeAcocaHhXGXtmqExh62qGy7H K+l8HKkDIqBqYlm17JqQQ2z5h2a0BZUJP5mKVZvLvKMcNTSmBIP3VbajL64+iKOu XGm/PFu8TesR5ZTDcE4wnOffOwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJRUW8zg OH3h2tPauqYWrJzDlDIbMB8GA1UdIwQYMBaAFGH4x+untV5xsuaxd0CRQlHYjPCm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODQ5MS82MERBNTNGQURG QTUxMUVGOEJENDlGODdDNEY5QUUwMi9ZZmpINjZlMVhuR3k1ckYzUUpGQ1VkaU04 S1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lmakg2NmUxWG5HeTVyRjNRSkZDVWRpTThLWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODQ5MS82MERBNTNGQURGQTUxMUVGOEJENDlGODdDNEY5QUUwMi9ZZmpINjZlMVhu R3k1ckYzUUpGQ1VkaU04S1kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAuV71z36Vq7H5POuBXnmq6Pf6udzntuk34kzbH0ogi7FnOU8p2YYcoa4DUQE3 cR05fEPihdSX13uyZFq3wfwBKnNLEybLukbMYgqRP5isHujXYxA10WWXtxIpZ19y 6jCec7VOF52AsUHn5TaxyjP36TyE7TsJHi+M6zALP7bfMfdGFNiTTI0i/fOJRQA0 XABZNSH0UYOjytUYWL6yJ7dQuUHU1/DvLiwIk8+03llk1ac6EOwQ+n04nsHFqbCX BpWxZFW7RmT237QYUaBMzhGauRnObyieGcwv5cP7bDgakdir8Sizj5gFDOvfGS0s vV5rwaTQbE+sRNjNR3J3wTgJeQ== -----END CERTIFICATE-----Generated at Mon Apr 6 08:27:54 2026 by rpki-client