$ rpki-client -vvf rpki.apnic.net/member_repository/A9171064/07639620052F11EA8A9E3947C4F9AE02/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.mft File: _YJ8Ams5Z-KhQNTSMU4rDpwEdDA.mft (raw, json) Hash identifier: SahkvDFUt94Y1bcfmwvXk6IVOh+eWW+PWp2plPkdzoQ= Subject key identifier: 2E:6E:2C:9C:9A:19:37:94:95:20:C0:51:61:DD:B4:D1:07:FF:9E:2E Authority key identifier: FD:82:7C:02:6B:39:67:E2:A1:40:D4:D2:31:4E:2B:0E:9C:04:74:30 Certificate issuer: /CN=A9171064/serialNumber=FD827C026B3967E2A140D4D2314E2B0E9C047430 Certificate serial: 0CEC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171064/07639620052F11EA8A9E3947C4F9AE02/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.mft Manifest number: 0CE3 Signing time: Sat 04 Apr 2026 18:06:16 +0000 Manifest this update: Sat 04 Apr 2026 18:06:15 +0000 Manifest next update: Sat 11 Apr 2026 18:06:15 +0000 Files and hashes: 1: _YJ8Ams5Z-KhQNTSMU4rDpwEdDA.crl (hash: wrGnkuRioI2b3bPsO/9uJycrwWMkmREy8FLOrpWb5Hw=) 2: A2A3D38A05CE11EA80526530C4F9AE02.roa (hash: nlkFWUzq5OO+pTS3z8k8oaCv56U483SdYeWxCplbsVs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171064/07639620052F11EA8A9E3947C4F9AE02/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.crl rsync://rpki.apnic.net/member_repository/A9171064/07639620052F11EA8A9E3947C4F9AE02/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 18:06:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3308 (0xcec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171064, serialNumber=FD827C026B3967E2A140D4D2314E2B0E9C047430 Validity Not Before: Apr 4 18:06:15 2026 GMT Not After : Apr 11 18:06:15 2026 GMT Subject: CN=69d15318-7f60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:91:a9:4a:d3:fa:d6:6d:df:96:07:72:73:6d: 04:b4:c7:5e:e0:27:81:73:2c:c5:24:bf:7e:a6:b2: 1a:96:49:e8:78:59:e2:94:84:e7:8c:c6:9a:a5:97: 95:9e:e3:a3:88:83:d9:90:21:f7:41:8e:ca:58:ff: dd:9b:a8:4a:82:b9:4b:2d:7b:95:e3:c8:37:b3:86: d3:4e:4b:99:ab:e1:35:0e:8b:c6:2b:6a:a8:55:7a: b6:76:e7:ba:fb:d6:dd:99:4b:21:ec:7e:99:7d:14: 05:15:f7:e0:f7:bc:b2:be:dc:4e:01:08:76:6b:60: a6:52:e6:45:96:54:fb:b1:eb:19:96:5e:55:20:e3: b4:ea:1b:a8:3a:00:80:7f:34:ba:06:a8:89:4d:42: 00:b9:0e:27:19:36:a3:69:22:e2:e2:46:b1:bb:c0: 42:37:0a:86:b9:09:a9:51:56:9e:eb:1a:06:50:7b: ea:41:6e:85:ba:ca:77:2c:fc:f5:4c:04:cb:9d:15: 18:42:91:39:1c:cd:27:f7:83:c3:28:aa:8d:b7:4c: e5:7f:09:ea:41:0d:97:f7:e4:0f:d3:23:9d:af:99: 7f:31:cd:4e:32:f3:81:fe:89:14:48:25:51:3d:0f: 84:6c:75:fa:26:36:8a:4d:83:d5:95:55:0e:ec:5d: b5:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:6E:2C:9C:9A:19:37:94:95:20:C0:51:61:DD:B4:D1:07:FF:9E:2E X509v3 Authority Key Identifier: keyid:FD:82:7C:02:6B:39:67:E2:A1:40:D4:D2:31:4E:2B:0E:9C:04:74:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171064/07639620052F11EA8A9E3947C4F9AE02/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171064/07639620052F11EA8A9E3947C4F9AE02/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:e1:ea:e5:a1:14:f0:37:20:2f:2c:1b:bc:1d:f6:39:a2:89: 9f:cb:00:26:1e:85:83:98:e4:31:e6:2c:6b:d6:f8:b7:88:a1: 42:9b:3d:bf:ef:8a:96:78:f6:75:13:3e:7e:b6:61:a3:18:fa: cf:eb:61:a1:d8:eb:bd:72:0e:96:90:31:e6:5c:70:de:91:4a: bc:35:98:2d:7e:52:2a:c7:3e:54:00:f6:f5:bb:63:fe:09:98: 8a:fe:c4:f6:dc:15:a4:92:61:80:20:cd:b1:a9:42:3f:49:9f: 0e:7d:29:79:51:93:9f:ff:bc:b5:e5:50:94:03:61:8d:1e:db: 4b:44:c3:ed:e0:54:cf:23:2e:30:11:5d:87:14:c7:22:dc:07: 4c:25:fe:83:ad:a9:ca:44:49:80:23:d3:b7:85:e4:da:37:24: 2b:e0:1a:03:4c:d8:33:1d:d8:59:90:5d:ca:26:ab:ea:11:7d: e8:f0:44:05:83:e0:8e:71:db:d2:a8:c4:02:85:19:b7:3d:b6: 8f:2f:e7:f5:04:a6:0f:e6:30:30:e3:aa:1f:76:41:80:36:e9: 66:38:6f:b4:7d:f2:e0:81:b3:a3:f3:09:76:e5:cd:24:11:92: 81:8a:56:a1:bd:dc:6a:94:2c:84:bc:29:c0:3b:36:d8:f3:02: 03:a7:11:84 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDOwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzEwNjQxMTAvBgNVBAUTKEZEODI3QzAyNkIzOTY3RTJBMTQwRDREMjMxNEUyQjBF OUMwNDc0MzAwHhcNMjYwNDA0MTgwNjE1WhcNMjYwNDExMTgwNjE1WjAYMRYwFAYD VQQDEw02OWQxNTMxOC03ZjYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxZGpStP61m3flgdyc20EtMde4CeBcyzFJL9+prIalknoeFnilITnjMaapZeV nuOjiIPZkCH3QY7KWP/dm6hKgrlLLXuV48g3s4bTTkuZq+E1DovGK2qoVXq2due6 +9bdmUsh7H6ZfRQFFffg97yyvtxOAQh2a2CmUuZFllT7sesZll5VIOO06huoOgCA fzS6BqiJTUIAuQ4nGTajaSLi4kaxu8BCNwqGuQmpUVae6xoGUHvqQW6Fusp3LPz1 TATLnRUYQpE5HM0n94PDKKqNt0zlfwnqQQ2X9+QP0yOdr5l/Mc1OMvOB/okUSCVR PQ+EbHX6JjaKTYPVlVUO7F21oQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFC5uLJya GTeUlSDAUWHdtNEH/54uMB8GA1UdIwQYMBaAFP2CfAJrOWfioUDU0jFOKw6cBHQw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTA2NC8wNzYzOTYyMDA1 MkYxMUVBOEE5RTM5NDdDNEY5QUUwMi9fWUo4QW1zNVotS2hRTlRTTVU0ckRwd0Vk REEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19ZSjhBbXM1Wi1LaFFOVFNNVTRyRHB3RWREQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTA2NC8wNzYzOTYyMDA1MkYxMUVBOEE5RTM5NDdDNEY5QUUwMi9fWUo4QW1zNVot S2hRTlRTTVU0ckRwd0VkREEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAFuHq5aEU8DcgLywbvB32OaKJn8sAJh6Fg5jkMeYsa9b4t4ihQps9v++Klnj2 dRM+frZhoxj6z+thodjrvXIOlpAx5lxw3pFKvDWYLX5SKsc+VAD29btj/gmYiv7E 9twVpJJhgCDNsalCP0mfDn0peVGTn/+8teVQlANhjR7bS0TD7eBUzyMuMBFdhxTH ItwHTCX+g62pykRJgCPTt4Xk2jckK+AaA0zYMx3YWZBdyiar6hF96PBEBYPgjnHb 0qjEAoUZtz22jy/n9QSmD+YwMOOqH3ZBgDbpZjhvtH3y4IGzo/MJduXNJBGSgYpW ob3capQshLwpwDs22PMCA6cRhA== -----END CERTIFICATE-----Generated at Mon Apr 6 08:51:35 2026 by rpki-client